Data Protection Statement
Any collection, processing and use (hereinafter “use”) of data is solely for the purpose of providing our services. The services of Avani Interior Design have been designed to use as little personal information as possible. For that matter, “personal data” is understood as all individual details about a person or factual circumstances of an identifiable natural person (so-called “affected person”).
The following statements on data protection describe what types of data are collected when accessing our website, what happens with these data and how you may object to data usage.
Which data will be used
When visiting our website, our web servers temporarily store every access in a log file. The following data is collected and stored until automated deletion:
- IP address of the requesting computer
- Date and time of access
- Name and URL of the retrieved file
- Detection data of the browser and operating system used
- Website from which access is made
- Host name of your computer
- Other data may be retrieved by our partners. You will find information about this below
The processing of this data serves: the purpose of enabling the use of the website (connection establishment), the system security, the technical administration of the network infrastructure, as well as to optimize the Internet site. The legal basis is Art. 6 para. 1 s. 1 lit. f) GDPR. The IP address is evaluated only in case of attacks on our network infrastructure or the network infrastructure of our Internet provider.
Furthermore, no input of your personal data is required to use our website.
Protection of your data
We have taken technical and organizational measures to ensure that the requirements of the EU General Data Protection Regulation (GDPR) are met by us, as well as, by external service providers working for us.
If we work with other companies to provide our services, such as email and server providers, this will only be done after an extensive selection process. In this selection process, each individual service provider is carefully selected for its suitability in terms of technical and organizational data protection skills. This selection procedure will be documented in writing and an agreement on the order processing of data (order processing contract) will only be concluded if the third party complies with the requirements of Art. 28 GDPR.
Your information will be stored on specially protected servers. Access to it is only possible for a few specially authorized persons. If you send us data via web forms, the data is always transmitted via an encrypted connection (128-bit TLS).
Use of cookies
In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive assigned to the browser you use. Through this the stored information flows to HPBA or the party that sets the cookie. Cookies cannot run programs or transmit viruses to your computer. Cookies are used to analyze the use of www.hpba.eu in anonymized or pseudonymized form. Also cookies enable personalized advertisements on this website.This website uses persistent cookies.Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie.You can delete the cookies in the security settings of your browser at any time. Please be aware that you may not be able to use all features of this site, when deleting the cookies from your browser history. The setting of cookies can be prevented by appropriate settings in the user’s Internet browser at any time.The cookies used on this website enable us to track user behavior on our website. Cookies enable us to understand for how long you remain on our website and which links are clicked. Also, we identify if you were directed to our website via a search engine.This processing is legally based on Art. 6 para. 1 s. 1 lit. f) GDPR. Our legitimate interests are to provide a stable connection and an easy, uninterrupted user experience for the visitors of our website. Also, we evaluate all visits of our website. This happens for safety, improvement and stability reasons.
Deletion of personal data
HPBA processes the personal data only if necessary. As soon as the purpose of the data processing is fulfilled, deletion of the data is carried out according to the standards of the deletion concept, unless legal regulations oppose this.
Contact
Via the website www.hpba.eu it is possible to contact us via e-mail. This will require us to process your email address. Your email address will not be passed on to third parties, unless you have given your consent.
The legal basis depends on what the reason for your request is: Therefor data processing will be based on Art. 6 para. 1 s. 1 lit. a) GDPR or Art. 6 para. 1 p. 1 lit.b) GDPR.
Tracking and analytics
For the continuous improvement of our website www.hpba.eu we use the following tracking and analysis tools. Which personal data is processed in each case and how you can reach the respective service providers, you will find below:
Google Analytics
The website www.hpba.eu uses Google Analytics based on Art. 6 para 1 s. 1 lit. f). This is a service for analyzing access to websites of Google Inc. (“Google”) and allows us to improve our website.Responsible Person is:Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.Cookies enable us to analyze your use of our website. The information collected by a cookie (IP address, access time, access duration) is transmitted to a Google server in the USA and stored there. The evaluation of your activities on our website is transmitted to us in the form of reports. Google may pass on the collected information to third parties, if required by law or if third parties process this data on behalf of Google. The Google tracking codes of our Internet offer use the function “_anonymizeIp ()”, thus IP addresses are processed only shortened, in order to exclude a possible direct personal link to you.You can also prevent the installation of cookies from Google Analytics by setting your browser software accordingly. In this case, however, it may happen that you cannot fully use all the features of our website. Also, through browser extensions e.g. http://tools.google.com/dlpage/gaoptout?hl=en Google Analytics can be disabled and controlled. At https://www.google.com/intl/en/policies/ As well as underhttp://www.google.com/analytics/terms/de.html You can find out more about the terms of use and privacy of Google Analytics.
Other tools of third-party providers
We also use third-party providers to help us with the site’s appearance and functionality. These are listed below:
Google Maps
This site uses the Google Maps map service via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. The legal basis is Art. 6 para. 1 s.1 lit. f) GDPR. The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. Further information about handling user data, can be found in the data protection declaration of Google at: https://www.google.de/intl/de/policies/privacy/.
Service providers from third countries
In order to be able to provide our services, we use the support of service providers from third party countries (non EU countries). In order to ensure the protection of your personal data in this case, we conclude processing contracts with each – carefully selected – service provider. All of our processors provide sufficient guarantees to implement appropriate technical and organizational measures. Our third country data processors are either located in a country with an adequate level of data protection (Art. 45 GDPR) or provide appropriate safeguards (Art 46 GDPR). Below you may find our categories of processors, the country they are located at and the safeguards or guarantees they provide.
We use the support of the following providers:
- Tracking service and Analysis Service, USA, member of the EU-US Privacy Shield
EU-US Privacy Shield: The Privacy Shield is an agreement between the United States of America and the European Union to ensure compliance with European privacy standards. For more information, see:
https://www.privacyshield.gov/participant?id=a2zt0000000TOWQAA4
Your rights
You have the following rights with respect to the personal data concerning you:- Right to information,- Right to rectification or deletion,- Right to restriction of processing,- Right to object to the processing,- Right to data transfer,- Right on confirmation.In the case of a request for information, you must provide sufficient information about your identity and provide proof that it is your personal data. The information relates to data that has been stored regarding your person, the origin of the data, the recipient or the categories of recipients to which data has been transmitted and the purpose of the storage. To exercise these rights, please contact our Privacy Officer, which is mentioned at the beginning of the Privacy Policy.If you have given your consent to the processing of your data, you can revoke at any time. Such revocation will affect the admissibility of processing your personal data by us.Insofar as we base the processing of your personal data on the weighting of interests, you may object to the processing. This is the case if processing your data is not required to fulfill a contract with you, which is explained in the following description of the functions. In the event of such a revocation, we ask you to explain the reasons why we should not process your personal data. In the case of your justified objection, we will examine the situation and will either stop processing your data, adapt the data processing or point out to you our compelling legitimate reasons on which we continue the processing.Of course, you may object to the processing of your personal data for advertising and data analysis purposes at any time. You may contact us or our responsible data securirty officer via the contact details stated at the beginning of the Privacy Policy.
Supervisory authority
Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority in the Member State of its residence, place of work or place of alleged infringement, if you believe that the processing of your personal data infringes on the GDPR.The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy according to Article 78 GDPR.
Subject to change
We reserve the right to change this privacy policy in compliance with legal requirements. August 2018