Privacy Policy
This Privacy Policy informs you about the type, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) within our online services, as well as the related websites, features, and content, including our external online presence, such as our social media profiles (collectively referred to as “online services”). Regarding the terminology used, such as “processing” or “controller,” we refer to the definitions outlined in Article 4 of the General Data Protection Regulation (GDPR).
Controller
The responsible party for data processing is:
Nadja Teege (formerly Polzin)
P.H. El Carrillon, 3D
Via Argentina
Ciudad de Panama
Panama
WhatsApp: +49 (0)171 9 81 02 54
Email: kontakt(at)nadjateege.com
Website: www.nadjateege.com
Types of Data Processed
- Personal Data (e.g., names, addresses)
- Contact Data (e.g., email addresses, phone numbers)
- Content Data (e.g., text entries, photographs, videos)
- Usage Data (e.g., visited websites, interest in content, access times)
- Meta/Communication Data (e.g., device information, IP addresses)
- Scheduling Data (e.g., appointment management)
Categories of Data Subjects
Visitors and users of our online services (collectively referred to as “users”).
Purpose of Processing
- Provision of online services, its functions, and content
- Responding to inquiries and communication with users
- Implementing security measures
- Measuring reach and marketing purposes
Legal Basis for Processing
In accordance with Article 13 GDPR, we inform you of the legal basis of our data processing activities. If the legal basis is not explicitly mentioned in this Privacy Policy, the following applies:
- The legal basis for obtaining consent is Article 6(1)(a) and Article 7 GDPR.
- The legal basis for processing for the performance of our services and carrying out contractual measures, as well as responding to inquiries, is Article 6(1)(b) GDPR.
- The legal basis for processing to fulfill our legal obligations is Article 6(1)(c) GDPR.
- The legal basis for processing to protect our legitimate interests is Article 6(1)(f) GDPR.
Security Measures
We take appropriate technical and organizational measures in accordance with Article 32 GDPR to ensure a level of security appropriate to the risk. These measures include, in particular, securing the confidentiality, integrity, and availability of data, as well as protecting personal data during the development or selection of hardware, software, and procedures according to the principle of data protection through technology design and data protection-friendly default settings (Article 25 GDPR).
Collaboration with Processors and Third Parties
We only share data with third parties in accordance with legal permissions (e.g., Article 6(1)(b) GDPR for contract performance), based on consent, due to a legal obligation, or based on our legitimate interests (e.g., the use of agents, web hosts). If we commission third parties to process data on the basis of a processing contract, this is done in accordance with Article 28 GDPR.
Transfers to Third Countries
A data transfer to third countries (outside the EU or EEA) only takes place under the special conditions of Articles 44 ff. GDPR. This means that we only transfer data to countries for which the European Commission has determined an adequate level of data protection, or where there are specific guarantees, such as standard contractual clauses or binding corporate rules (BCRs), along with any additional safeguards to maintain the level of data protection consistent with EU standards.
Rights of Data Subjects
You have the right to request confirmation as to whether data concerning you is being processed, as well as access to such data and further information and a copy of the data in accordance with Article 15 GDPR. You have the right to correct incorrect data (Article 16 GDPR), delete data (Article 17 GDPR), or restrict processing (Article 18 GDPR). Additionally, you have the right to data portability (Article 20 GDPR) and the right to file a complaint with the competent supervisory authority (Article 77 GDPR).
Right to Withdraw Consent and Object
You may revoke consent at any time with effect for the future (Article 7(3) GDPR). You may object to the future processing of your data at any time, particularly for purposes of direct marketing (Article 21 GDPR).
Cookies and Opt-In Procedure
We use cookies on our online services. Where these cookies are not technically necessary, we use them only with your explicit consent (opt-in). You can deactivate cookies at any time in your browser settings. For more information on the cookies used, their purpose, and how you can object to them, please refer to our Cookie Policy.
Hosting and Email Sending
The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space, email sending, security services, and technical maintenance services. The data processed in the course of these activities is processed in accordance with Article 6(1)(f) GDPR based on our legitimate interest in the efficient and secure provision of this online service.
Google Analytics and Other Tracking Services
We only use Google Analytics if you have expressly agreed to its use. The service is operated with activated IP anonymization, so that IP addresses are shortened within the EU. The collected data is regularly anonymized and is subject to current EU standard contractual clauses as an additional protection measure. For more information on data usage by Google, please refer to Google’s privacy policy.