Surfaces
Privacy policy
We are very pleased about your interest in our company. Data protection has a particularly high priority for the management of Touch Up Art. A The use of the Touch Up Art internet pages is basically possible without any information of personal data is possible. If a data subject has special Use the services of our company via our website but may require the processing of personal data will be. Is the processing of personal data necessary and exists for such processing does not have a legal basis, we generally obtain a consent of the data subject. The processing of personal data, such as the name, the address, e-mail address or telephone number of a data subject, is always in compliance with the basic data protection regulation and in accordance with the country-specific regulations applicable to Touch Up Art Privacy policy. By means of this privacy policy our companies the public about the nature, scope and purpose of the data we collect, used and processed personal data. Furthermore data subjects by means of this privacy statement about the data subjects the rights to which they are entitled. As the data controller, Touch Up Art has numerous technical and organizational measures are implemented in order to achieve a complete Protection of personal data processed through this website to ensure that Nevertheless, Internet-based data transmissions can in principle have security holes, so that absolute protection cannot be guaranteed can be. For this reason, every person concerned is free to do so, personal data also by alternative means, for example by telephone, to us.
1. definitions
The privacy policy of Touch Up Art is based on the terms that by the European legislator for directives and regulations when adopting the Basic Data Protection Regulation (DS-GVO). Our Privacy policy is intended for the public as well as for our customers and business partners must be easy to read and understand. To achieve this we would like to explain the terms used in advance.
We use the following terms in this privacy policy Terms:
(a) personal data Personal data is all information that relates to an identified or identifiable natural person (hereinafter referred to as 'data subject'). An identifiable natural person is deemed to be a natural person who, directly or indirectly, in particular by means of assignment to an identifier such as a name, to a identification number, to location data, to an online identifier or to one or several special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of these natural person, can be identified.
(b) the person concerned Data subject is any identified or identifiable natural person whose personal data processed by the controller will be.
(c) Processing Processing is any operation carried out with or without the aid of automated processes process or any such series of processes in connection with personal data such as the collection, recording, organization, organization of sorting, storing, adapting or changing, reading, reading out retrieval, use, disclosure by transmission, dissemination or otherwise any other form of provision, matching or linkage that restriction, deletion or destruction.
(d) Restriction of processing restriction of processing is the marking of stored personal data with the aim of limiting their future processing.
(e) profiling Profiling is any automated processing of personal data that is that these personal data are used to certain personal aspects relating to a natural person in particular, to assess aspects relating to work performance, economic Location, health, personal preferences, interests, reliability, behavior, to analyse the whereabouts or change of location of that natural person, or to predict.
f) Pseudonymisation Pseudonymization is the processing of personal data in a way, to which the personal data can be transferred without the need for additional information is no longer attributed to a specific data subject provided that this additional information is kept separately and are subject to technical and organisational measures which ensure that the personal data is not subject to an identified or identifiable be assigned to a natural person.
(g) Controller or data controller The controller or controller shall be the natural or legal person responsible for legal person, entity, body, office or agency, whether acting alone or in concert together with others about the purposes and means of processing personal data is decisive. Are the purposes and means of this Processing by Union law or by the law of the Member States the responsible person or the specific persons can be informed about the criteria for its designation under Union law or the law of the Member States.
(h) processors Processor is a natural or legal person, public authority or body or any other entity that collects personal data on behalf of the controller processed.
(i) Recipient The beneficiary is a natural or legal person, public authority, agency or other entity to which personal data are disclosed, regardless of whether it is a third party or not. Authorities that are involved in a specific investigation mandate under Union law or under the law Member States may receive personal data, the following shall apply but not as a recipient.
(j) Third party Third party is a natural or legal person, public authority, agency or other Body other than the data subject, the controller, the processor and the persons who, under the direct responsibility of the person responsible or the processor are entitled to access the personal data of the data subject process.
( (k) Consent Consent is any consent given voluntarily by the data subject for the particular case in Informed and unambiguous expression of will in the form a statement or other unambiguous confirmatory act which the data subject indicates that he or she is aware of the fact that he or she is being the personal data concerned.
2. The name and address of the controller Responsible person in the sense of the data protection basic regulation, other persons involved in the Member States of the European Union and other data protection laws in force Provisions of a data protection nature is the:
Touch Up Art
Dorfstrasse 15
25566 Rethwish
Germany
Phone: 0049 163 2516736
e-mail: m.barczinski@freenet.de
www.touchupArt.com
3. Cookies The internet pages of Touch Up Art use cookies. Cookies are text files, which are stored on a computer system via an Internet browser and can be saved. Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the Cookies. It consists of a string of characters, through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie is stored has been saved. This allows the visited websites and servers, the individual browser of the data subject from other Internet browsers that contain other cookies. A particular Internet browser may be recognized and identified by the unique cookie ID. Through the use of cookies, Touch Up Art can offer the users of this website to provide more user-friendly services, which can be accessed without the setting of cookies would not be possible. By means of a cookie, the information and offers on our Internet site can be optimized in the interest of the user. Cookies enable us, as already mentioned, to recognize the users of our website. Purpose of this recognition is to inform the users of the use of our website to make it easier. The user of a website that uses cookies must e.g. not having to re-enter his access data every time he visits the website because this is possible from the Internet site and the computer system of the user's stored cookie. Another example is the Cookie of a shopping cart in the online shop. The online shop remembers the articles, that a customer has placed in the virtual shopping cart via a cookie. The person concerned can request the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently contradict the setting of cookies. Further already set cookies can be deleted at any time via an Internet browser or other software programs are deleted. This is possible in all common Internet browsers possible. Does the person concerned deactivate the setting of cookies in the Internet browser used, it is possible that not all functions of our website are available Internet site can be used in its entirety.
4. Collection of general data and information The Touch Up Art website records with every call of the website by a data subject or an automated system has a number of general Data and information. This general data and information is presented in the log files of the server. You can record the (1) used browser types and versions, (2) the browser used by the accessing system operating system, (3) the Internet site from which an accessing system can access our Internet site (so-called referrer), (4) the sub-websites, which are be accessed via an accessing system on our website, (5) the the date and time of access to the Internet site, (6) an Internet Protocol Address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information relevant to the security of of attacks on our information technology systems.
When using these general data and information, the Touch Up Art no inferences about the person concerned. This information is rather required to (1) correctly deliver the contents of our website, (2) the contents of our website as well as the advertising for it, (3) the permanent Functionality of our information technology systems and technology of our website and (4) to enable law enforcement authorities in the in the event of a cyber attack, the information necessary for law enforcement to be provided. This anonymously collected data and information is the Touch Up Art therefore on the one hand statistically and furthermore with the goal evaluated, to increase data protection and data security in our company in order to ultimately an optimum level of protection for the personal data. The anonymous data of the server- Log files are kept separate from all the information provided by a data subject personal data is stored.
5. Contact possibility via the internet page Due to legal regulations the website of Touch Up Art contains Information, which allows a quick electronic contact to our company as well as direct communication with us, which is also a general address for so-called electronic mail (e-mail- address). If a data subject is notified by e-mail or via a contact form to contact the controller the personal data transmitted by the data subject shall be treated as personal data
7. Rights of the data subject
(a) Right to confirmation Every person concerned has to comply with the requirements of the European Directives and the right granted by the legislator to derogate from the to request confirmation from those responsible that they have been personal data are processed. If a data subject wishes to receive this right of confirmation, it may at any time contact one of the following staff of the controller.
(b) Right of access Every person concerned by the processing of personal data shall have the the right granted by the European Directives and Regulations to be informed at any time by the controller to be informed, free of charge, of the data relating to his person and a copy of this information to the person concerned. received. In addition, the European legislator of directives and regulations of the data subject has access to the following information: the purposes of processing the categories of personal data processed the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular for recipients in third countries or international Organisations if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining such Duration the existence of a right of rectification or erasure of data concerning them personal data or to the restriction of processing by the or a right of objection to such processing the existence of a right of appeal to a supervisory authority if the personal data are not collected from the data subject will be: All available information about the origin of the data the existence of automated decision-making, including profiling according to Article 22 (1) and (4) of the DS-GVO and - at least in these cases - meaningful information about the logic involved and the scope and the intended impact of such processing on the data subject Furthermore, the data subject shall have the right of access to information on whether personal data to a third country or an international organisation were transmitted. Where this is the case, the data subject shall be informed in the the right to obtain information on the appropriate guarantees in connection with the with the transmission. If a data subject wishes to exercise this right of access, he or she may at any time contact an employee of the controller for this purpose turn around.
(c) Right of rectification every person concerned by the processing of personal data shall have the the right granted by the European Directive and Regulation Giver to rectify without delay any inaccurate personal data concerning them to demand. Furthermore, the data subject shall have the right to Consideration of the purposes of the processing, the completion incomplete personal data - also by means of a supplementary Explanation - to demand. If a data subject wishes to exercise this right of rectification they can contact at any time a member of the staff responsible for processing responsible.
d) Right of cancellation (right to be forgotten)
Every person concerned by the processing of personal data shall have the the right granted by the European Directive and Regulation Giver to be informed by the to demand that the personal data concerning them be be deleted immediately if one of the following reasons applies and provided that the processing is not necessary: the personal data have been collected for such purposes or have been processed in any other way for which they are no longer necessary. The data subject shall withdraw his or her consent to the processing pursuant to Article 6(1)(a) DS-GVO or Article 9(2)(a) DS-GVO and there is no other legal basis for the processing. The data subject lodges an objection under Article 21(1) of the DPA to the and there are no overriding legitimate reasons for the processing processing, or the data subject submits, pursuant to Article 21(2) of the DPA objection to the processing. The personal data were processed unlawfully. The deletion of personal data is necessary to comply with a legal obligation. Obligation under Union or national law to which the person responsible is subject. The personal data has been collected in relation to the services offered by information society in accordance with Article 8(1) of the DS-GVO. If one of the above reasons applies and a data subject has Deletion of personal data stored by Touch Up Art to do so, it may at any time contact an employee of the company responsible for the data controller. The employee of Touch Up Art will arrange for the request for deletion to be complied with without delay. If the personal data has been made public by Touch Up Art and the data has been our company is responsible according to Art. 17 Para. 1 DS-GVO for deletion of personal data, Touch Up Art is obliged to delete the personal data under Consideration of the available technology and implementation costs appropriate measures, including technical ones, to enable others to be Persons responsible for processing the published personal data process data, to inform the data subject that the data subject has been the deletion of all data held by these other data controllers Links to this personal data or from copies or replications of such personal data, unless the processing does not involve the is required. The employee of Touch Up Art will do the necessary work in individual cases.
(e) Right to limit processing
Every person concerned by the processing of personal data shall have the the right granted by the European Directive and Regulation Giver to be informed by the to request the controller to restrict the processing if one of the parties the following conditions are met: The accuracy of the personal data is verified by the data subject disputed, for a period which will allow the person responsible to verify the accuracy of personal data. The processing is unlawful, the data subject refuses the deletion of personal data and instead requires the restriction of the use of personal data Use of personal data. The person in charge needs the personal data for the purposes of processing no longer, but the data subject needs it for Assertion, exercise or defence of legal claims. The data subject has lodged an objection to the processing according to Art. 21, paragraph 1 DS-GVO and it is not yet clear whether the legitimate reasons for the responsible outweigh those of the data subject. If one of the above conditions is met and a data subject is person the restriction of personal data, which are used in the Touch Up Art stored, she can contact one of the following persons at any time to request staff of the controller. The employee of the Touch Up Art will cause the processing to be restricted.
f) Right to data transferability
Every person concerned by the processing of personal data shall have the right granted by the European Directive and Regulation Giver, which they personal data, which are transmitted by the data subject to a third party responsible, in a structured, common and reliable way, and in a machine-readable format. It also has the right to another person in charge without being hindered by the person in charge, to whom the personal data have been made available, provided that the processing on the basis of the consent pursuant to Article 6(1)(a) of the DS-GVO or Article 9(2)(a) of the DS-BER or on a contract pursuant to Article 6(1) letter b of the DS-GVO and the processing is carried out by means of automated procedures unless the processing is necessary for the performance of a task which is necessary in the public interest or in the exercise of public authority violence takes place, which has been transferred to the person responsible. Furthermore, the person concerned, in exercising his right to data transferability pursuant to Art. 20 para. 1 DPA, the right to obtain that the personal data directly from one controller to another be transmitted to the persons responsible, insofar as this is technically feasible and provided the rights and freedoms of other persons are not affected. To assert the right to data transferability, the data subject may person can contact a Touch Up Art employee at any time.
g) Right to appeal
Every person concerned by the processing of personal data shall have the the right granted by the European Directive and Regulation Giver to reasons arising from their particular situation, at any time against the Processing of personal data relating to them, which are processed on the basis of Article 6 paragraph 1(e) or (f) of the DPA. This also applies to for profiling based on these provisions. Touch Up Art processes the personal data in case of unless we can establish compelling reasons for protection. for processing operations that are compatible with the interests, rights and freedoms of or the processing is for the purpose of enforcement, Exercise or defence of legal claims. Does Touch Up Art process personal data in order to send direct mail the data subject shall have the right to object at any time to Processing of personal data for the purpose of such advertising ...to be inserted. This also applies to profiling, insofar as it is connected with such direct advertising in I've made contact. If the person concerned objects to the Touch Up Art processing for the purposes of direct marketing, the Touch Up Art will no longer process personal data for these purposes. Furthermore, the data subject has the right to object, for reasons relating to his specific situation, against the processing operations concerning them personal data, which are used in Touch Up Art for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 para. 1 DPA, unless such processing is is necessary for the performance of a task carried out in the public interest. In order to exercise the right to object, the data subject may directly
i) Right to revoke a data protection consent
Every person concerned by the processing of personal data shall have the the right granted by the European Directive and Regulation Giver to a to revoke consent to the processing of personal data at any time. If the data subject wishes to exercise his/her right to withdraw his/her consent it may, at any time, contact an employee of the company responsible for the processing of responsible.
8. privacy policy on the use of Facebook
The data controller has on this website components of the company Facebook is integrated. Facebook is a social network. A social network is an Internet-based social meeting place, an online community, which generally allows users to communicate with each other and communicate and interact in virtual space. A social network can serve as a platform for the exchange of opinions and experiences or enables the Internet community to create personal or corporate to provide information. Facebook allows users of the social network among other things the creation of private profiles, the upload of Photos and a networking via friendship requests. The operating company of Facebook is Facebook, Inc. 1 Hacker Way, Menlo Park, CA 94025, USA. For the processing of personal data The person responsible is if a data subject outside the USA or Canada which is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin Two, Ireland. By each call of one of the individual pages of this Internet site, which are linked by the processing controller and on which a Facebook- component (Facebook plug-in) has been integrated, the Internet browser is displayed on the information technology system of the data subject automatically by the the respective Facebook component, a display of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be downloaded from https://developers.facebook.com/docs/plugins/? locale=en_DE. As part of this technical process Facebook knows which specific subpage of our website has been changed by the data subject is visited. If the data subject is logged in to Facebook at the same time, the system recognizes Facebook with every visit to our website by the person concerned and for the entire duration of the respective stay on our website, which specific page of our website the person concerned visits. This information is collected by the Facebook component and processed by Facebook to the respective Facebook account of the person concerned. If the person concerned activates one of the Facebook accounts integrated on our website Facebook buttons, for example the "Like" button, or gives the affected person posts a comment, Facebook assigns this information to the personal Facebook user account to the person concerned and stores them personal data. Facebook always receives information via the Facebook component about the fact that the person concerned has visited our website, if the person concerned at the time of the call of our Internet page simultaneously with Facebook is logged in; this takes place regardless of whether the affected person clicks the Facebook component or not. If such a Transfer of this information to Facebook from the data subject does not intended, the latter can prevent the transmission by Calling our website from your Facebook account logged out. The data policy published by Facebook, which is available at https://dede. facebook.com/about/privacy/ provides information about the collection, Processing and use of personal data by Facebook. Furthermore there explains which setting options Facebook offers to protect the privacy of the data subject. Furthermore, different applications are available that enable data transfer to Facebook, which can be suppress. Such applications can be used by the data subject to suppress data transmission to Facebook.
9. privacy policy on the use and application of LinkedIn
The data controller has on this website components of the LinkedIn Corporation. LinkedIn is an Internet-based social network, which enables users to connect with existing business contacts as well as the making of new business contacts. Over 400 million registered users use LinkedIn in more than 200 countries. So LinkedIn is currently the largest platform for business contacts and one of the most visited Internet sites of the world. Operating company of LinkedIn is the LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For data protection matters outside the USA is LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, responsible. For each single request of our website, which is linked with a LinkedIn component (LinkedIn Plug-In), this component causes the component, which is provided by the the browser used by the person concerned, a corresponding representation of the component from LinkedIn. Further information about the LinkedIn- Plug-ins can be downloaded from https://developer.linkedin.com/plugins. At As part of this technical process, LinkedIn is informed about the concrete subpage of our website is visited by the person concerned. If the person concerned is logged in at the same time at LinkedIn LinkedIn with every visit to our website by the person concerned and for the entire duration of the respective stay on our website, which specific page of our website the person concerned visits. This information is collected by the LinkedIn component and processed by LinkedIn to the respective LinkedIn account of the person concerned. If the person concerned activates a LinkedIn- button, LinkedIn associates this information with the personal LinkedIn user account to the person concerned and stores this personal data. LinkedIn always receives information about this via the LinkedIn component, that the person concerned has visited our website, if the person concerned Person at the time of the call of our Internet page at the same time at LinkedIn is logged in; this happens regardless of whether the data subject has LinkedIn component or not. If such a transfer of this information to LinkedIn is not wanted by the data subject, the data subject can transmission by preventing them from accessing our website prior to a website from your LinkedIn account. LinkedIn offers under https://www.linkedin.com/psettings/guest-controls the Ability to send e-mail messages, SMS messages and targeted ads and manage ad settings. LinkedIn also uses Partners like Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which can set cookies. Such cookies can be set under https://www.linkedin.com/legal/cookie-policy be rejected. The current LinkedIn's privacy policy is available at https://www.linkedin.com/legal/. privacy-policy available. The LinkedIn cookie policy is available at https:// www.linkedin.com/legal/cookie-policy where it can be accessed.
10. privacy policy on the use of Xing
The data controller has on this website components integrated by Xing. Xing is an Internet-based social network that Connecting users with existing business contacts and establishing of new business contacts made possible. The individual users can create a create a personal profile of yourself. Companies can, for example Create company profiles or publish job offers on Xing. Xing is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany. By each call of one of the individual pages of this Internet site, which are linked by the processing controller and on which a Xing component (Xing plug-in) has been integrated, the Internet browser is installed on the information technology system of the data subject automatically by the the respective Xing component causes a representation of the corresponding Xing component from Xing. Further information about the Xing plug- Ins can be accessed at https://dev.xing.com/plugins. In the context of this technical process, Xing is informed about which specific subpage of the our website is visited by the person concerned. If the person concerned is logged in to Xing at the same time, Xing recognizes with every call to our website by the person concerned and during the the entire duration of the respective stay on our website, which the person concerned visits the specific page of our website. This Information is collected by the Xing component and made available by Xing to are assigned to the respective Xing account of the person concerned. If the person concerned person uses one of the Xing buttons integrated on our website, for example the "Share" button, Xing assigns this information to the personal Xing user account of the person concerned and stores this personal data.
Data. The same applies to processing operations carried out for the purpose of carrying out pre-contractual measures are necessary, for example in cases of inquiries about our products or services. Is our company subject to a legal obligation which makes the processing of personal data necessary, such as for the fulfilment of tax obligations, the processing is based on the following on Art. 6 I lit. c DS-GVO. In rare cases, the processing of personal data become necessary to protect the vital interests of the to protect the data subject or any other natural person. This would be for example, the case when a visitor is injured in our company and then his name, his age, his health insurance details or other vital information to a doctor, hospital or other would have to be passed on to third parties. Then the processing would be based on Art. 6 I lit. d DS-GVO. Finally, processing operations could be based on Art. 6 I lit. f DS-GVO. At of this legal basis, processing operations which are not covered by any of the legal bases referred to above, if the processing is intended to be carried out Protection of a legitimate interest of our company or a third party is necessary, provided that the interests, fundamental rights and freedoms of affected do not prevail. Such processing operations are in particular because they are specifically mentioned by the European legislator were. In this respect, it took the view that a legitimate interest could be assumed if the person concerned is a customer of the is responsible (Recital 47 sentence 2 DS-GVO).
12. legitimate interests in the processing that are protected by the controller or be pursued to a third party If the processing of personal data is based on Article 6 I lit. f DS-GVO our legitimate interest in the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.
13. the duration for which the personal data are stored The criterion for the duration of storage of personal data is the respective legal retention period. After expiry of the period, the data are routinely deleted, unless they are no longer needed for the contract performance or contract initiation are required.
14. legal or contractual regulations for the provision of the personal data; necessity for the conclusion of the contract; obligation the data subject to provide the personal data; possible Consequences of non-delivery We hereby inform you that the provision of personal data for part is required by law (e.g. tax regulations) or also results from contractual regulations (e.g. details of the contractual partner). Sometimes it may be necessary for a contract to be concluded that an affected person provides us with personal data, which is subsequently that we need to be processed. For example, the data subject is obliged to provide us with personal data, if our company is in contact concludes a contract. A failure to provide personal data would have the consequence that the contract with the person concerned would not be concluded could. Before personal data are made available by the data subject, the data subject must the person concerned should contact one of our employees. Our employee clarifies the the affected parties on a case-by-case basis on whether the provision of the personal data required by law or contract or for the conclusion of a contract is required, whether an obligation exists which personal data, and the consequences of the use of such data for not providing the personal data.
15. existence of automated decision making
As a responsible company, we do not have an automatic decision making or profiling. This privacy statement has been generated by the Privacy Statement Generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which is an external data protection officer Neu-Ulm, in cooperation with the lawyer for IT and Data protection law Christian Solmecke created.