Privacy Policy
1. Introduction
This Privacy Policy explains how I, Susanne Eichel, process personal data when you visit my website or contact me. I take data protection seriously and process personal data in accordance with the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
2. Controller
The controller responsible for data processing on this website is:
Susanne Eichel
Flotowstr. 6, 50931 Köln
Email: hello@susanneeichel.com
Website: www.susanneeichel.com
3. Collection and Storage of Personal Data
a) When visiting this website
When you access this website, the browser used on your device automatically sends information to the server. These data are temporarily stored in log files:
IP address
Date and time of access
Name and URL of the accessed page
Referrer URL
Browser type and version
Operating system
Amount of data transferred
Access status
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in ensuring technical operation, security, and stability of the website).
These log files are deleted automatically after a short retention period unless a longer period is required for security reasons.
b) When contacting me (e.g., via email or contact form)
If you contact me, the following data may be processed:
Name
Email address
Subject and content of the message
Any additional data you choose to provide
Legal basis: Art. 6(1)(b) GDPR (performance of a contract or pre-contractual steps) or Art. 6(1)(f) GDPR (legitimate interest in handling inquiries).
The data will be deleted once your inquiry has been resolved, unless legal storage obligations apply.
4. Cookies & Tracking Technologies
This website contains links to external websites of third parties. I have no influence on the content of those sites. Therefore, I cannot assume liability for such external content. The respective provider or operator is always responsible.
5. Hosting
This website is hosted by an external provider.
The hosting provider processes:
IP addresses
Log files
All data necessary for secure operation and performance
Legal basis: Art. 6(1)(f) GDPR.
Insert your host (e.g., Webflow, Wix, Squarespace, IONOS, Strato, Hostinger), and I can rewrite this section specifically.
6. Data Processing on Social Media
If your website links to social media profiles (e.g., LinkedIn, Instagram), no data is transferred automatically by this website.
Only when you click the link does the respective platform process data under its own privacy policy.
7. Recipients of Personal Data
I only share personal data with third parties when:
You have given consent (Art. 6(1)(a) GDPR)
It is legally required (Art. 6(1)(c) GDPR)
It is necessary for contract performance (Art. 6(1)(b) GDPR)
I have a legitimate interest (Art. 6(1)(f) GDPR)
Recipients may include IT providers, hosting companies, email service providers, or tools used for communication.
8. Data Retention
I store personal data only as long as necessary to:
fulfill the purpose of processing
comply with legal obligations (e.g., tax law)
After retention periods expire, data is deleted automatically.
9. Your Rights
Under the GDPR, you have the following rights:
Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restrict processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR)
Right to withdraw consent at any time (Art. 7 GDPR)
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
In Germany, your relevant authority is your local Landesdatenschutzbehörde.
10. Data Security
I use appropriate technical and organizational measures (TOMs) to protect your data from loss, unauthorized access, or disclosure. However, internet-based data transmission may always involve security vulnerabilities.
11. Updates to This Privacy Policy
I may update this policy when required by technical changes, new legal requirements, or new services.
The latest version is always available on this website.