Thermalcircle.de

climbing the thermals

User Tools

Site Tools


privacy_policy

Privacy Policy

(1) Data protection at a glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data are all data with which you can be personally identified. You can find detailed information on the subject of data protection in our data privacy statement below this text.

Data collection on this website

Who is responsible for collecting data on this website?

Data processing on this website is carried out by the website operator. Contact details of the website operator can be found below in section (3) on this page and also in the Legal Notice of this website.

How is your data being collected?

On the one hand, your data is collected by you communicating it to us. This can e.g. be data which you sent to the website operator via E-Mail. Other data is being captured by our IT systems either automatically or with your consent when you visit the website. This is primarily technical data (e.g. your Internet browser, operating system or time of the page view). This data is recorded automatically as soon as you enter this website.

For what are we using your data?

Part of the data is collected to ensure that the website is provided correctly. Other data can be used to analyze your user behavior.

Which rights do you have regarding your data?

You have the right at any time and free of charge to obtain information about the origin, recipient and purpose of your stored personal data. You also have the right to rectification or to request deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to to request the restriction of the processing of your personal data in certain circumstances. You also have the right to lodge a complaint with the responsible supervisory authority. You can contact us at any time using the address in our Legal Notice if you have questions regarding this privacy policy or other questions regarding data privacy.

(2) Hosting

External Hosting

This website is being hosted at an external service provider (hoster). The personal data that is collected at this website is being saved on servers of this hoster. This can be especially IP addresses, contact requests, meta- and communication-data, contact data, names, website accesses and other data, that are generated by using a website. The hoster is used in the interest of a secure, fast and efficient provision of our online services by a professional provider (article 6(1)(f) GDPR). Our hoster will only process your data insofar as it is necessary to fulfill his performance obligations and will follow our instructions regarding this data. In order to ensure data protection-compliant processing, we have concluded a contract for order processing / data processing agreeement with our hoster.

(3) General and mandatory information

Data protection

The operator(s) of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and with this privacy policy.

Information regarding responsible party

The responsible party for data processing on this website is:

Andrej Stender, Dipl.-Ing.(FH)
Willstr. 21
90429 Nürnberg, Germany
Tel. +49 (0) 179 211 388 4
E-Mail andrej.stender(at)thermalcircle.de

The responsible party is a natural person, who alone or together with others decides about purposes and means of processing personal data (e.g. E-Mail addresses, IP addresses, …). This person is also the website operator and content creator as stated in our Legal Notice. For the purpose of a simple phrasing, the texts on this privacy policy page refer to this party as “we”, the “website operator(s)”.

Many data processing operations are only possible with your explicit consent. You can revoke your consent at any time. An informal notification by email to us is sufficient. The legality of the data processing carried out before the revocation remains unaffected by the revocation.

Right to object to data collection in special cases and direct mail (article 21 (1,2,3) GDPR)

YOU SHALL HAVE THE RIGHT TO OBJECT, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, AT ANY TIME TO PROCESSING OF PERSONAL DATA CONCERNING YOU WHICH IS BASED ON POINT (E) OR (F) OF ARTICLE 6(1), INCLUDING PROFILING BASED ON THOSE PROVISIONS. THE CONTROLLER SHALL NO LONGER PROCESS THE PERSONAL DATA UNLESS THE CONTROLLER DEMONSTRATES COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS OR FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS.

WHERE PERSONAL DATA ARE PROCESSED FOR DIRECT MARKETING PURPOSES, YOU SHALL HAVE THE RIGHT TO OBJECT AT ANY TIME TO PROCESSING OF PERSONAL DATA CONCERNING YOU FOR SUCH MARKETING, WHICH INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING.

WHERE YOU OBJECT TO PROCESSING FOR DIRECT MARKETING PURPOSES, THE PERSONAL DATA SHALL NO LONGER BE PROCESSED FOR SUCH PURPOSES.

Right to lodge a complaint with the competent supervisory authority

In the event of violations of the GDPR, those affected have the right to lodge a complaint with supervisory authority, in particular in the member state of their habitual residence, their place of work or the location of the alleged violation. The right to complain exists without prejudice to any other administrative or judicial remedies.

Right to receive the data

You have the right to get handed over your personal data that we are processing based on your consent to either yourself or to a third party in a common, machine-readable format. Provided that you demand transfer of the data directly to another responsible person, this will only take place if it is technically feasible.

SSL/TLS encryption

For security reasons we use SSL/TLS encryption for data transfer between the server and your browser. You can recognize an encrypted connection if the address bar in your browser changes from http:// to https:// and shows a Lock-symbol in the browser bar. If SSL/TLS encryption is activated, data you are sending us cannot be read or intercepted by a third party.

Disclosure, deletion and rectification

Within the framework of the applicable legal provisions you have the right at any time and free of charge to get information about your saved personal data, their origin, recipient and the purpose of processing. Additionally you then have the right of rectification or deletion of this data. You can contact us at any time at the address given above and in our Legal Notice regarding this topic or related questions.

Right to to request restriction of data processing

You have the right to request that the processing of your personal data be restricted. You can contact us at any time at the address given above and in our Legal Notice. The right to get processing of your personal data restricted exists in the following cases:

  • If you contest the accuracy of your personal data stored with us, we usually will require time to check this. For the duration of this check, you have the right to Request restriction of processing of your personal data.
  • If processing of your personal data happened / happens unlawfully, you can request restriction of data processing instead of deletion.
  • If we no longer need your personal data, but you need it to exercise, defense or assertion of legal claims, you have the right to demand restriction of processing instead of deletion of your personal data.
  • If you have filed an objection in accordance with article 21 (1) GDPR, your and our interests must be weighed up. As long as it is not clear whose interests outweigh the others interests, you have the right to request that processing of your personal data be restricted.

If you have restricted the processing of your personal data, this data may only be processed with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest in the European Union or a member state.

(4) Data collection on this website

Use of cookies

This website uses cookies. Cookies are small text files and do not pose any harm to your end device. They are saved on your end device either temporarily for the duration of a session (session cookies) or persistently (persistent cookies). Persistent cookies remain on your end device until you delete them or an automatic deletion is done by your web-browser. You can configure your web-browser to inform you about cookies getting saved, to allow this only in individual cases, to deny this in individual cases or even deny it in general. Further you can configure to delete cookies when closing the web-browser. If saving of cookies is being denied, the functionality of this website might be limited.

This website only uses cookies which are essential for the website to function correctly or to provide specific features (e.g. user login). Those are saved with article 6(1)(f) GDPR as legal basis, as long as no other legal basis is stated. We as website operator have a legitimate interest in these cookies being saved to provide this website in a flawless way.

No third-party or tracking cookies are being used on this website! Those are cookies which could e.g. be used to analyze user behavior or be part of displaying advertising banners. If cookies from third parties or cookies for analyzing purposes will be used on this website at some point in the future, then we will update this privacy policy statement accordingly and explicitly inform you here in detail. Of course we will then ask you for consent by means of a cookie banner providing an opt-in and save those cookies solely based on article 6(1)(a) GDPR. This consent can then be revoked at any time.

This website is based on the Dokuwiki engine and thereby uses these cookies:

  • The DokuWiki cookie
    • This is the standard PHP session identifier. It is used to hold temporary data and to avoid CSRF attacks.
    • Importance: necessary
    • Typical content: random ID
    • Expires: at the end of the browser session
  • The DW<hash> cookie
    • This is used for authentication after login and holds the necessary data to (re)login a previously authenticated user. It will only be set for users who login (see below).
    • Typical content: encrypted username and password
    • Expires: in a year (if “Remember me” was checked when logging in, otherwise: at the end of the browser session)
  • The DOKU_PREFS cookie
    • This is used for remembering helpful user preferences, like the size of the editor textarea. It will only be set for users who login (see below).
    • Typical content: name/value pairs in plain text
    • Expires: in a year

Login

The Dokuwiki engine provides a user login for creating and editing the content of this website. The DW<hash> and the DOKU_PREFS cookies are part of the technical implementation of that login. However this feature is solely reserved for us (the website operator) because we are the only content creators. No user registration and user login credentials are provided to any visitors of the website and thereby no collection or processing of personal data of site visitors results from that of from those two cookies.

Server Log Files

We (the website operator) automatically collect and store information that your webbrowser transmits to us in so-called server log files. These are:

  • type and version of your webbrowser
  • your operating system
  • referrer URL
  • hostname of client host
  • time and date of request to server
  • ip address

This data is not merged with other data sources and is collected based on article 6(1)(f) GDPR. We (the website operator) have a legitimate interest in the technically error-free presentation and optimization of website. Further we have a legitimate interest to analyze and prevent abuse. This allows us to keep users away who try to hack/attack our website or to have necessary evidence in case of illegal or criminal activity. For this, the server log files must be recorded. These log files are automatically being deleted after seven days.

Request via E-Mail or Telephone

If you contact us via e-mail or telephone, your request including all personal data resulting from it (name, request) will be saved and processed for the purpose of processing your request. We won't pass on data without your consent. Processing of this data takes place based on our legitimate interest in effective processing requests addressed to us (article 6(1)(f) GDPR) or based on your consent (article 6(1)(a) GDPR) if consent has been requested. The data you sent to us via contact requests remains with us until you request us to delete it, until you revoke your consent to the storage or until the purpose for data storage no longer applies (e.g. after processing of your request has been completed). Mandatory statutory provisions (in particular statutory retention periods) remain unaffected.

privacy_policy.txt · Last modified: 2021-04-10 by Andrej Stender