Legal Notes

1. Controller

The responsible party within the meaning of the General Data Protection Regulation (GDPR) is:

2. General Information on Data Processing

We process personal data of our users only to the extent necessary to provide a functional website as well as our content and services. The processing of personal data is generally carried out only with the user’s consent or if permitted by law.

3. Data Collected When Visiting the Website

When you access our website, certain data are automatically collected and stored in server log files. This includes:

• IP address of the requesting device
• Date and time of access
• Name and URL of the accessed file
• Referring URL (website from which access occurs)
• Browser type and version
• Operating system of the user

These data are used exclusively for ensuring a smooth operation, system security, and for optimizing our services. The data are not combined with other sources.

Legal basis: Art. 6(1)(f) GDPR (legitimate interests).

4. Appointment Bookings via Cal.com (Self‑Hosted)

We use a self‑hosted booking widget from Cal.com to schedule appointments.

• Purpose of processing: Organizing and managing appointments.
• Scope of data: Name, email address, and any additional information you provide (e.g., phone number, purpose of the appointment).
• Storage: Data are stored on our own servers and are not shared with third parties.

Legal basis: Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(f) GDPR (legitimate interest in efficient appointment management).

5. Online Meetings via Jitsi (Self‑Hosted)

For online meetings we use a self‑hosted instance of Jitsi Meet.

• Purpose of processing: Conducting video conferences and online meetings.
• Scope of data: During participation, technical data (e.g., IP address, connection time, metadata) are processed. Audio, video, and chat content are transmitted only for the duration of the meeting and are not stored.
• Storage: Meetings are not recorded or stored unless explicitly agreed upon with all participants in advance.

Legal basis: Art. 6(1)(b) GDPR (contractual obligations or pre‑contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in effective communication).

6. Cookies and Similar Technologies

Our website uses only technically necessary cookies required for the operation and provision of certain functions. The use of our website is not possible without these cookies.

Legal basis: Art. 6(1)(f) GDPR.

7. Data Retention

Personal data are stored only as long as necessary for the respective purpose or as required by statutory retention obligations.

8. Your Rights

You have the right to:

• Request access to your personal data (Art. 15 GDPR)
• Request rectification of inaccurate data (Art. 16 GDPR)
• Request deletion of your personal data (Art. 17 GDPR)
• Request restriction of processing (Art. 18 GDPR)
• Receive your personal data in a structured, commonly used, machine‑readable format (Art. 20 GDPR)
• Object to processing of your personal data (Art. 21 GDPR)

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).

9. Security

We use technical and organizational measures to protect your data against manipulation, loss, destruction, or unauthorized access. Our security measures are continuously improved in line with technological developments.