Privacy policy

Data processing information

Content:

1. Name and contact details of the controller and the data protection officer
2. Collection and storage of personal data; type, purpose, and use
3. Passing on of data to third parties
4. Your rights as a data subject
5. Your right of objection

1. Name and contact details of the controller and the data protection officer

This data protection declaration applies to me,

Sarah Thonnet, C/Manuel Pestana Quintana 1; Puerta 42, 35109 El Tablero de Maspalomas – Las Palmas, Spain

ID Number: X5830370P

as the controller.

I am not legally obliged to appoint a data protection officer, as I am a freelancer. Nevertheless, I adhere to the provisions of the data protection laws.

2. Collection and storage of personal data; type, purpose, and use

The moment you request a service, the following information will be collected:

  • Title (Mr/Ms/Mrs), name and surname
  • Address
  • Email address 
  • Telephone number (landline and/or mobile phone)
  • Fax number (if available and required)
  • Bank account details, if applicable
  • Date of birth, if applicable

In addition, all information necessary for the fulfilment of the contract/order with you is collected.

Personal data is collected:

– to identify you as a client;
– to be able to advise you appropriately;
– to fulfil my contractual obligations with you;
– to comply with my legal obligations;
– to establish correspondence with you;
– for invoicing or, if necessary, for dunning purposes;
– to assert any claims against you.

The processing of the personal data takes place on the occasion of your inquiry with me and is necessary for the purposes mentioned, for the treatment of your request and for the fulfilment of obligations derived from the underlying contract/order.

The personal data collected will be stored until the end of the statutory retention period and then deleted. As an exception, this does not apply if I am obligated to a longer storage due to tax or commercial storage obligations or if you have consented to a storage beyond such period.

3. Transfer of personal data to third parties

Your personal data will not be transferred to third parties. Exceptions to this only apply insofar as this is necessary for processing the contract/order with you. This specifically includes the transfer of data to service providers commissioned by me (so-called data processors) or other third parties whose activities are necessary for the execution of the contract. The transferred data may only be used by the third parties exclusively for the purposes mentioned.

4. Your rights as a data subject

As the data subject and holder of the data, you have several rights: 

  • Right to withdrawal of consent: You can withdraw your consent given to us at any time. Data processing based on the withdrawn consent may then no longer be continued in the future.
  • Right of access: You can request information about your personal data we process. This specifically applies to the purposes of data processing; the categories of personal data; the categories of recipients, if applicable; the storage period, if applicable; and the origin of your data.
  • Right to rectification: You can request the rectification or completion of incorrect data stored by us.
  • Right to erasure: You can request the erasure of your personal data stored with us, as far as their processing is not necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims.
  • Right to restriction of processing: You may request that the processing of your personal data be restricted if you dispute the accuracy of the data, and if the processing is unlawful but you refuse to delete it. You also have this right if we no longer need the data, but you do require it to assert, exercise or defend legal claims. In addition, you have this right if you have objected to the processing of your personal data.
  • Right to data portability: You may request that we provide you with the personal data you have provided to us in a structured, common and machine-readable format. Alternatively, you can request the direct transmission of the personal data you have provided to us to another person in charge, as far as this is possible.
  • Right to complaint: You can lodge a complaint with any data protection supervisory authority, e.g. if you believe that we are illegally processing your personal data. Our supervisory authority is the Spanish Data Protection Agency (AEPD) and its contact details can be found below:

Spanish Data Protection Agency (Agencia Española de Protección de Datos)
Directora Mar España Martí
C/Jorge Juan, 6
E – 28001 Madrid
Tel.: + 34 901 100 099 / + 34 91 266 35 17

https://www.aepd.es/agencia/contacto.html 

5. Your right to object

Information on the right to object under Article 21 GDPR

You, as the data subject, have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you, which is based on Article 6 (1) letter f, GDPR (processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party). If you object, we will no longer process your personal data, unless we can prove compelling reasons worthy of protection for the processing, which outweigh your interests, rights, and freedoms, or the processing serves to assert, exercise or defend legal claims.

Data Protection Declaration

1. Information on this Data Protection Declaration

General information

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data are all data with which you can be personally identified. You will find detailed information on the subject of data protection in our Data Protection Declaration listed under this text.

Data collection on our website

Who is responsible for the data collection on this website?

The data processing on this website is carried out by the website operator. You can find his contact details in the legal notice of this website.

How do we collect your information?

On the one hand, your data is collected when you communicate it to us. This may be data that you send us by e-mail, for example.

Other data is automatically collected by our IT systems when you visit our website. These are mainly technical data (e.g. Internet browser, operating system or time of page visit). This data is collected automatically as soon as you enter our website.

What do we use your data for?

Part of the data is collected in order to ensure the error-free provision of the website. Other data can be used to analyse your user behaviour.

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time (Article 15, GDPR). You also have the right to request the correction (Article 16, GDPR), blocking or deletion of this data (Article 17, GDPR). You can contact us at any time at the address given in the legal notice if you have any further questions about data protection. You also have the right of appeal to the competent supervisory authority.

Third-party analysis and tools

When you visit our website, your browsing behaviour can be statistically evaluated. This is done primarily with cookies and so-called analysis programs. The analysis of your browsing behaviour is usually anonymous; the browsing behaviour cannot be traced back to you. You may object to this analysis or prevent it by not using certain tools. You will find detailed information on this in the following data protection declaration.

2 General remarks and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

When you use this website, various personal data is collected. Personal data are data with which you can be personally identified. This data protection declaration explains which data we collect and for what we use it. It also explains how and for what purpose this is done.

We would like to point out that data transmission over the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible.

Note on the controller

The data processing controller on this website is:

Sarah Thonnet, C / Manuel Pestana Quintana 1, Puerta 42,
35109 – El Tablero De Maspalomas – Las Palmas (España)
Telephone: (0034) 696 80 92 57]
E-mail: [mail@sarah-thonnet.com]

A controller is the natural or legal person who alone or together with others decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

Revocation of your consent to data processing

Many data processing processes are only possible with your express consent. You can revoke your consent at any time. All you need to do is send us an informal e-mail. The legality of the data processing up to the revocation remains unaffected by the revocation.

Right to lodge a complaint with a supervisory authority

In the event of breaches of data protection law, the person concerned has a right of appeal to the competent supervisory authority. The supervisory authority responsible for data protection is the Data Protection Officer in Spain, where our company has its registered office. A list of the data protection officers and their contact details can be found at: https://www.aepd.es/agencia/contacto.html 

Spanish Data Protection Agency (Agencia Española de Protección de Datos)
Directora Mar España Martí
C/Jorge Juan, 6
E – 28001 Madrid
Tel.: + 34 901 100 099 / + 34 91 266 35 17

https://www.aepd.es/agencia/contacto.html 

Right to data transferability

You have the right to have data which we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “HTTP://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Objection against advertising mails

As part of our duty to include a legal notice on our website, we must publish our contact details. However, these may be used by third parties to send unwanted advertising and information. We herewith object to the use of contact data published within the scope of the imprint obligation to send any unsolicited advertising and information material that has not been expressly authorized by us. The operator of this website expressly reserves the right to take legal action in the event of unsolicited advertising information, such as spam e-mails.

3. Data protection officer

Statutory data protection officer

We are not legally obliged to appoint a data protection officer.

4. Data collection on our website

Cookies

Some of the Internet pages use so-called cookies. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal until you delete them. These cookies enable us to recognize your browser the next time you visit our website.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited.

Cookies, which are necessary to carry out the electronic communication process, or to provide certain functions desired by you (e.g. shopping basket function), are stored on the basis of Art. 6.1(f) GDPR. The website operator has a legitimate interest in the storage of cookies for technically error-free and optimized provision of his services. As far as other cookies (e.g. cookies for the analysis of your browsing behaviour) are stored, these will be treated separately in this data protection declaration.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Server access time
  • IP address

These data are not combined with other data sources.

The basis for data processing is Article 6.1(b) GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

Processing of data (customer and contract data)

We collect, process and use personal data only to the extent necessary for the establishment, content design or change of the legal relationship (inventory data). This is done on the basis of Article 6.1(b) GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the use of our Internet pages (usage data) only to the extent necessary to enable or invoice the user for the use of the service.

The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.

Data transfer upon conclusion of a contract for services and digital content

We only transfer personal data to third parties if this is necessary in the context of contract processing, for example to the credit institution commissioned to process payments.

A further transmission of the data will not take place or only if you have expressly consented to the transmission. Your data will not be transferred to third parties without your express consent, for example, for advertising purposes.

The basis for data processing is Article 6.1(b) GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

5. Social Media

Facebook plugins (Like & Share button)

Our pages include plugins from the social network Facebook, provider Facebook Inc, 1 Hacker Way, Menlo Park, California 94025, USA. You can recognize the Facebook plugins by the Facebook logo or the “Like” button on our page. An overview of the Facebook plugins can be found here:
https://developers.facebook.com/docs/plugins/.

When you visit our pages, the plugin establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the contents of our pages on your Facebook profile. This allows Facebook to associate the visit to our pages with your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or of their use by Facebook. For more information, please see Facebook’s Privacy Policy at: https://de-de.facebook.com/policy.php.

If you do not want Facebook to associate your visit to our pages with your Facebook account, please log out of your Facebook account.

Twitter plugin

Our pages include functions of the Twitter service. These functions are provided by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter. We would like to point out that, as the provider of the pages, we are not aware of the content of the data transmitted or how it is used by Twitter. For more information, please see Twitter’s privacy policy at: https://twitter.com/privacy.

You can change your Twitter privacy settings in your account settings at https://twitter.com/account/settings

Google+ plugin

Our pages use functions of Google+. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Collection and disclosure of information: Use the Google+ button to publish information worldwide. The Google+ button gives you and other users personalized content from Google and our partners. Google stores both the information you provided for a content +1 and information about the page you viewed when you clicked +1. Your +1 can appear in Google services, such as search results or your Google profile, or elsewhere on websites and ads, along with your profile name and photo.

Google records information about your +1 activities to improve Google services for you and others. To use the Google+ button, you need a public Google profile that is visible worldwide and must contain at least the name chosen for the profile. This name is used in all Google services. In some cases, this name may also replace another name you used when sharing content through your Google Account. The identity of your Google profile may be displayed to users who know your email address or have other identifying information about you.

Use of Information Collected: In addition to the uses described above, the information you provide will be used in accordance with the applicable Google Privacy Policy. Google may publish aggregated statistics about users’ +1 activity or share them with users and partners, such as publishers, advertisers or related websites.

LinkedIn Plugin

Our website uses functions of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. 

Every time you access one of our pages that contains functions of LinkedIn, a connection to LinkedIn’s servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the “Recommend button” of LinkedIn and are logged into your LinkedIn account, LinkedIn is able to associate your visit to our website with you and your user account. We point out that we as a provider of the pages have no knowledge of the content of the transmitted data and their use by LinkedIn.

For more information, please see LinkedIn’s privacy policy at: https://www.linkedin.com/legal/privacy-policy.

XING Plugin

Our website uses functions of the XING network. The provider is XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany.

Every time you access one of our pages that contains XING functions, a connection to XING servers is established. To our knowledge, personal data will not be stored. In particular, no IP addresses are stored or the user behaviour is evaluated.

Further information on data protection and the XING Share button can be found in XING’s data protection declaration at: https://www.xing.com/app/share?op=data_protection.

Pinterest Plugin

On our site, we use social plugins of the social network Pinterest, which is operated by Pinterest Inc. 808 Brannan Street, San Francisco, CA 94103-490, USA (“Pinterest”).

When you access a page that contains such a plugin, your browser establishes a direct connection to Pinterest’s servers. The plugin transfers protocol data to Pinterest’s server in the USA. This log information may include your IP address, the address of the sites you visit, which may also include Pinterest features, the type and settings of your browser, the date and time of your request, your use of Pinterest, and cookies.

For more information about Pinterest’s purpose, scope and further processing and use of the data and your rights and means of protecting your privacy, please see Pinterest’s privacy policy: https://about.pinterest.com/de/privacy-policy.

Get in touch

I will gladly provide an individual offer for you!

Email: mail@sarah-thonnet.com
Phone: +34 696 80 92 57

My social media profiles:

      

1 + 8 =

Your personal data:

I only use your personal data to answer your enquiry. If you would like to learn more about how I handle your personal data, please refer to my privacy policy. 

 

© 2017-2019 Sarah Thonnet | Web design by Mrs. Divi