Honeycakehorse
Inh. Larissa Rodler
Apartado 33
8300-999 Silves
Kontakt:
+351 915 778 554
Steuer -ID: 289610427
Data protection declaration
1. data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data
when you visit this website. Personal data is all data that can be used to
personally identify you. For detailed information on the subject of data protection,
please refer to our data protection declaration below this text.
Data collection on this website
Who is responsible for the data collection on this website?
The data processing on this website is carried out by the website operator. The contact details of the website operator
can be found in the “Note on the responsible party” section of this data protection declaration.
How do we collect your data?
On the one hand, your data is collected when you provide it to us. This may be, for example,
data that you enter in a contact form.
Other data are collected automatically or with your consent by our IT systems when you visit the website.
These data are primarily technical data such as the browser and operating system you are using or when
you accessed the page. These data are collected automatically as soon as you enter this website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other
data can be used to analyze your user behavior. If contracts
can be concluded or initiated via the website, the transmitted data will also be processed for contract offers,
orders or other order inquiries.
What rights do you have regarding your data?
You have the right at any time to receive information free of charge about the origin, recipient and purpose of your
stored personal data. You also have the right to request the correction or
erasure of these data. If you have given your consent to the processing of data,
you may revoke this consent at any time for the future. You also have the right, under
certain circumstances, to demand the restriction of the processing of your personal data.
Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Please do not hesitate to contact us at any time if you have questions about this or any other data protection related issues.
Analytics and third-party tools
When visiting this website, statistical analyses may be made of your surfing behavior. This happens
primarily using analytics tools.
Detailed information on the analytics tools used can be found in our
privacy policy.
2. Hosting
We host the contents of our website with the following provider:
External hosting
This website is hosted externally. The personal data collected on this website
is stored on the servers of the hoster / hosts. This may include, but is not limited to, IP addresses,
contact requests, meta and communication data, contract data, contact details, names, website access
and other data generated by a website.
External hosting is carried out for the purpose of fulfilling the contract with our potential and
existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient
provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR).
If a corresponding consent has been requested, the processing is carried out exclusively on
the basis of Art. 6 (1) point a GDPR and § 25 (1) TDDDG, insofar as the consent covers the storage
of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) in
the sense of the TDDDG. Consent can be revoked at any time.
Our hoster(s) will only process your data to the extent necessary to fulfill its
service obligations and will follow our instructions regarding this data.
We use the following hoster(s):
ELEMENTOR
Tuval Street 40
5252247 Rambat Gan, Israel
Contract data processing
We have concluded a contract for order processing (AVV) for the use of the above-mentioned service.
This is a contract prescribed by data protection law that
ensures that the personal data of our website visitors is only processed in accordance with our
instructions and in compliance with the GDPR.
3. general information and mandatory information
Data protection
The operators of this website take the protection of your personal data very seriously. We treat your
personal data confidentially and in accordance with the statutory data protection regulations and
this privacy policy.
When you use this website, various personal data are collected.
Personal data is data that can be used to personally identify you. This
privacy policy explains what data we collect and what we use it for. It also explains how
and for what purpose this is done.
We would like to point out that data transmission over the internet (e.g. when communicating by email)
can have security gaps. It is not possible to protect data completely from access by third parties
.
Note on the responsible party
The responsible party for data processing on this website is:
Larissa Rodler
Apartado 33
8300-999 Silves
Phone: +351915778554
E-mail: [email protected]
The responsible party is the natural or legal person who, alone or jointly with others,
decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.)
decides.
Storage duration
Unless a more specific storage period has been specified in this data protection declaration,
your personal data will remain with us until the purpose for which it was collected no longer applies. If you
assert a justified request for deletion or revoke your consent to data processing,
your data will be deleted, provided that we have no other legally permissible reasons for storing your
personal data (e.g. retention periods under tax or commercial law); in the
latter case, the deletion will take place after these reasons no longer apply.
General information on the legal basis for data processing on this website
If you have consented to the data processing, we process your personal data on
the basis of Art. 6 (1) point a GDPR or Art. 9 (2) point a GDPR, insofar as special categories of data
are processed pursuant to Art. 9 (1) GDPR. In the case of express consent to the transfer
of personal data to third countries, data processing is also carried out on the basis of Art.
49 (1) (a) GDPR. If you have consented to the storage of cookies or access to information in
your terminal device (e.g. via device fingerprinting), the data processing is also carried out
on the basis of § 25 (1) TDDDG. Consent can be revoked at any time. If your data is required for
fulfillment of the contract or for the implementation of pre-contractual measures, we process your
data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, we process your data if they
are required to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR.
Data processing can also be carried out on the basis of our legitimate interest in accordance with Art. 6 para. 1 lit. f
GDPR. The relevant legal basis in each individual case is provided in the following
paragraphs of this data protection declaration.
Recipients of personal data
As part of our business activities, we work together with various external parties.
In some cases, personal data also needs to be transferred to these external parties.
We only pass on personal data to external parties if this is necessary in the context of a
performance of a contract, if we are legally obliged to do so (e.g. disclosure of data
to tax authorities), if we have a legitimate interest in the disclosure pursuant to Art. 6 (1) point f GDPR
or if any other legal basis permits the disclosure. When using
contract processors, we disclose personal data of our customers only on the basis of a valid
contract for order processing. In the case of joint processing, a contract for
joint processing is concluded.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can
revoke consent already given at any time. The legality of the data processing carried out until the revocation
remains unaffected by the revocation.
Right to object to data collection in special cases and to direct mail (Art. 21 DSGVO)
IF THE DATA PROCESSING ON THE BASIS OF ART. 6 ABS. 1 LIT. E OR F DSGVO,
YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS THAT ARISE FROM YOUR SPECIAL
SITUATION, TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA
; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS.
THE RESPECTIVE LEGAL BASIS FOR PROCESSING
PLEASE REFER TO THIS PRIVACY POLICY. IF YOU OBJECT,
WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA,
UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING
WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR FOR THE
ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL
(OBJECTION PURSUANT TO ART. 21 SECT. 1 GDPR).
IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING,
YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR
OF PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING.
THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS AFFILIATED WITH SUCH DIRECT MARKETING.
IF YOU OBJECT, YOUR PERSONAL DATA
THEN NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION
PURSUANT TO ART. 21 SECT. 2 GDPR).
Right of appeal to the responsible supervisory authority
In the event of violations of the GDPR, data subjects are entitled to log a complaint with a
supervisory agency, in particular in the member state where they usually maintain their domicile, place of work
or the place of the alleged infringement. The right to lodge a complaint exists regardless of any other
administrative or judicial remedies.
Right to data portability
You have the right to demand that we hand over any data we automatically process on the basis of your consent or in fulfillment of a contract
to you or a third party in a standard, machine-readable format
. If you request the direct transfer of the data to another controller,
this will be done only if it is technically feasible.
Information, correction and deletion
You have the right, within the framework of the applicable legal provisions, to at any time and free of charge
information about your stored personal data, their origin and recipients and the
purpose of the data processing and, if applicable, a right to correct or delete this data. For further information
on this topic, as well as for further questions regarding personal data, please feel free to contact us at any time.
Right to restriction of processing
You have the right to request that the processing of your personal data be restricted.
You can contact us at any time regarding this. The right to restrict processing exists in
the following cases:
If you dispute the accuracy of your personal data stored by us, we usually need
time to verify this. During the verification period, you have the right to
request that the processing of your personal data be restricted.
If the processing of your personal data was/is carried out unlawfully, you can
request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise,
defend or assert legal claims, you have the right to request
the restriction of the processing of your personal data instead of deletion.
If you have filed an objection in accordance with Art. 21 (1) GDPR, a balance must be struck between
your interests and ours. As long as it is not yet clear whose interests
prevail, you have the right to demand that the processing of your personal data be restricted
.
If you have restricted the processing of your personal data, these data – apart from
their storage – may only be processed with your consent or for the assertion, exercise or
defense of legal claims or for the protection of the rights of another natural or
legal person or for reasons of important public interest of the European Union or of
a Member State.
SSL and/or TLS encryption
This site uses SSL and/or TLS encryption for security reasons and to protect the transmission of confidential content, such as
orders or inquiries that you send to us as the site operator.
You can recognize an encrypted connection by the fact that the address line of the browser changes from
“http://” to ‘https://’ and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot
be read by third parties.
4. data collection on this website Cookies
Our websites use so-called “cookies”. Cookies are small data packages and do
not harm your terminal device. They are either stored temporarily for the duration of a session
(session cookies) or permanently (permanent cookies) on your terminal device. Session cookies
are automatically deleted after the end of your visit. Permanent cookies remain stored on your terminal device
until you delete them yourself or until they are automatically deleted by your web browser.
Cookies may originate from us (first-party cookies) or from third-party companies (so-called third-party
cookies). Third-party cookies enable the integration of certain services from
third-party companies within websites (e.g. cookies for processing payment services).
Cookies have various functions. Many cookies are technically necessary because certain
website functions would not work without them (e.g. the shopping cart function or the display
of videos). Other cookies may be used to evaluate user behavior or for advertising purposes
.
Cookies that are required to carry out the electronic communication process, to provide
certain functions you want to use (e.g. for the shopping cart function) or to optimize the
website (e.g. cookies for measuring the web audience) (necessary cookies) are
stored on the basis of Art. 6 para. 1 lit. f DSGVO, unless another legal basis is given.
The website operator has a legitimate interest in storing necessary cookies to
technically error-free and optimized provision of its services. If consent to the
storage of cookies and comparable recognition technologies has been requested, the
processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a DSGVO and § 25 para. 1
TDDDG); the consent can be revoked at any time.
You can set your browser so that you are informed when cookies are set and
allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general
and activate the automatic deletion of cookies when closing the browser. When
disabling cookies, the functionality of this website may be limited.
This
privacy policy shows which cookies and services are used on this website.
Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:
Browser type and browser version
Operating system used
Referrer URL
Host name of the accessing computer
Time of the server request
IP address
These data will not be combined with data from other sources.
This data is recorded on the basis of Art. 6 Sect. 1 lit. f GDPR. The operator of the website has
a legitimate interest in the technically error free depiction and the optimization of the operator’s website.
In order to achieve this, server log files must be recorded.
Contact Form
If you submit inquiries to us via our contact form, the information provided in the
request form, including the contact details you provided there, for the purpose of processing the request
and stored in case of follow-up questions. We will not share this information without your
permission.
The processing of these data is based on Art. 6 para. 1 lit. b DSGVO, provided that your request
is related to the fulfillment of a contract or for the implementation of pre-contractual measures
. In all other cases, the processing is based on our legitimate interest in the
effective processing of requests addressed to us (Art. 6 para. 1 lit. f DSGVO) or on your
consent (Art. 6 para. 1 lit. a DSGVO), provided that this has been requested; consent may be revoked at any time
.
The information you have entered into the contact form shall remain with us until you ask us to eradicate the data,
revoke your consent to the archiving of data or if the purpose for which the information is being archived no longer exists
(e.g. after we have concluded our response to your inquiry). This shall be without prejudice to any mandatory legal provisions,
in particular retention periods.
Inquiries via email, phone, or fax
If you contact us by email, telephone or fax, your request, including all resulting
personal data (name, request) will be stored and processed by us for the purpose of processing your request.
We will not share this information without your consent.
The processing of these data is based on Art. 6 para. 1 lit. b DSGVO, provided that your request
fulfilling a contract or is necessary to carry out pre-contractual measures.
In all other cases, the processing is based on our legitimate interest in the
effective processing of the requests addressed to us (Art. 6 para. 1 lit. f DSGVO) or on your
consent (Art. 6 para. 1 lit. a DSGVO), provided that this has been requested; consent may be revoked at any time
.
We will retain the data you provide on the contact form until you request its deletion,
revoke your consent for its storage, or the purpose for its storage no longer pertains
(e.g. after fulfilling your request). Any mandatory statutory provisions,
especially those regarding mandatory data retention periods, remain unaffected by this provision.
5. Analytics and advertising
WP Statistics
This website uses the WP Statistics analysis tool to statistically evaluate visitor access. The provider
is Veronalabs, Tatari 64, 10134, Tallinn, Estonia (
https://veronalabs.com).
WP Statistics allows us to analyze the use of our website. WP Statistics collects, among other things,
log files (IP address, referrer, browser used, origin of the user, search engine used)
and actions that the website visitors have taken on the site (e.g. clicks and views).
The data collected with WP Statistics is stored exclusively on our own server.
The use of this analysis tool is based on Art. 6 para. 1 lit. f DSGVO. We have a
legitimate interest in the anonymized analysis of user behavior to optimize both our website
and our advertising. If a corresponding consent has been requested,
the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as
the consent includes the storage of cookies or access to information in the user’s terminal device
(e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
IP anonymization
We use WP Statistics with anonymized IP. Your IP address will be truncated so that it
can no longer be directly assigned to you.
6. newsletter Newsletter data
If you would like to receive our newsletter, we require a valid email address as well as information that allows us to
address as well as information that allows us to verify that you are the owner of the
e-mail address provided and that you agree to receive the newsletter. Further
data is not collected or only on a voluntary basis. We use this data exclusively for
sending the requested information and do not pass it on to third parties.
The processing of the data entered into the newsletter registration form takes place exclusively on
the basis of your consent (Art. 6 Sect. 1 lit. a GDPR). You have the right to revoke at any time any consent you have already given to
the storage of your personal data, the e-mail address and the use of this information for sending the newsletter,
for instance by clicking on the “Unsubscribe” link in the newsletter. This shall be without prejudice to the lawfulness of any
data processing transactions that have already occurred.
The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you
unsubscribe from the newsletter and will be deleted from the newsletter distribution list after
you unsubscribe from the newsletter or when it is no longer needed. We
reserve the right to delete or block e-mail addresses from our newsletter distribution list at our own discretion within the scope of
our legitimate interest in accordance with Art. 6 para. 1 lit. f DSGVO to delete or block.
Data that has been stored by us for other purposes remains unaffected.
After you have been removed from the newsletter distribution list, your e-mail address will be stored by us or the
newsletter service provider in a blacklist, if necessary, to prevent future
mailings. The data from the blacklist is only used for this purpose and not merged with
other data. This serves both your interest and our interest in
compliance with the legal requirements when sending newsletters (legitimate interest in the sense of
Art. 6 para. 1 lit. f DSGVO). The storage in the blacklist is not limited in time. You can
object to the storage if your interests outweigh our legitimate interest.
7. Plugins and tools
Google Fonts (local hosting)
This site uses so-called Google Fonts, which are provided by Google, for the uniform display of fonts.
The Google Fonts are installed locally. A connection to Google’s servers does
not take place.
Further information about Google Fonts can be found at
https://developers.google.com/fonts/faq and in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.
Google Maps
This site uses the mapping service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon
House, Barrow Street, Dublin 4, Ireland. This service allows us to integrate maps into our
website.
To use the Google Maps features, it is necessary to save your IP address. This
information is usually transferred to a Google server in the United States and stored there.
The provider of this site has no influence on this data transfer. If Google Maps is activated,
Google may use Google Fonts for the purpose of a uniform display of fonts. When
When you access Google Maps, your browser loads the required web fonts into your browser cache to display texts and
fonts correctly.
The use of Google Maps is in the interest of making our website appealing and
to facilitate the location of places specified by us on the website. This constitutes
a justified interest pursuant to Art. 6 (1) (f) DSGVO.
consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a
GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to
information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. The
consent can be revoked at any time.
Data transfer to the US is based on the standard contractual clauses of the EU Commission.
Details can be found here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
More information about the handling of user data can be found in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.
The company is certified according to the “EU-US Data Privacy Framework” (DPF). The
DPF is an agreement between the European Union and the United States to
ensure compliance with European data protection standards for data processing in the United States. Each
company certified under the DPF is obliged to comply with these data protection standards.
information, please contact the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
Google reCAPTCHA
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google
Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
reCAPTCHA is used to check whether the data entered on this website (e.g. on a
contact form) has been done so by a human or by an automated program. To do this,
reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This
analysis starts automatically as soon as the website visitor enters the website. For the analysis,
reCAPTCHA evaluates various information (e.g. IP address, time the website visitor spent on the
website or mouse movements made by the user). The data collected during the analysis will be
forwarded to Google.
The reCAPTCHA analyzes run completely in the background. Website visitors are not
notified that an analysis is taking place.
The data is stored and analyzed on the basis of Art. 6 Sect. 1 lit. f GDPR. The
website operator has a legitimate interest in protecting its site from abusive
automated spying and from SPAM. If a corresponding agreement has been requested,
the processing is carried out exclusively on the basis of Art. 6 Sect. 1 lit. a GDPR and Art. 25 Sect. 1
TDDDG, insofar as the consent includes the storage of cookies or access to information in the
user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be
revoked at any time.
For more information about Google reCAPTCHA, please refer to the Google Privacy Policy and
the Google Terms of Use at the following links:
https://policies.google.com/privacy?hl=de and
https://policies.google.com/terms?hl=de.
The company is certified according to the “EU-US Data Privacy Framework” (DPF). The
DPF is an agreement between the European Union and the United States to ensure compliance
with European data protection standards for data processing in the United States. Each
certified under the DPF undertakes to comply with these data protection standards. Further
information can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
hCaptcha
We use hCaptcha (hereinafter “hCaptcha”) on this website. The provider is Intuition Machines, Inc.,
2211 Selig Drive, Los Angeles, CA 90026, USA (hereinafter “IMI”).
The purpose of hCaptcha is to check whether the data entry on this website (e.g. in a
contact form) is carried out by a human or by an automated program. To do this,
hCaptcha analyzes the behavior of the website visitor based on various characteristics.
This analysis starts automatically as soon as the website visitor enters a website with activated hCaptcha.
For the analysis, hCaptcha evaluates various information (e.g. IP address, time spent by the
website visitor on the website or mouse movements made by the user). The data collected during the analysis
is forwarded to IMI. If hCaptcha is used in “invisible mode”,
the analyses take place completely in the background. Website visitors are not advised that an
analysis is taking place.
The data is stored and analyzed on the basis of Art. 6 Sect. 1 lit. f GDPR. The
website operator has a legitimate interest in protecting its site from abusive
automated crawling and spam. If a corresponding agreement has been requested
has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and § 25 (1)
TDDDG, insofar as the consent includes the storage of cookies or access to information in the
user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent is
withdrawn at any time.
The data processing is based on standard contractual clauses, which are included in the data processing supplement to
IMI’s General Terms and Conditions or the data processing contracts.
For more information about hCaptcha, please refer to the privacy policy and
terms of use at the following links:
https://www.hcaptcha.com/privacy and
https://hcaptcha.com/terms.
The company is certified according to the “EU-US Data Privacy Framework” (DPF). The
DPF is an agreement between the European Union and the United States to
ensure compliance with European data protection standards for data processing in the United States. Each
company certified according to the DPF is obliged to comply with these data protection standards. Further information can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/6388.