top of page
az_sign_blck.png

Privacy Policy

20. Apr. 2022

General

1. Your personal data within the meaning of Art. 4 no. 1 GDPR (eg ip address) only in accordance with the provisions of the German data protection law and taking into account the European Data Protection Regulation (GDPR). The following regulations inform you about the nature, scope and purpose of the collection, processing and use of personal data.
2. The processing within the meaning of Art. 4 No. 2 GDPR of personal data is legal according to Art. 6 GDPR, if one of the following conditions exists:
(a) the data subject has given his consent to the processing of personal data concerning him for one or more specific purposes;
(b) the processing is necessary for the performance of a contract to which the data subject is a party or for the performance of any pre-contractual action taken at the request of the data subject;
(c) the processing is necessary to fulfill a legal obligation to which the controller is subject;
(d) the processing is necessary to protect the vital interests of the data subject or any other natural person;
(e) the processing is necessary for the performance of a task which is in the public interest or in the exercise of official authority delegated to the controller;
(f) the processing is necessary to safeguard the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data prevail, in particular where the person concerned is a child is acting.
3. The processing of special personal data (eg health data ) within the meaning of Article 9 (1) of the GDPR is, in particular, lawful under Article 9 (2) of the GDPR if one of the following conditions applies :
- there is an express consent of the person;
- the processing is necessary for the assertion, exercise or defense of legal claims or for acts of the courts in the context of their judicial activity.
4. An automatic decision-making or profiling of personal data in the sense of Ar t. 22 GDPR does not take place.
5. The operator ensures the security of the data in accordance with Art. 32 GDPR by taking appropriate technical measures, taking into account the proportionality principle.
6. In the unlikely event that data protection is breached, the competent supervisory authority will be notified in accordance with Art. 33 GDPR and the data subject in accordance with Art. 34 GDPR.


Scope
This Privacy Policy applies only to our websites. If you are forwarded to other pages via links on our pages, please inform yourself about the respective handling of your data.

Duration of data storage
The period of retention of the transferred data depends on the legal retention requirements. According to the trade and tax laws, there is a duty to keep invoices for a period of 10 years. Registration data is kept for the duration of the membership.

Transfer of data to third parties
A passing on information provided within the framework of the contract data to third parties (Art. 4 no. 10 GDPR), takes place only if you expressly (Art. 4 no. 11 GDPR) have declared your consent or transfer to fulfill the contract is required. The consent can be withdrawn informally at any time. Data collected by visiting the website are only collected by third parties, which are expressly mentioned below.

Responsible according to the GDPR
The person responsible within the meaning of the General Data Protection Regulation (GDPR), as well as other data protection laws in the European Union and other provisions of a data protection nature is:

Janos Gerasch
Karl-Marx-Allee 39
10178 Berlin

E-mail: info@janos-art.zone


Cookies
We use cookies on our site. These are small files that your browser automatically creates and that are stored on your device (PC, laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not harm your device, do not contain viruses, Trojans or other malicious software. In the cookie information is stored, each resulting in connection with the specific terminal used. However, this does not mean that we are immediately aware of your identity.
On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our page.
In addition, to improve usability, we also use temporary cookies that are stored on your device for a specified period of time. If you visit our site again to take advantage of our services, we will automatically recognize that you have already been with us and what inputs and settings you have made so that you do not need to re-enter them.
These cookies allow us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined time. The processed through cookies data for said purposes to protect our legitimate interests as well as third parties under Art. 6 para. 1 sentence 1 lit. f GDPR required. Most browsers accept cookies automatically. However, you can configure your browser to deny cookies.
Cookies are stored on your computer and always a hint appears before a new cookie is created. However, disabling cookies completely may mean that you can not use all features of our website.

Storage of access data in log files
You can visit our websites without giving any personal information.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
• Browser type / browser version
• used operating system
• Referrer URL
• Host name of the accessing computer
• Time of the server request
These data can not be assigned to specific persons. A merge of this data with other data sources will not be done. We reserve the right to check this data retrospectively, if we become aware of specific indications for illegal use.
The purpose of the processing results from our legitimate interest within the meaning of Art. 6 para. 1 sentence 1 lit. f) GDPR.
An order processing contract has been signed with our hoster.

Login/Registration
Registration is not required to use the services we offer, but the range of functions may be restricted. The data you enter in the input mask will be collected and saved. It will not be passed on to third parties unless this is necessary to carry out the contractual relationship. You can change or delete the data at any time. After the data has been deleted, the service can no longer be offered to you unless you register again.
In addition to the data you enter, the IP address and the date and time of registration are also saved. The storage of IP data serves to prevent misuse and to investigate criminal offenses.

Wix
The website is operated by Wix.com Ltd. (hereinafter referred to as "Wix") hosted. Wix.com Ltd. is based in Israel, which is considered by the European Commission as a country offering an adequate level of protection for personal data of citizens of EU member states.
Our users' and users' users' personal information may be stored by Wix in data centers located in the United States, Ireland, South Korea, Taiwan and Israel. We therefore expressly point out that data can be stored and managed on American servers. Standard contractual clauses exist with Wix in this regard.
The use of Wix is based on our legitimate interest according to Article 6 Paragraph 1 Clause 1 Letter f) GDPR.
More information about Wix's privacy policy can be found here:
https://www.wix.com/manage/privacy-security-hub

Youtube
We use the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, for the integration of videos within the scope of our legitimate interest in a technically flawless online offer in accordance with Article 6 Paragraph 1 letter f) GDPR. Normally, when you call up a page with embedded videos, your IP address is sent to YouTube and cookies are installed on your computer.
The data collected by Google could be transmitted by Google to countries outside the EU, in particular the USA.
We have no knowledge of and no influence on the possible collection and use of your data by Google.
For more information, see Google's privacy policy at: https://www.google.de/intl/de/policies/privacy

Paypal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or "purchase on account" as well as payment in installments via PayPal, we give your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal as well as payment in installments via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of default for the purpose of deciding on the provision of the respective payment method. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Address data, among other things, is included in the calculation of the score values.
For further data protection information, including the credit agencies used, please refer to PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Apple Pay
You can also pay with Apple Pay on our website. The service provider is Apple Inc., 1 Apple Park Way, Cupertino, CA 95014, USA. When paying with Apple Pay, Apple Pay transmits your credit card data in encrypted form via a device account number. No other personal data will be transmitted.
The legal basis for processing in connection with Apple Pay is Article 6 (1) sentence 1 lit. f GDPR. We have a legitimate interest in offering you expanded payment options and outsourcing the processing of payments.
For more information on how Apple Pay works and how data is processed, see:
https://support.apple.com/de-de/HT201469
https://support.apple.com/de-de/HT203027

Giropay
We offer you the option of placing your order using the Giropay service, which is operated by paydirekt GmbH, Stephanstraße 14-16, 60313 Frankfurt am Main.
When paying, you will be redirected to the Giropay website after completing the order, where you can select your bank. You will then be redirected to your bank's website where you can carry out the transaction. We do not process any of your data during this payment process.
As part of the confirmation of the successful placement of the transfer order from Giropay, we receive a transaction identifier selected by the online provider.
The purpose of processing the data by us is to process the payment process and execute the contract. The legal basis for processing is Art. 6 (1) (b) GDPR.
The data will only be stored by us for as long as this is necessary for the implementation and processing of your order and for compliance with the statutory retention periods.
The provision of the personal data is necessary for the conclusion of a contract. Failure to provide the data would result in the contract not being concluded.
Further data protection information from this payment service provider can be found at https://www.giropay.de/srechtales/datenschutzerklaerung

Sofortüberweisung/Klarna
If you decide to pay with the online payment service provider Sofortüberweisung as part of your order process, your contact details will be sent to Sofortüberweisung or Klarna as part of the order placed in this way. Sofortüberweisung is an offer from SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany. Sofortüberweisung takes on the function of an online payment service provider, which enables cashless payment for products and services on the Internet. Sofortüberweisung belongs to Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden.
The personal data transmitted to Sofortüberweisung is mostly first name, last name, address, telephone number, IP address, e-mail address, or other data required for order processing, as well as data related to the order such as number of items, item number, invoice amount and tax percentage, billing information, etc.
This transmission is necessary to process your order with the payment method you have selected, in particular to confirm your identity, to administrate your payment and the customer relationship.
However, please note: Personal data can also be passed on to service providers, subcontractors or other affiliated companies on the part of Sofortüberweisung, insofar as this is necessary to fulfill the contractual obligations from your order or the personal data is to be processed in the order.
Under certain circumstances, the personal data transmitted to Sofortüberweisung will be transmitted by Sofortüberweisung to credit agencies. This transmission serves to check identity and creditworthiness in relation to the order you have placed.
You can find out which data protection principles are used by Sofortüberweisung when processing your data from the data protection notices that are displayed to you during the Sofortüberweisung payment process.
Further information on the data protection regulations of SofortÜberweisung/Klara can be found here:
https://www.klarna.com/sofort/datenschutz/

Payment with credit card
When paying by credit card, you agree that the data you have entered will be transmitted to the credit company (Visa, Master Card, American Express). It is pointed out that the respective credit company can obtain creditworthiness information about you. We have no influence on that. The collection of the data is justified for the execution of the contract from Art. 6 GDPR.

Request by e-mail or telephone
If you contact us by e-mail or telephone, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We do not pass these data on without your consent.
The processing of these data is based on Art. 6 para. 1 lit. b GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Article 6 (1) a GDPR) and/or on our legitimate interests (Article 6 (1) (f) GDPR), since we have a legitimate interest in the effective processing of requests addressed to us.
The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent to the storage or the purpose for the data storage lapses (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

Social media links
We have in the to be reached via links from this site n third party own social - media sites. By using the links, you can access the respective websites of the third party providers and you can also share our content. In this case, there is no data transfer by calling our website. As soon as you have accessed the page of the third-party vendors, you are the responsibility of the respective third-party vendors, so that their privacy policy or their declarations on data usage also apply. We have no influence, but we recommend to avoid a r unnecessary data sharing before using a corresponding links log outeven in the jeweil owned third party, so can not be already created by using the links may utilization profile by the third party.


Security of your data / SSL encryption
In accordance with the statutory provisions of § 13 (7) TMG, this site uses SSL encryption, which can be recognized by a lock symbol in the address bar of your browser. Submitted data can not be read by third parties if SSL encryption is activated.
In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we'll use 128-bit v3 technology instead. Whether a single page of our website is encrypted is shown by the closed representation of the key or lock icon in the lower status bar of your browser.
We also take appropriate technical and organizational security measures (TOM) to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Rights of the user
You can request information about the personal data stored about you at any time and free of charge. Your rights also include the acknowledgment, correction, limitation, blocking and deletion of such data and the provision of a copy of the data in a form suitable for transmission, as well as the revocation of consent granted and the objection. Legal storage obligations remain unaffected.
Their rights arise in particular from the following standards of the GDPR :
• Article 7 (3) - Right to revoke a data protection consent
• Article 12 - Transparent information, communication and modalities for the exercise of the rights of the data subject
• Article 13 - Duty to provide information when collecting personal data from the data subject
• Article 14 - Duty to provide information if the personal data have not been collected from the data subject
• Article 15 - Right to information of the data subject, right to confirm and provide a copy of the personal data
• Article 16 - Right to rectification
• Article 17 - Right to cancellation ("Right to be forgotten")
• Article 18 - Right to restriction of processing
• Article 19 - Obligation to provide information in connection with the rectification or erasure of personal data or the restriction of processing
• Article 20 - Right to data portability
• Article 21 - Right of opposition
• Article 22 - Right not to be subject to a decision based solely on automated processing, including profiling
• Article 77 - Right to complain to a supervisory authority
For exercising your rights (with the exception of Art. 77 GDPR), please contact the office named under the item "Responsible according to the GDPR" (eg by e-mail) .

Supervisory authority:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219
10969 Berlin

Tel.: +49 (0)30 13889-0
Fax: +49 (0)30 2155050
E-Mail: mailbox@datenschutz-berlin.de
Homepage: https://www.datenschutz-berlin.de

bottom of page