1. Introduction
This website is operated by: Nils Haberkamp Solutions.
It is very important to us to handle the data of our website visitors with confidence and to protect them in the best possible way. For this reason, we make every effort to comply with the requirements of the GDPR.
Below we explain how we process your data on our website. We use language that is as clear and transparent as possible so that you really understand what happens to your data.
2. General information
2.1 Processing of personal data and other terms
Data protection applies to the processing of personal data. Personal data means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are currently sitting. Such data is processed when 'something happens to it'. Here, for example, the IP is transmitted from the browser to our provider and stored there automatically. This is then a processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
2.2 Applicable regulations/laws - GDPR, BDSG and TDDDG
The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.
In addition, the TDDDG supplements the provisions of the GDPR as far as the use of cookies is concerned.
2.3 The responsible
The controller within the meaning of the GDPR is responsible for data processing on this website. This is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
You can reach the responsible person under:
Nils Haberkamp
Bernhardstrasse 14A 48727 Billerbeck Germany
2.4 This is how data is basically processed on this website
As we have already established, there is data (e.g. IP address) that is collected automatically. This data is mainly required for the technical provision of the website. If we also use personal data or collect other data, we will inform you of this or ask for your consent.
Other personal data you share with us consciously.
You will find more detailed information below.
2.5 Your Right
The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the rectification, blocking or erasure of this data or lodge a complaint with the competent data protection supervisory authority. You can revoke your consent at any time.
You can find out in detail what these rights are and how to exercise them in the last section of this Privacy Policy.
2.6 Data protection - Our view
Data protection is more than just a chore for us! Personal data is of great value and careful handling of this data should be a matter of course in our digitalized world. In addition, you as a website visitor should be able to decide for yourself what "happens" to your data, when and by whom. Therefore, we undertake to comply with all legal provisions, collect only the data necessary for us and, of course, treat them confidentially.
2.7 Disclosure and deletion
The transfer and deletion of data are also important and sensitive topics. Therefore, we would like to briefly inform you in advance about our general approach to this.
A transfer of data only takes place on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if it is a so-called Data Processor and a Data Processing Agreement has been concluded in accordance with Art. 28 GDPR.
We delete your data when the purpose and the legal basis for processing cease to exist and the deletion is not contrary to any other legal obligations. A 'good' overview of this is also provided by Art. 17 GDPR.
For further information, please refer to this Privacy Policy and contact the responsible person if you have any specific questions.
2.8 Hosting
This website is hosted externally. The personal data collected on this website is stored on the host's servers. This includes the automatically collected and stored log files (see below for more details), as well as all other data provided by website visitors.
External hosting is used for the purpose of secure, fast and reliable provision of our website and in this context serves to fulfill the contract with our potential and existing customers.
The legal basis for the processing is Art. 6 para. 1 lit. a, b and f GDPR, as well as § 25 para. 1 TDDDG, insofar as consent includes the storage of cookies or access to information in the terminal device of the website visitor or user within the meaning of the TDDDG.
Our hoster only processes data that is necessary for the fulfillment of its service obligation and acts as our Data Processor, which means that it is subject to our instructions. We have concluded a corresponding Data Processing Agreement with our hoster.
Vercel
Vercel Inc, 340 S Lemon Ave #4133, Walnut, CA 91789, USA
https://vercel.com/legal/privacy-policy.
2.9 Legal basis
The processing of personal data always requires a legal basis. The GDPR provides for the following possibilities in Art. 6 (1) Sentence 1:
a)The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes;
b)the processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject's request;
c)processing is necessary for compliance with a legal obligation to whichthe responsible person is subject to;
d)the processing is necessary in order to protect the vital interests of the data subject or another natural person;
e)processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested inthe responsible was transferred;
f)processing is necessary for the purposes of safeguarding the legitimate interests ofof the responsible orof a third party necessary, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override this, in particular where the data subject is a child.
In the following sections, we will provide you with the specific legal basis for the respective processing.
3.What happens on our website
By visiting our website, we process personal data about you.
To protect this data as best as possible against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the fact that a https:// or a lock symbol is displayed in the address bar of your browser.
In the following, you will learn which data is collected when you visit our website, for what purpose this is done and on what legal basis.
3.1Data collection when calling up the website
By calling up the website, information is automatically stored in so-called server log files. This is the following information:
-Browser type and version
-Operating system used
-Referrer URL
-Host name of the accessing computer
-Time of the server request
-IP address
This data is temporarily required in order to be able to display our website to you permanently and without problems. In particular, this data serves the following purposes:
-System security of the website
-System stability of the website
-Website troubleshooting
-Connecting to the website
-Website presentation
The data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR and is based on our legitimate interest in the processing of this data, in particular the interest in the functionality of the website as well as its security.
If possible, this data is stored pseudonymously and deleted after the respective purpose has been achieved.
Insofar as the server log files allow the identification of the person concerned, the data is stored for a maximum period of 14 days. An exception exists if a security-relevant event occurs. In this case, the server log files are stored until the elimination and final clarification of the security-relevant event.
For the rest, a consolidation with other data does not take place.
3.2Cookies
3.2.1General
This website uses so-called cookies. This is a data record, information that is stored in the browser of your terminal device and is related to our website.
By setting cookies, the navigation of the website in particular can be made easier for the visitor.
3.2.2Reject cookies
The setting of cookies can be prevented by adjusting the settings of your browser.
Here you can find the corresponding links to frequently used browsers:
Mozilla Firefox:https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+l%C3%B6schen&redirectlocale=en
Google Chrome:https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Microsoft Edge:https://support.microsoft.com/de-de/windows/l%C3%B6schen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Safari:https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web andhttps://support.apple.com/de-de/guide/safari/sfri11471/mac. As far asYou another browserusesit is recommended to use the nameYours browser and 'delete and manage cookies' in a search engine and follow the official link toYour browser to follow.
Alternativeyou can use your Cookie settings also underwww.aboutads.info/choices/ orwww.youronlinechoices.commanage.
However, we must inform you that a comprehensive blocking/deletion of cookies can lead to impairments in the use of the website.
3.2.3Technically necessary cookies
We use technically necessary cookies on this website to ensure that our website functions without errors and in accordance with applicable laws. They help to make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.
The legal basis for this is, depending on the individual case, Art. 6 para. 1 lit. b, c and/or f GDPR.
3.3Data processing through user input
3.3.1Contact
a)E-mail
When you contact us by email, we process your email address and any other data contained in the email. This data is stored on the mail server and in some cases on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.
3.4Mailing service
3.4.1Resend
We use the Resend e-mail service on our website, provided by Resend, Inc, 2261 Market Street, #5039, San Francisco, CA 94114, USA.
This service enables us to efficiently send transactional and marketing emails to our users. Personal data such as email addresses, names and the content of the emails are processed. The purpose of data processing is to communicate with our users, for example for order confirmations or sending newsletters.
The legal basis for the processing of this data is Art. 6 para. 1 lit. a GDPR, as the processing is based on the consent of the data subject, and Art. 6 para. 1 lit. f GDPR, as there is a legitimate interest in efficient communication with our users.
Resend uses cookies to ensure the functionality of the platform and to optimize the user experience. These cookies are only set with consent and can be revoked at any time. The legal basis for this is Art. 6 para. 1 lit. a GDPR.
Personal data is transferred to the USA. Resend is certified under the EU-U.S. Data Privacy Framework to ensure an adequate level of data protection. In addition, standard contractual clauses (SCCs) in accordance with Art. 46 GDPR are used as suitable guarantees.
The data is stored for as long as it is required for the stated purpose or as long as statutory retention periods require.
Further information on data processing can be found at: https://resend.com/legal/dpa.
3.5Analysis and tracking tools
3.5.1PostHog
We integrate the PostHog service on our website. This is a service of PostHog Inc, 2261 Market Street #4008, San Francisco, CA 94114, United States.
PostHog offers the possibility of product analysis. Conversion rates can be determined, user paths can be tracked and user behavior in general can be displayed. There is also the option of session playback. Here, a results timeline can be used to show what users have done during the session. PostHog also offers website developers the opportunity to carry out various tests in order to optimize performance. This analysis takes place anonymously. Furthermore, tracking is carried out without the use of cookies. The data is stored in Germany or the USA, depending on the settings.
The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the anonymized analysis to ensure the technical stability of our website.
Data transfer to the USA cannot be ruled out. The standard contractual clauses (SCC) of the EU Commission then apply to ensure an appropriate level of data protection.
More information:https://posthog.com/privacy.
3.6Data transfer to providers on our platform
As part of the use of our platform for the use of services or the purchase of products, we pass on certain personal data to the providers (e.g. service providers, sellers) in order to enable the processing of the corresponding services. This data transfer is necessary so that the providers can provide their services or deliver products.
In doing so, we may pass on the name to identify the user, the contact details for contacting us in the event of queries or problems, the address for providing the service or delivering products, the order details for transmitting details of the requested service or ordered products and, if necessary, payment information for processing the payment (this is usually encrypted and in accordance with the applicable security standards), to the providers.
The legal basis for data transfer is Art. 6 para. 1 lit. b GDPR, as it is necessary for the fulfillment of the contractual relationship between you and the provider.
The providers are obliged to use the transmitted data exclusively for processing the requested services or deliveries and to protect the data in accordance with the applicable data protection laws. They are the direct contractual partner and therefore bear their own responsibility for the processing of personal data. If you have any questions about their data processing, you can contact the provider directly.
3.7Payment services
3.7.1Stripe
We use Stripe on this website. Stripe provides technology for the operation of online payment systems. This service is provided by Stripe Payments Europe Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland Attention.
For the purpose of payment processing, the payment data of the website visitor will be processed by Stripe as soon as a contractual relationship is established via this website. The respective contractual and data protection provisions of Stripe apply to the respective transaction.
Stripe sets functional cookies that are necessary for the provision of the services. These cookies are set on the basis of Art. 6 para. 1 lit. f GDPR, as there is a legitimate interest in ensuring the functionality of the website. Additional cookies such as analysis or marketing cookies are only set with consent, based on Art. 6 para. 1 lit. a GDPR.
Otherwise, the legal basis for processing by Stripe is Art. 6 (1) lit. b GDPR. The data is processed for the purpose of contractual obligations.
We also have a legitimate interest in the processing of this data within the meaning of Art. 6 para. 1 lit. f GDPR in order to ensure a fast and reliable payment process.
The data will be deleted as soon as they are no longer required for data processing.
https://stripe.com/de/privacy/
4.This is also important
Finally, we would like to inform you in detail about your rights and how you will be informed about changes in data protection requirements.
4.1Yours Rights in detail
4.1.1Right to information according to Art. 15 GDPR
You can request information about whether your personal data is being processed. If this is the case, you can request further information about the type and manner of processing. A detailed list can be found in Art. 15 (1) a) to h) GDPR.
4.1.2Right to rectification according to Art. 16 GDPR
This right includes the correction of inaccurate data and the completion of incomplete personal data.
4.1.3Right to deletion according to Art. 17 GDPR
This so-called 'right to be forgotten' gives you the right, under certain conditions, to demand the deletion of personal data by the controller. This is generally the case if the purpose of the data processing has ceased to exist, if consent has been revoked or if the initial processing took place without a legal basis. You can find a detailed list of reasons in Art. 17 (1) lit. a to f GDPR. Furthermore, this "right to be forgotten" corresponds with the obligation of the controller under Art. 17 (2) GDPR to take appropriate measures to bring about a general erasure of the data.
4.1.4Right to restriction of processing according to Art. 18 GDPR
This right is subject to the conditions set out in Art. 18(1)(a) to (d).
4.1.5Right to data portability according to Art. 20 GDPR
Here, the basic right to receive one's own data in a common form and to transfer it to another data controller is regulated. However, this only applies to data processed on the basis of consent or a contract pursuant to Art. 20 (1) (a) and (b) and to the extent that this is technically feasible.
4.1.6Right of objection according to Art. 21 GDPR
In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the controller in the processing and if the processing relates to direct marketing and/or profiling.
4.1.7Right to "decision in individual cases" according to Art. 22 GDPR
In principle, you have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects vis-à-vis you or similarly significantly affects you. However, this right is also subject to restrictions and additions in Art. 22 (2) and (4) GDPR.
4.1.8Other rights
The GDPR contains comprehensive rights to inform third parties about whether or how you have asserted rights under Art. 16, 17, 18 GDPR. However, this only applies insofar as this is possible or feasible with reasonable effort.
At this point, we would like to inform you once again of your right to withdraw your consent in accordance with Article 7 (3) of the GDPR. However, this does not affect the lawfulness of the processing carried out up to that point.
In addition, we would like to inform you about your rights according to §§ 32 ff. BDSG, which, however, are largely congruent with the rights just described.
4.1.9Right of appeal according to Art. 77 GDPR
You also have the right to lodge a complaint with a data protection supervisory authority if you consider that the processing of personal data relating to you infringes this Regulation.
5.What if tomorrow the GDPR is abolished or other changes take place?
The current status of this Privacy Policy is 16.04.2025. From time to time it is necessary to adapt the content of the Privacy Policy in order to react to actual and legal changes. We therefore reserve the right to amend this Privacy Policy at any time. We will publish the amended version in the same place and recommend that you read the Privacy Policy regularly.
Created with the kind support of Dieter does data protection