Data Privacy

is responsible for processing your data on this website (hereinafter referred to as „the company“). We process personal data in accordance with the provisions of the GDPR and the German Federal Data Protection Act (BDSG).

You can reach the data protection officer at the above-mentioned postal address with the addition „To the data protection officer“ or at the email address: datenschutz[at]patrickmoelleken.com.

2. What data is collected?

When you visit the website, information is automatically collected from the calling computer (hereinafter referred to as „access data“). This access data includes server log files, which usually consist of information about the browser type and version, the operating system, the internet service provider, the date and time of use of the website, the previously visited websites, and the websites newly accessed through the website, as well as the IP address of the computer. With the exception of the IP address, the server log files are not personally identifiable. An IP address is personally identifiable if it is permanently assigned when using the internet connection and the internet provider can assign it to a person.

If you continue to use the services of the website, pseudonymous usage profiles and/or the data entered by you on the website (e.g. form inputs, click data) will be processed.

Some services on the website require you to provide the company with personal data. In these cases, the data you provide will be used to provide you with the desired service or to process the respective request. The following personal data is processed on the website: email address; address data; contact details; date of birth; image, video and audio recordings.

3. What cookies are used?

Cookies are used on the website. Cookies are small text files that are stored on your computer when you visit a website. The stored cookies are associated with the browser you are using. When the corresponding website is accessed again, the web browser sends back the content of the cookies and thus enables the user to be recognized again. Certain cookies are deleted when you end the browser session (so-called „transient cookies“). Other cookies are stored for a specified period of time or permanently (so-called „temporary cookies“ or „persistent cookies“). These cookies are automatically deleted after the defined period of time has elapsed. You can also delete cookies at any time in the security settings of your browser and configure the use of cookies according to your wishes. However, the company points out that you may not be able to use all functions of the website in this case.

In principle, cookies are just an online identifier without personal reference. Cookies become personally identifiable when additional data is combined with the information generated by the cookies. There is a distinction between cookies that are necessary for providing the website and cookies that are required for other purposes, such as analyzing user behavior or advertising.

The following cookies are necessary for providing and fulfilling further purposes of the website:

• Cookies that serve to identify or authenticate users;
• Cookies that temporarily store certain user inputs (e.g. content of an online form);
• Cookies that store data to ensure the smooth playback of video or audio content.
• Analysis cookies to record and statistically evaluate the usage behavior (e.g. visited subpages) of our users;
• Tracking cookies in connection with social plugins.

4. What data is collected for what purposes?

The purposes of data processing may result from technical, contractual or legal requirements, as well as from consent.

We use the data mentioned in section 2 for the following purposes:

• • • to provide the website and ensure technical security, in particular to rectify technical errors and ensure that unauthorized persons do not gain access to the systems of the website;
    • for reach measurements and web analyses in order to make the website more efficient and interesting for you and to conduct market research;
    • for communication, contract initiation and customer care;
    • to send newsletters and/or program communication via email;
    • to provide competitions.

Further information on these purposes of data processing can be found in the following sections of this data protection notice.

4.1 Technical provision of the website

4.1.1 Description and scope of data processing

For the functionality of the website, the performance of security analyses and the defense against attacks, the server log files are automatically recorded and temporarily stored as part of the access data collected according to section 2 from the computer system of the accessing device when entering and using the website. The server log files are not stored together with other data. The company uses the server log files for statistical evaluations, to analyze and rectify technical failures, to defend against attack and fraud attempts, and to optimize the functionality of the website.

4.1.2 Purposes and legal basis of data processing

The legal basis for collecting server log files is Art. 6 para. 1 lit. f GDPR. The company has a legitimate interest in the functionality of the website, conducting security analyses, and defending against threats.

4.1.3 Duration of storage or criteria for determining this duration

After accessing the website, the server log files are stored on the web server, and the IP address contained therein is deleted no later than 7 days after access. An evaluation during this storage period is only carried out in the event of an attack.

4.1.4 Right to object and possibility of removal

You have the right to object to the processing of your data in the context of server log files, to the extent that there are reasons that arise from your particular situation. If you wish to exercise your right to object, please contact the contact address indicated in section 1.

4.2 Contact form, email and telephone contact

4.2.1 Description and scope of data processing

On the website, there is the possibility of contacting the company and its partner companies via a contact form, email address or telephone number. If you use this option, the data entered in the contact form, your email address and/or telephone number, as well as your request, will be transmitted to the company or the respective partner company. Depending on the request (e.g. questions about the company’s services, assertion of your data subject rights such as information), your contact data will be further processed (with the help of service providers). If necessary for the processing of your request, your contact data may be forwarded to third parties (e.g. partner companies).

4.2.2 Purposes and legal basis of data processing

The legal basis for processing your contact data is Art. 6 para. 1 lit. f GDPR. The legitimate interests lie in the processing of your request and the further communication. If your contact is aimed at concluding a contract with the company, the legal basis for processing your contact data is Art. 6 para. 1 lit. b GDPR.

4.2.3 Duration of storage or criteria for determining this duration

After processing your request and terminating further communication, the contact data will be deleted. This does not apply if your contact aims at concluding a contract with the company or if you assert your data subject rights such as information. In this case, the data will be stored until the contractual and/or legal obligations are fulfilled and statutory retention periods do not prevent deletion.

4.2.4 Right to object and possibility of removal

You have the right to object to the processing of your contact data, to the extent that there are reasons that arise from your particular situation. If you wish to exercise your right to object, please contact the contact address indicated in section 1. If you object, communication cannot be continued. This does not apply if the storage of your contact data is necessary for the initiation or fulfilment of a contract or for asserting your data subject rights.

4.3 Newsletter

4.3.1 Description and scope of data processing

On the website, there is the possibility to subscribe to several free newsletters. When subscribing to a newsletter, your data from the registration form is transmitted to the company and (with the help of the service provider Mailjet SAS, Global HQ, 13-13 bis, rue de l’Aubrac, 75012 Paris, France) further processed for the sending of the respective newsletter. When registering for a newsletter, your consent is obtained and reference is made to this data protection declaration. Your data is not passed on to other third parties. The only mandatory data for the newsletter is your email address. Processing of your access data is also required to be able to prove that you have given your consent.

We would like to point out that the company evaluates your user behavior when sending the newsletter. For this evaluation, the emails sent contain so-called web beacons or tracking pixels, which represent one-pixel image files that are stored on the website. For the evaluations, the company links your data and the web beacons with your email address and an individual ID. Links received in the newsletter may also contain this ID. The data is collected solely in an anonymized form, so the IDs are not linked to your other personal data, and direct personal reference is excluded.

4.3.2 Purposes and legal basis of data processing

Depending on the newsletter, the processing of your data via the registration form is necessary for the promotion of the company’s productions or for advertising the company’s services. The legal basis for processing the data when registering for the newsletter is consent pursuant to Art. 6 para. 1 lit. a DSGVO, taking into account § 7 para. 2 no. 3 of the Law against Unfair Competition (hereinafter referred to as „UWG“).

4.3.3 Duration of storage or criteria for determining this duration

The data is stored during the subscription to the respective newsletter. After the newsletter has been inactive, the data is only stored to prove that the company has obtained your consent for the newsletter and has acted in compliance with data protection regulations. The same applies if you have revoked your consent.

4.3.4 Objection and removal options

You can revoke your consent to receive any of the newsletters at any time by clicking on the unsubscribe link provided in the newsletter or by notifying the company of your revocation at newsletter[@]patrickmoelleken.com, with the subject „Revocation of Newsletter.“

You can also object to the above-mentioned tracking at any time by clicking on the separate link provided in each email or by informing the company through another contact method. The information will be stored as long as you have subscribed to the newsletter. After unsubscribing, the company will store the data purely statistically and anonymously. Tracking is also not possible if you have deactivated the display of images by default in your email program. In this case, the newsletter will not be displayed completely, and you may not be able to use all functions. If you manually display the images, the above-mentioned tracking will be carried out.

4.4 Sweepstakes

4.4.1 Description and scope of data processing:

Through the website, you can participate in sweepstakes organized by the company or its partner companies. Your participant data will be collected and stored via an input form. Your data will be processed to verify compliance with the participation conditions, to conduct and process the sweepstakes. Participation is voluntary. These privacy notices are referred to during the process. If you win, we will inform you and send you your prize (with the help of service providers). Your data will not be shared with third parties (such as sponsors or partner companies) in general.

4.4.2 Purposes and legal basis of data processing:

Processing participant data is necessary to participate in the sweepstakes. The legal basis is the fulfillment of a contract according to Art. 6 para. 1 lit. b GDPR.

4.4.3 Duration of storage or criteria for determining this duration:

After the winner has been selected, participant data will be deleted no later than 6 months later unless retention is legally required (such as participant data of winners after sending a ticket prize, currently retention period is 6 to 10 years).

4.4.4 Objection and elimination options:

Processing participant data is necessary to participate in the sweepstakes. Therefore, there is no option for objection.

4.5 Webtracking

Services that optimize user-friendliness and measure the reach of the website are built into the website. Your access data (see section 2) will be collected and the usage behavior will be analyzed using analysis cookies (see section 3). Personal identification is generally not required for web tracking, so when your access data is collected, the stored IP address is either not used or only used in a shortened form, and pseudonymous usage profiles are created. These are not merged with other data and you have the option to withdraw your consent at any time. The creation of personalized usage profiles only occurs in exceptional cases and if you have given your consent.

Web tracking services are typically provided by service providers who process the data only on behalf of the responsible party and not for their own purposes as so-called contract processors. This is ensured by contracts for order processing. If service providers outside the European Union or the European Economic Area (hereinafter „EU or EEA“) process your data, a so-called third country transfer takes place. This is permissible if you have consented to it, the company has created guarantees for a data protection level that is appropriate to European standards, or the EU Commission has classified the respective third country as a safe third country. The third-country transfer of the respective service is indicated below. You can find further information on the recipients of your data in section 4.5.1. The only web tracking service on the website is described in more detail below.

4.5.1 Google Analytics

The website uses the Google Analytics service. The provider of Google Analytics is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics creates a pseudonymous user profile in order to optimize the user-friendliness of the website. Pseudonymity is ensured by shortening your IP address before it is transmitted to Google, so that it is not possible to draw any conclusions about you as an individual. The pseudonymous user profile is evaluated after transmission for the purpose of optimizing user-friendliness. There is no merging of this data with other Google data. Through a contract for order processing, the company ensures that Google processes the data only according to its instructions.

The use of Google Analytics involves a transfer to a third country (see section 4.7). However, Google ensures that the European level of data protection is guaranteed during the transfer to the third country.

More information on data processing with Google Analytics can be found in Google’s privacy policy.

4.5.8 Purposes and legal basis for data processing:

The legal basis for the collection and evaluation of pseudonymous user profiles is Art. 6 para. 1 lit. f DSGVO / § 15 para. 3 Telemediengesetz (TMG). The legitimate interests of the company lie in the optimization of the website’s user-friendliness and in measuring its reach. If personal user profiles are collected and evaluated, the legal basis is your consent according to Art. 6 para. 1 lit. a DSGVO.

4.5.9 Storage period or criteria for determining this period:

The data collected and evaluated when using web tracking services is usually stored until you object to their use. If data processing is based on your consent, your data will be stored until you revoke your consent.

4.5.10 Options for objection and removal:

You can object to the use of web tracking services at any time by changing your browser settings or by clicking on this link to download and install available browser plugins.

4.6 Google Maps

We have integrated maps from Google Maps on our website. The purpose of this is to make it easier for interested users to find our company headquarters in Potsdam. The legal basis is Art. 6 para. 1 lit. f DSGVO.

When you visit the website, Google is informed that you have accessed the corresponding subpage of our website. In addition, further data such as your IP address is transmitted to Google. This happens regardless of whether you are logged into a Google user account or not. If you are logged in to Google, your data will be directly associated with your account. If you do not wish to be associated with your profile on Google, you should log out before viewing our website. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. Such evaluation is carried out in particular (even for non-logged-in users) for the purpose of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact Google to exercise this right.

The use of Google Maps may involve a transfer to a third country (see section 4.7). However, Google ensures that the European level of data protection is guaranteed during the transfer to the third country.

Further information on the purpose and scope of data collection and its processing by Google can be found in Google’s privacy policy. You can also find further information on your rights and options for protecting your privacy there.

4.7 Social Media Plugins

Social media plugins are used on the website. Through the use of social media plugins, your access data (see section 2) is only collected after your consent using tracking cookies (see section 3), and usage profiles are created. These usage profiles are transmitted to social networks such as Facebook or Twitter and used for advertising, audience measurement, and needs-based design of the website. Such use takes place initially regardless of whether you have a user account with the respective social network or are logged in via your user account during the website visit. Depending on the functionality of the respective social media plugin, it is also possible to draw conclusions about your person, for example, if you have a user account with the social network and/or your access data is merged with other data. Therefore, the company recommends regularly logging out after using a social network, as this can avoid such conclusions.

The company has no or only limited influence on data processing when using social media plugins after transmission to the respective social network. The company is also not or only partially aware of their purposes of data processing and storage periods.

If social networks process your data outside the EU or EEA, a so-called third country transfer takes place. This is permissible if you have given your consent, the company has created guarantees for a data protection level that is appropriate to the European standard, or the EU Commission has classified the respective third country as a safe third country. The third country transfer to the respective social network is identified below. You can find further information about the recipients of your data in section 4.7.1.

The individual social media plugins used are described in more detail below.

4.7.1.1 Facebook

This website uses the social media plugin from Facebook. The provider of this social media plugin is Facebook Inc., 1601 South California Avenue, Palo Alto, CA 94304, USA. When you visit the website, no data is initially transmitted to Facebook. With your consent, you have the opportunity to activate the use of the social media button. With activation, you have the opportunity to share content from the website with Facebook and other users. Your data is then transmitted to Facebook and stored there. If you are logged in to Facebook during the website visit, the data collected on the website is directly merged with other data from Facebook and assigned to your user account.

A third-country transfer takes place by transmitting data to Facebook (see section 4.9). However, Facebook ensures that the European data protection level is guaranteed during the third-country transfer.

For more information about data processing with the Facebook social media plugin, please refer to their privacy policy.

4.7.1.2 Twitter

Functions and content from the Twitter service, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, are integrated into our website. This may include content such as images, videos, or texts and buttons with which users can share content from this online offer within Twitter.

If users are members of the Twitter platform, Twitter can assign the call of the above-mentioned content and functions to the respective user profiles there. Twitter ensures compliance with European data protection law.

Privacy policy: https://twitter.com/de/privacy,
Opt-out: https://twitter.com/personalization.

4.7.1.3 LinkedIn

Functions and content of the service LinkedIn, offered by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, are integrated into our website. This may include content such as images, videos, or texts, as well as buttons that allow users to share content of this online offer within LinkedIn. If users are members of the LinkedIn platform, LinkedIn can assign the call of the above-mentioned content and functions to the user profiles there.

LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy

LinkedIn guarantees compliance with European data protection law.

Privacy policy: https://www.linkedin.com/legal/privacy-policy,
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

4.7.1.4 YouTube

We also include video content from the provider YouTube. When you use this service, communication data may be exchanged between you and the provider for technical reasons.

Furthermore, it may be possible that the provider processes your data for other purposes. We have configured services or content from providers known to process data for their own purposes to the best of our knowledge and belief so that communication is either omitted for other purposes than displaying the content or services on our website or only takes place when you actively decide to use the service. However, since we have no influence on the data collected by third parties and their processing, we cannot provide any binding information on the purpose and scope of the processing of your data.

Therefore, please refer to the provider’s privacy policy of the services or content integrated by us (YouTube) for more information on the purpose and scope of the collection and processing of your data: https://policies.google.com/privacy?hl=en

Opt-Out: https://adssettings.google.com/authenticated

4.7.1.5 Instagram

This website uses the social media plugin from Instagram. The provider of this social media plugin is Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA. Initially, no data is transmitted to Instagram when you visit the website. With your consent, you have the option to activate the use of the social media button. With activation, you then have the option to share website content with Instagram and other users. By integrating the plugin, Instagram receives information that your browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are not logged in to Instagram at the moment. In addition to this information, other data such as your IP address is also transmitted to and stored by Instagram. If you are logged in to Instagram during your visit to the website, your data collected on the website will be directly associated with other data from Instagram and assigned to your user account.

A third-country transfer takes place through the transmission to Instagram (see Section 6). However, Instagram ensures that the European level of data protection is maintained during the third-country transfer.

You can find information on the purpose and scope of data collection and further processing and use of data by Instagram, as well as your related rights and privacy settings, in Instagram’s privacy policy: https://help.instagram.com/155833707900388/

If you do not want Instagram to directly assign the data collected through our website to your Instagram account, you must log out of Instagram before giving your consent on our website.

4.7.2 Purpose and legal basis of data processing

The purposes of data processing when using social media plugins are advertising, measuring reach, and tailoring the website to individual needs. You also have the option to share website content with social networks and other users, as well as to receive advertising tailored to your interests. The legal basis for data processing is consent pursuant to Art. 6 para. 1 lit. a GDPR.

4.7.3 Storage period or criteria for determining this period

Data processing will continue until you revoke your consent. After revocation, the company will delete the data collected from you on the website and inform the respective social network of your revocation and deletion request.

4.7.4 Options for objection and removal

You can revoke your consent at any time for the future, e.g., via the corresponding link on the website or by post to the company at the address provided in Section 1. The company will inform the respective social network of your revocation.

4.8 WordPress and other plugins

4.8.1 Akismet

We collect information about visitors who leave comments on websites that use our Akismet anti-spam service. The extent of information we collect depends on how the user has configured their website. Typically, this data includes the user’s IP address, user agent, referrer, and website URL (as well as the information the user has entered directly, such as name, username, email address, and comment).

4.8.2 Caldera Forms

Caldera Forms stores a report of all form submissions. Your data can be deleted by the website administrator. You can request a report of stored data associated with your email address.

Some data may be shared with other services, including MailChimp, PayPal, and similar providers.

4.8.2 Ninja Forms

Ninja Forms stores a report of all form submissions. Your data can be deleted by the website administrator. You can request a report of stored data associated with your email address.

Some data may be shared with other services, including MailChimp, PayPal, and similar providers.

4.8.3 Shariff Wrapper (Social-Media-Plugin)

We offer the option of using so-called „social media buttons“ on our website. To protect your data, we use the „Shariff“ solution for implementation. This means that these buttons are only embedded on our site as static graphics that contain a link to the corresponding provider’s website. Clicking on the graphic will take you to the provider’s website, just like a regular link. Only when you access the provider’s website will they receive information about you, such as your IP address. If you do not click on the button graphics, no data will be exchanged. Information about the collection and use of your data in social networks can be found in the respective provider’s terms of use. More information about the plugin and the Shariff solution can be found here: https://de.wordpress.org/plugins/shariff/

We offer buttons for the following services/companies on our website: AddThis, Bitcoin, Buffer, Diaspora, Facebook, Flipboard, LinkedIn, Mastodon, MeWe, Odnoklassniki, Patreon, PayPal, Pinterest, Pocket, Reddit, Stumbleupon, Telegram, Threema, Tumblr, Twitter, VK, Wallabag, Weibo, WhatsApp, Xing.

4.8.4.1 WPML

WPML uses cookies to determine the visitor’s current language, the last visited language, and the language of users who have logged in.

While using the plugin, WPML will share data regarding the page via the installer. No data will be shared by the user themselves.

4.8.4.2 WPML Media Translation

WPML Media Translation will send the email address and name of each manager, assigned translator, and the content itself to the Advanced Translation Editor and the translation services contracted.

4.8.4.3 WPML String Translation

WPML String Translation will send all strings to WPML’s advanced Translation Editor and the translation services employed.

4.8.4.4 WPML Translation Management

WPML Translation Management will send the email address and name of each manager and assigned translator, and the content itself to the Advanced Translation Editor and the translation services employed.

5. Who will receive my data?

Within the company, those departments that require the data to fulfill the purposes outlined in section 4 will have access to your data. Service providers employed by the company may also have access to your data (known as „data processors“, e.g., data centers, newsletter distribution, sweepstakes processing, customer service, or accounts receivable management). Contracts for data processing ensure that these service providers are bound by instructions, data security, and the confidential handling of your data.

Data may be disclosed to additional recipients, such as providers of social media services („third parties“), if required by law or if you have given your consent. The following third parties are covered by data disclosure:

Providers of social media services that merge your data from the website with data already stored there for their own purposes.
Providers of measurement and web analytics that measure the reach of websites for their own purposes and create user profiles.
Public authorities and institutions, such as law enforcement agencies, who receive access to your data due to compliance with legal or regulatory obligations.
Further information on the data disclosure to the respective third party can be found in section 4 for each purpose.

6. Will my data be processed outside of the EU or the EEA (transfer to third countries)?

To the extent that the service providers and/or third parties mentioned in section 5 process your data for the purposes outlined in section 4 outside of the EU or the EEA, this may result in your data being transferred to a country where no adequate level of data protection is guaranteed by the EU or the EEA. However, such an adequate level of data protection can be ensured with a suitable guarantee. Suitable guarantees may include standard contractual clauses provided by the EU Commission. A copy of these guarantees can be requested from the contact details listed in section 1 upon request. Guarantees may be waived exceptionally if you consent or if the transfer to a third country is necessary to fulfill your contract with the company. The EU Commission has also recognized certain third countries as safe third countries, so that suitable guarantees may also be waived by the company in these cases.

For the provision and standard settings of the website, as well as for the use of web tracking services, service providers are employed whose data centers are located in a third country, or who can access the data centers within the European Union or the EEA from a branch in a third country. The company has agreed with these service providers on compliance with the European level of data protection via standard contractual clauses.

7. What are my data protection rights?

You have the right to request information at any time about the personal data that we have stored about you. If data about you is incorrect or no longer up to date, you have the right to request its correction. You also have the right to request the deletion or restriction of the processing of your data in accordance with Art. 17 or Art. 18 GDPR. You may also have the right to receive the data you have provided in a commonly used and machine-readable format (right to data portability).

If you have given consent for the processing of personal data for certain purposes, you may revoke the consent at any time with effect for the future. The revocation should be addressed to the company at the contact address specified in section 1. Consents granted on the website can also be revoked by contacting datenschutz[at]patrickmoelleken.com.

In accordance with Art. 21 GDPR, you have the right to object to the processing of your data carried out on the basis of Art. 6 (1) lit. f GDPR for reasons arising from your particular situation. The same applies to automated procedures involving individual cookies, unless they are necessary for the provision of the website.

In addition, you have the option to contact a data protection authority and file a complaint there. The competent authority for the company is:

Landesbeauftragte für Datenschutz und Informationsfreiheit
Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf

Tel.: +49 211/38424-0
Fax: +49 211/38424-999
Email: poststelle@ldi.nrw.de

However, you can also contact the data protection authority responsible for your place of residence.

8. Security

We take precautions to protect your personal data from loss, destruction, falsification, manipulation, and unauthorized access. The statutory data protection provisions of the Federal Republic of Germany are of course observed.

9. Children

We encourage all parents and guardians to instruct their children on the safe and responsible handling of personal data on the Internet. Children should not transmit any personal data to the website without the consent of their parents or guardians. We assure you that we do not knowingly collect, use, or disclose personal data of children in any way to third parties.

10. Links to other websites

This data protection statement applies to the website www.patrickmoelleken.com. The websites in this website may contain links to other providers that are not covered by the data protection statement. When leaving the website, it is recommended that you carefully read the data protection policy of each website that collects personal data.

11. Data Protection for Facebook Fan Pages

I. Controller

Patrick Mölleken
c/o the fable GmbH
Talent Management
Managing Director: Jonas Klingenstein

Eduard-Lucas-Straße 36
45131 Essen
Germany

T: +49 201 83886440

Email: datenschutz [at] patrickmoelleken.com

is responsible (hereinafter referred to as „we“ or „us“) for the processing of your personal data mentioned below. Our data protection officer can be reached at datenschutz[at]patrickmoelleken.com or at our postal address with the addition „To the Data Protection Officer“. In addition, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland („Facebook“) is responsible for data processing. Further information can be found here. You can contact Facebook’s data protection officer here.

You can find options to adjust the processing of personal data by Facebook, among other things, in your Facebook profile under the „Settings“ menu or by clicking here.

II. Processing of Personal Data (General)

1. General
Personal data („Data“) refers to any information relating to an identified or identifiable person. Pseudonymous data that we cannot directly assign to you, such as through a name or email address, is also personal data.

2. Your Rights
You have the right to information at any time about the data stored about your person. If data about your person is incorrect or no longer up to date, you have the right to request their correction. You also have the right to request the deletion or restriction of processing of your data in accordance with Articles 17 and 18 of the GDPR. If you have provided us with data and the processing is based on your consent or on a contract with you, you have the right to receive this data provided by you in a structured, common and machine-readable format (right to data portability). If you wish to exercise your rights, you can contact the contact person listed under item 11.I at any time.

If you have given us your consent to process your data, you can revoke this consent at any time with effect for the future. Information on your right to object can be found in section 11.III of this data protection declaration.

You also have the right to contact a data protection authority and file a complaint there. You can exercise these rights with the controller.

3. Obligation to Provide Data

Providing your data to us is generally not mandatory. Only in the context of concluding a contract must you provide certain data (e.g., your email address or name). Without this data, we will not be able to conclude or execute the contract with you. Facebook may have other requirements. Further information can be found here.

4. Disclosure of Data to Third Parties

Your data will only be transferred to third parties other than those mentioned in Section 11.I if it is necessary for the fulfillment of the contract, we or the third party have a legitimate interest in the transfer, or you have given your consent for this purpose. In addition, data may be transferred to third parties if we are required to do so by law or by enforceable governmental or judicial order.

5. Service providers

We use service providers for data processing. The access of service providers to your data is limited to the necessary extent. Service providers are usually integrated as so-called contract processors who may only process data according to our instructions.

6. Transfer of data to non-EEA countries

Data may also be transferred to third parties or contract processors located in non-EEA countries. In this case, we ensure before the transfer that an appropriate level of data protection exists at the recipient. We have concluded so-called EU standard contract clauses with various companies. Further information on this can be obtained from our data protection officer upon request.

7. Storage duration

We store your data for as long as necessary to provide our services and associated services or as long as we have a legitimate interest in further storage. In all other cases, we delete your personal data, except for data that we must continue to keep for legal retention periods (e.g. invoices).

8. Pseudonymous data processing

The data processing listed below is carried out primarily on a pseudonymous basis. This means that we or third parties cannot directly assign the data to you, for example, through a name or email address, but a profile is created, for example, based on an ID or a cookie.

III. Data processing by us when using our Facebook pages

The data processing described below is for the operation of our Facebook pages.

1. Insights

Through the „Insights“ function, we receive statistical data from Facebook about visitors to our Facebook pages. We cannot assign this data to a specific person. With the help of this function, we can better analyze our pages and adapt to the needs and interests of our visitors. Facebook is responsible for processing personal data in relation to this function. Further information can be found here. We do not need a legal basis for the processing of statistical or anonymous data.

2. Interaction on our pages
In addition, we can see if a particular Facebook user has liked or subscribed to one of our Facebook pages. We can also assign comments on our Facebook pages to individual users. The legal basis for this data processing is Art. 6 I b) and f) GDPR. Our legitimate interest lies in the interaction and further communication with you. If the data processing is based on Art. 6 I f GDPR, you have the right, according to Art. 21 para. 1 DS-GVO, to object to the data processing for this purpose at any time with future effect by sending an email to datenschutz[at]patrickmoelleken.com for reasons arising from your particular situation.

IV. Processing of data that you provide us via contact forms or email

On the Facebook pages, you have different options to contact us for various purposes (e.g. inquiries or Facebook contests). We use the data you provide to us solely to process your request. Messages will be deleted no later than after the request has been processed, unless retention is required for other reasons.

12. Conclusion/Version Information

As part of the further development of the website and the implementation of new technologies to improve our service for you, changes to these data protection notices may become necessary. Therefore, we recommend that you read these data protection notices again from time to time.

As of: March 2023.