PRIVACY POLICY

This data protection declaration clarifies the type, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within the framework of the provision of our services as well as within our online offer and the websites, functions and contents connected with it as well as external online presences, such as our Social Media Profile (hereinafter referred to collectively as “online offer”). With regard to the terms used, such as “processing” or “responsible party”, we refer to the definitions in Art. 4 of the Basic Data Protection Regulation (DSGVO).

Responsible
The O’Reillys and the Paddyhats GbR

South road 7

58285 Gevelsberg

Phone number: 0176/31174922

E-mail address: info@paddyhats.de

Types of data processed
– inventory data (e.g., personal master data, names or addresses).<br>

– Contact details (e.g., e-mail, telephone numbers).

– Content data (e.g., text entries, photographs, videos).<br>

– Usage data (e.g., websites visited, interest in content, access times).<br>

– Meta/communication data (e.g., device information, IP addresses).

Categories of data subjects
Visitors and users of the online offer (in the following we will refer to the persons concerned collectively as “users”).

Purpose of processing
– Provision of the online offer, its functions and contents.

– Answering of contact requests and communication with users.

– security measures.

– Reach measuring/marketing

Used terms
“personal data” shall mean any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an on-line identifier (e.g. a cookie) or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person

“processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term is broad and covers virtually all data handling.

“pseudonymisation” means the processing of personal data in such a way that the personal data cannot be related to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person

“profiling’ means any automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular with a view to analysing or predicting aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, location or movement of that natural person

Controller’ shall mean the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data.

“processor” means any natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller

Relevant legal bases
In accordance with Art. 13 DSGVO, we inform you of the legal basis of our data processing. The following applies to users from the scope of the Basic Data Protection Regulation (DSGVO), i.e. the EU and EEC, unless the legal basis is stated in the data protection declaration: <br>

The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 DSGVO;

The legal basis for processing for the purpose of fulfilling our services and carrying out contractual measures and answering enquiries is Art. 6 para. 1 lit. b DSGVO;

The legal basis for processing for the purpose of fulfilling our legal obligations is Art. 6 para. 1 lit. c DSGVO;

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d DSGVO serves as the legal basis.

The legal basis for the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller is