Privacy Policy
Information on the Handling of Personal Data
We are very pleased about your interest in our website – and thus in our company. The protection of your private rights and freedoms is important to us; we only use your data for the intended purposes. Since it is important to us that you always know to what extent we collect, use, and possibly transmit your data to third parties, we inform you comprehensively below about the processing of your personal data collected or stored by us.
Visiting our website is generally possible without providing (personal) data; if there are exceptions for selected services, we will explain them in the following chapters. When processing personal data, we strictly adhere to the requirements of the EU General Data Protection Regulation (GDPR) and, if applicable, other data protection-relevant provisions.
Name and Address of the Controller
loui.rocks GmbH
Kristina Jürgensen
Im Teelbruch 122
45219 Essen
Germany
Phone: 0201-84323722
Email: info@loui.rocks
Contact Details of the Data Protection Officer
Cortina Consult GmbH
Jörg ter Beek
Hafenweg 24
48155 Münster
Data Protection Team for general data protection inquiries:
Email: dsb.loui.rocks@cortina-consult.de
Website: https://www.cortina-consult.com
Collapsible content
Timeliness of our Privacy Policy
To ensure that the privacy information related to our website's services is always up-to-date, we use the CLOUD DSE service provided by Cortina Consult GmbH, Hafenweg 24 in 48155 Münster, Germany.
The content of our privacy policy is hosted and centrally managed on Cortina Consult's servers. Necessary changes are promptly implemented by Cortina Consult and immediately displayed on our website through direct integration.
The legal basis for this processing is the legal obligation according to Art. 6 para. 1 lit. c of the General Data Protection Regulation (GDPR), as well as our legitimate interest according to Art. 6 para. 1 lit. f in having an always up-to-date privacy policy.
The duration of data storage depends on the general data deletion periods. Data transfer to a third country does not occur and is not planned.
The data usually originates from the data subject but can also come from third parties. The collected data includes meta and communication data (IP address, log data).
Data subject rights
The General Data Protection Regulation (GDPR) guarantees every data subject certain rights regarding their personal data. These include:
- The right to information: Every data subject has the right to obtain confirmation from us as to whether personal data is being processed, and to information about this data as well as further information and copies of this data.
- The right to rectification: Every data subject has the right to demand the immediate rectification of inaccurate personal data.
- The right to erasure ("right to be forgotten"): Every data subject has the right to demand the immediate erasure of their personal data.
- The right to restriction of processing: Every data subject has the right to demand the restriction of the processing of their personal data.
- The right to data portability: Every data subject has the right to receive the personal data concerning them, which they have provided to us, in a structured, commonly used and machine-readable format.
- The right to object: Every data subject has the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is based on Article 6(1)(e) or (f) GDPR. If personal data concerning the data subject is processed by us for direct marketing purposes, the data subject may object to this processing in accordance with Article 21(2) and (3) GDPR.
- Right to withdraw data protection consent: Every data subject has the right to withdraw consent to the processing of personal data at any time.
The data subject also has the right to lodge a complaint with a supervisory authority if they believe that the processing of their personal data violates the GDPR.
The supervisory authority responsible for us is: State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
General information on the legal basis of data processing
Storage period of personal dataCollection of general data and information
General information on the legal bases of data connection
"Personal data" means any information relating to an identified or identifiable natural person. We process this data in accordance with applicable data protection laws, in particular the GDPR and the BDSG. We may only process personal data if one of the following legal bases applies:
Legal Basis - GDPR Requirement
Informed Consent - Art. 6 (1) a
Performance of a contract - Art. 6 (1) b
Implementation of pre-contractual measures - Art. 6 (1) b
Fulfillment of legal obligations - Art. 6 (1) c
Protection of vital interests - Art. 6 (1) d
Safeguarding our legitimate interest - Art. 6 (1) f
Retention period for personal data
We store your data only for as long as necessary to achieve the purpose of processing or to fulfill our contractual or legal obligations, unless otherwise specified in the following information. Legal retention obligations may arise from commercial or tax regulations. After the end of the calendar year in which we collected the data, we will store personal data contained in our accounting records for ten years and personal data contained in business letters and contracts for six years. Furthermore, we will store data related to consent requiring proof as well as complaints and claims for the duration of the statutory limitation periods. Data stored for advertising purposes will be deleted if you object to processing for this purpose.
Collection of general data and information
Collection of General Data and Information
As soon as you visit our website, our web server collects some general data and technical information – as shown in the following table:
Collected data - Purpose of collection
browser types and versions used - correct display of page content
operating system used, visitor origin (referrer, e.g. Google), clicked subpages - optimization of our website content and our advertising
date and time of access to the website, as well as the visitor's IP address and internet service provider - ensuring the continuous functionality of our IT systems (for operating the website) and preventing misuse
other data and information for threat prevention in case of attacks - provision of relevant information to law enforcement authorities in case of a cyber attack