{"id":9211,"date":"2026-05-11T21:08:11","date_gmt":"2026-05-11T21:08:11","guid":{"rendered":"https:\/\/stanley-rubyn.com\/?page_id=9211"},"modified":"2026-05-19T11:29:02","modified_gmt":"2026-05-19T11:29:02","slug":"privacy-policy","status":"publish","type":"page","link":"https:\/\/stanley-rubyn.com\/en\/privacy-policy\/","title":{"rendered":"Privacy Policy"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-page\" data-elementor-id=\"9211\" class=\"elementor elementor-9211\" data-elementor-post-type=\"page\">\n\t\t\t\t<div class=\"elementor-element elementor-element-0759843 e-flex e-con-boxed e-con e-parent\" data-id=\"0759843\" data-element_type=\"container\" data-e-type=\"container\" data-settings=\"{&quot;background_background&quot;:&quot;classic&quot;}\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t<div class=\"elementor-element elementor-element-de621be e-con-full e-flex e-con e-child\" data-id=\"de621be\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t<div class=\"elementor-element elementor-element-61cb4d9 elementor-widget elementor-widget-heading\" data-id=\"61cb4d9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<div class=\"elementor-heading-title elementor-size-default\">Privacy Policy<\/div>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-7dbab57 e-con-full e-flex e-con e-child\" data-id=\"7dbab57\" data-element_type=\"container\" data-e-type=\"container\" data-settings=\"{&quot;background_background&quot;:&quot;classic&quot;}\">\n\t\t<div class=\"elementor-element elementor-element-4ad3a6f e-con-full e-flex e-con e-child\" data-id=\"4ad3a6f\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t<div class=\"elementor-element elementor-element-90c1cae elementor-toc--minimized-on-tablet elementor-widget elementor-widget-table-of-contents\" data-id=\"90c1cae\" data-element_type=\"widget\" data-e-type=\"widget\" data-settings=\"{&quot;no_headings_message&quot;:&quot;Es wurden keine \\u00dcberschriften auf dieser Seite gefunden.&quot;,&quot;min_height&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:0,&quot;sizes&quot;:[]},&quot;motion_fx_motion_fx_scrolling&quot;:&quot;yes&quot;,&quot;headings_by_tags&quot;:[&quot;h1&quot;,&quot;h2&quot;,&quot;h3&quot;,&quot;h4&quot;,&quot;h5&quot;,&quot;h6&quot;],&quot;marker_view&quot;:&quot;numbers&quot;,&quot;minimize_box&quot;:&quot;yes&quot;,&quot;minimized_on&quot;:&quot;tablet&quot;,&quot;hierarchical_view&quot;:&quot;yes&quot;,&quot;min_height_tablet&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_mobile&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;motion_fx_devices&quot;:[&quot;desktop&quot;,&quot;tablet&quot;,&quot;mobile&quot;]}\" data-widget_type=\"table-of-contents.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__header\">\n\t\t\t\t\t\t<h2 class=\"elementor-toc__header-title\">\n\t\t\t\tInhaltsverzeichnis\t\t\t<\/h2>\n\t\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--expand\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__90c1cae\" aria-expanded=\"true\" aria-label=\"Open table of contents\"><svg aria-hidden=\"true\" class=\"e-font-icon-svg e-fas-chevron-down\" viewBox=\"0 0 448 512\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M207.029 381.476L12.686 187.132c-9.373-9.373-9.373-24.569 0-33.941l22.667-22.667c9.357-9.357 24.522-9.375 33.901-.04L224 284.505l154.745-154.021c9.379-9.335 24.544-9.317 33.901.04l22.667 22.667c9.373 9.373 9.373 24.569 0 33.941L240.971 381.476c-9.373 9.372-24.569 9.372-33.942 0z\"><\/path><\/svg><\/div>\n\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--collapse\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__90c1cae\" aria-expanded=\"true\" aria-label=\"Close table of contents\"><svg aria-hidden=\"true\" class=\"e-font-icon-svg e-fas-chevron-up\" viewBox=\"0 0 448 512\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M240.971 130.524l194.343 194.343c9.373 9.373 9.373 24.569 0 33.941l-22.667 22.667c-9.357 9.357-24.522 9.375-33.901.04L224 227.495 69.255 381.516c-9.379 9.335-24.544 9.317-33.901-.04l-22.667-22.667c-9.373-9.373-9.373-24.569 0-33.941L207.03 130.525c9.372-9.373 24.568-9.373 33.941-.001z\"><\/path><\/svg><\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<div id=\"elementor-toc__90c1cae\" class=\"elementor-toc__body\">\n\t\t\t<div class=\"elementor-toc__spinner-container\">\n\t\t\t\t<svg class=\"elementor-toc__spinner eicon-animation-spin e-font-icon-svg e-eicon-loading\" aria-hidden=\"true\" viewBox=\"0 0 1000 1000\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M500 975V858C696 858 858 696 858 500S696 142 500 142 142 304 142 500H25C25 237 238 25 500 25S975 237 975 500 763 975 500 975Z\"><\/path><\/svg>\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-c9a768d e-con-full e-flex e-con e-child\" data-id=\"c9a768d\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t<div class=\"elementor-element elementor-element-ca53514 elementor-widget elementor-widget-text-editor\" data-id=\"ca53514\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h1><strong>General Information<\/strong><\/h1><p style=\"font-weight: 400;\">I inform you in accordance with Articles 13 and 14 of the GDPR (General Data Protection Regulation) about the collection, storage, and processing of your personal data when using my website. I reserve the right to adapt this declaration as needed to ensure it always complies with current legal requirements.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Contact Details of the Controller<\/strong><\/p><p style=\"font-weight: 400;\">The person responsible for this website is:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Stanley Okoro<\/strong><br \/>Petersburger Str. 39<br \/>10249 Berlin<br \/>Germany<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Email:\u00a0info@stanley-rubyn.com<br \/>Mobile: +49 (0) 172 755 44 56<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><h1><strong>Data Processing on My Website<\/strong><\/h1><h2><strong>Contact via WhatsApp Business and Superchat<\/strong><\/h2><p style=\"font-weight: 400;\">I offer contact via the messenger service\u00a0<strong>WhatsApp<\/strong>. Since I use the\u00a0<strong>WhatsApp Business Platform (Cloud API)<\/strong><strong>\u00a0<\/strong>for business communication, data processing takes place via the platform\u00a0<strong>Superchat<\/strong>\u00a0(SuperX GmbH, Prenzlauer Allee 242-247, 10405 Berlin).<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Further information can be found in the\u00a0<a href=\"https:\/\/www.superchat.de\/datenschutz\">Privacy Policy of SuperX GmbH<\/a>.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If you contact me via WhatsApp, your message is transmitted end-to-end encrypted to the\u00a0<strong>WhatsApp Cloud<\/strong>. The message is stored there temporarily until it is successfully forwarded to Superchat.<\/p><p style=\"font-weight: 400;\">Superchat activates the &#8222;Local Storage Solution&#8220; function for my use. This means that the\u00a0<strong>content of your message<\/strong>\u00a0is permanently stored on servers in\u00a0<strong>Germany<\/strong>\u00a0after decryption by the Cloud API. Since communication via the WhatsApp Cloud API is handled by Meta, the message briefly passes through servers in the\u00a0<strong>USA<\/strong>\u00a0(or other countries) during transmission before arriving at Superchat in Germany.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">These data are\u00a0<strong>not permanently stored<\/strong>\u00a0during transit and are automatically deleted after successful forwarding (within approx. 60 minutes). Please note that Meta (WhatsApp), as an infrastructure provider independent of Superchat, can collect and process\u00a0<strong>metadata<\/strong>\u00a0(e.g., time, frequency, device information) as an independent controller, even if the message content remains in Germany.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Role of the Providers:<\/strong><\/p><ul><li style=\"font-weight: 400;\"><strong> You (Customer):<\/strong>Are the sender of the message.<\/li><li style=\"font-weight: 400;\"><strong> I (Entrepreneur):<\/strong>Am the controller for the communication and use Superchat as a processor.<\/li><\/ul><p style=\"font-weight: 400;\"><strong>Superchat (SuperX GmbH):<\/strong>\u00a0Is my processor and processes data strictly according to my instructions.<\/p><ul><li style=\"font-weight: 400;\"><strong> Meta (WhatsApp):<\/strong>Is a sub-processor providing the infrastructure (Cloud API).<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Answering your inquiries and establishing contact<\/li><li style=\"font-weight: 400;\">Processing booking requests and concluding contracts<\/li><li style=\"font-weight: 400;\">Technically ensuring encrypted communication<\/li><li style=\"font-weight: 400;\">Preventing abuse and spam<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Phone number<\/li><li style=\"font-weight: 400;\">Name (if stored)<\/li><li style=\"font-weight: 400;\">Content of your message<\/li><li style=\"font-weight: 400;\">Metadata (time of message, device information)<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address (used by Meta\/WhatsApp for delivery, not permanently stored by me)<\/li><li style=\"font-weight: 400;\">Message timestamp<\/li><li style=\"font-weight: 400;\">Browser and operating system information (only necessary for transmission)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Processing is based on your\u00a0<strong>consent<\/strong>\u00a0(Art. 6 Para. 1 lit. a GDPR) if you actively contact me via WhatsApp, or for\u00a0<strong>contract performance<\/strong>\u00a0(Art. 6 Para. 1 lit. b GDPR) if the communication is part of a contractual relationship.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Messages are end-to-end encrypted. During transmission and while at rest on Superchat&#8217;s servers (in Germany), the data is additionally encrypted. Unlike the normal WhatsApp app on mobile phones, using the Cloud API\u00a0<strong>does not synchronize your entire contact list<\/strong>\u00a0with Meta. Only the phone number necessary for communication is transmitted. Superchat processes data exclusively on my behalf. I have full control over the data and can initiate its deletion.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Message content is stored in\u00a0<strong>Germany<\/strong>. Transmission to the USA only occurs during transient transport (cache\/queues), where data is automatically deleted after 60 minutes. This transmission is secured by the\u00a0<strong>EU-US Data Privacy Framework<\/strong>\u00a0and Standard Contractual Clauses.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Messages are stored as long as necessary to answer your inquiry or fulfill the contract. Afterward, they are deleted unless statutory retention obligations (e.g., for business correspondence) apply.<\/p><p style=\"font-weight: 400;\">Meta Platforms Ireland Limited is responsible as a sub-processor for providing the infrastructure. Meta collects its own metadata (e.g., time, frequency of use) as an independent controller for operating the service.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Further information can be found in the\u00a0<a href=\"https:\/\/www.whatsapp.com\/legal\/business-app-privacy-policy\">WhatsApp Privacy Policy<\/a>.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">A Data Processing Agreement (DPA) exists between me and SuperX GmbH in accordance with Art. 28 GDPR. This ensures that Superchat processes data only according to my instructions and takes appropriate technical and organizational measures (e.g., encryption, access control).<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Contact Form (Fluent Forms)<\/strong><\/h2><p style=\"font-weight: 400;\">For creating contact forms or other forms, I use the plugin\u00a0<strong>&#8222;Fluent Forms&#8220;<\/strong>. Your entries are stored directly in my database. Since I use the\u00a0<strong>server<\/strong>\u00a0of my German web host, no content is forwarded to external cloud services.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Answering your inquiries and establishing contact<\/li><li style=\"font-weight: 400;\">Processing booking requests and concluding contracts<\/li><li style=\"font-weight: 400;\">Technically ensuring email delivery<\/li><li style=\"font-weight: 400;\">Preventing abuse and spam<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Name<\/li><li style=\"font-weight: 400;\">Email address and phone number (if provided)<\/li><li style=\"font-weight: 400;\">Content of your message<\/li><li style=\"font-weight: 400;\">Possibly other information you provide<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address<\/li><li style=\"font-weight: 400;\">Timestamp<\/li><li style=\"font-weight: 400;\">Browser and operating system information and the referrer URL<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">These data are protected by SSL\/TLS encryption during transmission. The collection of technical data serves exclusively to technically secure email delivery, filter spam, and ensure message management. No evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Processing is carried out for the performance of pre-contractual measures or contract fulfillment (Art. 6 Para. 1 lit. b GDPR), especially for booking requests. For general information inquiries, processing is based on my\u00a0<strong>legitimate interest<\/strong>\u00a0to effectively answer your inquiries and prevent abuse (Art. 6 Para. 1 lit. f GDPR). If you have given explicit consent (e.g., for the newsletter), I use this as an additional legal basis (Art. 6 Para. 1 lit. a GDPR).<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Appointment Booking (FluentBooking)<\/strong><\/h2><p style=\"font-weight: 400;\">For appointment bookings, I use the plugin\u00a0<strong>&#8222;FluentBooking&#8220;<\/strong>, a locally hosted service that writes booking entries directly into my database (i.e., data is not forwarded to external cloud services or the plugin provider&#8217;s servers).<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Arranging initial telephone consultations<\/li><li style=\"font-weight: 400;\">Booking sessions in my home studio (e.g., audio recordings)<\/li><li style=\"font-weight: 400;\">Communication regarding appointment confirmation and changes<\/li><li style=\"font-weight: 400;\">Managing and billing booked services<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Name, email address, and phone number<\/li><li style=\"font-weight: 400;\">Desired appointment and duration of the booking<\/li><li style=\"font-weight: 400;\">Type of service (phone call or studio session)<\/li><li style=\"font-weight: 400;\">Possibly additional messages or special requests<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address, timestamp, browser and operating system information<\/li><li style=\"font-weight: 400;\">Email header data for reliable delivery<\/li><li style=\"font-weight: 400;\">Cookie data for session management<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">These data are protected by SSL\/TLS encryption during transmission. The collection of technical data serves exclusively to technically secure email delivery, filter spam, and ensure message management. No evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Processing is carried out for the performance of pre-contractual measures or contract fulfillment (Art. 6 Para. 1 lit. b GDPR), especially for appointment bookings. The collection of technical data is based on my legitimate interest to ensure the security and functionality of the booking system and prevent abuse (Art. 6 Para. 1 lit. f GDPR). If you have given explicit consent, I use this as an additional legal basis (Art. 6 Para. 1 lit. a GDPR).<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Email Sending (FluentSMTP)<\/strong><\/h2><p style=\"font-weight: 400;\">For secure and reliable email sending, I use the plugin\u00a0<strong>&#8222;FluentSMTP&#8220;<\/strong>. It ensures that your inquiry or message reaches my email inbox directly. Since I use the\u00a0<strong>SMTP server<\/strong>\u00a0of my German web host, no content is forwarded to external cloud services.<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Secure and reliable delivery of your emails, contact form messages, and notifications<\/li><li style=\"font-weight: 400;\">Improving deliverability (avoiding spam)<\/li><li style=\"font-weight: 400;\">Technically ensuring sending and analyzing errors in case of delivery problems<\/li><\/ul><p style=\"font-weight: 400;\">Preventing abuse and spam by logging sending attempts<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Email address of the sender (and possibly the recipient)<\/li><li style=\"font-weight: 400;\">Name, content of your message, and subject line<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address of the sender (for identification and spam prevention)<\/li><li style=\"font-weight: 400;\">Sending timestamp and delivery status (successful, failed)<\/li><li style=\"font-weight: 400;\">Browser and operating system information and server headers<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">The sender&#8217;s IP address is stored only as long as necessary for technically securing the sending and spam prevention (usually max. 7 days) and is then deleted unless legal reasons require longer retention.<\/p><p style=\"font-weight: 400;\">These data are protected by SSL\/TLS encryption during transmission. The collection of technical data serves exclusively to technically secure sending, filter spam, and manage messages. No evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Processing is carried out for the performance of pre-contractual measures or contract fulfillment (Art. 6 Para. 1 lit. b GDPR), especially for inquiries via contact forms. For purely technical processes of email sending (e.g., system messages), processing is based on my legitimate interest to ensure the functionality of website communication and prevent abuse (Art. 6 Para. 1 lit. f GDPR).<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Newsletter (FluentCRM)<\/strong><\/h2><p style=\"font-weight: 400;\">I use the plugin\u00a0<strong>&#8222;<\/strong><strong>FluentCRM&#8220;<\/strong>\u00a0for creating newsletters and managing my subscribers, a locally hosted service that stores data directly in my database (i.e., data is not forwarded to external cloud services or the plugin provider&#8217;s servers).<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Regular information about current news, offers, and relevant content<\/li><li style=\"font-weight: 400;\">Direct communication with my subscribers<\/li><li style=\"font-weight: 400;\">Providing exclusive content or special offers<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Email address<\/li><li style=\"font-weight: 400;\">Name<\/li><li style=\"font-weight: 400;\">Date and time of subscription<\/li><li style=\"font-weight: 400;\">IP address at the time of subscription<\/li><li style=\"font-weight: 400;\">Confirmation status<\/li><li style=\"font-weight: 400;\">Unsubscribe date and time<\/li><li style=\"font-weight: 400;\">Possibly other information<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address with every retrieval or click<\/li><li style=\"font-weight: 400;\">Timestamp of opening the email or clicking links (open and click tracking)<\/li><li style=\"font-weight: 400;\">Browser and operating system information<\/li><li style=\"font-weight: 400;\">Referrer URL<\/li><li style=\"font-weight: 400;\">Delivery status and technical error messages<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">This data is used to analyze whether and when you open my emails and which links you click. This serves to optimize my content and technically ensure sending.\u00a0<strong>This tracking constitutes a form of profiling<\/strong>\u00a0according to Art. 4 No. 4 GDPR, as conclusions about your interests can be drawn from your interactions. However, I do not create comprehensive personality profiles for purposes outside this newsletter (e.g., no sharing with third parties or combination with other data sources). The processing of this tracking data is based on the same\u00a0<strong>consent<\/strong>\u00a0(Art. 6 Para. 1 lit. a GDPR) you gave for receiving the newsletter. You can object to tracking by unsubscribing from the newsletter.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">After a period of\u00a0<strong>30 days<\/strong>, the tracking data (open and click statistics) is fully\u00a0<strong>anonymized<\/strong>. This means the data can no longer be assigned to a specific email address or person but is only available as aggregated statistical values (e.g., open rate in percent). Once anonymization occurs, this data no longer falls under the scope of the GDPR and can be used for long-term analysis to optimize my content.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">The processing of your email address and data for the newsletter is based\u00a0<strong>exclusively on your explicit consent<\/strong>\u00a0in accordance with Art. 6 Para. 1 lit. a GDPR. Since the newsletter does not constitute a contractual service, Art. 6 Para. 1 lit. b GDPR is not applicable here. For general information inquiries (e.g., via contact form) not related to the newsletter, processing is based on my legitimate interest to effectively answer your inquiries and prevent abuse (Art. 6 Para. 1 lit. f GDPR).<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">You can revoke your consent at any time by unsubscribing from the newsletter or sending a message to\u00a0<strong>info@stanley-rubyn.com<\/strong>. With the revocation, the legal basis for further processing of your data for the newsletter ceases to exist.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Cookies and Other Embedded Services (Plugins)<\/strong><\/h1><h2><strong>Consent Tool (Real Cookie Banner)<\/strong><\/h2><p style=\"font-weight: 400;\">On my website, I use the plugin\u00a0<strong>&#8222;Real Cookie Banner&#8220;<\/strong>. With this, I obtain your consent for cookies before they are set. The plugin blocks external content such as embedded YouTube videos by default until you give your consent. The plugin runs on my own server. All data is stored directly in my database or as small files (cookies) on your device. Data is not sent to external companies or the manufacturer&#8217;s servers, as my website is hosted on a German server.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">To obtain consent for cookies<\/li><li style=\"font-weight: 400;\">To store which cookies you allowed or rejected<\/li><li style=\"font-weight: 400;\">To save consent as proof<\/li><li style=\"font-weight: 400;\">To ensure my website functions legally<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Consent status (accepted\/rejected for various cookie categories)<\/li><li style=\"font-weight: 400;\">Date and time of consent<\/li><li style=\"font-weight: 400;\">Version number of cookie settings (for update proofs)<\/li><li style=\"font-weight: 400;\">Session ID to assign the consent<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address (only briefly for the decision)<\/li><li style=\"font-weight: 400;\">Browser and device information<\/li><li style=\"font-weight: 400;\">When you opened the settings (timestamp)<\/li><li style=\"font-weight: 400;\">Which cookie names were set<\/li><li style=\"font-weight: 400;\">From which page you came (referrer URL)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">All data is encrypted during transmission (SSL\/TLS). Technical data helps only to securely store consent and keep the system functional. No evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">Processing is based on your\u00a0<strong>explicit consent<\/strong>\u00a0in accordance with Art. 6 Para. 1 lit. a GDPR. The plugin stores this consent to prove that you agreed to the data processing. This also serves my legitimate interest to ensure the legal compliance of my website (Art. 6 Para. 1 lit. f GDPR).<\/p><p style=\"font-weight: 400;\">You can revoke your consent at any time via the Cookie Banner interface. A subsequent change of your settings is also possible.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">I store your decision as long as you have consented or as the law requires (usually up to 2 years as proof). If you revoke or the time expires, I delete the data.<\/p><p style=\"font-weight: 400;\">A detailed overview of all cookies used, their duration, and purpose can be found in my separate\u00a0<a href=\"https:\/\/stanley-rubyn.com\/cookie-richtlinie\/\">Cookie Policy<\/a>.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Online Shop (WooCommerce and WooCommerce Germanized)<\/strong><\/h2><p style=\"font-weight: 400;\">For operating my online shop, I use the plugins\u00a0<strong>&#8222;WooCommerce&#8220;<\/strong>\u00a0and\u00a0<strong>&#8222;WooCommerce Germanized&#8220;<\/strong>. WooCommerce enables the display of products, the shopping cart, and the checkout process. WooCommerce Germanized adds legally required functions according to German law, including the right of withdrawal notice, terms and conditions integration, mandatory information on prices and delivery times, and a double-opt-in procedure for order confirmation. Both plugins run on the server of my German web host. Personal data is stored directly in my database and not forwarded to external cloud services or the plugin providers&#8216; servers.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Executing orders and fulfilling contracts<\/li><li style=\"font-weight: 400;\">Providing the shopping cart and checkout functionality<\/li><li style=\"font-weight: 400;\">Sending order confirmations and status updates (via double-opt-in)<\/li><li style=\"font-weight: 400;\">Obtaining legally required consents (e.g., terms and conditions, right of withdrawal)<\/li><li style=\"font-weight: 400;\">Processing payments and shipping arrangements<\/li><li style=\"font-weight: 400;\">Providing a customer account (if you create one)<\/li><li style=\"font-weight: 400;\">Complying with legal obligations (e.g., accounting, retention obligations)<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">First and last name<\/li><li style=\"font-weight: 400;\">Billing and possibly shipping address<\/li><li style=\"font-weight: 400;\">Email address and phone number (if provided)<\/li><li style=\"font-weight: 400;\">Order data (products, quantities, prices, shipping method, payment method)<\/li><li style=\"font-weight: 400;\">Payment data (depending on the chosen payment method &#8212; Note: Credit card data is not stored by me but processed directly by the payment service provider)<\/li><li style=\"font-weight: 400;\">Customer account data (username, password &#8212; stored encrypted) if you create an account<\/li><li style=\"font-weight: 400;\">Consents (terms and conditions, right of withdrawal, possibly newsletter) with timestamp<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address<\/li><li style=\"font-weight: 400;\">Timestamp of the order and individual order steps<\/li><li style=\"font-weight: 400;\">Browser and operating system information and the referrer URL<\/li><li style=\"font-weight: 400;\">Cookie data to maintain the session and shopping cart (session cookie and possibly a permanent shopping cart cookie if you are logged in)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">These data are protected by SSL\/TLS encryption during transmission. The cookies serve exclusively the technical functionality of the shop (cart, login, checkout process) and are not used for profiling or marketing. A detailed overview of the cookies used can be found in my\u00a0<a href=\"https:\/\/stanley-rubyn.com\/cookie-richtlinie\/\">Cookie Policy<\/a>.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">The processing of your order and customer data is carried out for contract fulfillment or the performance of pre-contractual measures (Art. 6 Para. 1 lit. b GDPR). The storage of consents (terms and conditions, right of withdrawal) is based on my legal obligation to document (Art. 6 Para. 1 lit. c GDPR) and my legitimate interest to be able to prove legal claims (Art. 6 Para. 1 lit. f GDPR). If you create a customer account, processing is based on contract fulfillment (Art. 6 Para. 1 lit. b GDPR). No further evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">As part of WooCommerce Germanized, your email address is confirmed via a\u00a0<strong>double-opt-in procedure<\/strong>\u00a0during the checkout process. This means: After your order, you receive an email with a confirmation link. Only by clicking this link is your order finally processed and you receive the order confirmation. This ensures that the order actually comes from you and prevents abuse. The data collected here (email address, IP address, and timestamp of confirmation) is processed on the same legal basis as the order data.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Order data is stored for the duration of statutory retention obligations (<strong>10 years<\/strong>\u00a0for invoices according to \u00a7 147 AO and \u00a7 257 HGB). Customer account data (e.g., username, password, profile information) is deleted as soon as you delete your account or upon a corresponding request. Regardless of deleting your customer account, we are legally obliged to retain\u00a0<strong>invoice data<\/strong>\u00a0(name, address, order date, amount, items) for\u00a0<strong>10 years<\/strong>\u00a0(\u00a7 147 AO, \u00a7 257 HGB). After deleting the account, this data is stored in a separate, purely accounting database and is no longer linked to your active customer account. After the statutory period expires, this data is also deleted. Session cookies are deleted after closing the browser; the shopping cart cookie loses validity after 48 hours or after logout.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Payment Processing (Mollie)<\/strong><\/h2><p style=\"font-weight: 400;\">For secure payment processing in the shop, I use the services of\u00a0<strong>Mollie<\/strong>. I do not store sensitive payment data (such as full credit card numbers or bank details) on my own servers. Instead, this data is transmitted directly and encrypted to Mollie, which acts as an independent controller:<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Mollie B.V.<\/strong><br \/>Keizersgracht 126<br \/>1015 CW Amsterdam<br \/>Netherlands<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If you choose a payment method via Mollie (e.g., credit card, PayPal, Sofort\u00fcberweisung, Giropay, Apple Pay, or other available methods), your order data and the information required for the payment are transmitted to Mollie. Mollie forwards the payment to the respective payment provider and executes the transaction.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Executing online payments<\/li><li style=\"font-weight: 400;\">Authorizing and processing the chosen payment method<\/li><li style=\"font-weight: 400;\">Fraud prevention and ensuring payment security<\/li><li style=\"font-weight: 400;\">Fulfilling legal obligations<\/li><li style=\"font-weight: 400;\">Documenting and proving transactions<\/li><li style=\"font-weight: 400;\">Customer service for payment questions<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">First and last name<\/li><li style=\"font-weight: 400;\">Billing address<\/li><li style=\"font-weight: 400;\">Email address and possibly phone number<\/li><li style=\"font-weight: 400;\">Order data (digital products, quantities, prices, payment method)<\/li><li style=\"font-weight: 400;\">Payment data (depending on the chosen payment method)<\/li><li style=\"font-weight: 400;\">Information about the purchased digital product<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address (for fraud prevention and transaction security)<\/li><li style=\"font-weight: 400;\">Internet browser and device type (User-Agent)<\/li><li style=\"font-weight: 400;\">Transaction timestamp<\/li><li style=\"font-weight: 400;\">Location data (if transmitted by the browser)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">The processing of your data is based on several legal grounds: Firstly, it is necessary for contract fulfillment (Art. 6 Para. 1 lit. b GDPR) as you are buying something from me and the payment must be processed. Secondly, it is based on my legitimate interest in secure payment processing and fraud prevention (Art. 6 Para. 1 lit. f GDPR). Finally, there are legal obligations that Mollie, as a financial institution, must comply with, e.g., for anti-money laundering (Art. 6 Para. 1 lit. c GDPR).<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">These data are protected by SSL\/TLS encryption during transmission. The collection of technical data by Mollie serves exclusively payment processing, fraud prevention, and ensuring system integrity. No evaluation for profiling purposes or marketing by me takes place. Mollie may, however, use automated procedures to detect and prevent financial crime.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\">Mollie is a European company based in the Netherlands and processes data primarily within the EU. In some cases, data may be processed outside the European Economic Area (EEA), e.g., if an international payment provider is involved for the chosen payment method. In such cases, Mollie ensures an adequate level of data protection through legal guarantees (EU Standard Contractual Clauses).<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\">Mollie may pass data to commissioned service providers and audit partners, e.g., for identity verification and fraud prevention. Additionally, Mollie may be legally obliged to pass data to government authorities (e.g., law enforcement or tax authorities).<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\">You cannot object to data processing by Mollie, as it is strictly necessary for the purchase. Without processing, the payment cannot be executed.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Further information:\u00a0<a href=\"https:\/\/www.mollie.com\/de\/privacy\">Mollie Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If a payment is unsuccessful, I reserve the right to store the necessary data (name, address, email, transaction ID) for processing or legal enforcement of claims. The storage duration is determined by statutory retention obligations (usually 10 years for tax-relevant documents according to \u00a7 147 AO and \u00a7 257 HGB) or Mollie&#8217;s guidelines. As a financial institution, Mollie is legally obliged to retain transaction data for a specific period.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h2><strong>Embedded YouTube Videos<\/strong><\/h2><p style=\"font-weight: 400;\">I have embedded videos from YouTube on my website. The operator is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To protect your data, embedded YouTube videos are not loaded automatically. Instead, the video is blocked by my Cookie Banner (Real Cookie Banner) until you give your explicit consent. Only after your consent is a connection established to the YouTube servers and the video loaded.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Displaying and playing the YouTube video<\/li><li style=\"font-weight: 400;\">Connection between browser and YouTube servers<\/li><li style=\"font-weight: 400;\">Analysis to improve YouTube functionality<\/li><li style=\"font-weight: 400;\">Recording interactions (playback time, pausing) for statistics<\/li><li style=\"font-weight: 400;\">Displaying personalized ads by Google<\/li><li style=\"font-weight: 400;\">Assignment to Google account if logged in (settings, history)<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">No direct data collection by me &#8212; all data is transmitted to YouTube and processed by Google<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address<\/li><li style=\"font-weight: 400;\">Browser and operating system information<\/li><li style=\"font-weight: 400;\">Referrer URL<\/li><li style=\"font-weight: 400;\">Language settings<\/li><li style=\"font-weight: 400;\">Timestamp<\/li><li style=\"font-weight: 400;\">Device information (resolution, hardware capabilities)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">This data is transmitted to YouTube only after active consent in the Cookie Banner. Without consent, no transmission occurs. If you are logged in to Google, the data can be assigned to your account.<\/p><p style=\"font-weight: 400;\">Data processing is based on your\u00a0<strong>consent<\/strong>\u00a0(Art. 6 Para. 1 lit. a GDPR). You can refuse consent by not agreeing in the Cookie Banner. You can revoke an already granted consent at any time via the Cookie Banner interface. The storage duration of data transmitted to YouTube is determined by Google&#8217;s privacy policy. I point out that I have no influence on the storage duration.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Further information can be found in the\u00a0<a href=\"https:\/\/policies.google.com\/privacy\">Google Privacy Policy<\/a>.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Embedded Bandcamp Audio Player<\/strong><\/h1><p style=\"font-weight: 400;\">I have embedded audio tracks from Bandcamp on my website. The operator is Bandcamp, Inc., 1948 Harrison Street, Oakland, CA, USA.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">To protect your data, the embedded audio player is not loaded automatically. Instead, the player is blocked by my Cookie Banner (Real Cookie Banner) until you give your explicit consent. Only after your consent is a connection established to the Bandcamp servers and the player loaded.<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Playing audio tracks directly on the website<\/li><li style=\"font-weight: 400;\">Connection between browser and Bandcamp servers<\/li><li style=\"font-weight: 400;\">Analysis to improve Bandcamp functionality<\/li><li style=\"font-weight: 400;\">Recording interactions (playback time, pausing) for statistics<\/li><li style=\"font-weight: 400;\">Personalization and advertising by Bandcamp<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">No direct data collection by me &#8212; all data is transmitted to Bandcamp and processed by Bandcamp<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address<\/li><li style=\"font-weight: 400;\">Browser and operating system information<\/li><li style=\"font-weight: 400;\">Referrer URL<\/li><li style=\"font-weight: 400;\">Language settings<\/li><li style=\"font-weight: 400;\">Timestamp<\/li><li style=\"font-weight: 400;\">Device information (resolution, hardware capabilities)<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">This data is transmitted to Bandcamp only after active consent in the Cookie Banner. Without consent, no transmission occurs. Data processing is based on your\u00a0<strong>consent<\/strong>\u00a0(Art. 6 Para. 1 lit. a GDPR). You can refuse consent by not agreeing in the Cookie Banner. You can revoke an already granted consent at any time via the Cookie Banner interface. The storage duration of data transmitted to Bandcamp is determined by Bandcamp&#8217;s privacy policy. I point out that I have no influence on the storage duration.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Bandcamp is based in the USA. Data transmission is based on the\u00a0<strong>EU-US Data Privacy Framework<\/strong>. However, please note that this may be legally controversial and the level of data protection does not always correspond to that of the EU. If you do not want data transmission to servers in the USA, do not agree to the embedding of the player in the Cookie Banner.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Further information can be found in the\u00a0<a href=\"https:\/\/bandcamp.com\/privacy\">Bandcamp Privacy Policy<\/a>.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Website Builder (Elementor Pro)<\/strong><\/h1><p style=\"font-weight: 400;\">For the design and technology of my website, I use the plugin\u00a0<strong>&#8222;Elementor Pro&#8220;<\/strong>. It runs completely on my server in Germany. To ensure the page functions correctly (e.g., for previews), the plugin stores only temporary data directly in your browser. Elementor Pro transmits technical data (e.g., domain, license key) to Elementor&#8217;s servers to enable license validation and access to template libraries. No further transmission of personal data takes place. Elementor processes this data according to its privacy policy:\u00a0<a href=\"https:\/\/elementor.com\/privacy-policy\/\">https:\/\/elementor.com\/privacy-policy\/<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">I process this data only to ensure that my website runs technically flawlessly and looks good on all devices. I do not collect any personal data from you, but only necessary technical information about your browser. The connection is encrypted, and no profile is created about you or used for advertising.<\/p><p style=\"font-weight: 400;\">The legal basis is my legitimate interest in a functioning website. The temporary data in the browser is automatically deleted as soon as you close your browser. You can also remove this data at any time by clearing your browser cache.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Anti-Spam Protection (WP Armour)<\/strong><\/h1><p style=\"font-weight: 400;\">To protect my website from automated spam attacks, malicious comments, and abusive logins, I use the plugin\u00a0<strong>&#8222;<\/strong><strong>WP Armour &#8212; Header Anti-Spam&#8220;<\/strong>. The plugin runs locally on my server and analyzes the headers of incoming connections to distinguish human users from automated bots.<\/p><p style=\"font-weight: 400;\">For a quick overview, I summarize the details of data processing here:<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Why do I process data?<\/strong><\/p><ul><li style=\"font-weight: 400;\">Preventing spam comments and spam logins<\/li><li style=\"font-weight: 400;\">Protecting the website from automated attacks and abuse<\/li><li style=\"font-weight: 400;\">Ensuring the functionality of contact forms and comment systems<\/li><li style=\"font-weight: 400;\">Reducing server load from bot traffic<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What data do I collect?<\/strong><\/p><ul><li style=\"font-weight: 400;\">No personal content of your message (texts are not stored)<\/li><li style=\"font-weight: 400;\">Only the technical data necessary for bot detection<\/li><\/ul><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>What technical data is automatically collected?<\/strong><\/p><ul><li style=\"font-weight: 400;\">IP address (for identification and blocking of sources)<\/li><li style=\"font-weight: 400;\">User-Agent (information about browser and operating system)<\/li><li style=\"font-weight: 400;\">Referrer URL (the page from which the request comes)<\/li><li style=\"font-weight: 400;\">Timestamp of the request<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Possibly cookie data (if already set, for session checking)<\/p><p style=\"font-weight: 400;\">This data is used exclusively for analysis to filter spam. Storing the data occurs only as long as the request is being processed (usually a few seconds). In case of detected attacks, the IP address can be temporarily stored in a local blacklist to prevent repetitions. No evaluation for profiling purposes or marketing takes place.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Processing is based on my legitimate interest to ensure the security and functionality of my website and prevent abuse (Art. 6 Para. 1 lit. f GDPR). Since this is a technically necessary measure to protect the website, no consent in the Cookie Banner is required.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">WP Armour stores data locally on my server (ALL-INKL.com, Germany). No data is transmitted to external servers of the plugin provider.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>External Linking to Social Networks or Other Platforms<\/strong><\/h1><p style=\"font-weight: 400;\">I use locally embedded social media logos as external hyperlinks. Simply accessing my website\u00a0<strong>does not transmit any data<\/strong>\u00a0to these services (such as Instagram, TikTok, etc.). Only by\u00a0<strong>actively clicking<\/strong>\u00a0the links are you redirected in a new browser tab. At this moment, your data (e.g., IP address, time of visit) is transmitted to the respective platform. Furthermore, behavioral data (interests, purchasing behavior) can also be collected to display personalized ads.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">I\u00a0<strong>do not store any data<\/strong>\u00a0myself about your clicks on these external links. As soon as you click an external link (e.g., to Facebook, Instagram, YouTube), you are redirected directly to the website of the respective provider. At this moment, your browser\u00a0<strong>automatically transmits data<\/strong>\u00a0(such as your IP address, the visited page, timestamp, and browser information) to the respective provider. Since I have no influence on the data processing of these external providers, I point out that\u00a0<strong>data transmission takes place immediately<\/strong>\u00a0as soon as you activate the link. Processing is based on my legitimate interest to provide you with access to these content, but the actual data collection then lies in the responsibility of the respective platform operator.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Since I have no influence on how the provider collects and processes your data, I point out that you should check the privacy policies of these providers:<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Meta Platforms (Facebook, Instagram, WhatsApp)<\/strong>\u00a0Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland\u00a0<a href=\"https:\/\/www.facebook.com\/about\/privacy\/\">Facebook Privacy Policy<\/a>\u00a0<a href=\"https:\/\/help.instagram.com\/155833707900388\">Instagram Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">WhatsApp Ireland Limited, Merrion Road, Dublin 4, Ireland\u00a0<a href=\"https:\/\/www.whatsapp.com\/legal\/business-app-privacy-policy?lang=de\">WhatsApp Privacy Policy<\/a>\u00a0<a href=\"https:\/\/www.whatsapp.com\/legal\/business-app-privacy-policy\">WhatsApp Business App Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>TikTok<\/strong>\u00a0TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, Ireland\u00a0<a href=\"https:\/\/www.tiktok.com\/legal\/page\/eea\/privacy-policy\/de\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Google and YouTube<\/strong>\u00a0Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland\u00a0<a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Spotify<\/strong>\u00a0Spotify AB, Regeringsgatan 19, Stockholm, Sweden\u00a0<a href=\"https:\/\/www.spotify.com\/de\/legal\/privacy-policy\/\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Bandcamp (USA)<\/strong>\u00a0Bandcamp, Inc., 1948 Harrison Street, Oakland, CA, USA\u00a0<a href=\"https:\/\/bandcamp.com\/privacy\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>SoundCloud<\/strong>\u00a0SoundCloud Global Limited &amp; Co. KG, Karl-Marx-Strasse 101, 12043 Berlin, Germany\u00a0<a href=\"https:\/\/soundcloud.com\/pages\/privacy\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>Pinterest<\/strong>\u00a0Pinterest Europe Ltd., Palmerston House, Dublin 2, Ireland\u00a0<a href=\"https:\/\/policy.pinterest.com\/de\/privacy-policy\">Privacy Policy<\/a><\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If you are logged in to one of the social platforms, the respective provider can assign your visit to your user account. For providers based in the USA (e.g., Bandcamp), data transmission is based on the EU-US Data Privacy Framework. However, please note that this may be legally controversial and the level of data protection does not always correspond to that of the EU. If you do not want data transmission to servers in third countries, do not click the external link. I mark external links with a symbol (e.g., \u2197) so you recognize that you are leaving my website.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Data Transfer to Processors and Third Parties<\/strong><\/h1><p style=\"font-weight: 400;\">For my web hosting, I have concluded a Data Processing Agreement in accordance with Art. 28 GDPR with:<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\"><strong>ALL-INKL.com &#8211; Neue Medien M\u00fcnnich<\/strong>, Owner Ren\u00e9 M\u00fcnnich, Hauptstra\u00dfe 68, 02742 Friedersdorf, Germany<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">as a commissioned service provider. This ensures that personal data (e.g., IP addresses, website accesses) is processed only according to my instructions and in compliance with the GDPR. The commissioned service provider reserves the right to use further sub-processors. If this is the case, I will make the corresponding changes or adjustments to my privacy policy.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">I only pass on personal data to third parties if this is necessary for contract fulfillment, consent is given, or I am legally obliged to do so. Disclosure occurs only within the framework of the GDPR (Art. 6 Para. 1 GDPR). Processing in third countries outside the EU\/EEA takes place strictly in compliance with Art. 44 ff. GDPR.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Personal data is stored only as long as necessary for the fulfillment of the web hosting contract or as long as I have a legitimate interest in retention. Upon termination of this contract, all data on the storage media is usually deleted immediately, unless ALL-INKL.COM is obliged to retain it due to legal regulations (e.g., tax law).<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Right to Object<\/strong><\/h1><p style=\"font-weight: 400;\">If I process your personal data based on my overriding legitimate interest within the framework of a balancing of interests, you have the right at any time to object to this processing for reasons arising from your particular situation with effect for the future.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If you exercise your right to object, I will cease processing the affected data. Further processing remains reserved if I can demonstrate compelling legitimate grounds for processing that override your interests, fundamental rights, and freedoms, or if the processing serves the assertion, exercise, or defense of legal claims.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If your personal data is processed by me for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such advertising purposes. You can exercise the objection as described above.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">If you exercise your right to object, I will cease processing the affected data for direct marketing purposes.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Your Rights as a Data Subject<\/strong><\/h1><p style=\"font-weight: 400;\">In accordance with Art. 15 GDPR, you have the right to information about the purpose of processing, the categories of processed data, the storage duration, the origin of the data, as well as the recipients or recipients in third countries to whom your data has been or will be transmitted.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">You have the right to rectification of incorrect or completion of incomplete personal data in accordance with Art. 16 GDPR. Furthermore, there is the right to deletion of your personal data (&#8222;right to be forgotten&#8220;, Art. 17 GDPR) as well as restriction of processing in accordance with Art. 18 GDPR.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">In accordance with Art. 20 GDPR, you have the right to receive the personal data you have provided to me in a structured, commonly used, and machine-readable format. Additionally, you have the right to have this data transmitted directly to another controller, provided this is technically feasible, the processing is based on consent or a contract, and it is carried out using automated procedures.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">To facilitate the exercise of this right, I will make your stored data available to you upon request in a common, structured, and machine-readable format. Depending on the type of data (e.g., from the shop system or the newsletter tool), we can provide this as a JSON or CSV file. Please direct corresponding requests to our contact address below.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">I do not use automated decision-making procedures including profiling that produce legal effects or similarly significantly affect you (Art. 22 GDPR). Additionally, you have the right to lodge a complaint with a competent supervisory authority regarding the processing of your data (Art. 77 GDPR). For quick processing of requests regarding your rights (e.g., information or deletion), please use the email\u00a0<strong>info@stanley-rubyn.com<\/strong><strong>.<\/strong><\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><h1><strong>Storage Duration<\/strong><\/h1><p style=\"font-weight: 400;\">I store your data only as long as necessary for the purpose or as statutory retention obligations exist.<\/p><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\"><strong> Contact Form &amp; General Inquiries:<\/strong>Data is deleted\u00a0<strong>6 months<\/strong>after the conclusion of communication, unless statutory retention obligations oppose this.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\"><strong> Appointment Bookings:<\/strong>Booking data is retained for\u00a0<strong>3 years<\/strong>after the last appointment (limitation period for contractual claims), then deleted.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\"><strong> Newsletter:<\/strong>Your data is deleted immediately after you withdraw your subscription.\u00a0Technical data(open\/click statistics) is stored in an aggregated form for\u00a030 days\u00a0after sending and is then anonymized or deleted.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\"><strong> Cookie Consents:<\/strong>The log data of your consent is retained for\u00a02 yearsto serve as proof vis-\u00e0-vis the supervisory authority.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><ul><li style=\"font-weight: 400;\"><strong> Web Server Logs (IP Addresses):<\/strong>These are normally deleted after\u00a07 days, unless they are needed to investigate a security incident.<\/li><\/ul><p style=\"font-weight: 400;\">\u00a0<\/p><p style=\"font-weight: 400;\">Once the purpose ceases to exist or you withdraw your consent, I will delete the data, unless the law requires a longer retention period (e.g.,\u00a010 years\u00a0for invoices according to \u00a7 147 AO and \u00a7 257 HGB). After the expiration of these periods, the data will be deleted.<\/p><p style=\"font-weight: 400;\"><strong>\u00a0<\/strong><\/p><p style=\"font-weight: 400;\"><strong>Last Updated:<\/strong>\u00a0May 2026<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Privacy Policy Inhaltsverzeichnis General Information I inform you in accordance with Articles 13 and 14 of the GDPR (General Data Protection Regulation) about the collection, storage, and processing of your personal data when using my website. I reserve the right to adapt this declaration as needed to ensure it always complies with current legal requirements. [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-9211","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/pages\/9211","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/comments?post=9211"}],"version-history":[{"count":31,"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/pages\/9211\/revisions"}],"predecessor-version":[{"id":9593,"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/pages\/9211\/revisions\/9593"}],"wp:attachment":[{"href":"https:\/\/stanley-rubyn.com\/en\/wp-json\/wp\/v2\/media?parent=9211"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}