Privacy Policy

For providing an online appointment booking function, we use the services of the following provider: Florian Heymel Consulting, Gustav-Stresemann-Str. 13, 86199 Augsburg, Germany. For the purpose of scheduling appointments, first and last name as well as email address (and, if applicable, telephone number if a telephone appointment is desired) are collected pursuant to Art. 6(1)(b) GDPR and transmitted to the provider pursuant to Art. 6(1)(f) GDPR based on our legitimate interest in effective customer management and efficient appointment administration, and stored there for appointment organization. After the appointment has been held or after the agreed appointment period has expired, your data will be deleted by the provider. We have concluded a data processing agreement with the provider that ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

You have the option of contacting us via the messaging service WhatsApp of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. For this we use the so-called 'Business version' of WhatsApp.

If you contact us via WhatsApp in connection with a specific transaction (e.g., a placed order), we store and use the mobile phone number you use on WhatsApp and - if provided - your first and last name pursuant to Art. 6(1)(b) GDPR to process and respond to your request. On the basis of the same legal basis, we may ask you via WhatsApp to provide further data (order number, customer number, address or email address) in order to be able to assign your inquiry to a specific process.

If you use our WhatsApp contact for general inquiries (e.g., about the range of services, availability, or our website), we store and use the mobile phone number you use on WhatsApp and - if provided - your first and last name pursuant to Art. 6(1)(f) GDPR based on our legitimate interest in efficiently and promptly providing the desired information.

Your data will only be used to respond to your inquiry via WhatsApp. It will not be passed on to third parties.

Please note that WhatsApp Business has access to the address book of the mobile device we use for this purpose and automatically transfers phone numbers stored in the address book to a server of the parent company Meta Platforms Inc. in the USA. For the operation of our WhatsApp Business account, we use a mobile device in whose address book only the WhatsApp contact data of those users are stored who have also contacted us via WhatsApp.

This ensures that every person whose WhatsApp contact data is stored in our address book has already consented to the transfer of their WhatsApp phone number from the address books of their chat contacts pursuant to Art. 6(1)(a) GDPR by accepting the WhatsApp terms of use when first using the app on their device. A transfer of data of users who do not use WhatsApp and/or have not contacted us via WhatsApp is therefore excluded.

For the purpose and scope of data collection and the further processing and use of data by WhatsApp, as well as your related rights and settings options to protect your privacy, please refer to WhatsApp's privacy notices: https://www.whatsapp.com/legal/?eea=1#privacy-policy

We have concluded a data processing agreement with the provider that protects the data of our site visitors and prohibits disclosure to third parties. In the context of the above-mentioned processing, data may be transferred to servers of Meta Platforms Inc. in the USA. For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.

This website uses the web analytics service of the following provider: 1&1 IONOS Internet SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. Using cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading device and browser information), the service collects and stores pseudonymized visitor data, including information from the device used such as IP address and browser information, to evaluate it for statistical analyses of usage behavior on our website and to create pseudonymized usage profiles. Among other things, this enables the evaluation of movement patterns (so-called heatmaps), which show the duration of page visits as well as interactions with page content (e.g., text entries, scrolling, clicks and mouse-overs). Pseudonymization generally excludes a direct personal reference. There is no merging with clear data about your person collected in other ways. All processing described above, in particular the reading or storage of information on the device used, is only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the 'cookie consent tool' provided on the website. We have concluded a data processing agreement with the provider that ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

This website uses 'Plausible', a web analytics tool from Plausible Insights OUe, Vaestriku tn 2, 50403, Tartu, Estonia. It anonymously records and evaluates interactions of randomly selected individual visitors with the website to collect information about page usage (such as visitor numbers, page views, bounce rates and dwell time). At no time is personal data processed. Plausible collects exclusively non-personal data when using this website, such as information about the browser and user agent. This is stored in a non-personally identifiable form and evaluated for statistical purposes. Deletion takes place as soon as the data is no longer needed for our evaluation purposes. If personal data is processed in individual cases, the processing is based on our legitimate interest in the statistical evaluation of usage behavior for optimization purposes pursuant to Art. 6(1)(f) GDPR.

Plugins of the social network of the following provider are used on our website: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. These plugins enable direct interactions with content on the social network. To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using a so-called '2-click' or 'Shariff' solution. This integration ensures that when a page of our website containing such plugins is called up, no connection to the provider's servers is yet established. Only when you activate the plugins and thereby give your consent to data transmission pursuant to Art. 6(1)(a) GDPR, your browser establishes a direct connection to the provider's servers. Regardless of a login to an existing user profile, certain information about your device used (including your IP address), your browser and your page history is transmitted to the provider and possibly further processed there. If you are logged into an existing user profile on the provider's social network, information about interactions carried out via the plugins will also be published there and displayed to your contacts. You can revoke your consent at any time by deactivating the activated plugin by clicking on it again. However, the revocation has no influence on the data already transferred to the provider. Data may also be transferred to: Meta Platforms Inc., USA. We have concluded a data processing agreement with the provider that ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties. For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.

This website uses an online map service from the following provider: Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ('Google'). Google Maps is a web service for displaying interactive (land) maps to visually present geographical information. By using this service, our location is displayed to you and any directions are made easier. When accessing the subpages in which the Google Maps map is embedded, information about your use of our website (such as your IP address) is transmitted to and stored on Google servers; this may also involve transmission to Google LLC servers in the USA. This occurs regardless of whether Google provides a user account through which you are logged in or whether a user account exists. If you are logged into Google, your data is directly assigned to your account. If you do not wish the assignment to your Google profile, you must log out before activating the button. Google stores your data (even for non-logged-in users) as usage profiles and evaluates them. The collection, storage and evaluation are carried out pursuant to Art. 6(1)(f) GDPR based on Google's legitimate interest in displaying personalized advertising, market research and/or needs-based design of Google websites. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. Where legally required, we have obtained your consent pursuant to Art. 6(1)(a) GDPR for the processing of your data described above. You can revoke your consent at any time with effect for the future. For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.

This site uses so-called web fonts from the following provider for the uniform display of fonts: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. When you call up a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly and establishes a direct connection to the provider's servers. Certain browser information, including your IP address, is transmitted to the provider. Data may also be transmitted to: Google LLC, USA. The processing of personal data in the course of establishing a connection with the font provider is only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke your consent at any time with effect for the future by deactivating this service via the 'cookie consent tool' provided on the website. If your browser does not support web fonts, a standard font from your computer will be used. For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.

On this website we use the CAPTCHA service of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Data may also be transmitted to: Google LLC, USA. The service checks whether an input is made by a natural person or abusively by machine and automated processing, and blocks spam, DDoS attacks and similar automated malicious access. To ensure that an action is performed by a human and not by an automated bot, the provider collects the IP address of the device used, recognition data of the browser and operating system type used, as well as the date and duration of the visit, and transmits these to the provider's servers for evaluation. Cookies may be used. If the processing described above is based on cookies, these are only set if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. If the processing described above is carried out without the use of cookies, the legal basis is our legitimate interest in determining individual responsibility on the Internet and avoiding misuse and spam pursuant to Art. 6(1)(f) GDPR. We have concluded a data processing agreement with the provider that ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties. For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.