Privacy Policy
An Overview of Data Protection
General Information
The information provided here offers a clear overview of how your personal data is handled when you visit this website. The term “personal data” refers to any information that can be used to personally identify you. For more detailed information on data protection, please refer to our Data Protection Declaration, which is included below.
Data Collection on This Website
- Who is responsible for data collection on this website?
The data collected on this website is processed by the website operator, whose contact details are listed under “Information about the responsible party (referred to as the ‘controller’ in the GDPR)” in this Privacy Policy.
- How do we collect your data?
We collect your data when you provide it to us, for example, by filling out a contact form. Additionally, some data is automatically collected by our IT systems when you visit the website. This data mainly includes technical information (e.g., web browser, operating system, or time of access) and is collected automatically when you use the website.
- For what purposes do we use your data?
Part of the data is collected to ensure the website functions correctly. Other data may be used to analyze your browsing behavior.
- What are your rights regarding your data?
You have the right to obtain information about the source, recipients, and purposes of your stored personal data at any time, free of charge. You also have the right to request that your data be corrected or deleted. If you have given consent for data processing, you can revoke this consent at any time, affecting future data processing. Additionally, you have the right to request restrictions on the processing of your data under certain conditions. You also have the right to lodge a complaint with the relevant supervisory authority.
If you have any questions regarding data protection, feel free to contact us at any time.
Analysis Tools and Third-Party Tools
Your browsing behavior may be statistically analyzed when you visit this website, primarily using analysis programs. For more detailed information on these programs, please refer to our Data Protection Declaration below.
Hosting and Content Delivery Networks (CDN)
External Hosting
This website is hosted by an external service provider. Personal data collected on this website is stored on the host's servers, including but not limited to IP addresses, contact requests, metadata and communications, contract details, and website access logs.
The use of the host is to fulfill contracts with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and to ensure a secure, fast, and efficient provision of our online services by a professional provider (Art. 6 para. 1 lit. f GDPR). Our host processes your data only as necessary to fulfill its contractual obligations and follow our instructions.
We use the following host:
WIX.COM LTD.
40 Namal Tel Aviv St. Eitan Israeli
Adv. Wix.com Ltd.
Execution of a Contract Data Processing Agreement
To ensure data is processed in compliance with regulations, we have entered into a data processing agreement with our host.
General Information and Mandatory Disclosures
Data Protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with statutory data protection regulations as well as this Data Protection Declaration.
When you use this website, various personal data will be collected. Personal data refers to any information that can be used to identify you personally. This Data Protection Declaration outlines the types of data we collect, how we use it, and the reasons for its collection.
Please note that data transmission over the Internet (e.g., via email) may be subject to security vulnerabilities. Complete protection of your data from third-party access is not possible.
Information About the Responsible Party (Controller)
The controller responsible for data processing on this website is:
Blender Studio Berlin
Boddinstrasse 32
12053 Berlin
Phone: +49 179 43 53 259
E-mail: hello(at)blenderstudioberlin.com
The controller is the individual or legal entity that decides, either alone or jointly with others, on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a specific storage period is mentioned in this privacy policy, your personal data will be retained until the purpose for its collection no longer applies. If you request deletion or withdraw your consent to data processing, your data will be deleted unless we are legally required or permitted to retain it for other reasons (e.g., tax or commercial law retention periods). In such cases, the data will be deleted once the retention period expires.
Information on Data Transfer to the USA
Our website uses tools from companies based in the USA. When these tools are active, your personal data may be transferred to US servers. We must inform you that the USA is not considered a secure third country under EU data protection law. US companies may be required to provide personal data to security authorities without legal recourse available to the data subject. As a result, US authorities (e.g., intelligence agencies) may monitor, analyze, and permanently store your data on US servers. We have no control over these activities.
Revocation of Your Consent to Data Processing
Many data processing activities are only possible with your explicit consent. You can withdraw consent you’ve previously given at any time. This revocation will not affect the legality of any data processing carried out before your withdrawal.
Right to Object to Data Collection in Specific Cases and to Direct Advertising (Art. 21 GDPR)
If your data is processed based on Art. 6 Sect. 1 lit. e or f GDPR, you have the right to object to the processing at any time, citing reasons related to your particular situation. This also applies to profiling based on these provisions. To determine the legal basis for any data processing, please refer to this Data Protection Declaration. If you object, we will cease processing your affected personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves the establishment, exercise, or defense of legal claims (objection pursuant to Art. 21 Sect. 1 GDPR).
If your personal data is processed for direct marketing purposes, you have the right to object to the processing at any time. This also applies to profiling related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection pursuant to Art. 21 Sect. 2 GDPR).
Right to File a Complaint with the Competent Supervisory Authority
If you believe there has been a violation of the GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in the EU member state where you reside, work, or where the alleged violation occurred. This right exists independently of any other administrative or judicial remedies.
Right to Data Portability
You have the right to request that any data we process automatically based on your consent or in the execution of a contract be provided to you or a third party in a commonly used, machine-readable format. If you request the direct transfer of data to another controller, this will only be done if technically feasible.
SSL and TLS Encryption
For security reasons and to protect the transmission of sensitive content, such as orders or inquiries you send to us, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the browser’s address bar from "http://" to "https://" and by the lock icon in the browser bar. When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, Rectification, and Deletion of Data
Within the scope of the applicable statutory provisions, you have the right to request information at any time regarding your stored personal data, its origin, recipients, and the purpose of data processing. You may also have the right to request the rectification or deletion of your data. If you have any questions on this matter or other queries related to personal data, please contact us at any time.
Right to Restrict Data Processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time to exercise this right. The right to restrict processing applies in the following cases:
- If you dispute the accuracy of your data, we will need time to verify your claim. During this period, you have the right to request that we restrict the processing of your personal data.
- If the processing of your data was/is unlawful, you can request a restriction instead of deletion.
- If we no longer need your personal data, but you need it to establish, exercise, or defend legal claims, you have the right to request the restriction of its processing instead of deletion.
- If you have filed an objection pursuant to Art. 21 Sect. 1 GDPR, your rights and our rights must be balanced. Until it is determined whose interests prevail, you have the right to request the restriction of your personal data's processing.
If you have restricted the processing of your personal data, this data may only be processed (except for its storage) with your consent or to establish, exercise, or defend legal claims, to protect the rights of another person, or for reasons of important public interest of the EU or a member state.
Rejection of Unsolicited Emails
We hereby object to the use of contact information published in compliance with legal notice requirements for sending unsolicited promotional or informational materials. The operators of this website expressly reserve the right to take legal action in the event of the unsolicited sending of promotional information, such as spam emails.
Recording of Data on This Website
Server Log Files
The provider of this website automatically collects and stores information in server log files, which your browser transmits to us. This information includes:
- Browser type and version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources. The data is recorded based on Art. 6 Sect. 1 lit. f GDPR, as the website operator has a legitimate interest in ensuring the technically error-free operation and optimization of the website. Therefore, the recording of server log files is essential.
Contact Form
If you submit inquiries via our contact form, the information provided, including your contact details, will be stored for the purpose of processing your inquiry and in case of follow-up questions. This information will not be shared without your consent.
The processing of this data is based on Art. 6 Sect. 1 lit. b GDPR if your request is related to the execution of a contract or is necessary for pre-contractual measures. In other cases, the processing is based on our legitimate interest in efficiently handling inquiries (Art. 6 Sect. 1 lit. f GDPR) or on your consent (Art. 6 Sect. 1 lit. a GDPR) if this has been given.
Your data from the contact form will be retained until you request deletion, revoke your consent, or the purpose for data storage no longer applies (e.g., after your inquiry has been resolved). This does not affect any statutory provisions, particularly retention periods.
Requests by E-mail, Telephone
If you contact us via e-mail, telephone, or fax, your request, including all related personal data (e.g., name, request) will be stored and processed for the purpose of handling your inquiry. This data will not be shared without your consent.
This data is processed based on Art. 6 Sect. 1 lit. b GDPR if your inquiry is related to fulfilling a contract or necessary for pre-contractual measures. Otherwise, the processing is based on our legitimate interest in effectively processing inquiries (Art. 6 Sect. 1 lit. f GDPR) or on your consent (Art. 6 Sect. 1 lit. a GDPR) if this has been provided.
Your data from these inquiries will be stored until you request deletion, revoke your consent, or the purpose for storing the data no longer applies (e.g., after your request has been fully processed). Mandatory statutory provisions, particularly retention periods, remain unaffected.
Social Media
Social Media Plug-ins with Shariff
Our website uses social media plug-ins (e.g., Facebook, Twitter, Instagram, Pinterest, XING, LinkedIn, Tumblr). These are identifiable by the respective social media logos. To protect your data, we use the “Shariff” solution, which prevents data from being transferred to the social media providers when you enter our website.
A direct connection to the provider’s servers is only established when you activate the plug-in by clicking the corresponding button. Once activated, the provider receives information, including your IP address, that you visited our site. If you are logged into your social media account, the provider can associate your visit with your account.
Activating the plug-in constitutes consent as defined by Art. 6 Sect. 1 lit. a GDPR. You can revoke this consent at any time for future actions.
Newsletter
MailChimp with Deactivated Success Measurement
We use MailChimp, provided by The Rocket Science Group LLC, to send newsletters. MailChimp stores your data (e.g., email address) on servers in the USA when you subscribe to our newsletter. However, we have deactivated MailChimp’s success measurement, so your behavior (e.g., email opens) is not evaluated.
To avoid data sharing with MailChimp, unsubscribe from the newsletter using the link provided in each email.
Data processing is based on your consent (Art. 6 Sect. 1 lit. a GDPR), which you can revoke at any time by unsubscribing. The legality of prior data processing remains unaffected.
Your data for newsletter subscriptions is stored until you unsubscribe. After unsubscribing, it will be deleted from the distribution list but may be retained in a blacklist to prevent future mailings. This blacklist storage is indefinite unless you object, balancing our legitimate interests (Art. 6 Sect. 1 lit. f GDPR) against your interests.
For more information, refer to MailChimp’s Data Privacy Policies: [MailChimp Legal Terms](https://mailchimp.com/legal/terms/).
Execution of a Contract Data Processing Agreement
We have signed a Data Processing Agreement with MailChimp, requiring them to protect our customers' data and refrain from sharing it with third parties.