PRIVACY POLICY
 

Introduction

​

Www.matttma.de, and therefore Eckert & Mayer GbR ("we" "our/s" or "us"), take the protection of the data of the users ("user", "you" or "your/s") of our website very seriously and are committed to protecting the information that users provide to us in connection with the use of our website. Furthermore, we are committed to protecting and using your information in accordance with applicable law. This privacy policy ("Privacy Policy") explains how www.matttma.de, Eckert & Mayer GbR and third parties associated with the operation of the www.matttma.de website, such as our website service provider Wix.com Ltd. and its affiliates, collect, use and share your personal information around the world. It also contains explanations of the rights you may have with respect to that personal information. This Privacy Policy applies to all users of www.matttma.de, including unregistered visitors and registered users.

 

This Privacy Policy explains our practices regarding the collection, use and disclosure of your information through your use of our digital assets (in our case: this website) when you access the Services through your devices.

Please read the Privacy Policy carefully and make sure you fully understand our practices regarding your information before using our Services. If you have read this policy, fully understand it, and do not agree with our practices, you must stop using our digital assets and services. By using our Services, you agree to the terms of this Privacy Policy. Your continued use of the Services constitutes your acceptance of this Privacy Policy and any changes to it.

In this Privacy Policy you will learn:

• who is responsbible

• What data we collect

• about our use of Log-files

• How we collect data

• Why we collect this data

• Who we share the data with

• Where the data is stored

• How long the data is kept

• How we protect the data

• How we treat minors

• Your right to information about, deletion or correction of your data stored by us

• How we use data from newsletter subscription

• How we use the data from the contact form

• Updates or changes to the privacy policy

​

​

Responsible body

We,

​

Eckert & Mayer GbR (owner and managing director: Lisa Eckert and Matthias Mayer)

Oselstr. 8

81245 Munich

​

are responsible for the collection and processing of personal data on this website.

​

​

What data do we collect?

Below is an overview of the data we may collect:

• Non-identified and non-identifiable information that you provide during the registration process or that is collected through the use of our services ("Non-Personal Information"). Non-Personal Information does not identify who it was collected from. Non-Personal Information that we collect consists primarily of technical and aggregate usage information.

• Individually identifiable information, which is any information that can be used to identify you or could be used to identify you with reasonable effort ("personal data"). Personally identifiable information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses and more. When we combine personal data with non-personal data, as long as it is in combination, we will treat it as personal data.
   

​

Log files

​

The website and our website service provider Wix, use log files, but do not store any personal data in them.
IP logs are only stored for a limited time, up to one year.

 

​

How do we collect data?

Below are the main methods we use to collect data:

• We collect data when you use our services. So when you visit our digital assets and use services, we may collect, record and store usage, sessions and related information.

• We collect data that you provide to us yourself, for example, when you contact us directly through a communication channel (such as an email with a comment or feedback).

• We may collect data from third party sources as described below.

• We collect data that you provide to us when you sign up to our services through a third party provider such as Facebook or Google.
   

 

Why do we collect this data?

We may use your data for the following purposes:

• to provide and operate our Services;

• to develop, customise and improve our Services;

• to respond to your feedback, enquiries and requests and to provide assistance;

• to analyse request and usage patterns;
  for other internal, statistical and research purposes;

• to improve our data security and fraud prevention capabilities;

• to investigate violations and enforce our terms and policies and to comply with applicable law, regulation or governmental request;

• to provide you with updates, news, promotional materials and other information related to our services. For promotional emails, you can decide whether you want to continue receiving them. If not, simply click on the unsubscribe link in these emails.
   

Who do we share this data with?

We may share your information with our service providers to operate our services (e.g., storing data via third party hosting services, providing technical support, etc.).

We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent or take action regarding illegal activities or other misconduct; (ii) to establish or exercise our rights of defence; (iii) to protect our rights, property or personal safety and the safety of our users or the public; (iv) in the event of a change of control of us or any of our affiliates (by way of merger, acquisition or purchase of (substantially) all of our assets, etc.); (v) to protect our rights, property or personal safety and the safety of our users or the public. (v) to collect, maintain and/or manage your information through authorised third party service providers (e.g. cloud service providers) as appropriate for business purposes; (vi) to work with third party service providers to improve your user experience. For the avoidance of doubt, we may transfer or disclose non-personal data to third parties or use it in any other way at our discretion.


Please note that our services allow social interaction (e.g. posting content, information and comments publicly and chatting with other users). Please be advised that any content or data you provide in these areas may be read, collected and used by others. We discourage posting or sharing information that you do not wish to make public. If you upload content to our digital assets or otherwise make it available as part of using a service, you do so at your own risk. We cannot control the actions of other users or members of the public with access to your data or content. You acknowledge and hereby confirm that copies of your data may remain retrievable even after it has been deleted from cached and archived pages or after a third party has made a copy/stored your content.

Cookies and similar technologies
When you visit or access our Services, we authorise third parties to use web beacons, cookies, pixel tags, scripts and other technologies and analytics services ("Tracking Technologies"). These Tracking Technologies may allow third parties to automatically collect your information to improve the navigation experience on our digital assets, optimise their performance and provide a tailored user experience, as well as for security and fraud prevention purposes.

To find out more, please read our Cookie Policy.
We will not share your email address or other personal information with advertisers or advertising networks without your consent.
We may provide advertisements through our Services and our digital assets (including websites and applications that use our Services) that may also be tailored to you, such as ads based on your recent website, device or browser browsing behaviour.

To serve these advertisements to you, we may use cookies and/or JavaScript and/or web beacons (including translucent GIFs) and/or HTML5 Local Storage and/or other technologies. We may also use third parties, such as network advertisers (i.e. third parties who display ads based on your website visits) to serve targeted ads. Third-party ad network providers, advertisers, sponsors and/or website traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including translucent GIFs) and/or Flash cookies and/or other technologies to measure the effectiveness of their ads and customise advertising content for you. These third party cookies and other technologies are governed by the specific privacy policy of the third party provider and not this one.
 

​

Where do we store the data?

 

Non-personal data

Please note that our businesses and our trusted partners and service providers are located around the world. For the purposes explained in this Privacy Policy, we store and process any non-personal data we collect in different jurisdictions.

​

Personal Data

Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and to the extent necessary for the proper provision of our services and/or required by law (as further explained below) in other jurisdictions.

 

​

How long will the data be retained?

​

Please note that we will retain the data we collect for as long as is necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes and to enforce our agreements.

We may correct, amend or delete inaccurate or incomplete data at any time at our sole discretion.

​

How do we protect the data?

​

The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data may be stored via our hosting provider's data storage, databases and general applications. It stores your data on secure servers behind a firewall and it provides secure HTTPS access to most areas of its services.

​

All payment options offered by us and our hosting provider for our digital assets comply with the PCI Security Standards Council's PCI-DSS (Credit Card Industry Data Security Standard) regulations. This is the collaboration of brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card data (including physical, electronic and procedural measures) by our shop and service providers.

Notwithstanding the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee absolute protection and security of the data you upload, post or otherwise share with us or others.

For this reason, we ask that you establish strong passwords and, where possible, do not provide us or others with confidential information that you believe could cause you significant or lasting harm if disclosed. In addition, as email and instant messaging are not considered secure forms of communication, we ask that you do not share confidential information through either of these communication channels.

​

How do we deal with minors?

​

Children can use our services. However, if they wish to access certain features, they may be required to provide certain information. The collection of some data (including data collected through cookies, web beacons and other similar technologies) may be automatic. If we knowingly collect, use or disclose information collected from a child, we will indicate this in accordance with applicable law and obtain parental consent. We do not condition a child's participation in an online activity on the child providing more contact information than is reasonably necessary to participate in that activity. We will only use the information we collect in connection with the services the child has requested.

​

We may also use a parent's contact information to communicate about the child's activities in the Services. Parents may review data we have collected from their child, prohibit us from collecting further data from their child, and request that any data we have collected be deleted from our records.

​

Please contact us to view, update or delete your child's information. For your child's protection, we may ask you to provide proof of your identity. We may deny you access to the data if we believe your identity is questionable. Please note that certain data cannot be deleted due to other legal obligations.

We will only use your personal data for the purposes set out in the Privacy Policy and only if we are satisfied that:

• the use of your personal data is necessary to perform or enter into a contract (for example, to provide you with the Services themselves or customer care or technical support);

• the use of your personal data is necessary to comply with relevant legal or regulatory obligations; or

• the use of your personal data is necessary to support our legitimate business interests (provided that at all times this is done in a way that is proportionate and respects your data protection rights).

​

As an EU resident, you may:

• request confirmation as to whether or not personal data relating to you is being processed and request access to your personal data held and certain additional information;

• obtain personal data that you have provided to us in a structured, commonly used and machine-readable format;

• request the correction of your personal data that we have stored;

• request the deletion of your personal data

• object to the processing of your personal data by us;

• request the restriction of the processing of your personal data, or

• lodge a complaint with a supervisory authority.

However, please note that these rights are not unlimited and may be subject to our own legitimate interests and regulatory requirements. If you have any general questions about the personal data we collect and how we use it, please contact us as set out below.

In the course of providing the Services, we may transfer data across borders to affiliates or other third parties and from your country/jurisdiction to other countries/jurisdictions around the world. By using the Services, you consent to the transfer of your data outside the EEA.

​

If you are located in the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that there is an adequate or comparable level of protection for personal data. We will take appropriate steps to ensure that we have adequate contractual arrangements in place with our third parties to ensure that appropriate safeguards are in place so that the risk of unlawful use, alteration, deletion, loss or theft of your personal data is minimised and that these third parties act at all times in accordance with applicable laws.

​

Rights under the California Consumer Privacy Act

If you are a California resident using the Services, then you may be entitled under the California Consumer Privacy Act ("CCPA") to request access to and deletion of your information.

To exercise your right to access and delete your information, please see below for how to contact us.

We do not sell users' personal information for the intent and purposes of the CCPA.

Users of the Services who are California residents and under the age of 18 may request and obtain deletion of their posted content by emailing us at the address provided in the "Contact Us" section below. These requests must all be marked "California Removal Request". All requests must include a description of the content you wish to have removed and sufficient information to help us locate the material. We will not accept notices that are not marked or properly submitted, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not ensure that the material will be fully or completely deleted. For example, material posted by you may be republished or re-posted by other users or third parties.

​

​

Your right to information about, deletion or correction of your data stored by us

- According to Article 15 of the GDPR, you have the right to request information about what personal data we have stored about you. You have the right to receive a copy of this data and to be informed about the processing.
Article 16 DSGVO: Pursuant to Article 16 of the GDPR, you have the right to request that inaccurate personal data be corrected without undue delay. You also have the right to have incomplete personal data completed.
- Pursuant to Article 17 of the GDPR, you have the right to request that we erase your personal data if the processing is no longer necessary, you have withdrawn your consent, the processing is unlawful or there is a legal obligation. Please note that there may be exceptions, e.g. if the processing is necessary for compliance with a legal obligation or for the assertion, exercise or defense of legal claims.
- According to Article 18 of the GDPR, you have the right to request the restriction of the processing of your personal data if you contest the accuracy of the data, the processing is unlawful, we no longer need the data but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing. While processing is restricted, your data may only be processed with your consent or for the assertion, exercise or defense of legal claims.
- Pursuant to Article 20 of the GDPR, you have the right to receive your personal data in a structured, commonly used and machine-readable format. You also have the right to transfer this data to another controller without hindrance from us, provided that the processing is based on consent or a contract.
- In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority if you consider that your personal data is being processed unlawfully.

 

How we use data from newsletter subscription

We use your personal data that you give us when subscribing to our newsletter exclusively for sending our newsletter. We do not share your data with third parties. You can unsubscribe from the newsletter at any time by clicking on the unsubscribe link at the bottom of each newsletter email or by sending us an email to the address given in the imprint.

​

​

How we use the data from the contact form

In order to contact us, we provide you with our contact details in the imprint and in the last point of the privacy policy, but also our contact form. For the use of the latter, you must provide certain mandatory information that we need for the assignment and the response to your request. We are entitled to do this according to Art. 6 para. 1 lit f GDPR. The data we receive when you use our contact form, we store only for the purpose of answering them, or for processing for the implementation of pre-contractual measures (Art. 6. para. 1 lit b GDPR), for any requests (for example, special order via contact form).

​

​

Updates or Changes to the Privacy Policy

​

We may revise this Privacy Policy from time to time in our sole discretion, but the version posted on the Site will always be current (see the "Current" section). We encourage you to review this Privacy Policy periodically for changes. In the event of material changes, we will post a notice to that effect on our website. Your continued use of the Services after we have posted notice of changes on our website will constitute your acknowledgement and acceptance of the changes to the Privacy Policy and your agreement to be bound by the terms of those changes.

​
 

Contact

If you have any general questions about the Services or the information we collect about you and how we use it, please contact us at:

Name: Lisa Eckert & Matthias Mayer, Eckert & Mayer GbR.

Address: Oselstr. 8, 81245 Munich, Germany.

E-mail address: Matttma@gmx.de

 

DISCLAIMER

The information contained herein is not a substitute for legal advice and you should not rely on it alone. Specific requirements relating to legal terms and policies may vary from state to state and/or jurisdiction to jurisdiction. As set out in our Terms of Use, you are responsible for ensuring that your services are permitted under the law that governs you and that you comply with it.

To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand which requirements apply specifically to you.