Information according to § 5 TMG and information according to § 2 DL-InfoV
Praxis für Heilarbeit
Béatrice Brehl, also responsible for the content according to § 18 Abs. 2 MStV
Celler Str. 17
Telephone: +49 176 36332999
Professional liability insurance:
Die Continentale, Ruhrallee 92, 44139 Dortmund
Area of application: Federal Republic of Germany.
VAT ID no.: 60/20907841
Webdesign: Stefanie Sieben stefaniesieben.de
Photos avenue of trees, portraits and practice: Dennis Junike email@example.com
Photo mountain: Michele Brehl: michelebrehl.com
Photo blossom: Béatrice Brehl
Photo treatment: Corinna Wenzelburger
Note: Healing work has not been scientifically proven and is not recognized by conventional medicine. The described consequences of the healing work are based exclusively on my personal experience. Scientific evidence of the effects according to the recognized rules and principles of scientific research is not available. The course of healing work also always depends on the patient’s individual factors. A concrete effect can therefore not be guaranteed.
We look forward to your visit to our website. We take the protection of your personal data seriously and strictly adhere to the legal requirements. You can find the legal basis in particular in the General Data Protection Regulation (GDPR) and in the Federal Data Protection Act (BDSG). The terms used in this declaration are to be understood as gender-neutral, they include the feminine and masculine form.
These data protection notices refer exclusively to the website-specific data processing processes when you visit our website at https://beatricebrehl.de/en/. In addition to these data processing processes, we also attach great importance to the protection of your personal data.
§ 1 Information about the collection of personal data, responsibility
In this data protection declaration we inform you in accordance with Art. 12 ff. GDPR about the collection of personal data when using our website. Personal data are all data that can be related to you personally, for example your name, your address or your e-mail address. In particular, we explain what data we collect and what we use it for. We will also inform you how and for what purpose this happens.
We, Praxis für Heilarbeit Béatrice Brehl, Celler Str. 17, 28205 Bremen, firstname.lastname@example.org, are responsible according to Article 4 Paragraph 7 of the EU General Data Protection Regulation (GDPR). You can find all information about us in our legal notice.
We require the cooperation of external service providers for individual functions of our website. We will inform you about the respective processes in the further course of this declaration.
§ 2 Collection and storage of personal data when you visit our website (server log files)
In order to operate our website and make it available to you, we use hosting services from hosting.de GmbH (hereinafter referred to as hosting provider). The hosting provider acts as our processor in accordance with Art. 28 GDPR.
If you use our website for information purposes (i.e. only look at it to find out more about our range of services), we (or our hosting provider) collect and process the personal data that your browser automatically transmits to the server on our website. This is technically necessary in order to be able to display our website in your browser.
This information is temporarily stored in a so-called log file and deleted or anonymized after the stated purposes have been achieved (at the latest after 7 days). The following information is recorded without any action on your part and stored until it is deleted or anonymized: (log file data):
– IP address of the requesting computer,
– host name of the accessing computer,
– Date and time of the request or access,
– time zone difference to Greenwich Mean Time (GMT),
– content of the request (specific page),
– Name and URL of the file called up,
– access status / HTTP status code,
– the amount of data transferred in each case,
– Website from which the request or access is made (referrer URL),
– browser used,
– the operating system used and its interface as well as the name of your access provider,
– Language and version of the browser software.
We process the data mentioned in order to display our website to you and to guarantee stability and security. In particular, to ensure a smooth connection and convenient use of our website as well as for an evaluation of the system security or system stability and for other administrative purposes.
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. If you visit our website to find out about our range of services, Art. 6 Paragraph 1 Clause 1 lit. b GDPR also forms the legal basis for the temporary storage and processing of the data mentioned. This specification allows the processing of data to fulfill a contract or to carry out pre-contractual measures.
Summary of data processing:
Affected data: log file data, meta / communication data (e.g. device information, IP addresses)
Data subject: visitor to the website
Recipient of the data: hosting provider as processor
Purpose of data processing: presentation of the website, stability and security, smooth connection establishment, comfortable use of our website, evaluation of system security or system stability, other administrative purposes.
Legal basis: Art. 6 Para. 1 S. 1 lit.f GDPR and Art. 6 Para. 1 S. 1 lit. b GDPR
§ 3 communication (electronic correspondence)
To contact us, you can send us an email or use the contact form provided on our website. It is necessary to provide a valid email address in order to be able to answer your request. If you wish, you can use an e-mail address that does not allow any conclusions to be drawn about your person.
The web hosting services mentioned also include sending, receiving and storing e-mails. For these purposes, the addresses of the recipients and senders as well as other information relating to the sending of e-mails are processed. The aforementioned data can also be processed for the purpose of detecting spam e-mails.
If you write us an e-mail or send us a message using the contact form, we will save the data you have provided (e.g. your e-mail address, possibly your name and your telephone number) in order to answer your questions. If storage is no longer required, we will delete the personal data collected. If there is a statutory retention requirement, we will restrict the processing. The legal basis for data processing for the purpose of establishing contact and communication is Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR. In particular, our legitimate interest is to respond appropriately to your request. In the case of a statutory retention requirement, Article 6 Paragraph 1 Sentence 1 Letter c GDPR forms the legal basis.
If the correspondence takes place for the implementation of (pre-) contractual measures, which take place at your request, Art. 6 Para. 1 S. 1 b) GDPR forms the legal basis for this data processing. This also applies if the correspondence takes place within the framework of an existing contractual relationship, especially if you are already our patient.
We would like to point out that data transmission via email can have security gaps. A complete protection of the data against access by third parties is not possible here. We therefore recommend that you do not send sensitive or health-related data by email. If you are interested in encrypted e-mail correspondence, please let us know.
Summary of data processing:
Affected data: communication data, contact details, text input
Affected person: users of the contact form, inquiring persons, communication partners
Recipient of the data: hosting provider as processor
Purpose of DP: answering inquiries, communication
Legal basis: Art. 6 Para. 1 S. 1 lit. a, Art. 6 Para. 1 S. 1 lit. b GDPR, Art. 6 Para. 1 S. 1 lit. c GDPR and Art. 6 Para. 1 S. 1 lit.f GDPR
§ 4 Transfer of data / data transfer
We only transfer your personal data to third parties in the following cases:
– after giving express consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR,
– The transfer is necessary according to Art. 6 Para. 1 S. 1 lit.
– if there is a legal obligation for the transfer according to Art. 6 Para. 1 S. 1 lit. c GDPR,
– if this is legally permissible and required in accordance with Art. 6 Paragraph 1 Sentence 1 lit. b GDPR for the processing of contractual relationships with you.
§ 5 Your rights
Under the legal requirements, you have the following rights vis-à-vis us with regard to your personal data:
Right to information: You are entitled at any time, within the framework of Art. 15 GDPR, to request confirmation from us as to whether we are processing personal data relating to you; If this is the case, you are also entitled, within the framework of Art. 15 GDPR, to obtain information about this personal data as well as certain other information (including processing purposes, categories of personal data, categories of recipients, planned storage period, the origin of the data, the use) automated decision-making and, in the case of third-country transfers, the appropriate guarantees) and a copy of your data. The restrictions of § 34 BDSG apply.
Right to correction: According to Art. 16 GDPR, you are entitled to request that we correct the personal data stored about you if it is inaccurate or incorrect.
Right to deletion: You are entitled, under the conditions of Art. 17 GDPR, to request that we delete personal data relating to you immediately. The right to deletion does not exist, for example, if the processing of personal data is necessary, e.g. to fulfill a legal obligation (e.g. statutory retention requirements) or to assert, exercise or defend legal claims. In addition, the restrictions of § 35 BDSG apply.
Right to restriction of processing: You are entitled, under the conditions of Art. 18 GDPR, to demand that we restrict the processing of your personal data.
Right to data portability: You are entitled, under the conditions of Art. 20 GDPR, to demand that we transfer the personal data relating to you that you have provided to us in a structured, common and machine-readable format.
Right to lodge a complaint with a supervisory authority: Under the conditions of Art. 77 GDPR, you have the right to lodge a complaint with a competent supervisory authority. In particular, you can submit a complaint to the State Commissioner for Data Protection and Freedom of Information of the Free Hanseatic City of Bremen, Dr. Imke Sommer, Arndtstraße 1, 27570 Bremerhaven, phone: 0421 3612010, e-mail: email@example.com or another competent supervisory authority.
Right of revocation: According to Art. 7 Para. 3 GDPR, you can revoke your consent to the processing of personal data at any time. A revocation is only effective for the future. Processing that took place before the revocation is not affected. To declare the revocation, an informal message, e.g. by email to us, is sufficient.
§ 6 Cookies
We use so-called “cookies” on our website to make our website more user-friendly, more effective and safer. Cookies are also used to enable certain functions to be provided.
Cookies are small text files that are stored on your device (laptop, tablet, smartphone, etc.) and that your browser saves. We receive certain information through cookies. A cookie contains a characteristic string of characters that enables your browser to be clearly identified when you visit the website again. A cookie makes it possible to save information about a user of our website during or after their visit. The stored information can generally include items such as language settings, login status, a shopping cart or the point at which a video was viewed.
Cookies do not give us direct knowledge of your identity. Cookies cannot cause any damage to your device; in particular, they cannot run programs or transmit viruses.
In general, there are different types of cookies:
Session or session cookies are only stored temporarily and are deleted at the latest when you leave the respective website and close your browser.
Permanent or persistent cookies are stored after you have closed your browser or left the respective website. These cookies remain stored on your device for a specified period or until you delete them. Persistent cookies enable the provider to recognize your browser the next time you visit. When you visit the respective website again, for example, your login status can be recognized or preferred content can be displayed directly.
First-party cookies are cookies that the provider sets itself. They are only visible from the domain you are currently visiting.
Third-party cookies (third-party cookies) are cookies that are set by third parties in order to process user information. They are visible across domains.
Necessary or essential cookies are cookies that are absolutely necessary for the functionality of the respective website. This applies, for example, to the use of the website as a registered visitor and access to restricted areas of the online offer (login data).
Statistics cookies are used to measure range. Marketing and personalization cookies are used to store a user’s interests or behavior (e.g. accessing certain content) in a user profile. This makes it possible to display content that is tailored to users’ interests.
The following applies to our online offer:
Our website mainly uses session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the session. Session cookies can recognize that you have already visited individual pages on our website. The session cookies are deleted at the latest when you leave our site and close your browser. You can also delete the cookies at any time in the security settings of your browser.
If other forms of cookies than those mentioned above are used on our website, we will inform you about this in the relevant individual explanations of the respective functions / technologies or the service; you will find these in the further course of this declaration. There you will also find further cookie-specific setting and deactivation options. This also applies to cookies that are set by integrated services.
You can also visit our website without cookies. To do this, you have to set your browser so that it does not accept cookies. In this case you may not be able to use all functions of our website. You can also set up your browser so that you are informed about the setting of cookies, that cookies are only allowed in individual cases or that the acceptance of cookies is only allowed in certain cases. You can still activate the automatic deletion of cookies when you close your browser. The procedure for deactivating cookies or a restriction can be found via the “Help” function of your respective browser.
The legal basis for the cookie-based data processing described here is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. The data processed by cookies are necessary for the purposes mentioned to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit.f GDPR. Our legitimate interests are in particular to be able to provide you with a technically optimized, user-friendly and needs-based website and to guarantee the security of our systems. In addition, on a business operation of our online offer and its improvement.
Affected data: cookies, usage data
Data subject: visitor to the website
Recipient of the data: if necessary, cookie provider
Purpose of the data processing: technically optimized, user-friendly and needs-based website, security of our systems, business management of our online offer and its improvement
Legal basis: Art. 6 Para. 1 S. 1 lit. a, Art. 6 Para. 1 S. 1 lit. b GDPR and Art. 6 Para. 1 S. 1 lit. f GDPR
§ 7 Further functions and offers on our website / integration of services and content from third parties (plug-in providers)
In addition to the purely informational (viewing) use of our website, we offer various services that you can actively use if you are interested. This triggers further data processing operations. As a rule, you have to provide additional personal data; these are used to provide the respective service. The use of the following services requires that the third-party provider find out your IP address; without the IP address, the content cannot be transmitted to your browser.
Unless otherwise stated below, the data processing described below is required to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit.f GDPR (legal basis). These lie in particular in the optimization and comfortable use of our website and the design of our website. The integration is necessary in each case in order to be able to use the offers of the third-party providers on our website.
The following offers / services from third-party companies are included on our website.
• Google Web Fonts
We use Google Web Fonts as an external font on our website (https://www.google.com/webfonts/). When our homepage is called up, the respective browser loads the required web fonts into its cache in order to display texts and fonts correctly. If your browser does not support Google Fonts or prevents access, the text will be displayed in a standard font. The respective browser establishes a connection to the Google servers (location USA), whereby Google finds out that our website has been accessed via your IP address. Google learns which web pages you have accessed on our website. Google saves your IP address.
Google Fonts are used for the uniform display of fonts and to ensure that our website is visually appealing. The legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. Our legitimate interest follows from the data collection purposes listed above.
By installing add-ons such as NoScript or Ghostery, you can configure the browser so that the fonts are not loaded from the Google servers.
Google also processes your personal data in the USA. An adequate level of data protection is guaranteed by the conclusion of the so-called EU standard contractual clauses. This legitimizes the data transfer to the USA. IP addresses are shortened within the member states of the EU or other signatory states to the Agreement on the European Economic Area before being transmitted to the USA. The IP address will not be combined with other Google data unless you are logged into your Google account while using the service.
GoogleWebFonts is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland E-Mail: firstname.lastname@example.org. This company acts as our processor in accordance with Art. 28 GDPR.
Affected data: usage data, IP address
Data subject: visitor to the website
Recipient of the data: Google Ireland Limited
Purpose of the DP: technically optimized, user-friendly and needs-based website, appealing presentation of our online offers
Legal basis: Art. 6 Para. 1 S. 1 lit.f GDPR
§ 8 Duration of data storage
Unless otherwise stated, we only process and store your personal data for as long as the respective purpose requires. This may also include the duration of the initiation and processing of a contract. Then personal data is regularly deleted as part of the fulfillment of our contractual and / or legal obligations, unless its temporary further processing is necessary for the fulfillment of legal storage obligations or the preservation of evidence. We will provide the respective legal basis and further information when discussing the individual data processing.
§ 9 OBJECTION OR REVOCATION AGAINST THE PROCESSING OF YOUR DATA
IF WE PROVIDE YOUR PERSONAL DATA ON THE BASIS OF LEGITIMATE INTERESTS IN ACCORDANCE WITH ART. 6 ABS. 1 p. 1 LIT. F GDPR, YOU CAN PROCESS ACCORDING TO ART. 21 GDPR OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA. IN THIS CASE, PLEASE PROVIDE US WITH THE REASONS – ARISING FROM YOUR SPECIAL SITUATION – FOR WHICH WE SHOULD NOT PROCESS YOUR PERSONAL DATA. AFTER CHECKING YOUR OBJECTION, WE EITHER STOP PROCESSING THE DATA, ADAPT IT OR CONTINUE PROCESSING. IN THE LAST CASES WE WILL PROVIDE YOU WITH OUR COMPELLING REASONS.
YOU MAY OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR ADVERTISING AND / OR DATA ANALYSIS AT ANY TIME WITHOUT GIVING REASONS. WE WILL IMPLEMENT YOUR RELEVANT RIGHT TO OBJECT; THE STATEMENT OF REASONS IS NOT REQUIRED FOR THIS.
IF YOU HAVE GIVEN CONSENT TO THE PROCESSING OF YOUR DATA, YOU CAN REVOCATE THIS AT ANY TIME WITH EFFECT FOR THE FUTURE.
TO EXERCISE YOUR RIGHT OF REVOCATION OR OBJECTION, SEND AN EMAIL TO THE FOLLOWING ADDRESS: email@example.com
YOU CAN ALSO INFORM US OF YOUR OBJECTION OR REVOCATION BY USING THE FOLLOWING CONTACT DETAILS:
§ 10 Encryption
We use SSL encryption on our website to secure your data. We regularly renew certificates for the use of SSL encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line.
§ 11 Obligation to provide data
In principle, you are not obliged to provide us with your personal data. However, if you do not do so, you may not be able to use our website fully. In addition, we may not be able to answer your inquiries to us.
§ 12 Further questions
§ 13 Up-to-dateness and changes to our data protection declaration
This data protection declaration is currently valid and is dated August 2021.
Due to the further development of our website or due to changed legal requirements, it may be necessary to change this data protection declaration. We therefore advise you to call up the declaration again at regular intervals.