Privacy Policy
The purpose of this privacy policy is to inform you about the nature, scope and purpose of the processing of personal data (hereinafter also referred to simply as “data”). Personal data refers to any data that relates to you personally, such as your name, address, email address or your user behaviour. This privacy policy applies to all data processing operations carried out by us, both in the context of our core business and in relation to the online media we maintain.
Who is responsible for data processing at our organisation
The data controller is:
Meine Massage Leipzig
Luise Reuther
Jacobstraße 5
04105 Leipzig
Germany
0341 / 24 81 30 61
Introduction
We (“we”, “us”, “our”) take the protection of the data of users (“users” or “you”) of our website and/or mobile app (the “website” or the “mobile app”) very seriously and are committed to protecting the information that users provide to us in connection with their use of our website and/or mobile app (collectively: “digital assets”). Furthermore, we undertake to protect and use your data in accordance with applicable law.
This Privacy Policy explains our practices regarding the collection, use and disclosure of your data through the use of our digital assets (the “Services”) when you access the Services via your devices.
Please read this Privacy Policy carefully and ensure that you fully understand our practices regarding your data before using our Services. If you have read and fully understood this Policy and do not agree with our practices, you must cease using our digital assets and Services. By using our Services, you acknowledge the terms of this Privacy Policy. Continued use of the services constitutes your consent to this Privacy Policy and any amendments thereto.
In this Privacy Policy, you will learn:
• How we collect data
• What data we collect
• Why we collect this data
• To whom we disclose the data
• Where the data is stored
• How long the data is retained
• How we protect the data
• How we handle data relating to minors
• Updates or changes to the Privacy Policy
What data do we collect?
Below is an overview of the data we may collect:
• Non-identifying and non-identifiable information that you provide during the registration process or that is collected through your use of our services (‘non-personal data’). Non-personal data does not allow conclusions to be drawn as to who it was collected from. The non-personal data we collect consists mainly of technical and aggregated usage information.
• Individually identifiable information, i.e. any information that can be used to identify you or could be used to identify you with reasonable effort (“personal data”). The personal data we collect through our services may include information requested from time to time, such as names, email addresses, postal addresses, telephone numbers, IP addresses and more. Where we combine personal data with non-personal data, we treat the combined data as personal data for as long as it remains combined.
How do we collect data?
The main methods we use to collect data are listed below:
• We collect data when you use our services. This means that when you visit our digital assets and use our services, we may collect, record and store information about your usage, sessions and related details.
• We collect data that you provide to us yourself, for example, when you contact us directly via a communication channel (e.g. an email containing a comment or feedback).
• We may collect data from third-party sources, as described below.
• We collect data that you provide to us when you log in to our services via a third-party provider such as Facebook or Google.
Why do we collect this data?
We may use your data for the following purposes:
• to provide and operate our services;
• to develop, customise and improve our services;
• to respond to your feedback, enquiries and requests, and to offer assistance;
• to analyse usage patterns and trends;
• for other internal, statistical and research purposes;
• to improve our data security and fraud prevention capabilities;
• to investigate breaches and enforce our terms and policies, and to comply with applicable law, regulations or regulatory orders;
• to send you updates, news, promotional material and other information relating to our services. In the case of promotional emails, you can decide for yourself whether you wish to continue receiving them. If not, simply click on the unsubscribe link in these emails.
Who do we share this data with?
We may share your data with our service providers in order to operate our services (e.g. storing data via third-party hosting services, providing technical support, etc.).
We may also disclose your data in the following circumstances: (i) to investigate, detect, prevent or take action against unlawful activities or other misconduct; (ii) to establish or exercise our rights of defence; (iii) to protect our rights, property or personal safety, as well as the safety of our users or the public; (iv) in the event of a change of control at our company or at one of our affiliated companies (by way of a merger, acquisition or purchase of (substantially) all assets, etc.); (v) to collect, store and/or manage your data through authorised third-party providers (e.g. cloud service providers), insofar as this is appropriate for business purposes; (vi) to work with third-party providers to improve your user experience. To avoid any misunderstanding, we would like to point out that we cannot transfer or disclose non-personal data to third parties at our own discretion, nor can we use it in any other way.
Cookies and similar technologies
When you visit or access our services, we authorise third parties to use web beacons, cookies, pixel tags, scripts and other technologies and analytics services (‘tracking technologies’). These tracking technologies may enable third parties to automatically collect your data in order to improve the browsing experience on our digital assets, optimise their performance and ensure a tailored user experience, as well as for security and fraud prevention purposes.
To find out more, please read our Cookie Policy.
We may serve advertising through our Services and our digital assets (including websites and applications that use our Services), which may be tailored to you, such as adverts based on your recent browsing behaviour on websites, devices or browsers.
To serve these advertisements to you, we may use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or HTML5 local storage and/or other technologies. We may also use third parties, such as network advertisers (i.e. third parties that display advertisements based on your website visits), to serve targeted advertisements. External advertising network providers, advertisers, sponsors and/or website traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or Flash cookies and/or other technologies to measure the effectiveness of their adverts and to personalise advertising content for you. These third-party cookies and other technologies are subject to the specific privacy policy of the relevant third party and not to this one.
Where do we store the data?
Non-personal data
Please note that our companies, as well as our trusted partners and service providers, are located around the world. For the purposes set out in this Privacy Policy, we store and process all non-personal data that we collect in various jurisdictions.
Personal data
Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and, to the extent necessary for the proper provision of our services and/or as required by law (as further explained below), in other jurisdictions.
How long is the data retained?
Please note that we will retain the data we collect for as long as is necessary to provide our services, to comply with our legal and contractual obligations towards you, to resolve disputes, and to enforce our agreements.
We may correct, supplement or delete inaccurate or incomplete data at any time at our discretion.
How do we protect data?
The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data may be stored via our hosting provider’s data storage systems, databases and general applications. They store your data on secure servers behind a firewall and provide secure HTTPS access to most areas of their services.
Notwithstanding the measures and efforts taken by us and our hosting provider, we cannot and will not guarantee absolute protection or security of the data you upload, publish or otherwise disclose to us or others.
For this reason, we would ask you to set strong passwords and, where possible, not to send us or others any confidential information which you believe could cause you significant or lasting harm if disclosed. As email and instant messaging are not considered secure forms of communication, we also ask you not to share any confidential information via these channels.
How do we deal with minors?
The Services are not intended for users who have not yet reached the legal age of majority. We will not knowingly collect data from children. If you are not yet of legal age, you should not download or use the Services, nor should you provide us with any information.
We reserve the right to request proof of age at any time so that we can verify whether minors are using our Services. Should we become aware that a minor is using our services, we may prohibit such users from accessing our services and block their access, and we may delete all data stored by us relating to that user. If you have reason to believe that a minor has provided data to us, please contact us as explained below.
We will only use your personal data for the purposes set out in the Privacy Policy and only where we are satisfied that:
• the use of your personal data is necessary to perform or enter into a contract (e.g. to provide you with the Services themselves or to provide customer service or technical support);
• the use of your personal data is necessary to comply with applicable legal or regulatory obligations; or
• the use of your personal data is necessary to support our legitimate business interests (provided that this is always done in a manner that is proportionate and respects your data protection rights).
As a resident of the EU, you may:
• request confirmation as to whether or not personal data concerning you is being processed, and request access to your stored personal data as well as certain additional information;
• request to receive the personal data you have provided to us in a structured, commonly used and machine-readable format;
• request the rectification of your personal data stored by us;
• request the erasure of your personal data;
• object to the processing of your personal data by us;
• request the restriction of the processing of your personal data; or
• lodge a complaint with a supervisory authority.
Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have any general questions regarding the personal data we collect and how we use it, please contact us as set out below.
In the course of providing the Services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the Services, you consent to the transfer of your data outside the EEA.
If you are resident in the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that an adequate or comparable level of protection for personal data exists. We will take appropriate steps to ensure that we have adequate contractual arrangements in place with our third parties to ensure that appropriate safeguards are in place to minimise the risk of unauthorised use, alteration, deletion, loss or theft of your personal data, and that these third parties act in accordance with applicable laws at all times.
Rights under the California Consumer Privacy Act
If you use the Services as a resident of California, you may be entitled under the California Consumer Privacy Act (CCPA) to request access to and deletion of your data.
To exercise your right to access and delete your data, please see below for details on how to contact us.
We do not sell users’ personal data for the purposes set out in the CCPA.
Updates or changes to the privacy policy
We may revise this privacy policy from time to time at our discretion; the version published on the website is always the most up-to-date (see the ‘Date’ section). We ask that you check this privacy policy regularly for changes. In the event of significant changes, we will publish a notice to this effect on our website. If you continue to use the services on our website after being notified of changes, this shall be deemed to constitute your confirmation and acceptance of the changes to the privacy policy and your agreement to be bound by the terms of those changes.
Getting in touch
If you have any general questions about our services or the data we collect about you and how we use it, please contact us at:
Name: Meine Massage Leipzig, Luise Reuther
Address: Jacobstraße 5, 04105 Leipzig, Germany
Email address: info@meine-massage.de
DISCLAIMER
The information contained herein does not constitute legal advice, and you should not rely on it alone. Specific requirements regarding legal concepts and guidelines may vary from state to state and/or from legal system to legal system. As set out in our Terms of Use, you are responsible for ensuring that your services are permitted under the law applicable to you and that you comply with it.
To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand the specific requirements that apply to you.