Data protection and general information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data are all data with which you can be personally identified. You can find detailed information on the subject of data protection in our data protection declaration below this text.

Who is responsible for data collection on this website?

The data processing on this website is done by Karacadesign. Our contact details can be found in the imprint of this website.

How do we collect your data?

On the one hand, your data is collected by you communicating it to us. For example, this can be data that you enter in a contact form.

Our IT systems automatically collect other data when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of page access). This data is recorded automatically as soon as you enter our website

What do we use your data for?

– Providing the online offer, its functions and content.
– Answering contact inquiries and communicating with users.
– Safety measures.
– Range measurement / marketing.

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient and purpose of your stored personal data at any time free of charge. You also have the right to request that this data be corrected, blocked or deleted. You can contact us at any time at the address given in the imprint if you have any further questions about data protection. You also have the right to lodge a complaint with the responsible supervisory authority.
Analysis tools and third party tools

When you visit our website, your surfing behavior can be statistically evaluated. This is done primarily with cookies and with so-called analysis programs. Your surfing behavior is usually analyzed anonymously; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You can find details on this in our data protection declaration under the heading “Third-party modules and analysis tools”.

You can object to this analysis. We will inform you about the possibilities of objection in this data protection declaration.

Online presence in social media

We maintain online presences within social networks and platforms in order to communicate with the customers, interested parties and users active there and to be able to inform them there about our services. When calling up the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply.

Unless otherwise stated in our data protection declaration, we process the data of users provided that they communicate with us within social networks and platforms, e.g. Write articles on our online presence or send us messages.

General information and mandatory information

Data Protection

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This data protection declaration explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission over the Internet (e.g. when communicating by email) can have security gaps. It is not possible to completely protect data from third-party access.

Information about the responsible body

The person responsible for data processing on this website is:

Ahmet Karaca
Lehnackerstr. 92
D-47179 Duisburg
Telefon: +49 179 544 77 35
E-Mail: info@karacadesign.de

Many data processing operations are only possible with your express consent. You can withdraw your consent at any time. An informal notification by email to us is sufficient. The legality of the data processing carried out before the revocation remains unaffected by the revocation.

Right to lodge a complaint with the competent supervisory authority

In the event of violations of data protection law, the person concerned has the right to lodge a complaint with the responsible supervisory authority. The competent supervisory authority for data protection issues is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: List of data protection officers.

Right to data portability

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only take place if it is technically feasible.

SSL- or TLS-Encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses an SSL or. TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line.

If SSL- or TLS-encryption is activated, the data that you transmit to us cannot be read by third parties.

Safety measures

In accordance with Art. 32 GDPR, we will take appropriate technical considerations, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of processing, as well as the different probability and severity of the risk to the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk.

The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling the physical access to the data, as well as the access, input, transfer, securing availability and their separation. Furthermore, we have set up procedures that guarantee the exercise of data subject rights, deletion of data and reaction to data threats. We also take the protection of personal data into account when developing or selecting hardware, software and processes, in accordance with the principle of data protection through technology design and data protection-friendly default settings (Art. 25 GDPR).

In accordance with Art. 32 GDPR, we will take appropriate technical considerations, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of processing, as well as the different probability and severity of the risk to the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk.

Contact

When contacting us (e.g. via contact form, email, phone or via social media), the information provided by the user for processing the contact request and processing it in accordance with Art. 6 para. 1 lit. b) GDPR processed. The information provided by users can be stored in a customer relationship management system (“CRM system”) or a comparable request organization.

We delete the requests if they are no longer necessary. We check the necessity every two years; The statutory archiving obligations also apply.

Objection to advertising emails

We hereby object to the use of contact data published within the framework of the imprint obligation for sending unsolicited advertising and information material. We expressly reserve the right to take legal action in the event that unsolicited advertising information is sent, such as spam e-mails.

Data collection on our website

Cookies

Some of the websites use so-called cookies. Cookies do no damage to your computer and contain no viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain on your device until you delete them. These cookies enable us to recognize your browser the next time you visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.

Cookies that are required to carry out the electronic communication process or to provide certain functions you require (e.g. shopping cart function) are set on the basis of Art. 6 Para. 1 lit. f GDPR saved. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are dealt with separately in this data protection declaration.

Server-Log-Files

The provider of the website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating sytem
  • Used referrer URL
  • Host name of the accessing device
  • Time of the server request
  • IP adress

This data is not merged with other data sources.

The basis for data processing is Art. 6 Para. 1 lit. b GDPR, which allows the processing of data to fulfill a contract or pre-contractual measures.

Contact forms

If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We will not pass on this data without your consent.

The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). You can withdraw this consent at any time. An informal notification by email to us is sufficient. The legality of the data processing operations carried out before the revocation remains unaffected by the revocation.

The data entered by you in the contact form remains with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – especially retention periods – remain unaffected.
Comment function on this website

The data entered by you in the contact form remains with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – especially retention periods – remain unaffected.

Comment function on this website

For the comment function on this page, in addition to your comment, information about the time the comment was created, your e-mail address and, if you do not post anonymously, the user name you selected will be saved.

Storage of the IP address

Our comment function stores the IP addresses of users who write comments. Since we do not check comments on our site before they are activated, we need this data in order to be able to act against the author in the event of legal violations such as insults or propaganda.

Social Media

Share content via plugins (Facebook, Google+, Twitter & Co.)

The content on our pages can be shared in accordance with data protection in social networks such as Facebook, Twitter or Google+. For this purpose, this site uses a sharing tool that only establishes direct contact between the networks and users when the user actively clicks on one of these buttons.

This tool does not automatically transfer user data to the operators of these platforms. If the user is logged in to one of the social networks, an information window appears in which the user can confirm the text before sending when using the social buttons from Facebook, Google + 1, Twitter & Co.

Our users can share the content of this page in accordance with data protection in social networks without having to create complete surf profiles by the operators of the networks.

Plugins und Tools

YouTube

Our website uses plugins from the Google-operated YouTube site. The site is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages equipped with a YouTube plug-in, a connection to the YouTube servers will be established. The YouTube server is informed which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

You can find further information on the handling of user data in YouTube’s data protection declaration at: Privacy Policies von Google.

Security Plugins

The IP address of the visitors, the user ID of the logged in users and the user name of the login attempts are conditionally logged in order to check for malicious activity and to protect the site from certain types of attacks. Examples of logging conditions include login attempts, logout requests, suspicious URL requests, website content changes, and password updates. This information is kept for 14 days.

This website is scanned by Sucuris SiteCheck for possible malware and security holes. We do not send personal information to Sucuri; However, Sucuri was able to find personal information during the scan (e.g. in comments). More information can be found in the Privacy policy of Sucuri.

This website is part of a network of websites that protect against distributed brute force attacks. To activate this protection, the IP address of visitors who log on to the site is shared with a service provided by ithemes.com. You can find details on the data protection regulations in the Privacy policy of iThemes.

Collection of access data and log files

We, or our hosting provider, based on our legitimate interests within the meaning of Art. 6 Para. 1 lit. f. GDPR data about every access to the server on which this service is located (so-called server log files). The access data include the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider ,

For security reasons (e.g. to investigate misuse or fraud), log file information is stored for a maximum of 7 days and then deleted. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.