Privacy Notice

1) Infor­ma­tion about the pro­ces­sing of per­so­nal data and cont­act details of the con­trol­ler  1.1 We are plea­sed that you are visi­ting our web­site and thank you for your inte­rest. Below we inform you about we handle your per­so­nal data when you visit our web­site. Per­so­nal data means any infor­ma­tion rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son. 1.2 The con­trol­ler, accor­ding to the Gene­ral Data Pro­tec­tion Regu­la­tion (GDPR), for data pro­ces­sing on this web­site is: Schnappauf Con­sul­ting Pots­da­mer Platz 8 10117 Ber­lin Tel.: +49 30 89005983 E‑Mail: office@schnappauf.consulting Con­trol­ler means the natu­ral or legal per­son, which, alone or jointly with others, deter­mi­nes the pur­po­ses and means of the pro­ces­sing of per­so­nal data. 1.3 This web­site uses SSL or TLS encryp­tion for secu­rity reasons and to pro­tect the trans­fer of per­so­nal data and other con­fi­den­tial con­tent (e.g. orders or requests to the con­trol­ler). You can spot an encrypted con­nec­tion by the cha­rac­ter string “https://” and the lock sym­bol in your brow­ser bar. 2) Data pro­ces­sing when visi­ting our web­site During the mere infor­ma­tio­nal use of our web­site, i.e., not if you trans­fer infor­ma­tion to us (e.g., by e‑mail), we pro­cess only data that your brow­ser trans­mits to our ser­ver (so-cal­led “ser­ver log files”). When you visit our web­site, we pro­cess the fol­lo­wing data, which is tech­ni­cally neces­sary for us to dis­play the web­site to you:
  • web­site address (URL)
  • Date and time at the time of access
  • file size of data sent in bytes
  • Source/reference from which you rea­ched the page
  • The brow­ser you used
  • The ope­ra­ting sys­tem you used
  • Your IP address (if appli­ca­ble: in anony­mi­zed form)
The data pro­ces­sing takes place in accordance with Art. 6 (1) lit f) GDPR on the basis of our legi­ti­mate inte­rest in impro­ving the sta­bi­lity and func­tion­a­lity of our web­site. There is no trans­fer of data to third party or any other form of pro­ces­sing. We nevert­hel­ess reserve the right to check the ser­ver log files retro­s­pec­tively if there are con­crete indi­ca­ti­ons of ille­gal use. 3) Coo­kies Our web­site does not use coo­kies. 4) Cont­ac­ting us When you cont­act us (e.g. by e‑mail), per­so­nal data is pro­ces­sed. This data is stored and pro­ces­sed exclu­si­vely for the pur­pose of respon­ding to your request or for cont­ac­ting you and the accom­pany­ing tech­ni­cal admi­nis­tra­tion. The legal basis for pro­ces­sing this data is our legi­ti­mate inte­rest in respon­ding to your request pur­su­ant to Art. 6 (1) lit. f GDPR. If the goal of you cont­ac­ting us is to close a con­tract, the addi­tio­nal legal basis for the pro­ces­sing is Art. 6 (1) lit. b GDPR. We erase your data after the pro­ces­sing of your request is fina­li­zed. We con­sider this to be the case when the mat­ter in ques­ti­ons appears to be dealt with accor­ding to con­text and there are no sta­tu­tory reten­tion obli­ga­ti­ons pre­ven­ting era­sure. 5) Other reci­pi­ents of the data We may only trans­fer data to reci­pi­ents within or out­side the com­pany if this is neces­sary, we are requi­red to by law, you have con­sen­ted to the trans­fer or a pro­ces­sor com­mis­sio­ned by us in accordance with Art. 28 GDPR has con­trac­tually under­ta­ken to com­ply with the requi­re­ments of the data pro­tec­tion regu­la­ti­ons. Such bodies will only have access to your data to the ext­ent that it is nee­ded within the bound­ries of the “least pri­vi­lege” prin­ci­ple (allo­ca­tion of user rights to the lowest pos­si­ble ext­ent) and the “need-to-know” prin­ci­ple (know­ledge of data only when neces­sary). Fol­lo­wing these con­di­ti­ons, reci­pi­ents of per­so­nal data may include, in par­ti­cu­lar:
  • IT ser­vice pro­vi­ders
6) Trans­fers of per­so­nal data to third count­ries There is no trans­fer of per­so­nal data to third count­ries. Third count­ries are count­ries out­side the Euro­pean Union and the Euro­pean Eco­no­mic Area (e.g. USA). 7) Period for sto­rage of per­so­nal data The period of sto­rage of per­so­nal data is deter­mi­ned by the respec­tive legal basis, the pur­pose of pro­ces­sing and — if appli­ca­ble — addi­tio­nally on the respec­tive sta­tu­tory reten­tion peri­ods (e.g. reten­tion peri­ods under com­mer­cial and tax law). If there are sta­tu­tory reten­tion peri­ods for data that is pro­ces­sed within the scope of con­trac­tual or simi­lar obli­ga­ti­ons on the basis of Art. 6 (1) lit b) GDPR, this data will gene­rally be era­sed after the reten­tion peri­ods have expi­red, pro­vi­ded it is no lon­ger requi­red for the ful­film­ent of the con­tract or clo­sing the con­tract and/or there is no legi­ti­mate inte­rest on our side in the ongo­ing sto­rage. When per­so­nal data is pro­ces­sed on the basis of Art. 6 (1) lit f) GDPR, this data is stored until the data sub­ject exer­ci­ses his or her right to object pur­su­ant to Art. 21 (1) GDPR, unless we can demons­trate com­pel­ling legi­ti­mate grounds for the pro­ces­sing which over­ride the inte­rests, rights and free­doms of the data sub­ject, or the pro­ces­sing ser­ves to assert, exer­cise or defend legal claims. Unless sta­ted other­wise within this pri­vacy notice, stored per­so­nal data will be era­sed when it is no lon­ger neces­sary for the pur­po­ses for which it was coll­ec­ted or other­wise pro­ces­sed. 8) Rights of the data sub­ject 8.1 The appli­ca­ble data pro­tec­tion law grants you com­pre­hen­sive data sub­ject rights (rights of access and inter­ven­tion) vis-à-vis the con­trol­ler with regard to the pro­ces­sing of your per­so­nal data, which we detail below:
  • Right of access pur­su­ant to Art. 15 GDPR: accor­ding to Art. 15 GDPR you have pri­ma­rily the right of access to your per­so­nal data that is being pro­ces­sed by us. Nota­bly you can request infor­ma­tion about the pur­po­ses of pro­ces­sing; the cate­go­ries of per­so­nal data con­cer­ned; the cate­go­ries of reci­pi­ent to whom per­so­nal data has been or will be dis­c­lo­sed, the envi­sa­ged period for data sto­rage, the exis­tence of a right to rec­ti­fi­ca­tion, era­sure, rest­ric­tion of pro­ces­sing or to object, the exis­tence to of a right to lodge a com­plaint, the source for your data, if it was not coll­ec­ted by us, as well as the exis­tence of auto­ma­ted decis­ion-making, inclu­ding pro­fil­ing and, if appli­ca­ble, meaningful infor­ma­tion about its details.
  • Right of rec­ti­fi­ca­tion pur­su­ant to Art. 16 GDPR: accor­ding to Art. 16 GDPR you have the right to obtain the rec­ti­fi­ca­tion of inac­cu­rate per­so­nal data con­cer­ning you from us wit­hout undue delay.
  • Right of era­sure pur­su­ant to Art. 17 GDPR: accor­ding to Art. 17 GDPR you have the right to obtain the era­sure of per­so­nal data con­cer­ning you from us wit­hout undue delay, unless the pro­ces­sing is neces­sary for exer­cis­ing the right of free­dom of expres­sion and infor­ma­tion; for com­pli­ance with a legal obli­ga­tion; for reasons of public inte­rest or for the estab­lish­ment, exer­cise or defence of legal claims.
  • Right of rest­ric­tion of pro­ces­sing accor­ding to Art. 18 GDPR: you have the right to obtain the rest­ric­tion of pro­ces­sing of per­so­nal data con­cer­ning you if the accu­racy of the per­so­nal data is con­tes­ted by you; if the pro­ces­sing is unlawful and you oppose the era­sure of the per­so­nal data, if we are no lon­ger in need of the data but they are requi­red by you for the estab­lish­ment, exer­cise or defence of legal claims or if you alre­ady objec­ted to pro­ces­sing pur­su­ant to 21 (1) GDPR.
  • Right to data por­ta­bi­lity pur­su­ant to Art. 20 GDPR: accor­ding to Art. 20 GDPR you have the right to receive the per­so­nal data you pro­vi­ded us in a struc­tu­red, com­monly used and machine-rea­da­ble for­mat and you have right to trans­mit this data to ano­ther con­trol­ler.
  • Right to lodge a com­plaint pur­su­ant to Art. 77 GDPR: accor­ding to Art. 77 GDPR you have the right to lodge a com­plaint with a super­vi­sory aut­ho­rity if you con­sider the pro­ces­sing of per­so­nal data rela­ting to you to inf­ringe the GDPR. Gene­rally you can cont­act the super­vi­sory aut­ho­rity of your usual place of resi­dence or work or our com­pany head­quar­ters for this pur­pose.
8.2 Right to object Accor­ding to Art. 21 GDPR you have the right on object, on grounds rela­ting to your par­ti­cu­lar situa­tion, at any time to the pro­ces­sing of your per­so­nal data which is based on Art. 6 (1) lit f) GDPR. 9. Com­pe­tent super­vi­sory aut­ho­rity The com­pe­tent super­vi­sory aut­ho­rity for us is: Ber­li­ner Beauf­tragte für Daten­schutz und Infor­ma­ti­ons­frei­heit Meike Kamp Alt-Moa­bit 59–61 10555 Ber­lin Phone: 030/138 89–0 E‑Mail: mailbox@datenschutz-berlin.de Home­page: https://www.datenschutz-berlin.de Howe­ver, you may also cont­act any other data pro­tec­tion super­vi­sory aut­ho­rity.