privacy policy

1. Data protection at a glance

This privacy notice informs you about the type, scope, and purpose of the processing of personal data on this website as well as your related rights.

2. General information and mandatory disclosures

Data protection

We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.

Legal basis for data processing

The processing of your personal data is carried out in accordance with the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the EU AI Act, where AI-based processes are involved.

Your rights under the GDPR

You have the right to:

• Access (Art. 15 GDPR) – to receive information about the origin, recipients, and purpose of your stored personal data.
• Rectification (Art. 16 GDPR) – to correct incorrect or incomplete data.
• Erasure (Art. 17 GDPR, “Right to be forgotten”) – of your stored data, unless legal retention obligations prevent this.
• Restriction of processing (Art. 18 GDPR) – if you contest the accuracy of your data or have objected to the processing.
• Data portability (Art. 20 GDPR) – if the processing is based on your consent or a contract.
• Objection (Art. 21 GDPR) – to the processing of your data, particularly in the context of direct marketing.
• Withdrawal of consent (Art. 7 para. 3 GDPR) – if data processing was based on your consent.
• You also have the right to file a complaint with a supervisory authority.

  Responsible data protection authority:

  Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)

  Promenade 27, 91522 Ansbach

  E-Mail: poststelle@lda.bayern.de

  Tel.: +49 981 180093-0

Retention periods for personal data

Personal data is stored only as long as necessary for fulfilling the respective purpose. Statutory retention obligations (e.g. commercial or tax-related retention periods) remain unaffected. Data that must be retained for legal or business reasons will be stored in accordance with statutory periods (e.g. 6 years for business correspondence, 10 years for accounting records) and deleted after the purpose has ceased or the statutory period has expired.

3. Data collection on this website

Server log files

The provider of this website automatically collects and stores information in server log files, which your browser transmits automatically. These include:

• Browser type and version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server request
• IP address (anonymized, if possible)

These data are not combined with other data sources and are used solely to ensure technical functionality and website security.

Contact form & communication

If you send us inquiries via the contact form or email, your information including the contact details provided will be stored for the purpose of processing your request. We do not share this data without your consent.

Legal basis for processing is Art. 6(1)(b) GDPR (performance of a contract) or Art. 6(1)(f) GDPR (legitimate interest in efficient communication).

4. Analytics tools and advertising

This website does not use tracking tools or personalized advertising. If a CRM system is used to manage and analyze customer inquiries, it may record open rates of emails. If you do not wish for your email interactions to be analyzed, you can object by adjusting your email program settings (e.g. blocking external images), modifying browser settings, or contacting us directly.

5. Hosting and External Services

This website is hosted by Ionos SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. Data processing takes place within the EU. Further information can be found in Ionos’ privacy policy: https://www.ionos.de/terms-gtc/datenschutzerklaerung/
We do not assume liability for the content of external links.

6. Data Processing Agreements (DPAs)

In accordance with Art. 28 GDPR, we have concluded data processing agreements (DPAs) with external service providers who process personal data on our behalf. This applies in particular to hosting providers and email communication services.

7. Technical and Organizational Measures (TOMs)

We implement technical and organizational measures (TOMs) in accordance with Art. 32 GDPR to protect personal data from unauthorized access, loss, or misuse. This includes encryption technologies, access controls, and regular security updates.

8. Plugins and Tools

Fonts

This site uses locally embedded fonts for consistent visual display. No connection to external servers is established.

SEO Optimization

This website uses a search engine optimization feature that does not process personal data.

9. Social Media Profiles

If we operate business social media profiles (e.g. LinkedIn, Xing), the privacy policies of the respective platforms apply. You can find more information in their privacy policies: LinkedIn Privacy Policy (https://de.linkedin.com/legal/privacy-policy) XING Privacy Policy (https://privacy.xing.com/de/datenschutzerklaerung)
We do not assume liability for the content of external links.

10. Cookies

This website does not use cookies. Should cookies be used in the future, user consent will be obtained, e.g., via a cookie banner.

11. AI Transparency and Privacy Policy

1. Use of Artificial Intelligence (AI)

I use AI-powered tools, particularly ChatGPT by OpenAI, for information gathering, research, and fact-checking. No personal data is processed or stored. All AI-generated content is manually reviewed before being used in a business context.

2. No Automated Decision-Making

AI is used solely to support my services. I do not make automated decisions that have legal or business implications for customers or partners. All final assessments are made by human judgment.

3. Compliance with EU Copyright Law

I ensure that AI-generated content does not violate copyright laws. AI-generated texts or content are manually reviewed to prevent the use of protected works without authorization. If necessary, sources are cited or the content is adapted accordingly.

4. Transparency and Disclosure

• Customers and partners are informed that AI tools are used for research and information processing purposes.
• Materials that include AI-generated content are clearly marked as such if the content has not been edited.

5. Data Protection and Security

• No personal or sensitive data is entered into AI systems.
• My use of AI complies with the General Data Protection Regulation (GDPR) and the EU AI Act.
• All interactions with AI are manually monitored, and no confidential information is entered.

6. Regular Review and Updates

This policy is reviewed and updated regularly to ensure compliance with legal requirements and to uphold responsible use of AI.

This privacy policy is reviewed and updated regularly.