Privacy Policy - Your new home

Privacy policy

Thank you for visiting my website https://tla-arsamasow.com/ and for your interest in our company. With the aim of offering you the highest possible degree of transparency, we inform you below about the nature, scope and purpose of the collection, processing and use of personal data that arise in the context of the use of our website. You can access the Data Protection Regulation (hereinafter referred to as „DSGVO“) as a complete document here.

Contents
1. definitions of terms
2. controller according to Article 4 No. 7 DSGVO
3. legal basis of processing
4. storage of data / deletion of data
5. disclosure of personal data
6. collection of personal data
6.1. exclusive informative use of our website
6.2. contact by e-mail
6.3. contact form
7. hosting (SiteGround)
8. your rights
9. right of objection
10. data security

1. definitions of terms
The following terms that we use within our privacy policy are defined within Art. 4 DSGVO. This is only an excerpt from Art. 4 DSGVO. You can view all definitions in the DSGVO (available here).
Personal data (Art. 4 No. 1 DSGVO)
Personal data means any information relating to an identified or identifiable natural person (hereinafter „data subject“); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Processing (Art. 4 No. 2 GDPR).
Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destructionPseudonymization (Art. 4 No. 5 GDPR)
Pseudonymization includes the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that this additional information is kept separate and is subject to technical and organizational measures that ensure that the personal data is not attributed to an identified or identifiable natural person.
Controller (Art. 4 No. 7 DSGVO).
The controller is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.

Processor (Art. 4 No. 8 GDPR)
A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
Third Party (Art. 4 No. 10 DSGVO).
A third party is a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.
Consent (Art. 4 No. 11 GDPR).
Consent of the data subject means any freely given indication of his or her wishes in an informed and unambiguous manner, in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.
Undertaking (Art. 4 No. 18 GDPR).
An undertaking means a natural or legal person engaged in an economic activity, regardless of its legal form, including associations or partnerships regularly engaged in an economic activity (Art. 4 No. 18 GDPR).

2. responsible person according to Art. 4 No. 7 DSGVO

ALICA ARSAMASOW
Am Bahnhof 12
66892 Bruchmühlbach – Miesau

Telefon: 0176 8411 5179

E-Mail: arsamasow.immo@gmx.de
Internet: https://www.tla-arsamasow.com

3. legal basis of the processing
For each processing described within our Privacy Policy, we will inform you of the corresponding legal basis on which the processing is carried out. A distinction is made here between the following groups of cases where processing is lawful:
You have given us consent to process the personal data concerning you for one or more specific purposes (Art. 6 (1) p. 1 lit. a DSGVO).
There is a contract between you and us for the performance of which the processing is carried out or the processing is necessary for the performance of pre-contractual measures which are carried out at your request (Art. 6 para. 1 p. 1 lit. b DSGVO).
The fulfillment of a legal obligation to which we are subject requires the processing (Art. 6 para. 1 p. 1 lit. c DSGVO).
The protection of vital interests of you or another natural person require processing (Art. 6 para. 1 p. 1 lit. d DSGVO).
The performance of a task assigned to us in the public interest or the exercise of official authority require processing (Art. 6 (1) p. 1 lit. e DSGVO).
The necessity of processing to protect our legitimate interests or those of a third party, unless your interests or fundamental rights and freedoms, which require the protection of personal data, override (Art. 6 para. 1 p. 1 lit. f DSGVO).

4. storage of data / deletion of data
Within the processing described in our privacy policy, we will inform you of the corresponding storage period or the times of deletion or blocking of data. If no explicit storage period is defined, the data will be deleted or blocked as soon as the purpose or legal basis for the storage is no longer given.
Storage may take place beyond the defined periods if legal regulations to which we are subject (e.g. § 147 AO, § 247 HGB) stipulate a different storage period.
Following the storage period, the personal data will be deleted or blocked unless further storage is required by us on a legal basis. In addition, storage beyond the specified period is possible in the event of a (possible) legal dispute with you or other legal proceedings.

5. passing on of personal data
If your personal data is passed on, you will be informed accordingly at the relevant point in our data protection declaration. If your personal data is transferred outside the European Economic Area and thus to so-called third countries, you will be informed accordingly at the relevant point in our data protection declaration. In principle, we will only transfer personal data to third countries where an adequate level of protection has been confirmed by the EU Commission or where we can ensure careful handling of the personal data on the basis of contractual agreements or other suitable guarantees.

6. collection of personal data
In the following, we will inform you about the collection of personal data (such as name, e-mail address, address or user behavior).

6.1 Exclusive informational use of our website.
If you do not register on our website (for example, in the form of a newsletter) or otherwise transmit data to us (for example, by using a contact form), only those personal data are collected that are transmitted by your browser to our server. This is data that is technically necessary for us to provide you with the website for viewing while ensuring a secure and stable display. This is the following information, which is derived from a log file line:

Internet protocol address (IP address)
Time and date of the respective access
Time zone difference to Greenwich Mean Time (GMT)
The specific page accessed
Status of the access / Hypertext Transfer Protocol (http)
Amount of data that was transferred in each case
Website from which our website was accessed (referrer URL)
Internet browser used (incl. language and version)
Operating system used

The legal basis for the collection of the listed data results from Art. 6 para. 1 p. 1 lit. f DSGVO. We have a legitimate interest to ensure an error-free connection and a comfortable use of our website as well as to analyze the system stability and security and to use the data for further administrative purposes.

6.2 Contact via e-mail
When contacting us via the e-mail address provided in section 2 or other e-mail addresses of our company that are published on our website, your e-mail address as well as other contact data provided within your e-mail (e.g. your name or your telephone number) will be stored by us in order to process your request. This data will be deleted immediately as soon as further storage is no longer necessary. If there are legal retention periods with regard to the data, the deletion of the data will be replaced by a corresponding restriction of the processing. The legal basis for processing the data results from Art. 6 para. 1 p. 1 lit. b DSGVO or from Art. 6 para. 1 p. 1 lit. f DSGVO, depending on the reason for sending the e-mail, i.e. it is either for the purpose of processing the contract concluded with you and fulfilling our (pre-)contractual obligations or is based on our legitimate interest in contacting people interested in our service.

6.3 Contact form
When contacting us via the contact form available on our website, your e-mail address and name as well as other contact data voluntarily provided by you (e.g. telephone number) will be stored and processed by us in order to process your request. The legal basis for processing the data results from Art. 6 para. 1 p. 1 lit. b DSGVO or from Art. 6 para. 1 p. 1 lit. f DSGVO, depending on the reason for contacting us, and is therefore either for the purpose of processing the contract concluded with you and fulfilling our (pre)contractual obligations or is based on our legitimate interest in contacting parties interested in our service.

7. hosting (SiteGround)
My website is hosted by the company SiteGround Spain S.L., Calle de Prim 19, 28004 Madrid (hereinafter referred to as „SiteGround“). When you access our website, the personal data mentioned in this privacy policy is transmitted to SiteGround for purely informational use of the website. For this purpose, we have concluded a corresponding contract for order processing with the company SiteGround. The server location used by us is exclusively in Germany.

8. your rights
Below we clarify your rights under the GDPR. You can access the DSGVO as a complete document here.

Right to information according to Art. 15 para. 1 DSGVO
You have the right to request confirmation from us as to whether personal data relating to you is being processed. If the answer is in the affirmative, in addition to the right to information about this personal data, you have a right to information about the purposes of processing, the categories of personal data processed, the recipients or categories of recipients to whom your personal data have been disclosed or will be disclosed in the future (especially in the case of recipients in third countries or international organizations), the storage period or Criteria for determining the storage period, the existence of a right to rectify or erase the personal data concerning you or the right to restrict processing on our part, as well as about the existence of a right to object to such processing, the existence of a right to lodge a complaint with a supervisory authority, any available information about the origin of the data (in the event that they were not collected by us), the existence of automated decision-making, including profiling, and, where applicable, meaningful information about the logic involved and the scope and intended effects of such processing.

Right to rectification according to Art. 16 DSGVO
You have the right to request from us the immediate correction of inaccurate personal data and the completion of incomplete personal data concerning you.

Right to erasure („right to be forgotten“) according to Art. 17 (1) DSGVO.
You have the right to demand that we delete the personal data concerning you without delay. However, according to Art. 17(3) DSGVO, this right does not exist if the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest in the field of public health, for archiving purposes in the public interest or for the establishment, exercise or defense of legal claims.

Right to restriction of processing according to Art. 18 (1) DSGVO
You have the right to demand that we restrict the processing of your personal data if you dispute the accuracy of your personal data (the restriction applies here for the period that allows us to check the accuracy), the processing of your personal data is unlawful and you refuse to delete it, we no longer need your personal data for the processing purposes, but you need it to assert, exercise or defend legal claims or you object to the processing pursuant to Art. 21 (1) DSGVO (the restriction applies here as long as it has not yet been determined whether our legitimate reasons outweigh yours).

Right to data portability according to Art. 20 DSGVO
You have the right to obtain from us the personal data concerning you in a structured, commonly used and machine-readable format, as well as to have it transferred to another controller without hindrance on our part (or to request that it be transferred directly from us to another controller, if this is technically feasible), if the processing by us was based on consent or a contract or was carried out with the help of automated processes.

Right to revoke consent given in accordance with Art. 7(3) DSGVO.
You have the right to revoke your consent at any time with effect for the future, so that the data processing based on the consent can no longer be continued in the future, but the lawfulness of the processing carried out until your revocation is not affected.

Right to lodge a complaint pursuant to Art. 77 DSGVO
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data concerning you infringes the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence, your place of work or the place of the alleged infringement. You can find more information here: https://www.bfdi.bund.de/DE/Datenschutz/Ueberblick/MeineRechte/Artikel/BeschwerdeBeiDatenschutzbehoereden.html

9. right of objection
In addition to the aforementioned rights, you also have the right to object at any time with future effect to the processing of your personal data which is carried out on the basis of the performance of a task carried out in the public interest or in the exercise of official authority (Article 6 (1) sentence 1 lit. e DSGVO) or for the protection of legitimate interests on our part (Article 6 (1) sentence 1 lit. f DSGVO), provided that there are grounds for doing so which arise from your particular situation. In the event of an objection, no further processing of the personal data will be carried out unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. In the case of processing of your personal data for the purpose of direct marketing or profiling, where there is a link to direct marketing, you have a general right to object without having to provide reasons based on your particular situation. In the event of an objection, we will immediately cease processing the personal data for these purposes. To exercise your right of revocation or objection, simply send an e-mail to: arsamasow.immo@gmx.de

10. data security
Our website uses the encryption and communication protocol TLS 1.3 (Transport Layer Security). Through the TLS certificate used by us and issued by a certification authority, we enable an encrypted data exchange between web browser and web server, whereby sensitive data can not be read by third parties. We use the procedure with the highest encryption level that your browser supports, which is usually 256-bit encryption. The higher the bit number, the longer the key and the better the protection against third parties.