Adiella Bachshe
Basthoop 7A, 30974 Wennigsen
hello@sgicreator.com
VAT-ID (USt. ID NR): DE334852434
Privacy Policy
1 Introduction
I take your privacy seriously. All personal information is treated with confidentiality and in accordance with legal requirements, as explained in this privacy policy. You can browse this website without providing any personal data. However, if I ever ask for personal data like your name, address, or email, it will be on a voluntary basis.
It's important to me that your data is handled with care and protected as much as possible. Therefore, I make every effort to comply with the requirements of the GDPR (General Data Protection Regulation).
Legal standards require transparency regarding the processing of personal data. It's important to me that you understand how your data is processed, including the purpose and scope. Below, I explain in detail how your data is handled when you use this website and other services provided by SGI Creator, as well as your rights regarding your personal data. I strive to use clear and transparent language so that you fully understand what happens with your data.
2 General Information on Data Processing
2.1 Processing of Personal Data and Other Terms
Data protection is a priority when processing personal data. Personal data refers to any information that can identify you personally, such as the IP address of the device (PC, laptop, smartphone, etc.) you're using. This data is processed when it's used, such as when your browser transmits your IP address to my provider, where it's automatically stored. This constitutes the processing (as per Art. 4 No. 2 GDPR) of personal data (as per Art. 4 No. 1 GDPR). You can find these and other legal definitions in Art. 4 GDPR.
2.2 Applicable Regulations/Laws – GDPR, BDSG, and TDDG
The scope of data protection is governed by laws. In this case, these include the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law. Additionally, the TDDG complements the GDPR, particularly in relation to the use of cookies.
2.3 The Controller
I am the controller responsible for data processing on this website as defined by the GDPR. This means I determine the purposes and means of processing your personal data.
You can reach me at:
Adiella Bachshe
Basthoop 7A, 30974 Wennigsen
Email: hello@sgicreator.com
2.4 General Data Processing on This Website
As mentioned earlier, some data (e.g., IP address) is collected automatically. This data is primarily required for the technical provision of the website. If I intend to use your personal data for any other purpose, I will inform you and/or ask for your consent. Other personal data is voluntarily provided by you. Detailed information on this is provided below.
2.5 Your Rights
The GDPR grants you extensive rights, including the right to free information about the origin, recipients, and purpose of your stored personal data. Additionally, you can request the correction, blocking, or deletion of this data or lodge a complaint with the relevant data protection authority. You can withdraw any consent you have given at any time.
I explain how these rights are detailed and how they can be exercised in the last section of this Privacy Policy.
2.6 My Approach to Data Protection
For me, data protection is more than just a legal obligation! Personal data is valuable, and careful handling of this data should be a given in our digital world. As a visitor to this website, you should be able to decide what happens with your data, when, and by whom. Therefore, I am committed to complying with all legal requirements, collecting only the data necessary, and treating this data confidentially.
2.7 Data Disclosure and Deletion
The disclosure and deletion of data are important and sensitive topics. I want to briefly inform you about how I approach these issues.
Data will only be disclosed based on a legal basis and only when absolutely necessary. This may be particularly the case when involving a data processor, and a data processing agreement according to Art. 28 GDPR has been concluded. Your data will be deleted when the purpose and legal basis for processing no longer exist, and there are no other legal obligations preventing the deletion. A good overview of this is provided by Art. 17 GDPR.
2.8 Hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the host. This includes automatically collected and stored log files (details below) as well as any other data you provide.
External hosting is carried out to securely, quickly, and reliably provide this website and serves to fulfill contractual obligations to my potential and existing customers.
The legal basis for processing is Art. 6 para. 1 lit. a, b, and f GDPR, as well as § 25 para. 1 TDDG, insofar as consent includes the storage of cookies or access to information on your end device within the meaning of the TDDG.
My host processes only such data as is necessary to fulfill its contractual obligations and acts as my data processor, which means it is subject to my instructions. I have entered into a corresponding data processing agreement with my host. I use the following host:
IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany
Email: info@ionos.de
Privacy Policy: https://www.ionos.de/terms-gtc/datenschutzerklaerung/.
2.9 Legal Basis
The processing of personal data always requires a legal basis. The GDPR provides the following options in Art. 6 para. 1 sentence 1:
a) You have given your consent to the processing of your personal data for one or more specific purposes;
b) Processing is necessary for the performance of a contract to which you are a party, or to take steps at your request prior to entering into a contract;
c) Processing is necessary for compliance with a legal obligation to which I am subject;
d) Processing is necessary to protect your vital interests or those of another natural person;
e) Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in me;
f) Processing is necessary for the purposes of legitimate interests pursued by me or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms, particularly where you are a child.
In the following sections, I will specify the exact legal basis for each type of processing.
3 Data Processing on My Website
3.1 Data Collection When Accessing the Website
Each time you visit my website, my system automatically collects data and information from the computer system you use. This general data and information are stored in server log files. The following data is logged:
- Browser type and version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
This data is needed temporarily to display my website consistently and without issues. It serves the following purposes:
- System security of the website
- System stability of the website
- Troubleshooting on the website
- Connection establishment to the website
- Display of the website
The data processing is carried out in accordance with Art. 6 para. 1 lit. of GDPR and is based on my legitimate interest in processing this data, particularly in ensuring the functionality and security of the website. I store this data pseudonymously as much as possible and delete it once the respective purpose has been fulfilled.
If the server log files make it possible to identify you, the data will be stored for a maximum of 14 days. An exception applies if a security-relevant incident occurs. In this case, the server log files will be stored until the security-relevant incident has been resolved and fully clarified.
Moreover, I do not combine this data with other data.
3.2 Cookies
3.2.1 General Information
This website uses so-called cookies. Cookies are a data record, an information that is stored in the browser of your device and in relation to our website. By setting cookies, navigation on the website can be made easier for the visitor. In our Cookie-Consent-Tool, you will find all information about the cookies we use on our website (possibly after your consent).
You can check out the cookie settings here.
3.2.2 Refusing Cookies
All cookies that are not technically necessary can be managed directly through our Cookie-Consent Tool. The setting of cookies can be prevented by adjusting the settings of your browser. Here are the relevant links for commonly used browsers:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+1%C3%B6schen&redirectlocale=de
Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Safari: https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web and https://support.apple.com/de-de/guide/safari/sfri11471/mac
If you use another browser, it is advisable to enter the name of your browser and "Cookies löschen und verwalten" into a search engine and follow the official link for your browser.
However, we must inform you that a comprehensive blocking/deletion of cookies may lead to limitations in the use of the website.
3.2.3 Technically Necessary Cookies
We use technically necessary cookies on this website to ensure that our website functions properly and in accordance with applicable laws. They help to make the website user-friendly. Some features of our website may not be displayed without the use of cookies. The legal basis for this is, depending on the specific case, Art. 6(1)(b), (c), and/or (f) GDPR.
3.2.4 Technically Non-Essential Cookies
We also use cookies on our website that are not technically necessary. These cookies serve, among other things, to analyze the browsing behavior of website visitors or to offer features of the website that are not technically essential. The legal basis for this is your consent according to Art. 6(1)(a) GDPR. Technically non-essential cookies are only set with your consent, which you can withdraw at any time in the Cookie-Consent-Tool.
3.3 Data Processing by User Input
3.3.1 Contact
a) Email
If you contact us via email, we process your email address and possibly other data contained in the email. These are partially stored on the mail server and on the respective devices. Depending on the concern, the legal basis is usually Art. 6(1)(f) GDPR or Art. 6(1)(b) GDPR. The data is deleted as soon as the respective purpose no longer applies and it is possible according to legal requirements.
3.4 Cookie-Consent-Tool
3.4.1 Custom Development
To ensure that only cookies with a legal basis are set on our website, we have integrated our custom-developed Consent Management Tool on our website. This allows us to obtain and document the website visitor's consent for the storage of certain cookies or the use of specific technologies in a data protection-compliant manner. The legal basis for collecting and storing consent data is Art. 6(1)(c) GDPR. With our developed tool, we fulfill the legal obligation to obtain consents for the use of cookies.
3.5 Analysis and Tracking Tools
3.5.1 YouTube
On this website, we embed YouTube videos. YouTube is an online video platform. This service is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Once you start a video on our website, a connection to YouTube's servers is established. YouTube may set cookies on the visitor’s device to store settings and preferences and subsequently serve personalized ads. The information obtained is also used for video statistics, improving usability, and preventing fraud attempts. The legal basis for processing is Art. 6(1)(a) GDPR and § 25(1) TTDSG, as far as this consent includes access to information on the user’s device or the storage of cookies in the sense of TTDSG. This consent can be revoked at any time. For more information: https://policies.google.com/privacy?hl=de.
3.5.2 IONOS WebAnalytics
We use IONOS WebAnalytics on this website. IONOS WebAnalytics is a web analysis service provided by 1&1 IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany. For analysis purposes, IONOS stores data such as the previously visited website (referrer), requested website or file, browser type and version, operating system used, device type used, access time, and IP address in anonymized form. Data collection is fully anonymized. IONOS WebAnalytics does not store cookies. The legal basis for processing is Art. 6(1)(f) GDPR. We have a legitimate interest in analyzing user behavior on our website to improve our web offering and our advertising. For more details: https://www.ionos.de/terms-gtc/datenschutzerklaerung/.
3.6 Social Media Plugins
3.6.1 Instagram
This website integrates elements from the social network Instagram. This service is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. When the social media element is activated, a direct connection is established between the website visitor and Instagram's servers, and the IP address is transmitted to Instagram. If the website visitor has a user account, the visit to this website can be assigned to the corresponding user account. As the website operator, we do not have knowledge of the content of the transmitted data. The legal basis for processing is Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be withdrawn at any time. If personal data is collected and forwarded to Meta via Facebook or Instagram, the website operator and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for data processing according to Art. 26 GDPR. This joint responsibility is limited to the collection and forwarding of data to Facebook or Instagram. There is an agreement on joint processing: https://www.facebook.com/legal/controller_addendum. The website operator is responsible for providing data protection information when using the Instagram tool and for the data protection-compliant integration of the tool on the website. Facebook or Instagram is responsible for the data security of their products. This means that data subject rights concerning the data processed by Facebook or Instagram must be asserted directly with Facebook or Instagram. For data transfers to the USA, the Standard Contractual Clauses (SCC) of the EU Commission apply. https://www.facebook.com/legal/EU_data_transfer_addendum https://de-de.facebook.com/help/566994660333381 https://www.facebook.com/policy.php https://instagram.com/about/legal/privacy/.
3.6.2 LinkedIn
This website integrates elements from the social network LinkedIn. This service is provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. When the social media element is activated, a direct connection is established between the website visitor and LinkedIn's servers, and the IP address is transmitted to LinkedIn. If the website visitor has a user account, the visit to this website can be assigned to the corresponding user account. The website operator does not have knowledge of the content of the transmitted data. The legal basis for processing is Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be withdrawn at any time. For data transfers to the USA, the Standard Contractual Clauses (SCC) of the EU Commission apply. https://www.linkedin.com/help/linkedin/answer/62538/datenberg-aus-der-eu-dem-ewr-und-der-schweiz?lang=de. Further information: https://www.linkedin.com/legal/privacy-policy.
3.7 Third-Party Content
3.7.1 Vimeo
This website uses Vimeo, a plugin that enables the embedding of videos from the Vimeo video platform. This service is provided by Vimeo Inc., 555 West 18th Street, New York 10011, USA. When you visit a website that embeds Vimeo videos, a connection is made to Vimeo's servers. Vimeo identifies which website and IP address the connection comes from. If you are logged into Vimeo, Vimeo can associate this information with your personal user account. Clicking the play button on a video can also be associated with your existing user account. You can prevent this association by logging out of your Vimeo account before using our website. The legal basis for processing is Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be withdrawn at any time. For data transfers to the USA, the EU Commission's Standard Contractual Clauses (SCC) apply. More information: https://vimeo.com/privacy.
3.7.2 Sketchfab
We use functions from Sketchfab on our website, operated by Sketchfab, Inc., 1123 Broadway, Suite 501, New York, NY 10010, USA. Sketchfab is a platform that enables the embedding and interactive display of 3D models directly on websites. Sketchfab processes technical data such as IP addresses, device type, operating system, and browser information to ensure the display and functionality of the 3D models.
The processing of this data is based on Art. 6(1)(f) GDPR, as we have a legitimate interest in providing our users with an engaging and functional display of 3D content. Sketchfab may transfer data to the USA, with appropriate safeguards such as the Standard Contractual Clauses (SCC) approved by the EU Commission.
Data is only stored as long as necessary to provide the functionality. Further information on data processing by Sketchfab can be found here: https://sketchfab.com/privacy.
4 To Conclude, We Would Like to Provide Detailed Information About Your Rights and How You Will Be Notified of Changes to Data Protection Requirements
4.1 Your Rights in Detail
4.1.1 Right of Access according to Art. 15 GDPR
You can request information on whether your personal data is being processed. If this is the case, you can request further details regarding the processing. A detailed list can be found in Art. 15(1)(a) to (h) GDPR.
4.1.2 Right to Rectification according to Art. 16 GDPR
This right includes the rectification of incorrect data and the completion of incomplete personal data.
4.1.3 Right to Erasure according to Art. 17 GDPR
This so-called right to be forgotten gives you the right to request the deletion of personal data under certain conditions. This is generally the case when the purpose of the data processing has ceased, when consent has been withdrawn, or when the initial processing was carried out without a legal basis. A detailed list of reasons can be found in Art. 17(1)(a) to (f) GDPR. This right to be forgotten also corresponds with the data controller's obligation under Art. 17(2) GDPR to take reasonable measures to ensure the general deletion of the data.
4.1.4 Right to Restriction of Processing according to Art. 18 GDPR
This right is subject to the conditions set out in Art. 18(1)(a) to (d).
4.1.5 Right to Data Portability according to Art. 20 GDPR
This covers the fundamental right to receive your own data in a commonly used format and to transmit it to another controller. However, this applies only to data processed based on consent or contract according to Art. 20(1)(a) and (b) and where technically feasible.
4.1.6 Right to Object according to Art. 21 GDPR
You can generally object to the processing of your personal data. This is particularly relevant if your interest in objecting outweighs the legitimate interests of the controller and if the processing relates to direct marketing and/or profiling.
4.1.7 Right to "Decision Based on Automated Processing" according to Art. 22 GDPR
You have the right not to be subject to a decision based solely on automated processing (including profiling) that has legal effects on you or similarly significantly affects you. This right also has limitations and additions in Art. 22(2) and (4) GDPR.
4.1.8 Additional Rights
The GDPR includes extensive rights regarding informing third parties about whether or how you have exercised rights under Art. 16, 17, and 18 GDPR. However, this is only to the extent that it is possible or feasible with reasonable effort. We would like to remind you of your right to withdraw any given consent according to Art. 7(3) GDPR. This will not affect the legality of processing carried out up to that point. Additionally, we would like to point out your rights under §§ 32 et seq. BDSG, which are largely consistent with the rights described above.
4.1.9 Right to Lodge a Complaint according to Art. 77 GDPR
You also have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates this regulation.
5 What If the GDPR Is Abolished or Other Changes Occur?
The current status of this privacy policy is August 17, 2024. From time to time, it may be necessary to adjust the content of the privacy policy to respond to actual and legal changes. We therefore reserve the right to change this privacy policy at any time. We will publish the revised version in the same place and recommend that you read the privacy policy regularly.