Privacy policy
pursuant to GDPR (General Data Protection Regulation (EU) 2016/679)

Summary: This website is intended for your information. I only receive personal data from you if you send an e-mail to the provided e-mail address. I use the data only internally for administering my business relationship with you and never pass them on to any third parties unless mandated by law. I do not place any cookies on your device. I do not use any services such as Google Analytics. The physical web server is located in France and my provider’s other servers and technical infrastructure including mail servers are located in Germany.

Details:

1. Name and address of the person responsible for processing the personal data (Art. 13 (1) (a) and (b) GDPR)

Andrea Doerges
Hauptstr. 59d
63322 Rödermark
Germany

+49 6074 4863049
net@andrea-doerges.de
www.andrea-doerges.de

Due to the small size of my company, I am under no obligation to appoint a data protection officer.

2. Purposes for which personal data are to be processed and legal basis for processing (Art. 13 (1) (c) GDPR)

My business is to engage in translating texts from English to German and the provision of related services. The main purpose of my collection, processing and use of the personal data is to enter into relevant contracts and to fulfill my contractual obligations. Subsidiary purposes include customer and supplier administration as well as the support of prospective customers, contract initiation, and internal statistical purposes.

Personal data are collected, processed and used for the following groups of people, as far as this is necessary for the fulfillment of the aforementioned purposes:
  • Customers: Address and contact details, contract data, billing data, payment data, creditworthiness data, and service information
  • Suppliers: Address and contact details, contract data, billing data, and service information
  • Prospective customers: Address and contact details, creditworthiness data, and service information

Personal data will only be processed if at least one of the following applies:
  • The data subject has given consent to the processing of his or her personal data for one or more specific purposes (Art. 6 (1) GDPR).
  • Processing is necessary for the performance of a contract of which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (Art. 6 (1) (b) GDPR).
  • Processing is necessary for compliance with legal obligation to which I am subject (Art. 6 (1) (c) GDPR).

3. Recipients or categories of recipients of the personal data (Art. 13 (1) (e) and (f) GDPR)

Personal data are only used internally and passed on only in accordance with legal provisions:
  • To public authorities, if and as required by law.
  • To service providers as vicarious agents, insofar as the data are required for the fulfillment of the purposes stated under 2. above.

Personal data are never transmitted outside the EU or to any international organization.

4. Duration of storage of the personal data (Art. 13 (2) (a) GDPR)

Personal data will be deleted after the end of the legal or contractual retention periods. However, personal data not affected by such retention periods will be deleted once the purposes mentioned under 2. have become obsolete.

5. Right to information, rectification, and erasure; right to lodge a complaint (Art. 13 (2) (b) to (d) GDPR)
  • Data subjects have the right to obtain information about pertinent personal data.
  • Data subjects have the right to have incorrect or incomplete personal data corrected.
  • Data subjects have the right to have their pertinent personal data erased or their use restriction, unless otherwise provided by law (e.g., tax law) or contractual agreement.
  • Data subjects have the right to revoke their consent for processing pursuant to Art. 6 (1) (a) GDRP, unless otherwise provided by law (e.g.. tax law) or contractual agreement.

These options are provided free of charge; all that is required is a simple message to me in text form.

Data subjects have the right to lodge a complaint with a supervisory authority. The authority responsible for me is the State Commissioner for Data Protection of Hesse.

6. Obligation to provide data (Art. 13 (2) (e) GDPR)

The provision of personal data may be a statutory or contractual requirement, or a requirement necessary to enter into a contract. In this case, the data subject is required to provide the personal data. Failure to provide the requested personal data may render it impossible for me to enter into a contract with the data subject.

7. Automated decision-making (Art. 13 (2) (f) GDPR)

I do not use any form of automated decision making including profiling as defined by Art. 22 (1) and (4) GDPR.

8. Additional information

When you visit one of my pages, as everywhere on the Internet, anonymous access data (which cannot be assigned to any one person) is automatically acquired. These data are automatically transmitted by the visitor’s browser and collected by my provider in a log file (for the web server: domain, IP address, requests, user agent, time stamp, status code; for e-mails: sender, recipient, time stamp, IP address, size). The purpose of this data collection is the statistical evaluation of my website and defense against hackers and other threats such as cybercrimes. These data will not be merged with other data sources or shared with third parties. The data will be deleted after three days, assuming that they are no longer needed for the purpose described.

I do not use analysis tools (such as Google Analytics). There are no ads and no trackers on my pages. My website offers no payment options. My website does not place any cookies on your device.

Privacy policy by courtesy of
triacom.com (adapted).