DE | EN

Friederike Carstens Gardens
Design and Project Management

Privacy policy according to the GDPR

General information about data processing

The extent to which personal data is processed We collect and use the personal data of users of our homepage only to the extent that this is necessary for keeping our website, contents and services functioning properly. Basically, we collect and use our users’ personal data only after they give their consent. An exception to this principle applies in cases where processing the data by statutory provisions is permitted or when obtaining prior consent for actual reasons is not possible.  

Legal basis for processing personal data

The legal basis for processing personal data is basically based on: Art. 6 Section 1 lit. a GDPR upon obtaining the consent of the data subject. Art. 6 Section 1 lit. b GDPR for processing operations that serve to fulfill a contract to which the data subject is a party. Included here are processing operations that are necessary to carry out pre-contractual measures. Art. 6 Section 1 lit. c GDPR for processing required to fulfill a legal obligation. Art. 6 Section 1 lit. d GDPR, if vital interests of the data subject or another natural person require the processing of personal data. Art. 6 Section 1 lit. f GDPR, if the processing is necessary to safeguard the legitimate interests of our company or a third party, and the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the former interest.         

Data erasure and storage duration

The personal data of users will be deleted or blocked as soon as the purpose of the storage is no longer applicable. Additional storage may be provided for by European or national legislators through EU regulations, laws or other regulations to which the data controller is subject. Blocking or deleting the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for additional storage of the data for concluding a contract or fulfilling the contract.

Use of our website, general information

1. Description and scope of data processing Every time our website is accessed, our system automatically collects data and information from the user's computer system. The following information is collected: Information about the browser type and version used The user’s operating system The user’s Internet service provider The user’s IP address Date and time of access Websites the user’s system accesses to get to our website Websites that the user's system invokes by accessing our website Host name of the accessing computer The described data are stored in the log files of our system. This data is not stored together with any other personal user data. 

2. Purpose and legal basis for data processing Our system must temporarily store user IP addresses to allow us to deliver our website to the user's computer. To do this, the user's IP address must be stored for the duration of the session. Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. This data is not evaluated for marketing purposes in this context. The legal basis for the temporary storage of data and log files is Art. 6 Section 1 lit. f GDPR. Collecting your personal data to ensure our web presence and storing this data in log files is essential for operating our website. A contradictory possibility of the user therefore does not exist. 

3. Duration of storage Your data will be deleted as soon as they are no longer necessary for achieving the purpose of the inquiry. Your data will be deleted when the session ends if your data has been collected to ensure the site's availability. If your data is stored in log files, it will be deleted after seven days at the latest. Further storage is possible, whereby in this case, the IP addresses of the users are deleted or alienated. This means that it is then no longer possible to assign the client who has accessed our website.


General information about the use of cookies

We use cookies on our website. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. If you display a webside; this is how a cookie can be stored on your operating system. This cookie contains a characteristic string that allows the browser to be clearly when the website is accessed again. We use cookies to make our homepage more user friendly. Some elements of our website require that the browser be identified even after a page break. The legal basis for processing personal data using cookies is defined in Article 6 Section 1 lit. f GDPR. The purpose for using technically required cookies is to simplify the use of our website. We would like to point out that some functions on our website can only be offered if cookies are enabled. This applies to the following applications: We do not use user data collected by technically required cookies to create user profiles. Cookies are stored on the user’s computer, which transmits them to our page. As a user, you therefore have control over the use of cookies. You can restrict or disable transmission of cookies by making changes to your Internet browser settings. Here you can also delete cookies that have been stored. Please note that you may not be able to use all the features on our website if you deactivate cookies.

Your rights/rights of the data subject

According to the EU General Data Protection Regulation, as an affected party you have the following rights:

1. The right to receive information You have the right to obtain from us as data controller the information whether and which personal data concerning you are processed by us as well as further information in accordance with the legal requirements pursuant to Art. 13, 14 DSGVO. You could assert your right to information at: gea@artis-concepts.com 

2. The right to rectification If we process your personal data incorrectly or in an incomplete manner, then you have a right for it to be corrected/completed. The correction will be made immediately. 

3. Right to restriction You have the right to restrict the processing of personal data concerning you in accordance with the legal provisions (Art. 18 DSGVO). 

4.The right to delete If the reasons set out in Art. 17 DSGVO apply, you may request that the personal data relating to you be deleted without delay. We would like to point out that the right to erasure does not exist insofar as the processing is necessary for one of the exceptional circumstances mentioned in Art. 17 Section 3. 

5. Right to information If you have asserted the right to rectify, delete or restrict the processing, we are obligated to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or is associated with a disproportionate amount of effort. You also have the right to be informed about these recipients. 

6. Right to data portability Under the GDPR, you also have the right to receive the personal data concerning you that has been provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller. 

7. Right to revoke the declaration of consent to data protection You have the right to revoke your data protection declaration at any time. Please note that revoking consent does not affect the lawfulness of the processing carried out based on the consent until the revocation goes into effect. 8. Right to objection Furthermore, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you that is carried out on the basis of Art. 6 Section lit. e or lit. f DSGVO. 9. Automated decision on an individual basis, including profiling Under the EU General Data Protection Regulation, you also have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. 10. Right to complain to a supervisory authority Finally, if you believe that the processing of personal data concerning you is contrary to the GDPR, you have the right to complain to a supervisory authority, in the Member State of its place of residence, employment or the location of the alleged infringement.

Data transfers to third countries (outside of the EU):

The GDPR ensures an equally high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners wherever possible when your personal data is being processed. Within some exceptions we may process personal data outside the EU through third-party services. This may only be the case where the special requirements in accordance with Art. 44 et. seq. GDPR are fully met. This means that the processing of your data may then only take place when the third country has been declared to ensure an adequate level of protection by the European Commission or if the European Standard Contractual Clauses have been signed.