Privacy Statement

The protection of your personal data is especially important to us. Therefore, we process your data exclusively based on legal regulations (DSGVO, TKG 2003). These regulations are based on german law.

1. Responsible Party (Data Controller)

The responsible party for data processing on this website, as defined by the GDPR, is:

Name: Zoë Böckler
Address: Upon request
Phone: Upon request
Email: post@zoe-boeckler.de

If you have any questions about data protection, feel free to contact us using the details above.

2. Data Subject Rights

As a user of our website, you have the following rights under the GDPR:

  • Right to Access (Art. 15 GDPR): Obtain information about your stored personal data.

  • Right to Rectification (Art. 16 GDPR): Request the correction of inaccurate or incomplete data.

  • Right to Erasure (Art. 17 GDPR): Request the deletion of your personal data, provided no legal obligations prevent this.

  • Right to Restriction of Processing (Art. 18 GDPR): Request the limitation of data processing.

  • Right to Data Portability (Art. 20 GDPR): Receive your personal data in a structured, commonly used, and machine-readable format.

  • Right to Object (Art. 21 GDPR): Object to data processing based on legitimate interest or direct marketing.

  • Right to Withdraw Consent (Art. 7(3) GDPR): Withdraw any previously given consent at any time.

  • Right to Lodge a Complaint (Art. 77 GDPR): File a complaint with a supervisory authority. In Germany, this is the Federal Commissioner for Data Protection and Freedom of Information (BfDI) or your local data protection authority.

3. Collection and Processing of Personal Data

a) Visiting Our Website
When you visit our website, your browser automatically transmits data to our server (so-called log files). This includes:

  • IP address of your device,

  • Date and time of access,

  • Name and URL of the accessed file,

  • Website from which the request originated (referrer URL),

  • Browser type and version,

  • Operating system and interface.

This data is processed to ensure the security and functionality of the website (Art. 6(1)(f) GDPR). Log file data is deleted after seven days unless required for security purposes.

b) Contacting Us
If you contact us via email or a contact form, your provided information (e.g., name, email address) will be stored and used solely to respond to your inquiry (Art. 6(1)(b) GDPR). If you would like your data to be deleted please use the contact above to get in touch and the data will be deleted.

c) Booking Services
When booking services via our website, the data you provide (e.g., name, contact details, payment information) is necessary for fulfilling the contract (Art. 6(1)(b) GDPR). Data may be transmitted to third parties, such as payment processors, solely for transaction purposes. Your data will be stored for the duration of the contractual relationship and subsequently for the legally required retention period (usually 10 years under German tax law).

4. Cookies and Tracking

We use cookies to improve your browsing experience and analyze website performance. Cookies are small text files stored on your device.

Types of Cookies:

  • Essential Cookies: Necessary for the basic operation of the website (Art. 6(1)(f) GDPR).

  • Analytics Cookies: Help us analyze website usage (with your consent under Art. 6(1)(a) GDPR).

You can configure your browser to block or delete cookies. Note that disabling cookies may limit some website functionality.

5. Third-Party Tools and Plug-Ins

Social Media Plug-ins:
Our website may include plug-ins from social media platforms (e.g. Instagram). By interacting with these plug-ins, data may be transferred to the respective platform provider. The use of these plug-ins is based on our legitimate interest in promoting our services (Art. 6(1)(f) GDPR).

6. Data Sharing

Your personal data will only be shared with third parties in the following cases:

  • You have given explicit consent (Art. 6(1)(a) GDPR).

  • Sharing is necessary for the performance of a contract (Art. 6(1)(b) GDPR).

  • Sharing is required for compliance with legal obligations (Art. 6(1)(c) GDPR).

  • Sharing is necessary for legitimate interests, provided your rights do not override these interests (Art. 6(1)(f) GDPR).

7. Data Security

We use technical and organizational measures to secure your data against unauthorized access, alteration, loss, or destruction. These measures are regularly updated to ensure the highest level of security.

8. Updates to This Privacy Policy

This privacy policy is effective as of 15.11.2024. We reserve the right to update it to reflect changes in our services or legal requirements. Please review this policy periodically for updates.