General information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. For detailed information on data protection, please refer to the privacy policy listed below this text.

Data collection on this website

Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator. The contact details can be found in the ‘Information on the responsible body’ section of this privacy policy.

How is data collected?

Your data is collected when you provide it to us. This may include, for example, data that you enter in a contact form.
Other data is collected automatically or with your consent when you visit the website by the IT systems. This is primarily technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter this website.

What is the data used for?

Some of the data is collected to ensure that the website is provided without errors. Other data may be used to analyse your user behaviour. If contracts can be concluded or initiated via the website, the transmitted data will also be processed for contract offers, orders or other order enquiries.

What rights do you have regarding your data?

You have the right to obtain information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right, under certain circumstances, to request the restriction of the processing of your personal data.
Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
You can contact us at any time if you have any questions about this or other data protection issues.

Analysis tools and third-party tools

When you visit this website, your surfing behaviour may be statistically evaluated. This is done primarily with so-called analysis programmes. Detailed information on these analysis programmes can be found in the following privacy policy.

We host the content of our website with the following provider:

Strato AG,
Otto-Ostrowski-Straße 7,
10249 Berlin
(hereinafter referred to as ‘Strato’).

When you visit our website, Strato collects various log files, including your IP addresses.
For further information, please refer to Strato’s privacy policy:
https://www.strato.de/datenschutz/.

The use of Strato is based on Art. 6 (1) lit. f GDPR. We have a legitimate interest in ensuring that our website is as reliable as possible. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and § 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Order processing

We have concluded a contract for order processing (AVV) for the use of the above-mentioned service. This is a contract required by data protection law, which ensures that the personal data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Data Protection

The operators of these pages take the protection of personal data very seriously. Personal data is treated confidentially and in accordance with statutory data protection regulations and this data protection declaration.
When this website is used, various personal data is collected. Personal data refers to any information that can be used to personally identify an individual. This privacy policy explains which data is collected, for what purposes it is used, and how it is processed.
It should be noted that data transmission over the Internet (e.g., via e-mail) can have security gaps. Complete protection of data against access by third parties cannot be guaranteed.

Information about the responsible body

The responsible body for data processing on this website is:

Laura Heling
Street Name
City
Germany
Email: mail@nails-wiki.com

The responsible body is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).

Storage Period

Unless a more specific storage period is specified in this privacy policy, personal data remains stored until the purpose of data processing no longer applies. If a legitimate request for deletion is made or consent for data processing is revoked, the data will be deleted, unless other legally permissible reasons require continued storage (e.g., retention periods under tax or commercial law). In such cases, data will be deleted once these reasons no longer apply.

General Information on the Legal Basis 

If consent for data processing has been given, personal data is processed on the basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, if special categories of data are processed in accordance with Art. 9(1) GDPR. In the case of express consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49(1)(a) GDPR. If consent has been given for the storage of cookies or access to information on the end device (e.g., via device fingerprinting), data processing is carried out on the basis of Section 25(1) TDDDG. Consent can be revoked at any time.

If personal data is necessary for the performance of a contract or for the implementation of pre-contractual measures, it is processed on the basis of Art. 6(1)(b) GDPR. Furthermore, data is processed if necessary to fulfil a legal obligation on the basis of Art. 6(1)(c) GDPR. Data processing may also be carried out on the basis of legitimate interests pursuant to Art. 6(1)(f) GDPR. The relevant legal basis in each individual case is explained in the following sections of this privacy policy.

Note on Data Transfer to Third Countries 

This website uses, among other tools, services from companies located in third countries without adequate data protection as well as US-based tools whose providers are not certified under the EU-US Data Privacy Framework (DPF). When these tools are active, personal data may be transferred to and processed in these countries.

It should be noted that in third countries without adequate data protection, a level of protection comparable to that in the EU cannot be guaranteed. The USA is generally considered a safe third country with a level of data protection comparable to that of the EU. Data transfer to the USA is therefore permitted if the recipient is certified under the EU-US Data Privacy Framework (DPF) or provides suitable additional safeguards. Information on transfers to third countries, including data recipients, is provided in this privacy policy.

Recipients of Personal Data

In the course of business activities, personal data may be shared with external parties. Personal data is only transferred to external parties if necessary for the performance of a contract, if legally required (e.g., disclosure to tax authorities), if there is a legitimate interest according to Art. 6(1)(f) GDPR, or if another legal basis permits the data transfer.

When using processors, personal data of users is shared only on the basis of a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded.

Withdrawal of Consent to Data Processing

Many processing activities are possible only with explicit consent. Any previously given consent may be revoked at any time. The lawfulness of processing carried out up to the point of withdrawal remains unaffected.

Right to Object to Data Processing (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, there is the right to object at any time, for reasons arising from a particular situation, to the processing of personal data. This also applies to profiling based on these provisions. The respective legal basis for processing is indicated in this privacy policy.

If an objection is raised, personal data will no longer be processed unless compelling legitimate grounds for processing can be demonstrated that override the interests, rights, and freedoms of the individual, or if processing serves the establishment, exercise, or defense of legal claims (objection according to Art. 21(1) GDPR).

If personal data is processed for the purpose of direct marketing, there is the right to object at any time to the processing of personal data for such advertising purposes. An objection may be raised at any time against the processing of personal data for direct marketing purposes. This also applies to profiling to the extent that it is related to such direct marketing. If an objection is made, personal data will no longer be used for direct marketing purposes (objection according to Art. 21(2) GDPR).

Right to Lodge a Complaint

In the event of violations of the GDPR, affected individuals have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or the location of the alleged infringement. This right exists without prejudice to other administrative or judicial remedies.

Right to Data Portability

Data that is processed automatically on the basis of consent or for the performance of a contract can be received by the data subject or a third party in a commonly used, machine-readable format. Direct transfer of the data to another controller is carried out only to the extent technically feasible.

Right to Access, Rectification, and Deletion

Under applicable law, there is the right to obtain, free of charge, information about stored personal data, its origin, recipients, and the purpose of processing, as well as, where applicable, the right to rectify or delete such data. For this purpose or for any other questions regarding personal data, contact can be made at any time.

Right to Restrict Processing

The right to restrict the processing of personal data can be exercised in the following cases:

1. If the accuracy of personal data is contested, processing may be restricted while verification takes place.

2. If processing is unlawful, restriction can be requested instead of deletion.

3. If personal data is no longer needed for processing but is required for the exercise, enforcement, or defense of legal claims, restriction may be requested instead of deletion.

4. If an objection has been raised according to Art. 21(1) GDPR, a balancing of interests must be carried out. Processing may be restricted until it is determined which interests prevail.

Once processing is restricted, personal data may only be processed, apart from storage, with consent, for the establishment, exercise, or defense of legal claims, to protect the rights of another natural or legal person, or for reasons of important public interest of the EU or a member state.

SSL Encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests submitted via the contact form. A secure connection can be recognized when the browser address changes from http:// to https:// and by the lock symbol in the browser bar. When SSL or TLS encryption is enabled, data transmitted cannot be intercepted by third parties.

Cookies

This website uses so-called “cookies.” Cookies are small data packages that do not harm the end device. They are stored either temporarily for the duration of a session (session cookies) or permanently (persistent cookies). Session cookies are automatically deleted at the end of a visit. Persistent cookies remain on the device until deleted manually or removed automatically by the web browser.

Cookies may originate from the website itself (first-party cookies) or from third parties (third-party cookies). Third-party cookies enable the integration of certain third-party services within websites (e.g., cookies for payment processing).

Cookies serve different functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., shopping cart functionality or video display). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies required for the execution of electronic communication, the provision of certain functions requested by the user (e.g., shopping cart), or for website optimization (e.g., audience measurement) are stored based on Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of services.

Where consent for the storage of cookies and similar recognition technologies has been obtained, processing is based solely on this consent (Art. 6(1)(a) GDPR and §25(1) TDDDG). Consent may be revoked at any time.

Browsers can be configured to notify about the setting of cookies, allow cookies only in individual cases, block cookies for certain cases or generally, and automatically delete cookies when closing the browser. Disabling cookies may limit the functionality of this website.

Information about which cookies and services are used on this website is provided in this privacy policy.

Server Log Files

The provider of the website automatically collects and stores information in so-called server log files, which the browser transmits automatically. This information includes:

• Browser type and version

• Operating system used

• Referrer URL

• Hostname of the accessing computer

• Host name of the accessing computer

• Time of the server request

• IP address

A combination of these data with other data sources does not take place. Collection of these data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website, which requires the collection of server log files.

Contact Form

When inquiries are submitted via the contact form, the information provided in the form, including any contact details, is stored for the purpose of processing the inquiry and for any follow-up questions. These data are not shared without consent.

Processing of these data is based on Art. 6(1)(b) GDPR if the inquiry is related to the performance of a contract or required for pre-contractual measures. In all other cases, processing is based on the legitimate interest in effective handling of inquiries (Art. 6(1)(f) GDPR) or on the consent of the user (Art. 6(1)(a) GDPR) if such consent has been obtained; consent can be revoked at any time.

Data entered in the contact form remains stored until deletion is requested, consent for storage is revoked, or the purpose of storage ceases (e.g., after the inquiry has been fully processed). Mandatory legal requirements, in particular retention periods, remain unaffected.

Inquiries via E-Mail, Telephone, or Fax

If inquiries are sent via e-mail, telephone, or fax, the request, including all resulting personal data (e.g., name, inquiry), is stored and processed for the purpose of handling the request. These data are not shared without consent.

Processing of these data is based on Art. 6(1)(b) GDPR if the inquiry relates to the performance of a contract or is necessary for pre-contractual measures. In all other cases, processing is based on the legitimate interest in effective handling of inquiries (Art. 6(1)(f) GDPR) or on the consent of the user (Art. 6(1)(a) GDPR) if such consent has been obtained; consent can be revoked at any time.

Data submitted via contact requests remains stored until deletion is requested, consent for storage is revoked, or the purpose of storage ceases (e.g., after the request has been fully processed). Mandatory legal requirements, in particular statutory retention periods, remain unaffected.

Comment Function on This Website

For the comment function on this website, in addition to the comment itself, information is collected about the date and time of creation, as well as the e-mail address of the commenter.

Storage of IP Addresses

The comment function stores the IP addresses of users who post comments. Since the IP address is necessary to prevent illegal content and to ensure the security of the website, it is stored temporarily.

Comments on This Website

Comments on this website are not reviewed before publication. These data are necessary in order to take action against the author in cases of legal violations, such as insults or propaganda.

Subscribing to Comments

Users of the website can subscribe to comments after registering. A confirmation email is sent to verify ownership of the provided email address. This function can be unsubscribed at any time via a link in the notification emails. Data provided for subscribing to comments will be deleted in this case; however, if these data have been submitted for other purposes (e.g., newsletter subscription), they remain stored.

Storage Period for Comments

Comments and the associated data are stored on this website until the commented content is fully deleted or the comments must be deleted for legal reasons (e.g., offensive comments).

Legal Basis

The storage of comments is based on consent (Art. 6(1)(a) GDPR). Consent may be revoked at any time by sending a simple notification via e-mail. The lawfulness of processing carried out prior to the revocation remains unaffected.