arrow for going back arrow for going back

Privacy Policy

Controller

The controller within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Giovanni Witulski


Your Data Subject Rights

You can exercise the following rights at any time using the contact details provided:

  • Information about your data stored by us and its processing (Art. 15 GDPR),
  • Rectification of incorrect personal data (Art. 16 GDPR),
  • Erasure of your data stored by us (Art. 17 GDPR),
  • Restriction of data processing, if we are not yet allowed to delete your data due to legal obligations (Art. 18 GDPR),
  • Objection to the processing of your data by us (Art. 21 GDPR) and
  • Data portability, provided you have consented to the data processing or have concluded a contract with us (Art. 20 GDPR).

If you have given us consent, you can revoke it at any time with effect for the future.

You can contact a supervisory authority with a complaint at any time, e.g., the supervisory authority of the federal state of your residence or the authority responsible for us as the responsible body.

A list of supervisory authorities (for the non-public sector) with addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.


Processing Activities

Collection of general information when visiting our website

Type and purpose of processing

When you access our website, i.e., if you do not register or otherwise submit information, information of a general nature is automatically collected. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your internet service provider, your IP address, and the like.

They are processed in particular for the following purposes:

  • Ensuring a problem-free connection to the website
  • Ensuring and evaluating system security and stability, in particular for misuse detection

We do not use your data to draw conclusions about your person. However, we reserve the right to check the server log files subsequently if there are concrete indications of illegal use.

Legal basis and legitimate interest

The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website as well as ensuring system security and misuse detection.

Recipients

Recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website.

Storage duration

Data is stored in server log files in a form that allows the identification of the data subjects for a maximum of 7 days; unless a security-relevant event occurs (e.g., a DDoS attack).

In the event of such an occurrence, server log files are stored until the security-relevant event has been eliminated and fully clarified.

Provision prescribed or required

The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website cannot be guaranteed. Furthermore, individual services may not be available or may be restricted.

Objection

Please read the information about your right of objection according to Art. 21 GDPR below.

Creating a customer account

Type and purpose of processing

On our website, you have the possibility to create a customer account. For this purpose, we collect your contact details and link your purchases to your account.

In addition to the data provided by you, the following data is stored at the time the customer account is created:

Legal basis

The processing of the data entered during registration takes place on the basis of the user's consent (Art. 6 para. 1 lit. a GDPR).

Recipients

Recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website.

Storage duration

Data is only processed in this context as long as the corresponding consent is present.

Provision prescribed or required

The creation of a customer account is voluntary. It is advantageous for the fulfillment of a contract with you or for the implementation of pre-contractual measures, but not necessary. You have the possibility to place orders as a guest at any time.

Revocation of consent

The deletion of your customer account is possible at any time and can be requested using the contact information listed below.


Cookies

A cookie is a small data record that is created when visiting a website and temporarily stored on the website visitor's system. If the server of this website is called up again by the user of the website, the user's browser sends the previously received cookie back to the server. The server can evaluate the information obtained by this procedure. Cookies can, in particular, facilitate navigation on a website.

Detailed information on the subject of cookies, and which cookies are used on this website for what purpose, can be found in the cookie settings at any time.

Deleting cookies

You can delete individual cookies or the entire cookie inventory. In addition, you receive information and instructions on how these cookies can be deleted or their storage blocked in advance. Depending on the provider of your browser, you will find the necessary information under the following links:

In addition, you can prevent the loading of so-called scripts by default. NoScript allows the execution of JavaScript, Java, and other plugins only on trusted domains of your choice.

Information and instructions on how you can edit this function can be obtained from the provider of your browser (e.g., for Mozilla Firefox: https://addons.mozilla.org/en-US/firefox/addon/noscript/).

Technically necessary cookies

Type and purpose of processing

We use cookies on our website that are strictly necessary for the technical operation and security of the site. These include:

  • Authentication Cookies (JWT): These are used to securely identify you after logging in and maintain your login status during your visit.
  • CSRF Token: This cookie serves security purposes and prevents malicious attacks from being executed on your user session via third-party websites.
  • Session Cookies: Used to store temporary session information, particularly for administrative access.

These cookies are not used for analysis or advertising purposes and therefore do not require active consent (Legal basis: Art. 6 Para. 1 lit. f GDPR / § 25 Para. 2 TTDSG).

Legal basis and legitimate interest

The data processing is carried out solely on the basis of our legitimate interest in a user-friendly design of our website and in the documentation of consent pursuant to Art. 6 para. 1 lit. f GDPR in conjunction with §25 para. 2 TDDDG.

Recipients

Recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website.

Storage duration

Please refer to the cookie consent tool for the respective storage duration of the cookies.

Provision prescribed or required

The provision of the aforementioned personal data is neither legally nor contractually required. However, without this data, the service and functionality of our website cannot be guaranteed. Furthermore, individual services may not be available or may be restricted.

Objection

Please read the information about your right of objection according to Art. 21 GDPR below.


Information about your right of objection according to Art. 21 GDPR

Case-specific right of objection

You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you, which is carried out on the basis of Art. 6 para. 1 lit. f GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR.

If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

Recipient of an objection

Giovanni Witulski
mail@giovanni-witulski.com
+49 1515 3680 611


Changes to our privacy policy

We reserve the right to adapt this privacy policy so that it always complies with the current legal requirements or to implement changes to our services in the privacy policy, e.g., when introducing new services. The new privacy policy will then apply to your next visit.


Questions regarding data protection

If you have any questions about data protection, please write us an email to the controller mentioned above.


Copyright notices

This privacy policy was created with the help of activeMind AG – the experts for external data protection officers (Version #2024-10-25).