Privacy policy
1. Privacy at a glance
General information
The following information explains what happens to your personal data when you visit this website. Personal data is any information that can identify you personally. Detailed information is provided in the privacy policy below.
Data collection on this website
Who is responsible for collecting data?
Data processing on this website is carried out by the website operator. Contact details are listed under “Controller”.
How do we collect data?
Some data is supplied by you, for example when you contact us or submit feedback. Other technical data is collected automatically or after consent when you visit the website, including browser, operating-system and request-time information.
How do we use data?
Some data is required to provide the website reliably and without errors. Other data may be used to analyse how the website is used.
What rights do you have?
You may request information about the origin, recipients and purpose of stored personal data free of charge. You may also request correction or deletion, withdraw consent for future processing, request restricted processing in certain circumstances and lodge a complaint with the competent supervisory authority.
2. Hosting
Strato
This website is hosted by Strato AG, Pascalstraße 10, 10587 Berlin, Germany. When you visit the website, Strato records server log files that may include IP addresses.
Further information is available in Strato’s privacy policy: https://www.strato.de/datenschutz/.
Strato is used on the basis of Article 6(1)(f) GDPR because we have a legitimate interest in reliable website delivery. Where consent is requested, processing is based on Article 6(1)(a) GDPR and consent may be withdrawn at any time.
Data-processing agreement
We have concluded the legally required data-processing agreement with the hosting provider. It requires the provider to process website visitors’ personal data only according to our instructions and in compliance with the GDPR.
3. General and mandatory information
Data protection
We treat personal data confidentially and in accordance with applicable data-protection law and this policy. Internet communication, including email, can contain security vulnerabilities; complete protection against access by third parties cannot be guaranteed.
Controller
The controller responsible for processing personal data on this website is:
Thorsten Krüger
Halstenbeck 17
33775 Versmold
Germany
Telephone: +49 152 079 800 23
Email: info@inthemakings.com
Storage period
Unless a more specific period is stated, personal data is retained until the purpose for processing no longer applies. Data is deleted following a justified deletion request or withdrawal of consent unless another legally permitted reason, such as a statutory retention period, requires continued storage.
Withdrawal of consent
You may withdraw consent at any time for future processing. Processing that took place before withdrawal remains lawful.
Right to object under Article 21 GDPR
Where processing is based on Article 6(1)(e) or (f) GDPR, you may object at any time for reasons arising from your particular situation, including objections to related profiling. We will stop processing unless compelling legitimate grounds override your interests, rights and freedoms or processing is required to establish, exercise or defend legal claims.
You may object at any time to processing for direct-marketing purposes, including related profiling. Following an objection, the relevant personal data will no longer be used for direct marketing.
Right to lodge a complaint
If the GDPR has been infringed, you may complain to a supervisory authority, particularly in the member state of your habitual residence, workplace or the alleged infringement.
Data portability
You may receive data processed automatically on the basis of consent or a contract in a commonly used, machine-readable format. Direct transfer to another controller will be made only where technically feasible.
SSL and TLS encryption
This website uses SSL or TLS encryption to protect confidential transmissions. An encrypted connection is indicated by an HTTPS address and the lock symbol in the browser. When encryption is active, transmitted data cannot be read by third parties in transit.
Access, correction and deletion
Within applicable law, you may request information about stored personal data, its origin and recipients, the purpose of processing, and correction or deletion. Contact us using the details above.
Restriction of processing
You may request restricted processing while the accuracy of data is being checked, when processing is unlawful and you prefer restriction to deletion, when we no longer need data but you require it for legal claims, or while an objection under Article 21(1) GDPR is being assessed.
Restricted data may generally be processed only with consent, for legal claims, to protect another person’s rights or for important public-interest reasons.
4. Data collection on this website
Server log files
The hosting provider automatically records information transmitted by your browser, including:
- Browser type and version
- Operating system
- Referrer URL
- Host name of the accessing device
- Time of the server request
- IP address
This data is not combined with other data sources. It is collected under Article 6(1)(f) GDPR because the operator has a legitimate interest in technically correct delivery and optimisation of the website.
Requests by email or telephone
If you contact us, your request and associated personal data are processed to respond to it and are not shared without consent.
Processing is based on Article 6(1)(b) GDPR where the request concerns a contract or pre-contractual measures. Otherwise, it is based on our legitimate interest in effective communication under Article 6(1)(f) GDPR or, where requested, consent under Article 6(1)(a) GDPR.
Contact data is retained until you request deletion, withdraw consent or the purpose no longer applies. Mandatory statutory retention requirements remain unaffected.