Privacy Policy
1. Introduction
The protection of your personal data is our highest priority. This privacy policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as "data") in connection with the online offering. This includes the associated website. Your personal data will be treated confidentially and strictly in accordance with the statutory data protection regulations and the provisions of this privacy policy.
General information
This privacy policy provides you with a comprehensive overview of what happens to your personal data when you visit this website. Personal data is all information that can be used to personally identify you. Detailed information on data protection can be found in this complete privacy policy.
Responsible party
Data processing on this website is carried out by the website operator. The contact details of the responsible party can be found in the "Responsible party" section of this privacy policy.
Collection of your data
Personal data is collected, on the one hand, when you actively provide it, e.g., by filling out a contact form. Other data is collected automatically or with your consent when you visit the website by the controller's IT systems. This primarily concerns technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter the website.
Use of your data
Some of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior in order to optimize the service and adapt it to your needs.
Data transfer to external parties
In the course of the controller's business activities, it may be necessary to transfer personal data to external parties. This transfer only takes place under certain conditions: if the transfer is necessary to fulfill a contract, if there is a legal obligation, for example, to tax authorities, if there is a legitimate interest pursuant to Art. 6 (1) (f) GDPR, or if another legal basis permits the data transfer. When using external service providers for data processing, the transfer of personal data takes place exclusively on the basis of a valid contract for order processing pursuant to Art. 28 GDPR. If data is processed jointly with other entities, a joint processing agreement will be concluded in accordance with Art. 26 GDPR.
Revocation of consent to data processing
Certain data processing operations can only be carried out with your express consent. This consent can be revoked at any time. The legality of the data processing carried out up to the time of revocation remains unaffected by the revocation.
Rights under the General Data Protection Regulation
You have the right to lodge a complaint with a competent supervisory authority in the event of violations of the GDPR. This right can be exercised in particular in the Member State of your habitual residence, place of work, or place of the alleged violation. Other administrative or judicial remedies remain unaffected.
Personal data that is processed automatically based on consent or for the performance of a contract can be requested in a structured, common, and machine-readable format. Upon request, this data can also be transmitted directly to another controller, provided this is technically feasible.
Every data subject has the right to obtain information about their stored personal data, its origin, recipients, and the purpose of data processing free of charge. Furthermore, there is a right to rectification or erasure of this data, provided that legal provisions permit this. If you have further questions or concerns regarding personal data, you can contact the controller at any time.
You have the right to request the restriction of processing of personal data if the accuracy of the data is contested and verification is pending. Even in the case of unlawful processing, you can request restriction of data processing instead of erasure. Furthermore, you can request restriction if the data is no longer needed but is required to assert, exercise, or defend legal claims. If you object to processing pursuant to Art. 21 (1) GDPR, until it is clarified whose interests prevail, you also have the right to restriction.
2. Responsible party
The responsible party for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:
Company: Yurii Bychuk
Represented by: Mr. Yurii Bychuk
Address: Wilhelminenhofstraße 92, 12459 Berlin
Website: https://www.yuriibychuk-berlin.de/
Email: info@yuriibychuk-berlin.de
Phone: +49 1573 4569347
3. Processors
We collaborate with various processors who process data on our behalf. These service providers are contractually obligated to treat the data confidentially and to use it exclusively for the purposes of the respective service. In addition, there are cases in which responsibility for data processing is shared with other parties. In such cases, responsibilities are transparently regulated and documented to ensure compliance with data protection requirements.
4. Definitions
To ensure the transparency of this privacy policy and to make it understandable for everyone, this policy primarily uses terms that are also defined in the General Data Protection Regulation (GDPR). The complete legal definitions can be found in Art. 4 GDPR. The most important terms used in this privacy policy are explained below:
Personal data: This includes all information relating to an identified or identifiable natural person (hereinafter "data subject"). A person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie), or one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
Processing: This term covers any action or set of actions performed on personal data, whether with or without the aid of automated procedures. This may include collecting, recording, organizing, structuring, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, disseminating or otherwise making available, comparing or linking, restricting, erasing, or destroying data.
Controller: This is the natural or legal person, public authority, agency, or other body that alone or jointly with others decides on the purposes and means of processing personal data.
Processor: A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
Consent: Any freely given, specific, informed, and unambiguous indication of the data subject's wishes in the form of a statement or other unambiguous affirmative action by which they signify their agreement to the processing of personal data concerning them.
Website: The website refers to the entire internet offering provided by the controller at a specific URL. This includes all content, information, functions, and services published by the controller that are made available to the user via this URL. The website serves as a digital platform for providing information, services, and interaction between the controller and users.
End device: An end device is an electronic device capable of accessing the internet and loading web pages. This includes, among others, computers, laptops, tablets, and smartphones.
These definitions help you better understand the privacy policy and the meaning of the terms used.
5. Hosting
This website is hosted on the servers of an external service provider to ensure reliable and secure use of this online service.
Data processing by the hosting provider is carried out in accordance with Art. 6 (1) (f) GDPR, as the controller has a legitimate interest in providing a stable and secure website. Should it be necessary to obtain the user's consent (for example, for the use of certain cookies or tracking technologies), data processing is based on the user's consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TTDSG. You can revoke your consent at any time with future effect.
The hosting provider is:
Wix.com Ltd.
40 Namal Tel Aviv Street, Tel Aviv, 6350671 Israel
Details on data processing and data protection can be found in the hosting provider's privacy policy. You can find it here: https://de.wix.com/about/privacy.
To ensure that your data is processed in compliance with applicable data protection regulations, a data processing agreement (DPA) has been concluded with the hosting provider. This agreement obligates the hosting provider to process the personal data of website visitors exclusively according to the controller's instructions and in compliance with the GDPR. The hosting provider guarantees comprehensive protection of your data through technical and organizational measures.
6. Legal basis for data processing
The processing of your personal data is based on the General Data Protection Regulation (GDPR) and other relevant legal provisions. Different legal bases apply depending on the purpose of the data processing.
If you have consented to the processing of your personal data, this is done on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. This applies in particular to the processing of special categories of personal data in accordance with Art. 9 (2) (a) GDPR and to the transfer of personal data to third countries in accordance with Art. 49 (1) (a) GDPR. Your consent can be revoked at any time.
The processing of your data may be necessary to fulfill a contract or to take steps prior to entering into a contract and, in this case, is based on Art. 6 (1) (b) GDPR. Furthermore, processing may be required to comply with legal obligations, which then occurs in accordance with Art. 6 (1) (c) GDPR.
In certain cases, processing is carried out to protect the legitimate interests of the controller or a third party, unless your interests or fundamental rights and freedoms prevail. This processing is based on Art. 6 (1) (f) GDPR.
For certain processing operations, national regulations may also apply, such as Section 25 of the German Telemedia Act (TTDSG) regarding the storage of cookies or access to information on your device. The applicable legal bases are explained in detail in the specific sections of this privacy policy.
If your data is necessary to fulfill a contract or to take steps prior to entering into a contract, your data will be processed on the basis of Art. 6 (1) (b) GDPR. To fulfill a legal obligation, data processing is based on Art. 6 (1) (c) GDPR. Furthermore, data processing may be based on legitimate interests pursuant to Art. 6 (1) (f) GDPR. The specific legal bases in individual cases are explained in the following sections of this privacy policy.
7. Storage period
Unless a more specific storage period is specified within this privacy policy, personal data will remain with the controller until the purpose for data processing no longer applies. If a legitimate request for deletion is made or consent to data processing is revoked, the data in question will be deleted unless other legally permissible reasons for storing the personal data exist (e.g., retention periods under tax or commercial law). In these cases, deletion will occur once these reasons no longer apply.
The controller will only store personal data for as long as necessary to fulfill the respective purposes for which the data was collected. This includes, in particular, the fulfillment of contractual obligations, compliance with statutory retention periods, and the protection of the controller's legitimate interests, such as IT security and protection against misuse. If the processing of personal data is based on consent, the data will be stored until the consent is revoked by the data subject. Such revocation is effective at any time.
8. Security measures and data minimization
Comprehensive technical and organizational measures are taken to effectively protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or unauthorized access. Care is taken to ensure that only the data absolutely necessary for the respective purpose is collected and processed. This data minimization strategy helps to significantly reduce the risk of misuse and unauthorized access. Security measures are continuously adapted to the state of the art to ensure a consistently high level of data protection.
9. SSL/TLS encryption
To protect the security of your data during transmission, state-of-the-art encryption methods (e.g., SSL or TLS) are used over HTTPS. SSL (Secure Socket Layer) and TLS (Transport Layer Security) are protocols for encrypting data transmissions over the Internet. This ensures that the data exchanged between your browser and the server is protected from unauthorized access. You can recognize an encrypted connection by the fact that the browser's address line changes from "http://" to "https://" and by the lock symbol in your browser bar.
10. Storage of user information in log files
Each time you access the website, general information is automatically recorded and transmitted by your browser to the server. This information is stored in so-called log files and usually includes:
a) IP address of the requesting computer
b) Date and time of access
c) Name and URL of the retrieved file
d) Website from which access is made (referrer URL)
e) Browser used and user agent string
f) Operating system
g) Name of your access provider
h) HTTP status code
This data is stored for security reasons, to ensure a smooth connection to the website, for convenient use of the website, to evaluate system security and stability, and for other administrative purposes.
The legal basis for data processing is Art. 6 (1) (f) GDPR. The legitimate interest arises from the stated purposes for data collection. Under no circumstances will the collected data be used to draw conclusions about you personally. The stored data will be anonymized or deleted unless there are legal retention obligations.
11. Cookies
This website uses cookies. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit the site. Cookies do not cause any damage to your device and do not contain viruses, Trojans, or other malware.
Information related to the specific device used is stored in the cookie. However, this does not mean that the controller thereby directly obtains knowledge of your identity.
The use of cookies serves, on the one hand, to make using the service more pleasant for you. For example, the controller uses so-called session cookies to recognize that you have already visited individual pages of the website. These are automatically deleted after you leave the site.
In addition, the controller also uses temporary cookies to optimize user-friendliness, which are stored on your device for a specific period of time. If you visit the site again to use the services, it will automatically recognize that you have already been there and which entries and settings you have made so that you do not have to enter them again.
Secondly, the controller uses cookies to statistically record website usage and evaluate it for the purpose of optimizing the service for you. These cookies enable the controller to automatically recognize that you have already been there when you visit the site again. These cookies are automatically deleted after a defined period of time.
The data processed by cookies are necessary for the aforementioned purposes to protect the legitimate interests of the controller and third parties in accordance with Art. 6 (1) (f) GDPR.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a warning always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all of the website's functions.
12. Use of the contact form
For questions of any kind, you can contact the controller using a form provided on this website. In order to know who sent the inquiry and to be able to answer it, the following information is required: first name, last name, email address.
Data processing for the purpose of contacting the controller is carried out in accordance with Art. 6 (1) (a) GDPR on the basis of your voluntarily given consent.
The personal data collected for the use of the contact form will be regularly deleted after the inquiry has been processed.
13. Inquiries by email or telephone
You have the option of sending inquiries to the controller by email or telephone. The personal data transmitted in this way (e.g., name, email address, telephone number, and the inquiry itself) will be processed and stored by the controller exclusively for the purpose of processing the inquiry and any follow-up questions.
The legal basis for this data processing is Art. 6 (1) (b) GDPR, as the processing is necessary to fulfill a contract or to implement pre-contractual measures. If the processing is not related to a contract, it is based on Art. 6 (1) (f) GDPR, as the controller has a legitimate interest in processing and answering inquiries.
14. Inquiries via WhatsApp
You have the option of sending inquiries to the controller via WhatsApp. Please note that WhatsApp stores the transmitted data on servers in the USA. Therefore, no sensitive information should be transmitted via this channel. The personal data you provide (e.g., name, telephone number, and the request itself) will be processed and stored by the controller exclusively for the purpose of processing your request and any follow-up questions.
The legal basis for this data processing is Art. 6 (1) (b) GDPR, as the processing is necessary to fulfill a contract or to take steps prior to entering into a contract. If the processing is not related to a contract, it is based on Art. 6 (1) (f) GDPR, as the controller has a legitimate interest in processing and responding to inquiries.
Additional information on the processing of your personal data by WhatsApp can be found in their privacy policy at: https://www.whatsapp.com/legal/.
15. Prohibition of sending advertising emails
The use of the contact details published in the imprint to send unsolicited advertising and information materials is hereby prohibited. Any unauthorized use of the contact details for advertising purposes constitutes a violation of the rights of the operator of this website and will not be tolerated. The operator of this website expressly reserves the right to take legal action in the event of violations, particularly in the event of unsolicited advertising information such as spam emails.
16. Form tools
Here you will find information on the use of form tools on this website, including details on the processing of personal data and your rights in connection with the use of these forms. The use of these tools is based on legitimate interest pursuant to Art. 6 (1) (f) GDPR to ensure efficient data collection and management. Where necessary, data processing is based on your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TTDSG. Consent can be revoked at any time with future effect.
17. Processing of customer and contract data
Personal customer and contract data is collected, processed, and used to establish, define, and amend contractual relationships. This may include name, address, email address, and telephone number. This information is necessary to provide services and to communicate. Depending on the payment method chosen, payment information such as credit card details, bank account details or information about other payment services will also be collected and used exclusively for the payment process. In addition, usage and order data will be processed, including information about orders, the services used, prices and delivery details. Personal data about the use of this website (usage data) will only be collected, processed and used to the extent necessary to enable the user to use the service or to bill them. Personal data is processed on various legal bases. According to Art. 6 (1) (b) GDPR, data processing is carried out to fulfill a contract or to carry out pre-contractual measures, for example to process orders and to provide services. In addition, processing is carried out in accordance with Art. 6 (1) (c) GDPR to fulfill legal obligations, including statutory retention periods. Furthermore, processing is carried out in accordance with Art. 6 (1) (f) GDPR to protect legitimate interests, such as improving services and ensuring IT security. The collected customer data will be deleted after completion of the order or termination of the business relationship and expiration of any applicable statutory retention periods. Statutory retention periods remain unaffected.
18. Conclusion of contracts for services or digital content
When concluding contracts for services or digital content, the controller collects and processes your personal data in order to fulfill the contractual obligations. This data includes, in particular, your contact information such as name, address, email address, and relevant information regarding the use of the services or digital content. Your data is processed on various legal bases: Pursuant to Art. 6 (1) (b) GDPR, the controller processes your data to fulfill the contract and to carry out pre-contractual measures, such as the provision and use of the services. Furthermore, processing is carried out in accordance with Art. 6 (1) (c) GDPR to fulfill legal obligations, including compliance with statutory retention periods. Furthermore, processing is carried out in accordance with Art. 6 (1) (f) GDPR to protect legitimate interests, such as improving the services and ensuring IT security. The data collected will be used exclusively for the execution and fulfillment of contracts and will be deleted after the contractual relationship has been concluded and any statutory retention periods have expired. Your data may be passed on to third parties involved in the provision of services, such as IT service providers, as part of the contract fulfillment. These third parties are contractually obligated to treat your data confidentially and to use it exclusively for the purpose of providing the service. The controller ensures that your data is only passed on to the extent necessary to fulfill the contract. Your data will not be passed on to any other parties unless you have expressly consented to this. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.