DATA PROTECTION STATEMENT

Privacy policy according to the General Data Protection Regulation (DSGVO)

I. Name and address of the person responsible

The person responsible within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

Susanne Rikus-Himmelreich
Haderslebener Straße 21 d
12163 Berlin-Steglitz

Tel .: + 49-172-1974480
Fax: + 49-30-885 30 780
Email: info@alohana.de

www.alohana.de

II. Name and address of the data protection officer

The data protection officer of the responsible person is:

Susanne Rikus-Himmelreich
Haderslebener Straße 21 d
12163 Berlin-Steglitz

Tel .: +49 172-1974480
Fax: + 49-30-885 30 780
Email: info@alohana.de

www.alohana.de

III. General information about data processing


1. Scope of processing of personal data

In principle, we collect and use personal data of our users only to the extent necessary for the provision of a functional website and our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies to cases in which prior consent can not be obtained for reasons of fact and the processing of the data is permitted by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) as legal basis.

In the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b DSGVO as legal basis. This also applies to processing operations required to carry out pre-contractual actions.

Insofar as processing of personal data is required to fulfill a legal obligation that is subject to our company, Art. 6 para. 1 lit. c DSGVO as legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d DSGVO as legal basis.

If processing is necessary to safeguard the legitimate interests of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not prevail over the first interest, Art. 6 para. 1 lit. f DSGVO as legal basis for processing.

3. Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is deleted. In addition, such storage may be provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract.

4. Security measures

We take appropriate technical measures in accordance with Art. 32 GDPR, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different likelihood and severity of the risk to the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk. Measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as their access, input, disclosure, availability and separation. In addition, we have established procedures that ensure the enjoyment of data subject rights, data erasure and data vulnerability. Furthermore, we consider the protection of personal data already in the development, or selection of hardware, software and procedures, according to the principle of data protection by technology design and by privacy-friendly default settings taken into account (Article 25 GDPR).

(Source for the following passages: https://www.e-recht24.de)

IV. Provision of the website and creation of logfiles

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

The use of our website is usually possible without providing personal information. As far as on our sides personal data (for example name, address or E-Mail addresses) are raised, this takes place, as far as possible, always on freiwilliger basis. These data will not be disclosed to third parties without your explicit consent.

We point out that the data transmission in the Internet (eg in the communication by E-Mail) can exhibit security gaps. A complete protection of the data from access by third parties is not possible.

cookies

The internet pages partly use so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser the next time you visit.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, the acceptance of cookies for certain cases or generally exclude and enable the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

Browser type and browser version

used operating system

Referrer URL

Host name of the accessing computer

Time of the server request

These data can not be assigned to specific persons. A merge of this data with other data sources will not be done. We reserve the right to check this data retrospectively, if we become aware of specific indications for illegal use.

contact form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. We will not share this information without your consent.

Newsletter data

If you would like to receive the newsletter offered on the website, we require an e-mail address from you, as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter , Further data is not collected. We use this data exclusively for the delivery of the requested information and do not pass it on to third parties.

The granted consent to the storage of the data, the e-mail address and their use for sending the newsletter can be revoked at any time, for example via the “unsubscribe” link in the newsletter.

Google Analytics

This website uses functions of the web analytics service Google Analytics. Provider is Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Browser plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=en

Opposition to data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set which prevents the collection of your data on future visits to this website: disable Google Analytics

For more information on how to handle user data on Google Analytics, please refer to the Google Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en

Facebook plugins (like button)

On our pages plugins of the social network Facebook, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, are integrated. The Facebook plugins can be recognized by the Facebook logo or the “Like-Button” (“Like”) on our site. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/.

When you visit our pages, the plugin establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click on the Facebook “Like-Button” while you are logged into your Facebook account, you can link the contents of our pages to your Facebook profile. As a result, Facebook can assign the visit to our pages to your user account. We point out that we as the provider of the pages are not aware of the content of the data transmitted and their use by Facebook. For more information, see the Facebook Privacy Policy at https://de-de.facebook.com/policy.php.

If you do not wish Facebook to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account.

Google+

Our pages use features of Google+. Provider is Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA.

Collect and share information: Use the Google + button to post information worldwide. The Google + button will provide you and other users with personalized content from Google and our partners. Google stores both the information that you + 1’d for a piece of content and information about the page you viewed when you clicked +1. Your + 1’s may appear alongside your profile name and photo in Google services, such as search results or in your Google profile, or elsewhere on websites and ads on the web.

Google records information about your + 1 activity to improve Google’s services to you and others. To use the Google + button, you need a globally visible, public Google profile that must contain at least the name chosen for the profile. This name will be used in all Google services. In some cases, this name may also replace a different name you used when sharing content through your Google Account. The identity of your Google Profile may be displayed to users who know your email address or have other identifying information from you.

Use of the information collected: In addition to the uses outlined above, the information you provide will be used in accordance with the applicable Google privacy policy. Google may publish summarized statistics about users’ + 1 activity or share it with users and partners, such as publishers, advertisers, or affiliate websites.

LinkedIn

Our website uses features of the LinkedIn network. Providers is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States. Each time you visit one of our pages that contains LinkedIn features, it will connect to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn’s “Recommend Button” and are logged in to your LinkedIn account, LinkedIn will be able to associate your visit to our website with you and your user account. We point out that we as the provider of the pages have no knowledge of the content of the transmitted data and their use by LinkedIn.

For more information, see the LinkedIn privacy statement at:

https://www.linkedin.com/legal/privacy-policy

XING

Our website uses functions of the network XING. Provider is the XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time you visit one of our sites that contains XING features, it will connect to XING servers. A storage of personal data is not done to our knowledge. In particular, no IP addresses are stored or the usage behavior is evaluated.

Further information on data protection and the XING Share button can be found in XING’s privacy policy at: https://www.xing.com/app/share?op=data_protection

YouTube

Our website uses plugins from the Google-powered YouTube page. Site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit one of our YouTube plug-in sites, you will be connected to the servers of YouTube. The Youtube server will be informed which of our pages you visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

For more information on how to handle user data, please refer to the YouTube Privacy Policy at https://www.google.com/intl/en/policies/privacy

SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of sensitive content, such as the requests you send to us as the site operator. You can recognize an encrypted connection by changing the address line of the browser from “http: //” to “https: //” and the lock symbol in your browser line.

If SSL encryption is enabled, the data you submit to us can not be read by third parties.

Right to information, cancellation, blocking

At any time you have the right to free information about your stored personal data, their origin and recipient and the purpose of the data processing and a right to correct, block or delete this data. For further information on personal data you can contact us at any time at the address given in the imprint.

Contradiction advertising emails

The use of published in the context of the imprint obligation contact information for sending unsolicited advertising and information materials is hereby rejected. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example through spam e-mails.

dispute settlement

The European Commission provides a platform for online dispute resolution (OS):

https://ec.europa.eu/consumers/odr

Our e-mail address can be found above in the imprint.

We are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.

(End of the source: https://www.e-recht24.de)

V. Healthcare services

We process the data of our patients and prospective clients and other clients or contractual partners (uniformly referred to as “patients”) in accordance with Art. 6 para. 1 lit. b) GDPR in order to provide them with our contractual or pre-contractual services. The data processed, the nature, scope and purpose and necessity of their processing are determined by the underlying contractual relationship. The processed data includes in principle inventory and master data of the patient (eg, name, address, etc.), as well as the contact data (eg, e-mail address, telephone, etc.), the contract data (eg, services used, purchased products, costs, names of contact persons) and payment details (eg, bank details, payment history, etc.).

As part of our services, we can also special categories of data gem. Art. 9 para. 1 GDPR, here in particular information on the health of patients, possibly with reference to their sexual life or sexual orientation process. For this we get, if necessary, gem. Art. 6 para. 1 lit. a., Art. 7, Art. 9 para. 2 lit. a. DSGVO expressly consent to the patients and process the special categories of data otherwise for health care purposes on the basis of Art. 9 (2) (h). DSGVO, § 22 Abs. 1 Nr. 1 b. Federal Data Protection Act.

If necessary for the fulfillment of the contract or required by law, we disclose or transmit the data of patients in the context of communication with health care professionals, necessary or typically involved third parties such as laboratories, clearing houses or similar service providers, provided that the provision of our services acc. Art. 6 para. 1 lit b. DSGVO serves, legally gem. Art. 6 para. 1 lit c. DSGVO is prescribed to our interests or those of patients in an efficient and cost-effective health care as a legitimate interest. Art. 6 para. 1 lit. F. DSGVO serves or gem. Art. 6 (1) lit. d. DSGVO is necessary. to protect vital interests of patients or another natural person, or in the context of consent in accordance with. Art. 6 para. 1 lit. a., Art. 7 GDPR.

The data is deleted if the data for the fulfillment of contractual or legal duties of care and handling of any warranty and similar obligations is no longer required, with the necessity of preserving the data every three years is checked; otherwise the statutory storage obligations apply.

VI. Therapeutic services and coaching

We process the data of our clients and interested parties and other clients or contractual partners (uniformly referred to as “clients”) in accordance with Art. 6 para. 1 lit. b) GDPR in order to provide them with our contractual or pre-contractual services. The data processed, the nature, scope and purpose and necessity of their processing are determined by the underlying contractual relationship. The processed data basically include stock and master data of the clients (eg, name, address, etc.), as well as the contact data (eg, e-mail address, telephone, etc.), the contract data (eg, services used, Fees, names of contact persons, etc.) and payment details (eg, bank details, payment history, etc.).

As part of our services, we can also special categories of data acc. Art. 9 para. 1 GDPR, in particular information on the health of clients, possibly related to their sexual life or sexual orientation, ethnic origin or religious or ideological convictions. For this we get, if necessary, gem. Art. 6 para. 1 lit. a., Art. 7, Art. 9 para. 2 lit. a. DSGVO expressly consent of the clients and process the special categories of data otherwise for health care purposes on the basis of Art. 9 (2) (h). DSGVO, § 22 Abs. 1 Nr. 1 b. Federal Data Protection Act.

If required for the fulfillment of the contract or required by law, we disclose or transmit the data of the clients in the context of communication with other professionals, necessary or typically involved third parties, such as clearing houses or comparable service providers, as far as the provision of our services in accordance with. Art. 6 para. 1 lit b. DSGVO serves, legally gem. Art. 6 para. 1 lit c. DSGVO is prescribed to our interests or those of clients in an efficient and cost-effective health care as legitimate interest gem. Art. 6 para. 1 lit. F. DSGVO serves or gem. Art. 6 (1) lit. d. DSGVO is necessary. to protect the vital interests of clients or any other natural person, or in the context of consent in accordance with. Art. 6 para. 1 lit. a., Art. 7 GDPR.

The data is deleted if the data for the fulfillment of contractual or legal duties of care and handling of any warranty and similar obligations is no longer required, with the necessity of preserving the data every three years is checked; otherwise the statutory storage obligations apply.

VII. Administration, financial accounting, office organization, contact management

We process data in the context of administrative tasks as well as organization of our business, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the course of rendering our contractual services. The processing principles are Art. 6 para. 1 lit. c. DSGVO, Art. 6 para. 1 lit. f. DSGVO. The processing affects customers, prospects, business partners and website visitors. The purpose and interest in processing lies in administration, financial accounting, office organization, data archiving, that is, tasks that serve to maintain our business, perform our duties and provide our services. The deletion of the data in terms of contractual performance and contractual communication corresponds to the information provided in these processing activities.

In doing so, we disclose or transmit data to the financial administration, consultants, such as tax accountants or auditors, as well as other fee agents and payment service providers.

Furthermore, we store information on suppliers, promoters and other business partners on the basis of our business interests, eg for the purpose of contacting you later. We generally store this majority of company-related data permanently.

VIII. Rights of the person concerned

If personal data is processed by you, you are the person affected i. P. D. DSGVO and you have the following rights to the person responsible:

  1. right

You may ask the person in charge to confirm if personal data concerning you is processed by us.

If such processing is available, you can request information via the following information:

(1) the purposes for which the personal data are processed;

(2) the categories of personal data being processed;

(3) the recipients or categories of recipients to whom the personal data relating to you have been disclosed or are still being disclosed;

(4) the planned duration of the storage of your personal data or, if specific information is not available, criteria for determining the duration of storage;

(5) the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;

(6) the existence of a right of appeal to a supervisory authority;

(7) all available information on the source of the data if the personal data is not collected from the data subject;

(8) the existence of automated decision-making including profiling under Article 22 (1) and (4) GDPR and, at least in these cases, meaningful information about the logic involved, and the scope and intended impact of such processing on the data subject.

You have the right to request information about whether your personal information relates to a third country or an international organization. In this connection, you can request the appropriate guarantees in accordance with. Art. 46 GDPR in connection with the transfer.

  1. Right to rectification

You have a right to rectification and / or completion to the controller, if the personal data you process is incorrect or incomplete. The responsible person must make the correction without delay.

  1. Right to restriction of processing

You may request the restriction of the processing of your personal data under the following conditions:

(1) if you contest the accuracy of your personal information for a period of time that enables the controller to verify the accuracy of your personal information;

(2) the processing is unlawful and you refuse the deletion of the personal data and instead demand the restriction of the use of the personal data;

(3) the controller no longer needs the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims; or

(4) if you have objected to the processing pursuant to Art. 21 (1) GDPR and it is not yet certain whether the legitimate reasons of the person responsible outweigh your reasons.

If the processing of personal data concerning you has been restricted, this data may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for reasons of important public interest Union or a Member State.

If the restriction on processing has been restricted in accordance with the above conditions, the person responsible will inform you before the restriction is lifted.

4. Right to cancellation

a) Obligation to delete

You may require the controller to delete your personal information without delay, and the controller is required to delete that information immediately if one of the following is true:

(1) Personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.

(2) You revoke your consent, to which the processing acc. Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. DSGVO and there is no other legal basis for processing.

(3) According to. Art. 21 para. 1 DSGVO objection to the processing and there are no prior justifiable reasons for the processing, or you lay gem. Art. 21 para. 2 DSGVO Opposition to processing.

(4) Your personal data have been processed unlawfully.

(5) The deletion of personal data concerning you shall be required to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject.

(6) The personal data concerning you were collected in relation to information society services offered pursuant to Art. 8 (1) GDPR. B) Information to third parties

If the person in charge has made the personal data concerning you public and is acc. Article 17 (1) of the GDPR, it shall take appropriate measures, including technical means, to inform data controllers who process the personal data that you have been identified as being affected, taking into account available technology and implementation costs Persons requesting deletion of all links to such personal data or of copies or replications of such personal data.

c) Exceptions

The right to erasure does not exist if the processing is necessary

(1) to exercise the right to freedom of expression and information;

(2) to fulfill a legal obligation required by the law of the Union or of the Member States to which the controller is subject, or to carry out a task which is in the public interest or in the exercise of official authority conferring on the controller has been;

(3) for reasons of public interest in the field of public health pursuant to Art. 9 (2) lit. h and i and Art. 9 (3) GDPR;

(4) for archival purposes of public interest, scientific or historical research purposes or for statistical purposes acc. Article 89 (1) GDPR, to the extent that the law referred to in subparagraph (a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or

(5) to assert, exercise or defend legal claims

5. Right to information

If you have the right of rectification, erasure or restriction of processing to the controller, he / she is obliged to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing, unless: this proves to be impossible or involves a disproportionate effort.

You have a right to the person responsible to be informed about these recipients.

6. Right to Data Portability

You have the right to receive personally identifiable information you provide to the controller in a structured, common and machine-readable format. You also have the right to transfer this information to another person without hindrance by the controller to whom the personal data has been provided, provided that

(1) the processing on a consent acc. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a DSGVO or on a contract acc. Art. 6 para. 1 lit. b DSGVO is based and

(2) the processing is done by automated means.

In exercising this right, you also have the right to obtain that your personal data relating to you are transmitted directly from one person to another, insofar as this is technically feasible. Freedoms and rights of other persons may not be affected.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority delegated to the controller.

7. Right to object

You have the right at any time, for reasons that arise from your particular situation, against the processing of your personal data, which pursuant to Art. 6 para. 1 lit. e or f DSGVO takes an objection; this also applies to profiling based on these provisions.

The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, exercising or defending legal claims.

If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.

If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

Regardless of Directive 2002/58 / EC, you have the option, in the context of the use of information society services, of exercising your right to object through automated procedures that use technical specifications.

8. Right to revoke the data protection consent declaration

You have the right to revoke your data protection declaration at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

9. Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority, in particular in the Member State of its residence, place of work or place of alleged infringement, if you believe that the processing of the personal data concerning you is against the DSGVO violates.

The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.

IX. Duties of the person concerned

No warning without contact: In the case of the assertion of claims of any kind for copyright, competition law, as well as trademark and data law matters, we ask to avoid unnecessary litigation, warnings and costs, to contact us immediately. If claims of the above-mentioned type are made, we hereby declare a remedy before a final legally binding clarification by which a possible risk of repetition is bindingly excluded. A still attending cost note of an attorney’s warning without prior contact would then be rejected for failure to comply with a loss mitigation obligation.

The unnecessary or unjustified warnings and follow-up measures in this sense would be answered with a negative declaratory action. This also applies to warnings that fall under § 8 (4) UWG.

If the content or the presentation of these pages infringe third-party rights or statutory provisions, we ask for a message without cost note. The elimination of an infringement of intellectual property rights by these owners may not take place without our consent.

X. Severability clause

Legal validity of this declaration: If sections or individual terms of this statement are not legal or correct, the content or validity of the other parts remain uninfluenced by this fact.

No votes yet.
Please wait...