Data Privacy
1. An overview of data protection
General information
The following information provides an easy-to-understand overview of what happens to your personal data when you visit this website. Personal data refers to any data that can be used to personally identify you. Detailed information on data protection can be found in the full Privacy Policy set out below.
Data recording on this website
Who is responsible for data processing on this website (controller)?
The data on this website is processed by the website operator. The controller’s contact details can be found in the section “Information about the responsible party” in this Privacy Policy.
How do we collect your data?
Some data is collected when you provide it to us, for example when you enter information into a contact form.
Other data is collected automatically or after your consent when you visit the website. This includes mainly technical data such as your internet browser, operating system or the time of the page access. This data is collected automatically when you access the website.
What do we use your data for?
Some of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze user behavior. If contracts can be concluded or initiated via the website, transmitted data is also processed for contract offers, orders or other inquiries.
What rights do you have regarding your data?
You have the right to obtain information about the origin, recipients and purpose of your stored personal data at any time, free of charge. You also have the right to request correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time with effect for the future. You also have the right to request restriction of processing under certain circumstances and to lodge a complaint with the competent supervisory authority.
2. Hosting
External hosting
This website is hosted externally. Personal data collected on this website is stored on the servers of the hosting provider. This may include IP addresses, contact requests, metadata and communications, contract data, contact details, names, website access data and other data generated through website use.
External hosting is carried out for the purpose of fulfilling contractual obligations towards potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of secure, fast and efficient provision of the website by a professional provider (Art. 6(1)(f) GDPR). Where consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent can be revoked at any time.
Our hosting provider processes data only to the extent necessary to fulfil its obligations and in accordance with our instructions.
Hosting provider:
Hostinger International Ltd.
61 Lordou Vironos Street
6023 Larnaca
Cyprus
Data processing agreement
We have concluded a data processing agreement (DPA) with the hosting provider in accordance with GDPR requirements.
3. General information and mandatory disclosures
Data protection
We take the protection of your personal data very seriously and treat it confidentially and in accordance with statutory data protection regulations and this Privacy Policy. Please note that data transmission via the internet (e.g. email communication) may have security vulnerabilities and complete protection against third-party access is not possible.
Information about the responsible party (controller)
JH Content Solutions
Julia Anna Hofmann
Am Luitpoldhain 52
96050 Bamberg
Germany
Phone: +49 176 24334987
Email: info@jh-contentsolutions.com
The controller is the natural or legal person who determines the purposes and means of processing personal data.
Storage duration
Unless a specific storage period is stated in this Privacy Policy, personal data remains stored until the purpose for processing ceases to apply. If you request deletion or revoke consent, data will be deleted unless legal retention obligations apply.
Legal bases for data processing
Depending on the case, data processing is based on:
- Art. 6(1)(a) GDPR (consent)
- Art. 6(1)(b) GDPR (contract performance or pre-contractual measures)
- Art. 6(1)(c) GDPR (legal obligation)
- Art. 6(1)(f) GDPR (legitimate interest)
If cookies or device access are involved, § 25(1) TDDDG applies. Consent can be revoked at any time.
Recipients of personal data
Personal data may be transferred to external parties where required for contract performance, legal obligations or legitimate interests, or where a valid data processing agreement exists.
Revocation of consent
You may revoke your consent at any time. Revocation does not affect the lawfulness of processing carried out prior to revocation.
Right to object (Art. 21 GDPR)
If data processing is based on Art. 6(1)(e) or (f) GDPR, you may object at any time for reasons arising from your particular situation. If data is processed for direct marketing purposes, you may object at any time.
Right to lodge a complaint
You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace or the place of the alleged infringement.
Right to data portability
You have the right to receive personal data processed on the basis of consent or contract in a structured, commonly used and machine-readable format.
Information, correction and deletion
You have the right to request information about stored personal data, its origin, recipients and purpose, as well as correction or deletion.
Restriction of processing
You may request restriction of processing in cases such as disputed accuracy, unlawful processing or pending objection reviews.
SSL/TLS encryption
This website uses SSL/TLS encryption to protect confidential transmissions. An encrypted connection can be identified by “https://” and the lock symbol in your browser.
Objection to unsolicited emails
We object to the use of contact data published for legal notice purposes for unsolicited advertising. Legal action may be taken in the event of spam emails.
4. Data collection on this website
Server log files
The hosting provider automatically collects information such as browser type, operating system, referrer URL, hostname, access time and IP address. This data is not merged with other data sources and is processed on the basis of Art. 6(1)(f) GDPR.
Contact form
Data submitted via the contact form is processed for handling inquiries and follow-up questions. Processing is based on Art. 6(1)(b), (f) or (a) GDPR, depending on context. Data is deleted once the purpose ceases, unless legal retention applies.
Contact via email or phone
Inquiries via email or phone are processed for handling the request and stored accordingly, based on the same legal bases as above.
Communication via WhatsApp
We use WhatsApp Business for communication. Data processing is based on legitimate interest (Art. 6(1)(f) GDPR) or consent. WhatsApp Ireland Limited is the provider. Data transfers to the US are based on Standard Contractual Clauses and the EU-US Data Privacy Framework.
5. Analytics and advertising
Google Analytics
This website uses Google Analytics. Processing is based on consent (Art. 6(1)(a) GDPR). IP anonymization is enabled. Data transfers to the US are secured via SCCs and the EU-US Data Privacy Framework.
WP Statistics
We use WP Statistics with anonymized IP addresses for internal analytics based on legitimate interest (Art. 6(1)(f) GDPR).
6. Newsletter
Newsletter subscriptions require consent. Data is used exclusively for newsletter distribution and may be stored in a blacklist after unsubscribe to prevent future mailings.
7. Plugins and tools
Akismet
Akismet is used for spam detection based on legitimate interest. Data transfers to the US are secured via SCCs and the EU-US Data Privacy Framework.
8. Audio and video conferences
We use Zoom and Microsoft Teams for online meetings. Processing is based on contract performance or legitimate interest. Data transfers to the US are secured via SCCs and the EU-US Data Privacy Framework.