Privacy Policy

1. Data Protection At A Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data with which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Data Collection on This Website

Who is responsible for the data collection on this website? The data processing on this website is carried out by the website operator. You can find their contact details in the “Responsible Party” section of this privacy policy.

How do we collect your data? Your data is collected, on the one hand, by you communicating it to us (e.g., via email). Other data is collected automatically or after your consent by our IT systems when you visit the website (e.g., technical data like browser, operating system, or time of page view).

2. Responsible Party

The responsible party (controller) for data processing on this website is:

Florian G. Heiwig
Große Hamburger Str 17
10115 Berlin
Germany
Email: info@heiwig.com

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

3. General Notes and Mandatory Information

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

Your Rights

You have the following rights regarding your personal data:

• Right to information (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR) or erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object to processing (Art. 21 GDPR)

If you have given your consent (Art. 6 para. 1 lit. a GDPR), you can revoke it at any time with effect for the future. You also have the right to lodge a complaint with a data protection supervisory authority.

4. Collection Of Data On This Website

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type and browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server request
• IP address

The basis for data processing is Art. 6 para. 1 lit. f GDPR (legitimate interest), as the error-free delivery and optimization of the website require the collection of server logs.

5. Tracking And Analytics

Consent with [Insert Consent Tool Name, e.g., Usercentrics/Cookiebot/None]

This website uses a consent management technology to obtain your consent for the storage of certain cookies on your device or for the use of certain technologies and to document this in a data protection-compliant manner. The legal basis for this is Art. 6 para. 1 lit. c GDPR.

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Tag Manager itself does not create user profiles, does not store cookies, and does not perform independent analyses. It only serves to manage and play out the tools integrated via it. However, the Tag Manager records your IP address, which may also be transmitted to Google’s parent company in the United States.

Google Analytics 4 (GA4)

This website uses functions of the web analysis service Google Analytics 4. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

• Type of Processing: GA4 uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected about your use of this website is usually transmitted to a Google server in the USA and stored there.
• IP Anonymization: On this website, IP anonymization is activated by default. Your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the USA.
• Legal Basis: The use of this service is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG.
• Data Processing Agreement: We have concluded a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

6. Data Transfer to Third Countries (USA)

Data transfer to the USA is based on the Standard Contractual Clauses (SCC) of the EU Commission and the EU-U.S. Data Privacy Framework (DPF). Google is certified under the DPF, which ensures compliance with European data protection standards for data processed in the USA.

7. Storage Duration

The data processed by us will be deleted or its processing restricted in accordance with Art. 17 and 18 GDPR. Unless expressly stated in this privacy policy, the data stored by us will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory storage obligations.