We take the protection of your personal data very seriously. Your personal data will be treated confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
When accessing the public offer of the website, no personal data is collected and the use is possible without providing personal data.
1. Person responsible within the meaning of Art. 4 No. 7 DSGVO
Moritz Ted Bär & Leonie von Racknitz
Heinrich-Roller-Straße 8
10405 Berlin
leonie@vrbgallery.com
+49 172 5468108
2. Collection and Storage of Data when calling up the Website
Your device automatically sends information to our web server. This is already stored anonymously here by the provider (place where the web server is hosted) in a log file, by default for the purpose of system security. Inevitably collected and automatically stored temporarily until automated deletion are: IP address of the requesting computer (the first 9 bits of the IP address converted into a hash value); date, time and duration of the access (CEST, server location Germany); name and URL (resource indicator, Uniform Resource Locator) of the retrieved file (the web pages you visit on our site); website (not your device) from which the access may be made (referrer URL), identification data of the browser and operating system type used on your device; (probably not always) name of your access provider. The purposes of data processing include: Ensuring a smooth connection setup as well as the use of the website, evaluation of system security and stability as well as for other administrative purposes. Legal basis: Art. 6 para. 1 UAbs. 1 lit. f DSGVO, the purposes condition the legitimate interest. This data cannot be used to draw conclusions about your person ("privacy-by-design"). No cookies are set (exception: login), no data records are stored on your device by our web server. Recognition or tracking is excluded.
3. Data Subject Rights
You have the right with regard to personal data received:
- To request information about your personal data processed by us in accordance with Art. 15 DSGVO. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.
- in accordance with Art. 16 DSGVO, to request the correction of incorrect or incomplete personal data stored by us without delay
- in accordance with Article 17 of the Regulation, request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims
- to request the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 DSGVO
- pursuant to Art. 20 DSGVO, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller
- revoke your consent at any time in accordance with Art. 7 (3) DSGVO. This has the consequence that we may no longer continue the data processing based on this consent in the future.
- complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose.
- object at any time on grounds arising from your particular situation to the processing of personal data relating to you which is carried out on the basis of Article 6(1)(1)(e) or (f) DSGVO.
Your personal data will then no longer be processed unless compelling legitimate grounds for the processing can be demonstrated which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. The objection is possible informally. In the case of manifestly unfounded or - especially in the case of frequent repetition - excessive requests, either an appropriate fee may be charged, taking into account the administrative costs of informing or notifying you or of implementing the requested measure, or action on the request may be refused. If, despite the technical and organisational measures taken, a data breach affecting you occurs which is likely to result in a high risk to personal rights and freedoms, you will be notified of the breach without undue delay. This is only not required if one of the following conditions is met: appropriate technical and organisational security measures have been taken and these measures have been applied to the personal data affected by the breach, in particular measures that make the personal data inaccessible to all persons who are not authorised to access the personal data, such as encryption; subsequent measures have been taken to ensure that the high risk to your rights and freedoms is no longer likely to occur; this would involve a disproportionate effort. In this case, a public announcement or a similar measure must be made instead, by which you are informed in a comparably effective manner. You can contact us at the address given in the imprint for this purpose as well as for further questions on the subject of personal data.
4. Data Security
Transport encryption - The use of the website is protected by the transport encryption SSL(TNS)/SNI. You can recognise this by the https protocol displayed in the address bar and the security lock graphically displayed next to it. Since absolute protection of data from access by third parties cannot be ruled out, no personal data is transmitted to me and the site uses the SSL/TLS encryption method with optimal security settings (as of May 2018).
If the data protection settings should no longer be classified as optimal due to changes in the procedure there, I kindly ask you to inform me.