privacy policy

Status of the privacy policy: MAY 2025

PRIVACY STATEMENT - DATA PROTECTION

I would like to inform you about data protection on my website and about the type, scope, and purpose of the personal data I collect, use, and process. Data protection is very important to me.

Personal data is any data that could be used to identify you personally, such as your name, IP address, telephone number, etc. Some of this data is processed automatically when you visit the website (e.g., IP address, browser type, operating system, etc.), or when you give me your consent to process it, or when you voluntarily provide me with your data, e.g., by entering your data in a form on my website.

Furthermore, I would like to inform you about your rights under the GDPR.

You have the right to obtain information about the origin, recipient, and purpose of your personal data processed by me at any time and free of charge, as well as the right to correct or delete this data.

You also have the right to request the restriction of the processing of your personal data under certain circumstances. If you have given me your consent to process your data, you can revoke this consent at any time with future effect. You also have the right to lodge a complaint with the competent data protection supervisory authority.

THE DATA CONTROLLER/PROCESSING ENTITY IS:

Bettina Fischer
Nordgaustraße 44
D-93059 Regensburg


Phone +49.941.8305680
info@bettina-fischer.net

PROCESSING OF YOUR DATA WITHIN THE SCOPE OF THE SERVICES I PROVIDE

For my customers or business partners, or in the event that you are interested in my services, the type, scope, and purpose of the processing of your personal data are based on the contractual or pre-contractual relationships between us. In doing so, I process personal data that I request from you or that you provide to me in order to respond to your enquiry, prepare a quote for you or process your order. The data subjects in this context are interested parties, business partners and contractual partners. The purpose of processing is the performance of contractual services, communication, responding to contact enquiries and office and organisational procedures.

Unless otherwise stated in this Privacy Policy, the processing of your data and its transfer to third parties is limited to data that is necessary and appropriate for responding to your inquiries and/or fulfilling the contract, protecting my rights, and fulfilling legal obligations.

The data concerned is:

  • Inventory data (e.g., names, addresses)
  • Payment data (e.g., bank details, invoices)
  • Contact details (e.g., email address, telephone number, postal address)
  • Contract data (e.g., subject matter of the contract, duration of the contract)

The legal basis for data processing is Art. 6 I 1 lit. b GDPR, the fulfillment of the contract or the fulfillment of pre-contractual requests.

Unless a specific storage period is specified in this Privacy Policy, I will store your personal data until the purpose for which it was collected no longer applies. I will delete your personal data when I no longer need it, i.e. after the contractual relationship between us has ended, or after my legitimate interest in further processing the data has ceased to exist, or if you request me to delete it. Mandatory legal provisions – in particular statutory retention periods – remain unaffected. It may also be necessary to process your personal data until the expiry of these periods in order to assert, exercise or defend legal claims arising from contractual relationships or to protect the rights of another natural or legal person. I will then delete the personal data required for this purpose only after these periods have expired. Until these periods expire, however, I will restrict the processing of this data to these purposes.

VISITING THE WEBSITE - PROCESSING OF PERSONAL DATA AND TYPE AND PURPOSE OF USE

When you visit my website, you transmit data to the web server via your Internet browser (due to technical necessity). The following data is processed in the server log files during an ongoing connection for communication between your Internet browser and the web server:

  • the page from which the file was requested - referrer URL
  • the name of the file
  • the date and time of the request
  • a description of the type of web browser/browser version and operating system used
  • IP address of the requesting computer
  • Access status (file transferred, file not found, etc.)
  • Amount of data transferred

For technical reasons (access to the website), this data is stored temporarily. I cannot draw any conclusions about individual persons based on this data. The IP addresses are deleted or anonymized after 7 days at the latest.

The data is evaluated exclusively for internal purposes and does not allow me to draw any conclusions about your person. A comparison with other data sets does not take place.

The data mentioned is processed for the following purposes:

  • Ensuring a proper and smooth connection to the website
  • Ensuring a comfortable use of the website
  • Evaluating system security and stability

The legal basis for data processing is Art. 6 I S. 1 lit. f GDPR. The legitimate interest follows from the purposes listed above for data collection. Under no circumstances will I use the collected data for the purpose of drawing conclusions about your person. You can visit the website without providing any personal information.

INQUIRIES BY EMAIL OR PHONE

If you contact me by email or phone, your request, including all personal data arising from it (e.g., name, request), will be stored and processed by me for the purpose of processing your request. The data will not be passed on without your consent. There is no legal or contractual obligation to provide your data, but it is not possible to process your request without providing your data.

The processing of this data is based on Art. 6 I S 1 lit. b GDPR, provided that your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and/or on my legitimate interest (Art. 6 I lit. f GDPR), as I have a legitimate interest in the effective processing of inquiries addressed to me.

The data sent via contact requests (e-mail) will be stored by me until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.

AMAZON CLOUDFRONT - CLOUDFLARE - CONTENT DELIVERY NETWORKS (CDN)

My website may use technologies from CDN servers (content delivery network). CDN shortens the loading times of JavaScript libraries and fonts, as these files are transferred from fast or less busy servers. The proxy servers store the files locally, thereby improving the access speed during download. This allows content such as web videos or other large media files to be delivered quickly and securely.

I use the services of Cloudflare (Clouflare Inc., 101 Townsend St, San Francisco, CA 94107, USA) and Amazon CloudFront (service provider is Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855 Luxembourg - AWS).

The use of CDN requires the processing of your IP address so that the content of the website can be sent to your browser.

Data processing is based on my legitimate interests in optimizing and operating my website in an economically viable manner (Art. 6 I S. 1 f GDPR). Cloudflare and AWS are recipients acting as processors on my behalf. This corresponds to my legitimate interest within the meaning of Art. 6 para. 1 S. 1 lit. f GDPR in not operating a content delivery network myself.

The transfer of your IP address to the USA is based on the adequacy decision of the EU Commission (EU-U.S. Data Privacy Framework). Based on adequacy decisions of the EU, personal data can flow freely and securely from the European Economic Area to the third country in question without further conditions or approvals being required. This means that data can be transferred to the third country in the same way as within the EU. Cloudflare Inc and Amazon.com Inc. are Data Privacy Framework certified.

The Amazon AWS Privacy Policy can be found at https://aws.amazon.com/de/compliance/gdpr-center/

The Cloudflare Privacy Policy can be found at https://www.cloudflare.com/privacypolicy/

DATA SECURITY - SSL ENCRYPTION

I use the SSL (Secure Socket Layer) procedure on my website to encrypt and protect the transmission of confidential content. When SSL encryption is activated, the data you transmit to me cannot be read by third parties. You can recognize whether a single page of my website is transmitted in encrypted form by the closed representation of the key or lock symbol in the status bar of your browser—the address line of your browser displays “https://” when SSL encryption is activated.

PROCESSING/TRANSFER OF DATA

Your personal data will not be transferred to third parties for purposes other than those listed above or below.

I will only pass on your personal data to third parties if:

  • You have given your express consent in accordance with Art. 6 I S. 1 lit. a GDPR
  • this is legally permissible and necessary for the fulfillment of contractual relationships or for the implementation of pre-contractual measures with you in accordance with Art. 6 I S. 1 lit. b GDPR,
  • in the event that there is a legal obligation to disclose the data in accordance with Art. 6 I S. 1 lit. c GDPR,
  • the processing is necessary for the purposes of the legitimate interests pursued by me or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

DATA SUBJECT RIGHTS

You have the right:

  • to request information about your personal data processed by me in accordance with Art. 15 GDPR;
  • pursuant to Art. 16 GDPR, to request the immediate rectification of inaccurate personal data concerning you or the completion of your personal data stored by me;
  • pursuant to Art. 17 GDPR, to request the erasure of your personal data stored by me, unless the processing is necessary for exercising the right of freedom of expression and information, for fulfilling a legal obligation, for reasons of public interest, or for asserting, exercising, or defending legal claims;
  • pursuant to Art. 18 GDPR, to request the restriction of the processing of your personal data;
  • pursuant to Art. 20 GDPR, to receive your personal data that you have provided to me in a structured, commonly used and machine-readable format or to request its transfer to another controller;
  • pursuant to Art. 7 III GDPR, to revoke your consent once you have given it to me at any time. As a result, I will no longer be allowed to continue processing the data based on this consent in the future;
  • pursuant to Art. 77 GDPR, to lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you violates the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or my registered office. A list of data protection officers in Germany and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

RIGHT TO OBJECT TO DATA COLLECTION IN SPECIAL CASES AND TO DIRECT MARKETING (ART. 21 GDPR)

If I process your personal data in accordance with Art. 6 I para. 1 lit. f GDPR in order to protect my legitimate interests, which outweigh your interests, you have the right to object to the processing of your personal data with effect for the future in accordance with Art. 21 GDPR. If the processing is for direct marketing purposes, you can exercise this right at any time. This also applies to profiling insofar as it is related to such direct marketing. If the processing is carried out for other purposes, you only have the right to object if there are reasons arising from your particular situation.

If you wish to exercise your right to object, simply send me an email. After you exercise your right to object, I will no longer process your personal data unless I can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend legal claims.

If you object to the processing of your personal data for direct marketing purposes, your personal data will no longer be processed for these purposes. No automated decision-making or profiling takes place on my website.

CHANGES TO THIS PRIVACY POLICY – STATUS

Due to the further development of my website and offers on it or due to changes in legal or official requirements, it may be necessary to change this privacy policy in accordance with the applicable data protection regulations. The current privacy policy can be accessed and printed out at any time on my website under Privacy Policy.

05/2025

© Bettina Fischer MANAgement CONSULTING
CONTACTPRIVACY POLICYImprINT
© 2019 Bettina Fischer MANAgementberatung