Data protection information for the website and external pages of Zebra und Freunde UG (limited liability)
I. General
1. Person responsible
We take the protection of your personal data and the legal obligations that serve this protection very seriously. Legal requirements require comprehensive transparency regarding the processing of personal data. Only if you are sufficiently informed about the purpose, nature, and scope of the processing can the processing be understood by you as the data subject.
Our privacy policy therefore explains in detail which personal data we process when you use our website (findedeinyoga.org), all other websites that link to it, and in other cases that may be explained here.
The responsible party within the meaning of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other data protection regulations is
Andrej Telle
Tonhalderhof 4a
78576 Emmingen-Liptingen
Phone: 0162 108 53 74
Email: mail@findedeinyoga.org
Hereinafter referred to as " controller " or " we ".
We do not have a data protection officer.
Please note that links on our website may lead you to other websites that are not operated by us but by third parties. Such links are either clearly marked by us or are recognizable by a change in your browser's address bar. We are not responsible for compliance with data protection regulations and the secure handling of your personal data on these third-party websites.
2. Definitions
From the GDPR
This privacy policy uses the terms of the GDPR. The definitions (Article 4 GDPR) can be found, for example, at eur-lex.europa.eu/legal-content/DE/TXT/?uri=CELEX:32016R0679 .
Additional definitions:
Cookies and similar technologies
Cookies are text files that are stored or read by a website on your device. They contain combinations of letters and numbers that are used, for example, to recognize the user and their settings upon reconnecting to the website that placed the cookies, to enable them to remain logged in to a customer account, or to statistically analyze certain usage behavior.
WebStorage technology allows variables and values to be stored locally in the user's browser cache. This technology includes both " sessionStorage ," which remains stored until the browser tab is closed, and " localStorage ," which is stored in the browser cache until the cache is emptied by the user. Among other things, localStorage technology allows us to recognize the user and their settings when they visit our website.
Data categories
When we specify the categories of data processed, this particularly includes the following data: master data (e.g. names, addresses), contact data (e.g. email addresses, telephone numbers, messenger services), content data (e.g. text entries, photographs, videos, contents of documents/files), contract data (e.g. subject matter of the contract, terms, customer category), usage data (e.g. history on our website, use of certain content, access times), connection data (e.g. device information, IP addresses, URL referrers), location data (e.g. GPS data, IP geolocation, access points); diagnostic data (e.g. crash logs, website/app performance data, other technical data for analyzing disruptions and errors).
3. Information on data processing
We process personal data only to the extent permitted by law. Personal data will only be shared in the cases described below. Personal data is protected by appropriate technical and organizational measures (e.g., pseudonymization, encryption).
Unless we are legally obliged to store or disclose data to third parties (in particular law enforcement authorities), the decision as to which personal data we process, for how long, and to what extent we disclose it depends on which functions of the website you use in each individual case.
4. Storage period
The personal data will be deleted as soon as the purpose of processing no longer applies or a prescribed storage period expires, unless further storage of the personal data is necessary for the conclusion or fulfillment of a contract. If we are required to provide information about the storage period for cookies and similar technologies, you will find this information at the end of this privacy policy.
Personal data that we process as part of an application (see below) will be stored for a period of six months after completion of the application process.
5. Automated decisions in individual cases, including profiling
Automated decisions in individual cases, including profiling, are not made.
6. Rights of data subjects
As a data subject, you have the right to information pursuant to Art. 15 GDPR, the right to rectification pursuant to Art. 16 GDPR, the right to erasure pursuant to Art. 17 GDPR, the right to restriction of processing pursuant to Art. 18 GDPR, and the right to data portability pursuant to Art. 20 GDPR. The restrictions in Sections 34 and 35 of the Federal Data Protection Act (BDSG) apply to the right to information and the right to erasure.
You have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG).
The data protection supervisory authority responsible for us/our head office is:
Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstrasse 219
10969 Berlin
However, you are free to lodge a complaint with another data protection supervisory authority.
A list of supervisory authorities can be found at: https://www.bfdi.bund.de/ (under Infothek/Addresses and Links)
7. Notification obligations of the controller
We will notify all recipients to whom your personal data has been disclosed of any rectification or erasure of your personal data, or restriction of processing pursuant to Art. 16, Art. 17 (1), and Art. 18 GDPR, unless notification is impossible or involves disproportionate effort. We will inform you of the recipients upon your request.
8. Obligation to provide
Unless otherwise stated below in the information on the legal basis, you are not obligated to provide personal data. However, in the cases referred to in Art. 6 (1) (b) GDPR, the personal data is required to fulfill or conclude a contract. If you do not provide the personal data in question, the contract cannot be fulfilled or concluded. If you do not provide the data in the cases referred to in Art. 6 (1) (a) and (f) GDPR, you will not be able to use the affected parts of our website.
9. Right of objection
You have the right to object at any time to the processing of personal data concerning you pursuant to Article 6 (1) (f) GDPR, for reasons related to your particular situation. If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising.
You can submit your objection informally to the contact details provided above.
10. Revocation of consent
Pursuant to Art. 7 (3) (1) GDPR, you have the right to revoke your consent at any time with future effect, informally by post or email. This does not affect the legality of the processing carried out on the basis of the consent up to the time of revocation. Upon your revocation, we will delete the personal data processed on the basis of the consent if there is no other legal basis for their processing.
Your revocation can be made informally to the contact details mentioned above.
You can also revoke certain consent(s) by deactivating the respective data processing services directly in our consent tool. Please note that you must do this on each device on which you visited our website and consented to data processing.
II. Data processing in connection with the use of our website
The use of the website and its functions regularly requires the processing of personal data.
Provision of the website
Purpose of processing: Functionality and optimization of the website, as well as ensuring the security of our information technology systems when our website is used for purely informational purposes (without using additional functions such as contact forms or social media plugins).
Legal basis: Art. 6 (1) (f) GDPR
Data categories: Connection data
Recipients of data: Data will only be shared with third parties if this is necessary to operate our website. For this purpose, personal data will be transferred to the following recipients: In individual cases, IT service provider - discoverize GmbH
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Newsletter
Purpose of processing: Subscription to our newsletter about our news and offers; proof of your consent; ensuring the security of our information technology systems; measuring click and opening behavior related to our newsletter; personalizing our newsletter.
Legal basis : Art. 6 (1) (a) GDPR
Data categories : master data, contact data, usage data, connection data
Recipient of the data: The Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, Georgia 30308, USA
Intended third country transfer: USA (based on the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)
Do we store or read personal data on your device based on your consent? No
Application (application by email)
Purpose of processing: Processing your application and conducting the application procedure.
Legal basis : Art. 88 para. 1 GDPR in conjunction with Section 26 para. 1 sentence 1 BDSG
Data categories: master data, contact data, content data, contract data, connection data (if applicable), usage data (if applicable), and special categories of personal data as defined in Art. 9 (1) GDPR (depending on the specific job advertisement; only the data relating to your application that you provide to us and that we are permitted to process in the context of applications will be stored)
Recipient of the data: None
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Login area
Purpose of processing: Use of an account (login area) to create and manage a (premium) entry in our portal; ensuring data and information security.
Legal basis : Art. 6 (1) (b) and (f) GDPR
Data categories: master data, contact data, connection data, contract data and content data
Recipient of the data: None
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Booking premium listings
Purpose of processing: Booking and processing your premium entry; ensuring data and information security.
Legal basis: Art. 6 (1) (b) and (f) GDPR
Data categories: master data, contact data, connection data, content data, contract data,
Recipient of the data: Payment service provider, if applicable
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Contact us
Purpose of processing: Processing your contact request and callback request.
Legal basis: Article 6 (1) (f) GDPR; Article 6 (1) (b) GDPR (depending on the circumstances)
Data categories: contact data, master data, content data (depending on the type of request).
Recipient of the data: None
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Bugsnag (error analysis)
Purpose of processing: Error analysis to improve the accessibility, stability and security of our website.
Legal basis: Art. 6 (1) (f) GDPR
Data categories: Usage data, content data, connection data
Recipient of the data: Bugsnag Inc., 110 Sutter Street, San Francisco, CA 94104, USA
Intended third country transfer: In individual cases, the USA and other third countries (based on the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR and on the basis of adequacy decisions, Art. 45 GDPR)
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Stackify (error analysis)
Purpose of processing: Error analysis to improve the accessibility, stability and security of our website.
Legal basis: Art. 6 (1) (f) GDPR
Data categories: Usage data, content data, connection data
Recipient of the data: Stackify Inc., 7171 Warner Ave, Suite B787, Huntington Beach, CA 92647, USA
Intended third country transfer: In individual cases, the USA and other third countries (based on the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR and on the basis of adequacy decisions, Art. 45 GDPR)
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Cookie Consent
Purpose of processing: When you visit our website, certain information is stored on your device or read if this is absolutely necessary for the operation of our website. This includes information processed by the "Cookie Consent" service to ensure that only cookies that are technically necessary to operate our website or to which you have consented are set or read. We selected the operator based on data protection-friendly and technical criteria.
Legal basis: Art. 6 (1) (c) and (f) GDPR
Data categories: usage data, connection data
Recipient of the data: IT service provider
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Facebook (social media button)
Purpose of processing: Enabling the ability to share content from our website via the social network "Facebook" using so-called social media buttons; personalizing our website.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: connection data, usage data
Recipient of the data: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (as joint controllers, Art. 26 GDPR – the essence of the concluded agreement (including information on the implementation of your data subject rights) can be found at www.facebook.com/legal/controller_addendum; further information on the processing of personal data by Facebook, the legal basis on which Facebook bases the processing and the exercise of data subject rights vis-à-vis Facebook can be found at www.facebook.com/about/privacy)
Intended third country transfer: In individual cases, the USA and other third countries (based on the EU Commission's standard data protection clauses, Article 46 (2) (c) GDPR or, if applicable, on the basis of adequacy decisions (Article 45 GDPR))
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Google Maps
Purpose of processing: Determination of geo-coordinates based on addresses
Legal basis: Art. 6 (1) (f) GDPR
Data categories: Address data
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Google Analytics
Purpose of processing: Statistical evaluation; optimization and needs-based design of our website based on your click and usage behavior.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: usage data, connection data
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: In individual cases, USA (based on the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Google Fonts
Purpose of processing: Personalizing our website using fonts loaded from Google servers.
Legal basis : Art. 6 (1) (f) GDPR
Data categories: Connection data
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: None
Do we store or read personal data on your device based on your consent? No
Google Marketing Platform
Purpose of processing: Statistical evaluation of the use of our website through services of the Google Marketing Platform; optimization and needs-based design of the website; advertising purposes.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: Usage data, connection data (active IP anonymization; only in exceptional cases will the full IP address be transmitted to a Google server and shortened there)
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: In individual cases, USA (based on the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Google reCAPTCHA
Purpose of processing: Preventing misuse of our website by verifying whether access is carried out by humans and not by bots or similar programs; ensuring the security of our website and our information technology systems.
Legal basis: Art. 6 (1) (f) GDPR
Data categories: connection data, usage data
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: In individual cases, USA
Do we store or read personal data on your device based on your consent? No
cloudflare turnstile
Purpose of processing: Preventing misuse of our website by verifying whether access is made by humans and not by bots or similar programs; ensuring the security of our website and our information technology systems.
Legal basis: Art. 6 (1) (f) GDPR
Data categories: connection data, usage data
Recipient of the data: Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107 USA
Intended third country transfer: none
Do we store or read personal data on your device based on your consent? No
Mailchimp (newsletter)
Purpose of processing: Subscription to our newsletter about our news and offers; proof of your consent; ensuring the security of our information technology systems; measuring click and opening behavior related to our newsletter; personalizing our newsletter.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: master data, contact data, usage data, connection data.
Recipient of the data: The Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000
Atlanta, Georgia 30308, USA
Intended third country transfer: USA (based on the EU Commission's standard data protection clauses, Art. 46 (2) (c) GDPR)
Do we store or read personal data on your device based on your consent? No
YouTube
Purpose of processing: Integration of videos via the YouTube video plug-in to personalize our website.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: usage data, connection data
Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland
Intended third country transfer: In individual cases, USA
Do we store or read personal data on your device based on your consent? Yes (details can be found in the overview at the end of this policy).
Vimeo
Purpose of processing: Integration of videos via the Vimeo video plugin to personalize our website.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: usage data, connection data
Recipient of the data: Vimeo.com, Inc., 555 West 18th Street, New York, New York 10011
Intended third country transfer: In individual cases, USA
Do we store or read personal data on your device based on your consent? No
SoundCloud
Purpose of processing: Integration of audio via the SoundCloud audio plugin to personalize our website.
Legal basis: Art. 6 (1) (a) GDPR
Data categories: usage data, connection data
Recipient of the data: SoundCloud Global Limited & Co. KG, Rheinsberger Str. 76/77, 10115 Berlin
Intended third country transfer: none
Do we store or read personal data on your device based on your consent? No
II. Further information
Our website contains affiliate links, through which we receive a commission on purchases; there are no additional costs for users. For more information, see: https://findedeinyoga.org/transparenz-partner