Privacy Policy
1. Commitment to Data Protection
We take the protection of personal data, and thus your privacy, very seriously. We would like to explain how we protect your data and what it means for you when you use our services. To ensure the greatest possible protection of your privacy, we naturally comply with all legal requirements regarding data protection.
2. Data Controller and Data Protection Officer
The controller (according to Art. 4 No. 7 GDPR) is Mrs. Fatma Akyüz Abacı, Holtkampsweg 3, 2665 Westerstede, Phone: 0049 162 696 67 12; Email: info@healindooracademy.com
3. What are Personal Data?
Personal data includes all information that can be individually assigned to you (see Art. 4 No. 1 GDPR). Examples include your name, address, postal address, telephone number, or email address. Non-personal data, on the other hand, are general information that cannot be used to identify your identity, such as the number of users of a website.
4. What Types of Personal Data Do We Process and for What Purposes?
a. Web Server Logs (including IP Address)
When you visit our website, our web server automatically records your complete IP address, the date and time of your visit, the sub-pages you access, the website you previously visited, the browser you are using (e.g., Mozilla Firefox, Google Chrome), your operating system (e.g., Windows 10, MacOS), and the domain name and address of your internet provider (e.g., Deutsche Telekom).
This information is necessary for the technical transmission of the website and secure server operation. This information is not merged with other data sources. We process this information for monitoring and supervision of the stability, functionality, and technical performance of the website and services, as well as for identifying, diagnosing, resolving, and fixing any problems or errors on the website and services. The legal basis for processing this information is our legitimate interest (Art. 6 para. 1 lit. f GDPR) in ensuring and improving the integrity, stability, and functionality of the website and services as far as technically possible and reasonable.
For technical security reasons, particularly to defend against attempted attacks or other misuse of the website, services, and/or our web server, this information is also stored for a short period. Direct identification of individuals is not possible with this information. The IP address is anonymized at the domain level, so that it is no longer possible to relate it to a specific individual. However, until the IP address is anonymized, we may process this information in the event of a security incident (attempted attack or misuse, etc.) in cooperation with your internet provider and/or local authorities to identify the perpetrator of the security incident. The legal basis for this is also our legitimate interests (Art. 6 para. 1 lit. f GDPR), namely, to protect the integrity of the website, the services, our system, and our users.
b. Contacting Us
If you contact us (e.g., via contact form or email), the data you provide will be used to get in touch with you and process your inquiry. Providing these data is necessary to process and respond to your inquiry—without them, we may not be able to answer your inquiry, or only to a limited extent. The legal basis for this is the fulfillment of our contractual obligations (Art. 6 para. 1 lit. b GDPR) or our legitimate interests (Art. 6 para. 1 lit. f GDPR), particularly our interest in communicating with you regarding the matter for which you contacted us.
5. Disclosure of Personal Data
We do not disclose personal data to third parties unless this is necessary for fulfilling a contract, permitted under relevant legal provisions, or you have given your consent. Please note that we are entitled to outsource the processing of personal data, in whole or in part, to external service providers acting as processors (Art. 4 No. 8 GDPR). If these service providers are located outside the European Union (EU) or the European Economic Area (EEA), we will take appropriate security measures in accordance with legal and regulatory requirements to ensure the security of your personal data.
6. Retention Period
Your personal data will only be stored by us as long as necessary to achieve the purposes for which they were collected, or—as far as longer legal retention periods exist (e.g., § 147 AO and § 257 HGB)—for the duration specified by law. After that, your personal data will be deleted.
7. Security and Confidentiality
To ensure the security and confidentiality of personal data collected on our website, we use data networks protected by industry-standard firewalls and password systems. When handling your personal data, we take appropriate technical and organizational measures to protect your data from loss, misuse, unauthorized access, disclosure, alteration, or destruction, and to ensure availability.
8. Cookies and Similar Technologies
Cookies are used on the website and within the services in order to (a) provide and maintain a stable, secure, functional, and accurately running website to the extent technically possible and reasonable; and (b) offer you an optimal website experience.
Cookies are text files sent by a web server to your computer and stored there when you visit the website. The most common types of cookies are explained below for your understanding:
Session Cookies: While you are active on a website, a temporary session cookie is stored in your device’s memory, which saves a session identifier to prevent you from having to log in again with each page change. Session cookies are deleted or become invalid when you log out or your session ends.
Persistent Cookies: Persistent cookies store a file on your device for a specified period (the storage duration). Through these cookies, the website remembers your information and settings for your next visit, such as your language preference. When the storage duration expires, the cookie is automatically deleted from your device.
Third-Party Cookies: Third-party cookies are session or persistent cookies from providers other than the website operator. They can be used, for example, to collect information for advertising, customized content, and web statistics.
A list of cookies we use, their purposes, and further information about them can be found in our cookie consent solution. There, you can allow or deny the use of cookies as desired, adjust your settings at any time, or withdraw your consent. You can also control the setting of cookies in your browser settings. Most browsers accept cookies automatically but can be configured to prevent their use. You can refuse the use of cookies or delete the data collected later. Instructions for deleting cookies in the most common browsers can be found in the table below:
| Browser | Instructions to Delete Cookies |
|---|---|
| Microsoft Internet Explorer | https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies |
| Mozilla Firefox | https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox |
| Google Chrome | https://support.google.com/chrome/answer/95647?hl=de |
| Apple Safari | https://support.apple.com/?path=Safari/3.0/de/11471.html |
| Opera | http://help.opera.com/Windows/9.10/de/cookies.html |
You can also visit our website without cookies. However, to use all functions or have a comfortable experience, you should accept those cookies that enable certain features or make usage more convenient.
9. Your Rights as a Data Subject
According to applicable data protection law, you have the following rights in particular. Please contact us using the contact information provided in section 1.
Right of Access: You have the right to request information about your personal data stored by us at any time.
Right to Rectification: If we process your personal data, we strive to ensure that your data is accurate and up-to-date for the purposes for which it was collected. If your data is incorrect or incomplete, you can request correction.
Right to Erasure and Restriction: You may have the right to request the deletion or restriction of processing of your personal data if, for example, there is no longer a legitimate business purpose for such processing as per this privacy policy or applicable law, and legal retention periods do not require further storage.
Right to Data Portability: You may have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format or to have this data transmitted to another controller.
Right to Object: You may have the right, for reasons arising from your particular situation, to object to the processing of your personal data. You also have the right to object at any time, without giving reasons, to the processing of your personal data for direct marketing purposes.
Right to Withdraw Consent: If you have given consent to the collection and processing of your personal data, you can withdraw your consent at any time with effect for the future, without affecting the lawfulness of processing based on consent before its withdrawal. You can also object to the use of your personal data for market and opinion research and advertising purposes.
Right to Lodge a Complaint: You also have the right to lodge a complaint with the competent supervisory authority if you believe that the processing of your personal data is not lawful. The competent supervisory authority for us is the Data Protection Commissioner for Lower Saxony, Prinzenstraße 5, 30159 Hannover, Phone: 0511-120 4500, Fax: 0511-120 4599. A list of other relevant supervisory authorities can be found on the website of the Federal Commissioner for Data Protection and Freedom of Information: www.bfdi.bund.de
10. Links to Other Websites
The website may also contain links to other websites. This privacy policy does not apply to those websites. Please visit those websites directly for information about data protection and the handling of your personal data.
11. Right to Amend
We reserve the right to change this privacy policy at any time in compliance with legal requirements, especially to adapt it to any changes in data processing.
