Privacy policy
Em Altertümche

Data Controller pursuant to the General Data Protection Regulation (GDPR):

Em Altertümche
Ritterstraße 57
D-50670 Cologne
North Rhine-Westphalia, Germany

Phone
0221 131434
Email
info@em-altertuemche.de
Legal Notice (Imprint)
https://www.em-altertuemche.de/impressum/

1. General Information on Data Protection

Protecting your personal data is important to us. We process your data exclusively in accordance with statutory regulations (GDPR, BDSG). This privacy policy explains the type, scope and purpose of the collection and use of personal data on our website.

2. Hosting and Security

Our website is hosted by All-inkl.com, a provider based in Germany. Data transmission between your browser and our server is protected by SSL or TLS encryption, safeguarding your data from unauthorized access.

3. Content Management System (CMS)

We use WordPress as our CMS. By default, WordPress does not store personal data without additional features. All plugins and extensions used have been reviewed for GDPR compliance.

4. Collection and Processing of Personal Data

4.1 Visiting the Website

When you visit our website, server-side data such as your IP address (anonymized if applicable), access time, requested files, referrer, and browser information are automatically collected. These are used solely for technical security, error analysis, and service improvement. Legal basis: Art. 6(1)(f) GDPR (legitimate interest).

4.2 Cookies

We use cookies for the functionality of our website as well as for analytical and marketing purposes. Cookies are only activated after you give your consent. You may change or withdraw your consent at any time.

5. Use of Services and Tools

5.1 Google Maps

Google Maps is only loaded after your explicit consent. Until then, a placeholder is displayed. Further information can be found in Google’s privacy policy: https://business.safety.google/privacy/

5.2 Web Analytics and Monitoring

We only use web analytics tools (e.g., Google Analytics) with your consent. These tools collect anonymized usage data to optimize our services. Monitoring and security measures are implemented to protect our systems and are based on legitimate interest. Legal basis: Art. 6(1)(f) GDPR.

5.3 Social Media and Messaging Services

We maintain presences on platforms such as YouTube, Instagram, Facebook, WhatsApp Messenger, Facebook Messenger, and Instagram Messenger. These services are only integrated or used after your consent. Their respective privacy policies apply

5.4 Local Fonts and Icons

To avoid data transfer to third parties, we use locally hosted fonts and icons (e.g., Roboto, Roboto Condensed, Arizonia, Great Vibes, Open Sans, Nunito Sans, Figtree, Material Icons).

5.5 Third-Party Software and Frameworks

We use locally hosted scripts and frameworks such as jQuery, and plugins like Slider Revolution. External resources are only loaded upon consent.

6. Contact Form and Applicant Data

When using our contact form, we collect your name, email address, phone number (optional), and message. This data is used solely to process your inquiry.

If you submit application documents, we process your data exclusively for recruitment purposes. After completion of the recruitment process, the data will be deleted unless statutory retention periods apply.

Legal basis: Art. 6(1)(a) GDPR (consent) and Art. 6(1)(b) GDPR (performance of contract or pre-contractual measures).

7. Legal Bases for Data Processing

We process data based on the following legal grounds:

  • Art. 6(1)(a) GDPR – Consent

  • Art. 6(1)(b) GDPR – Performance of a contract

  • Art. 6(1)(f) GDPR – Legitimate interest (e.g., website operation, IT security)

8. Storage Duration

Personal data is stored only as long as necessary for the specified purpose or as required by law.

  • Inquiries and application data: Until the process is completed or legal retention periods expire

  • Server logs: Up to 90 days

9. Data Disclosure to Third Parties

Your data will only be disclosed to third parties if:

  • es für die Vertragserfüllung notwendig ist,

  • a legal obligation exists, or

  • you have given explicit consent.

No data is transferred to third countries.

10. Your Rights as a Data Subject

You have the right to:

  • Access your stored personal data

  • Rectify incorrect data

  • Erase your data (unless legally prohibited)

  • Restrict data processing

  • Data portability

  • Withdraw your consent with future effect

  • Object to data processing

To exercise your rights, contact us at:

11. Data Security

We implement technical and organizational security measures (e.g., SSL encryption, firewalls, access controls) to protect your data from unauthorized access, loss, or manipulation.

12. Amendments to this Privacy Policy

We reserve the right to update this privacy policy to comply with legal requirements or technical changes. The current version is always available on our website

13. External Links

Our website may contain links to external websites. We are not responsible for the content or privacy practices of these external sites.