Fashion by
KARIN KARL
privacy
Responsible for data processing is:
Fashion by KARIN KARL
Karin Karl
Bahnhofstrasse 17
82229 Seefeld
§ 1 General information on data protection
In the following we inform you about the processing of your personal data when you visit our website. The processing takes place exclusively on the legal basis of the European and German data protection laws.
Personal data is all information that can be related to you personally, e.g. B. Name, address, e-mail addresses, user behavior.
Karin Karl, Fashion by KARIN KARL, Bahnhofstrasse 17, 82229 Seefeld, is responsible for processing the data. Our contact details can be found in the imprint of our website.
§ 2 Visiting our website www.fashion-karinkarl.com
When you visit our website, we process personal data that the browser transmits to our server. We process the IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, website from which the request comes, browser, Operating system and its interface, language and version of the browser software (legal basis for this is: Art. 6 Para. 1 lit. f) GDPR).
When you contact us by e-mail or via the contact form, we also process the data you provide (name, e-mail address). At the time the message is sent, the following data is also stored: your IP address, date and time the message was sent.
This data is stored by us in order to answer your questions (the legal basis for this is: Art. 6 Para. 1 lit. a) GDPR).
There is no contractual or legal obligation to provide this data. If we do not collect your IP address, we cannot analyze our own website.
§ 3 Recipients and processing by third parties
We use carefully selected and commissioned third parties (e.g. IT service providers, Microsoft Corporation for Office 365) to process your aforementioned personal data. These external service providers only act on instructions, e.g. when maintaining and updating the website, and are regularly checked by us.
This website was created using the online software Joomla. The company 1&1 is the provider for the website. The hosting is regulated by a contract for order data processing: Please read the data protection guidelines for the services of Joomla and 1&1 on the respective website
§ 4 Use of cookies
In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive, assigned to the browser you are using and through which certain information flows to the place that sets the cookie (here from us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the internet offer more user-friendly and effective overall (the legal basis for this is: Art. 6 Para. 1 lit. f) or Art. 6 Para. 1 lit. a (consent)).
Our website uses transient and persistent cookies.
Transient cookies are automatically deleted when you close your browser. These include in particular the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
Persistent cookies are automatically deleted after a specified period, which can vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
You can configure your browser settings according to your wishes and e.g. B. refuse to accept third-party cookies or all cookies. We would like to point out that you may not be able to use all the functions of this website.
§ 5 Duration of storage
Subject to the IP address, we do not store any personal data of the users of our website after the end of the actual use.
The contact data that you transmit to us via the contact form or directly via one of our email addresses will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. This is the case when the respective conversation with you has ended. The conversation is over when it can be inferred from the circumstances that the facts in question have been finally clarified.
§ 6 Export and processing of data in countries outside the European Economic Area
When using Microsoft Office 365 from Microsoft Corporation (hereinafter: Microsoft), personal data may also be transferred to the USA. In this case, the transfer is based on an order processing agreement, the conclusion of the EU standard contractual clauses as a data processor and Microsoft's submission to the EU-US Privacy Shield; https://www.privacyshield.gov/EU-US-Framework(The legal basis for this is: Art. 6 Para. lit. f) GDPR).
Microsoft's privacy policy can be found at: https://privacy.microsoft.com/de-DE/privacystatement
§ 7 Integration of Google Maps
On this website we use the offer of Google Maps on individual pages. This enables us to show you interactive maps directly on the website and enables you to conveniently use the map function.
By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the following data is transmitted:
- Browser type/version
- operating system used
- Referrer URL (the previously visited page)
- Host name of the accessing computer (IP address)
- Time of server request
This takes place regardless of whether Google provides a user account through which you are logged in or whether there is no user account.
If you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for advertising, market research and/or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.
Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in Google's data protection declaration. There you will also find further information on your rights in this regard and setting options to protect your privacy: http://www.google.de/intl/de/policies/privacy.
Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
§ 8 Use of script libraries (web fonts)
In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries such as Google Webfonts (https://www.google.com/webfonts/). Web fonts are transferred to your browser's cache to avoid multiple loading. If the browser does not support web fonts or prevents access, content is displayed in a standard font.
Calling up script libraries or font libraries automatically triggers a connection to the operator of the library when the fonts are reloaded. It is theoretically possible - although it is currently unclear whether and, if so, for what purposes - that operators of such libraries collect data. The web fonts used on this website are only hosted locally and loaded from our web server (server location Germany), which prevents a data connection to the service provider.
The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/
§ 9 Consent of the data subject
Insofar as the person responsible processes personal data based on consent, this consent can be revoked by the person concerned at any time with effect for the future. The revocation does not affect the legality of the processing of the personal data up to the revocation.
§ 10 Rights of data subjects
You have the right:
· to request information about your personal data processed by us in accordance with Art. In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right of appeal, the origin of your data, if not collected from us, and the existence of automated decision-making including profiling and, if necessary, meaningful information about their details;
· according to Art. 16 GDPR to immediately request the correction of incorrect or completion of your personal data stored by us;
· according to Art. 18 GDPR to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you reject their deletion and we no longer need the data, but you need them to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
You have the right to receive the personal data concerning you that you have provided to the person responsible in a structured, common and machine-readable format. In addition, you have the right to transmit this data to another person responsible without hindrance by the person responsible for providing the personal data, provided that
or the processing is based on consent pursuant to Article 6 Paragraph 1 Letter a) GDPR or Article 9 Paragraph 2 Letter a) GDPR or on a contract pursuant to Article 6 Paragraph 1 Letter b) GDPR and
or the processing is carried out using automated procedures.
· In exercising this right, you also have the right to obtain that the personal data concerning you are transmitted directly from one person responsible to another person responsible, insofar as this is technically possible is feasible. The freedoms and rights of other people must not be impaired by this. The right to data portability does not apply to processing of personal data that is necessary for the performance of a task that is in the public interest or in the exercise of official authority that has been transferred to the person responsible:
· to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our office if you believe that the processing of your personal data violates the GDPR. The supervisory authority to which the complaint was lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR;
· You can request the person responsible to delete the personal data concerning you immediately, and the person responsible is obliged to delete this data immediately if one of the the following reasons apply:
o The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
oYou revoke your consent on which the processing was based pursuant to Article 6(1)(a) or Article 9(2)(a) GDPR and there is no other legal basis for the processing.
oYou object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR.
oThe personal data concerning you have been unlawfully processed.
o The erasure of your personal data is necessary for compliance with a legal obligation in Union or Member State law to which the controller is subject.
o The personal data concerning you was collected in relation to information society services offered in accordance with Article 8 (1) GDPR.
Information to third parties:
If the person responsible has made the personal data relating to you public and is obliged to delete it in accordance with Art. 17 (1) GDPR, he shall take appropriate measures, including technical measures, to protect the person responsible for data processing, taking into account the available technology and the implementation costs , who process the personal data, that you, as the data subject, have requested them to delete all links to this personal data or copies or replications of this personal data.
Exceptions:
The right to erasure does not exist if processing is necessary
1. to exercise the right to freedom of expression and information;
2. to fulfill a legal obligation that requires processing under Union or Member State law to which the controller is subject, or to perform a task that is in the public interest or in exercise public authority delegated to the controller;
3. for reasons of public interest in the field of public health pursuant to Article 9 (2) lit. h) and i) and Article 9 (3) GDPR;
4. for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Art. 89 Para renders processing impossible or seriously impairs it, or
5. to establish, exercise or defend legal claims. If you have asserted the right to correction, deletion or restriction of processing against the person responsible, he is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the person responsible.
§ 11 Right to object
If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Clause 1 Letter f) GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided there are reasons for this that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
If you would like to make use of your right of revocation or objection, an e-mail to is sufficient
5lakes.artproduction@gmail.com
§ 12 Data security
We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
§ 13 Updating and changing this data protection declaration
This data protection declaration is currently valid and has the status of July 2018.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.
This data protection declaration was created on the basis of the valid GDPR.