Privacy policy

Introduction

With the following privacy policy, we aim to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for what purposes, and to what extent. This privacy policy applies to all personal data processing activities we carry out, both in the provision of our services and especially on our websites, in mobile applications, and within external online presences, such as our social media profiles (collectively referred to as "online offer").

The terms used are not gender-specific.

Status: 09/03/2024

Contents Overview

  • Introduction
  • Responsible Party
  • Overview of Processing
  • Relevant Legal Bases
  • Security Measures
  • Disclosure and Transmission of Personal Data
  • Data Processing in Third Countries
  • Use of Cookies
  • Provision of the Online Offer and Web Hosting
  • Contact
  • Deletion of Data
  • Changes and Updates to the Privacy Policy
  • Rights of Data Subjects
  • Definitions of Terms

Responsible Party

Micha Beck
Sparbruck 22
88045 Friedrichshafen

Authorized Representative: Micha Beck
Email: info@aestiso.com
Imprint:

Overview of Processing

The following overview summarizes the types of data processed, the purposes of processing, and the affected data subjects.

Types of Data Processed

  • Inventory data (e.g., names, addresses).
  • Content data (e.g., text entries, photographs, videos).
  • Contact data (e.g., email, phone numbers).
  • Meta/communication data (e.g., device information, IP addresses).
  • Usage data (e.g., visited websites, interest in content, access times).

Categories of Data Subjects

  • Communication partners.
  • Users (e.g., website visitors, users of online services).

Purposes of Processing

  • Contact requests and communication.

Relevant Legal Bases

Below, we share the legal bases of the General Data Protection Regulation (GDPR) on which we process personal data. Please note that, in addition to the GDPR regulations, national data protection regulations may apply in your or our country of residence. If specific legal bases are relevant in individual cases, we will inform you of these in the privacy policy.

  • Consent (Art. 6(1)(1)(a) GDPR) – The data subject has given consent to the processing of their personal data for one or more specific purposes.
  • Contract performance and pre-contractual inquiries (Art. 6(1)(1)(b) GDPR) – Processing is necessary for the performance of a contract to which the data subject is a party, or to take steps at the request of the data subject prior to entering into a contract.
  • Legitimate interests (Art. 6(1)(1)(f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

Security Measures

We take appropriate technical and organizational measures to ensure a level of security appropriate to the risk, considering the state of the art, implementation costs, and the nature, scope, context, and purposes of processing, as well as the varying likelihood and severity of risks to the rights and freedoms of natural persons.

Disclosure and Transmission of Personal Data

In the course of our processing of personal data, it may happen that the data is transmitted to other entities, companies, legally independent organizational units, or persons, or disclosed to them. We ensure compliance with legal requirements and enter into appropriate agreements to protect your data.

Data Processing in Third Countries

If we process data in a third country or it is processed in the context of using services from third parties or disclosing/transmitting data to other persons, entities, or companies, this only happens in compliance with legal requirements.

Use of Cookies

Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. A cookie primarily stores information about a user during or after their visit within an online offer. Cookies can be temporary or permanent, first-party or third-party, and can serve various purposes like functionality, analytics, marketing, and personalization.

Provision of the Online Offer and Web Hosting

To provide our online offer securely and efficiently, we use the services of one or more web hosting providers, from whose servers the online offer can be accessed.

Contact

When contacting us (e.g., via contact form, email, phone, or social media), the information of the requesting persons is processed to the extent necessary to respond to contact requests and any requested actions.

Deletion of Data

The data we process will be deleted in accordance with legal requirements as soon as their permitted processing is revoked or other permissions cease to apply.

Changes and Updates to the Privacy Policy

We ask you to regularly inform yourself about the content of our privacy policy. We will adapt the privacy policy as soon as the changes in the data processing activities we carry out make this necessary.

Rights of Data Subjects

Under the GDPR, you have various rights, including the right to information, correction, deletion, restriction of processing, data portability, and the right to lodge a complaint with a supervisory authority.

Definitions of Terms

This section provides an overview of the terms used in this privacy policy, which are intended to aid understanding.