privacy and data protection

Data protection declaration

Unless stated otherwise below, the provision of your personal data is neither legally nor contractually obligatory, nor required for conclusion of a contract. You are not obliged to provide your data. Not providing it will have no consequences. This only applies as long as the processing procedures below do not state otherwise.
“Personal data” is any information relating to an identified or identifiable natural person.


Server log files
You can use our websites without submitting personal data. 
Every time our website is accessed, user data is transferred to us or our web hosts/IT service providers by your internet browser and stored in server log files. This stored data includes for example the name of the site called up, date and time of the request, the IP address, amount of data transferred and the provider making the request. The processing is carried out on the basis of Article 6(1) f) GDPR due to our legitimate interests in ensuring the smooth operation of our website as well as improving our services.
 
Contact

Responsible person
Contact us at any time. The person responsible for data processing is: 
Dr. Simone Beller, Oldenburger Str. 23, 10551 Berlin Deutschland, +49-30-2641662, s.beller@beller-kkp.de


Proactive contact of the customer by e-mail
If you make contact with us proactively via email, we shall collect your personal data (name, email address, message text) only to the extent provided by you. The purpose of the data processing is to handle and respond to your contact request.
If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR.
If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article 6(1)(f) GDPR.
We will only use your email address to process your request. Your data will subsequently be deleted in compliance with statutory retention periods, unless you have agreed to further processing and use.
 

Customer account      Orders      

Customer account
When you open a customer account, we will collect your personal data in the scope given there. The data processing is for the purpose of improving your shopping experience and simplifying order processing. The processing will be carried out on the basis of art. 6 (1) lit. a GDPR with your consent. You can withdraw your consent at any time by contacting us without affecting the legality of the processing carried out with your consent up to the withdrawal. Your customer account will then be deleted.
 
Collection, processing, and transfer of personal data in orders
When you submit an order we only collect and use your personal data insofar as this is necessary for the fulfilment and handling of your order as well as processing of your queries. The provision of data is necessary for conclusion of a contract. Failure to provide it will prevent the conclusion of any contract. The processing will occur on the basis of Article 6(1) b) GDPR and is required for the fulfilment of a contract with you. 
Your data is transferred here for example to the shipping companies and dropshipping providers, payment service providers, service providers for handling the order and IT service providers that you have selected. We will comply strictly with legal requirements in every case. The scope of data transmission is restricted to a minimum.
 

Advertising      

Use of your email address for mailing of direct marketing 
We use your email address, which we obtained in the course of selling a good or service, for the electronic transmission of marketing for our own goods or services which are similar to those you have already purchased from us, unless you have objected to this use. You must provide your email address in order to conclude a contract. Failure to provide it will prevent the conclusion of any contract. The processing will be carried out on the basis of art. 6 (1) lit. f GDPR due to our justified interest in direct marketing. You can object to this use of your email address at any time by contacting us. You will find the contact details for exercising your right to object in our imprint. You can also use the link provided in the marketing email. This will not involve any costs other than transmission costs at basic tariffs.
 

Merchandise management      

Use of an external merchandise management system
We use a merchandise management system in the course of order processing for the purposes of contractual processing. For this purpose your personal data as collected in the course of the order will be sent to
Lexware Financial Office Pro 

Payment service providers       Credit check      

Credit and identity checking when paying by invoice via Novalnet
If you choose to pay by invoice, Novalnet AG (Feringastraße 4, 85774 Unterföhring) will carry out an identity and credit check. For this purpose Novalnet AG requires particular information from the customer, including personal data. This includes name and address, account number and sort code or credit card number (including period of validity), invoice amount and currency as well as transaction number. Novalnet AG checks and evaluates customer information and, if there is a justifiable reason to do so, engages in an exchange of data with other companies and credit agencies (credit check). It is entitled to use this information for the purpose of payment processing and to forward it to the provider. If you choose to pay by invoice via Novalnet, personal data will be transferred to the collection service provider Novalnet and processed further there. The data processing is for the purpose of offering purchase on account as well as the credit check required for this. Processing is carried out on the basis of art. 6 (1) lit. f GDPR due to our justified interest in offering various payment methods as well as our justified interest in protection from payment default. You have the right to veto this processing of your personal data according to art. 6 (1) lit. f GDPR by contacting us, for reasons relating to your personal situation. Novalent carries out an in-house identity and credit check. For this purpose Novalnet AG requires particular information from the customer, including personal data. This includes name and address, account number and sort code or credit card number (including period of validity), invoice amount and currency as well as transaction number. Novalnet AG checks and evaluates customer information and, if there is a justifiable reason to do so, engages in an exchange of data with other companies and credit agencies (credit check). It is entitled to use this information for the purpose of payment processing and to forward it to the provider. The provision of data is required for conclusion of contract with your desired payment method. Failure to provide it will mean that the contract cannot be concluded with your desired payment method.
 

Cookies 

Our website uses cookies. Cookies are small text files which are saved in a user’s internet browser or by the user’s internet browser on their computer system. When a user calls up a website, a cookie may be saved on the user’s operating system. This cookie contains a characteristic character string which allows the browser to be clearly identified when the website is called up again.


Cookies will be stored on your computer. You therefore have full control over the use of cookies. By choosing corresponding technical settings in your internet browser, you can be notified before the setting of cookies and you can decide whether to accept this setting in each individual case as well as prevent the storage of cookies and transmission of the data they contain. Cookies which have already been saved may be deleted at any time. We would, however, like to point out that this may prevent you from making full use of all the functions of this website.
Using the links below, you can find out how to manage cookies (or deactivate them, among other things) in major browsers:
Chrome Browser: https://support.google.com/accounts/answer/61416?hl=en
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Mozilla Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac


technically necessary cookies
Insofar as no other information is given in the data protection declaration below we use only these technically necessary cookies cookies to make our offering more user-friendly, effective and secure. Cookies also allow our systems to recognise your browser after a page change and to offer you services. Some functions of our website cannot be offered without the use of cookies. These services require the browser to be recognised again after a page change.

The use of cookies or comparable technologies is carried out on the basis of Art. 25 para. 2 TTDSG. Processing is carried out on the basis of art. 6 (1) lit. f GDPR due to our largely justified interest in ensuring the optimal functionality of the website as well as a user-friendly and effective design of our range of services.

You have the right to veto this processing of your personal data according to art. 6 (1) lit. f GDPR, for reasons relating to your personal situation.


Communication      

Use of Microsoft Teams
For the execution of our online seminars/courses (hereinafter referred to as: online seminars) within the framework of an agreement for the processing of orders, we use the video conferencing tool Microsoft Teams from the Microsoft Corporation (One Microsoft Way, Redmond, WA 98052-6399, USA; "Microsoft").
You can participate in our online seminars via the Microsoft Teams app (after downloading it from the provider's website) or via the browser version on the provider's website. In order to participate in our online seminars, it is therefore necessary to visit the website of the provider Microsoft at least once. Microsoft is responsible for the processing of your personal data there.
We are responsible for the processing of your personal data in connection with our online seminars. This data processing serves the purposes of conducting our online seminar as well as preparing and following up.
For this purpose, we collect and process the following aspects of your personal data: display name, e-mail address, date/time of the online seminar, IP address, information about the device used, telephone number (if dialling in), location. The provision of this data is necessary for the fulfilment of the agreement concluded between you and us for the provision of the online seminar. Failure to provide this data means that you cannot participate in our online seminar.
Furthermore, we collect and process text entries made by you during the online seminar as well as video and audio transmissions of your device. You can deactivate your camera and microphone before entering the online seminar and at any time during the online seminar. In this case, no data will be recorded. If you do not want to provide data via the chat, camera or audio function, you will not be able to actively participate in the online seminar or communicate with other participants.
If we record our online seminars for follow-up purposes, in particular for subsequent provision to the respective participants, you will be informed separately before the start of the online seminar. You will also recognise a recording by the identification during the online seminar. During a recording, your display name, any text entries made in the chat as well as video/audio transmissions of your device will be saved and, if necessary, subsequently transmitted to the respective participants of the online seminar.
The data collected during the execution of our online seminars is transmitted to Microsoft and thus to the USA within the framework of the order processing contract. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft 
has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
The processing will occur on the basis of Article 6(1) b) GDPR and is required for the fulfilment of a contract with you.
You can find more information about data processing when using Microsoft teams at: https://www.microsoft.com/de-de/microsoft-365/microsoft-teams/security


Use of Zoom
For the execution of our online seminars/courses (hereinafter referred to as: online seminars) within the framework of an agreement for the processing of orders, we use the video conferencing tool Zoom from Zoom Video Communications, Inc. (55 Almaden Boulevard, San Jose, CA 95113, USA; "Zoom").
You can participate in our online seminars via the Zoom app (after downloading it from the provider's website) or via the browser version on the provider's website. In order to participate in our online seminars, it is therefore necessary to visit the website of the provider Zoom at least once. Zoom is responsible for processing your data there.
We are responsible for the processing of your personal data in connection with our online seminars.
This data processing serves the purposes of conducting our online seminar as well as preparing and following up. For this purpose, we collect and process the following aspects of your personal data: name, e-mail address, password (if no single sign-on was used), IP address, information about the device used, date/time of the online seminar and, in case of telephone dial-up, the incoming and outgoing telephone number and country. The provision of this data is necessary for the fulfilment of the agreement concluded between you and us for the provision of the online seminar. Failure to provide this data means that you cannot participate in our online seminar.
Furthermore, we collect and process text entries made by you during the online seminar as well as video and audio transmissions of your device. You can deactivate your camera and microphone before entering the online seminar and at any time during the online seminar. In this case, no data will be recorded. If you do not want to provide data via the chat, camera or audio function, you will not be able to actively participate in the online seminar or communicate with other participants.
If we record our online seminars for follow-up purposes, in particular for subsequent provision to the respective participants, you will be informed separately before the start of the online seminar. You will also recognise a recording by the identification during the online seminar. During a recording, your name, any text entries made in the chat as well as video/audio transmissions of your device will be saved and, if necessary, subsequently transmitted to the respective participants of the online seminar.
The data collected during the execution of our online seminars are transmitted to Zoom and thus to the USA within the framework of the order processing contract. 
For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Zoom is not certified under the TADPF. The data is transmitted, among other things, on the basis of standard contractual clauses as suitable guarantees for the protection of personal data, which can be viewed at: https://zoom.us/docs/doc/Zoom_GLOBAL_DPA.pdf.
The processing will occur on the basis of Article 6(1) b) GDPR and is required for the fulfilment of a contract with you.
Further information on data processing when using Zoom can be found at: https://zoom.us/de-de/privacy.html



Rights of persons affected and storage duration

Duration of storage 
After contractual processing has been completed, the data is initially stored for the duration of the warranty period, then in accordance with the retention periods prescribed by law, especially tax and commercial law, and then deleted after the period has elapsed, unless you have agreed to further processing and use.
 
Rights of the affected person
If the legal requirements are fulfilled, you have the following rights according to art. 15 to 20 GDPR: Right to information, correction, deletion, restriction of processing, data portability. You also have a right of objection against processing based on art. 6 (1) GDPR, and to processing for the purposes of direct marketing, according to art. 21 (1) GDPR.
 
Right to complain to the regulatory authority
You have the right to complain to the regulatory authority according to art. 77 GDPR if you believe that your data is not being processed legally.
 
You can lodge a complaint with, among others, the supervisory authority responsible for us, which you may reach at the following contact details:Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219
Besuchereingang: Puttkamerstr. 16 – 18 (5. Etage)
10969 Berlin
Tel.: +49 30 138890
Fax: +49 30 2155050
E-Mail: mailbox@datenschutz-berlin.de

Right to object
If the data processing outlined here is based on our legitimate interests in accordance with Article 6(1)f) GDPR, you have the right for reasons arising from your particular situation to object at any time to the processing of your data with future effect.
If the objection is successful, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests or rights and freedoms, or the processing is intended for the assertion, exercise or defence of legal claims.
 
If personal data is being processed for the purposes of direct advertising, you can object to this at any time by notifying us. If the objection is successful, we will no longer process the personal data for the purposes of direct advertising.

last update: 13.07.2023