The following information provides an accessible overview of the processing of personal data when visiting this website. "Personal data" is defined as any information that can be used to identify an individual. For more detailed information on data protection, please refer to our Data Protection Declaration, which can be found below.
Who is responsible for data collection on this website (the “controller”)?
The data processing on this website is carried out by the website operator. You can find the operator's contact details in the section titled “Information about the responsible party (referred to as the ‘controller’ under the GDPR)” in this Privacy Policy.
How is your data collected?
We collect your data when you provide it to us, such as information entered into contact forms. Other data are collected automatically by our IT systems, either when you visit our website or after you consent to such collection. This automatically recorded data mainly includes technical information (e.g., the browser you use, your operating system, and the time you access the site).
Why do we use your data?
Some of the data are collected to ensure the proper functioning of the website. Other data may be used to analyze your behavior on the site.
What are your rights regarding your data?
You have the right to request information at any time, free of charge, about the origin, recipients, and purposes of your stored personal data. You also have the right to request the correction or deletion of your data. If you have consented to data processing, you can withdraw this consent at any time, which will affect all future processing of your data. Additionally, you have the right to request that the processing of your data be restricted under certain conditions and to file a complaint with the relevant supervisory authority. Please feel free to contact us at any time with questions regarding your data protection rights.
Analysis Tools and Third-Party Tools
Your browsing behavior may be analyzed statistically when you visit this website, primarily through analytics programs. For more detailed information, please refer to our Data Protection Declaration below.
Data Protection
We, the operators of this website, are committed to protecting your personal data and treat it with the utmost confidentiality, in accordance with statutory data protection regulations and this Privacy Policy. When you visit our website, various types of personal data are collected. Personal data refers to information that can be used to identify you personally. This Privacy Policy outlines the data we collect, how we collect it, and the purposes for which it is used. Please be aware that data transmission over the internet (e.g., via email) can be susceptible to security vulnerabilities, and complete protection of your data from third-party access cannot be guaranteed.
Information about the Responsible Party (Controller)
The data processing controller on this website is:
Ben Lukas Boysen
E-mail: info@benlukasboysen.com
In the context of data protection, the term "controller" refers to the natural person or legal entity that is responsible for making decisions regarding the processing of personal data. These decisions pertain to the purposes for which the data is being processed and the resources utilized in the process. Examples of personal data include names and email addresses.
Unless specified otherwise in this Privacy Policy, your personal data will be retained by us only until the purpose for which it was collected no longer applies. If you submit a valid request for deletion or withdraw your consent to data processing, your data will be deleted unless we are legally required or permitted to retain it (e.g., retention obligations under tax or commercial laws). In such cases, the data will be deleted once these retention periods or reasons no longer apply.
We process your personal data based on the legal grounds applicable to each situation: if you have given your consent, processing is conducted under Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, particularly if special categories of data are involved under Art. 9(1) GDPR. For explicit consent regarding data transfers to third countries, processing relies on Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), processing also occurs according to § 25(1) TTDSG. Consent can be revoked at any time. If your data is necessary to fulfill a contract or pre-contractual measures, we process it based on Art. 6(1)(b) GDPR. If the data is required to comply with legal obligations, processing is based on Art. 6(1)(c) GDPR. Processing may also be based on our legitimate interests under Art. 6(1)(f) GDPR. Specific legal bases are detailed further in the relevant sections of this Privacy Policy.
In conducting our business, we may share your personal data with external parties. Data transfers occur only when necessary to fulfill a contract, comply with legal obligations (e.g., reporting to tax authorities), when we have a legitimate interest under Art. 6(1)(f) GDPR, or when another legal basis permits such disclosure. For processors, personal data is shared only under a valid data processing agreement, and for joint processing activities, a joint processing agreement is established.
Many data processing activities require your explicit consent, which can be withdrawn at any time. The withdrawal of consent does not affect the legality of data processing that occurred before the withdrawal.
If your data is processed under Art. 6(1)(e) or (f) GDPR, you have the right to object at any time to the processing of your personal data based on grounds related to your particular situation. This also applies to profiling based on these provisions. For information on the specific legal grounds for data processing, refer to this Privacy Policy. If you object, your data will no longer be processed unless there are compelling legitimate grounds for processing that outweigh your interests, rights, and freedoms, or if processing is required for legal claims (objection under Art. 21(1) GDPR).
If your data is processed for direct marketing purposes, you have the right to object at any time to the processing of your data for such advertising, including related profiling. Upon objection, your data will no longer be used for direct marketing (objection under Art. 21(2) GDPR).
Right to File a Complaint with the Competent Supervisory Authority
If you believe your data is being processed in violation of the GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in the EU member state where you reside, work, or where the alleged violation took place. This right exists in addition to other administrative or legal remedies.
You have the right to receive your personal data, which we process automatically based on your consent or as part of a contract, in a common, machine-readable format. If you request that the data be transferred directly to another controller, this will be done only if technically feasible.
You have the right, within the bounds of legal provisions, to request information about your stored personal data, its origin, recipients, and the purpose of processing at any time. You also have the right to request the rectification or deletion of your data. For questions about this or other data protection matters, please contact us at any time.
You have the right to request restrictions on the processing of your personal data. You can contact us at any time to exercise this right. The right to request processing restrictions applies in the following circumstances:
– If you dispute the accuracy of the personal data we have on file, we will need time to verify your claim. During this verification period, you have the right to request the restriction of your personal data processing.
– If the processing of your data is or was unlawful, you may request that the processing be restricted rather than the data being deleted.
– If we no longer need your personal data but you require it to establish, exercise, or defend legal claims, you have the right to request that the processing of your data be restricted instead of deleted.
– If you have lodged an objection under Art. 21(1) GDPR, your rights must be balanced against ours. Until it is determined whose interests prevail, you have the right to request a restriction of the processing of your personal data.
If the processing of your personal data has been restricted, such data –apart from being stored – may only be processed with your consent or for the establishment, exercise, or defense of legal claims, to protect the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.
For security purposes and to safeguard the transmission of confidential content, such as purchase orders or inquiries you send to us, this website uses SSL or TLS encryption. You can identify an encrypted connection when the browser’s address line changes from “http://” to “https://” and a lock symbol appears in your browser’s address bar.
When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Rejection of Unsolicited Emails
We hereby object to the use of contact information published in compliance with legal disclosure requirements on our Site Notice for sending unsolicited advertising or informational materials. The operators of this website explicitly reserve the right to take legal action in the case of unsolicited advertising, such as spam emails.
Cookies
Our website uses cookies, which are small data files that do not harm your device. Cookies can either be temporary (session cookies) or stored on your device for a longer period (permanent cookies). Session cookies are automatically deleted when you end your visit, while permanent cookies remain until you delete them manually or your browser automatically removes them. Cookies may originate from us (first-party cookies) or third-party providers (third-party cookies), which allow the integration of third-party services, such as payment processing. Cookies serve various purposes, such as enabling essential website functions (e.g., shopping carts, video displays) or analyzing user behavior for marketing purposes. Essential cookies, necessary for communication, website functionality, or optimization (like audience measurement cookies), are stored based on Art. 6(1)(f) GDPR, as the website operator has a legitimate interest in the error-free and optimized provision of services. If you have provided consent for cookies and similar technologies, data processing is based on your consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG), which can be revoked at any time. You can adjust your browser settings to notify you about cookie placements, accept cookies on a case-by-case basis, block cookies entirely, or automatically delete them when you close your browser. However, disabling cookies may limit the functionality of our website. Further information on which cookies and services are used can be found in this privacy policy.
Consent with Complianz
We use Complianz consent technology to manage and document your consent to cookies and other technologies in compliance with data protection laws. The provider of this service is Complianz B.V., Kalmarweg 14-5, 9723 JG Groningen, the Netherlands (“Complianz”). Complianz operates directly on our servers without connecting to external servers, ensuring your data remains secure.
Complianz stores a cookie in your browser to track granted consents and any revocations. Data collected this way is retained until you request its deletion, remove the Complianz cookie, or the data is no longer needed. Legal retention requirements remain unaffected. The use of Complianz is to obtain legally required consent for cookie usage, and the legal basis for this is Art. 6(1)(c) GDPR.
Google Analytics
Our website uses Google Analytics, a web analysis service provided by Google Ireland Limited (“Google”), located at Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics helps us analyze visitor behavior on our website, allowing us to collect various data such as the pages accessed, time spent on each page, the operating system used, and the user's geographical origin. This data is linked to the user’s device without being tied to a user ID.
Google Analytics also tracks mouse movements, scroll actions, and clicks. It employs modeling techniques and machine learning technologies to enhance data analysis. To recognize users and analyze their behavior, Google Analytics uses technologies like cookies and device fingerprinting. Typically, the information collected is transmitted to a Google server in the United States and stored there.
The use of Google Analytics on our website is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TTDSG. You can withdraw your consent at any time. Data transfers to the US rely on the European Commission’s Standard Contractual Clauses (SCC), ensuring compliance with European data protection standards. More details can be found here: Google Privacy.
Google is certified under the “EU-US Data Privacy Framework” (DPF), a framework between the European Union and the United States designed to ensure that European data protection standards are met for data processed in the US. Companies certified under the DPF must adhere to these standards. For more information, you can visit the provider’s details at this link: EU-US Data Privacy Framework.
IP-Anonymization
Our website uses IP anonymization with Google Analytics. This means that Google shortens your IP address within EU member states or other countries that are part of the European Economic Area before it is sent to the United States. Only in rare cases will the full IP address be transmitted to a Google server in the US and shortened there. Google uses this information on behalf of the website operator to analyze your website usage, compile reports on website activity, and provide other services related to website and internet use. The IP address sent from your browser via Google Analytics is not combined with any other data held by Google.
Browser Plug-in
You can prevent Google from recording and processing your data by downloading and installing a browser plug-in available at the following link: Google Analytics Opt-out. For additional information on how Google Analytics handles user data, please refer to Google’s Privacy Policy: Google Data Privacy.
Contract Data Processing
We have entered into a contract data processing agreement with Google, ensuring that we fully comply with the strict requirements of German data protection authorities when using Google Analytics.
Our website uses plugins from Vimeo, operated by Vimeo Inc., 555 West 18th Street, New York, NY 10011, USA.
When you access a page on our site with an embedded Vimeo video, a connection to Vimeo’s servers is established. This connection provides Vimeo with information about the pages you have visited and your IP address, even if you are not logged into Vimeo or do not have an account.
If you are logged into your Vimeo account, Vimeo can associate your browsing patterns with your personal profile. You can prevent this by logging out of your Vimeo account.
Vimeo uses cookies or similar recognition technologies (e.g., device fingerprinting) to track website visitors.
We use Vimeo to showcase our online content effectively, which constitutes a legitimate interest under Art. 6(1)(f) GDPR. If consent is obtained, processing is based on Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided the consent covers cookie storage or access to device information (e.g., device fingerprinting). Consent can be revoked at any time.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission and, according to Vimeo, “legitimate business interests.” For more information, visit: Vimeo Privacy Policy.
Vimeo is also certified under the “EU-US Data Privacy Framework” (DPF). For more information on compliance with European data protection standards, visit: DPF Participant List.
Our website embeds videos from YouTube, which is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit a page on our site that includes a YouTube video, a connection is established with YouTube’s servers. This connection informs YouTube of the pages you have visited on our site.
YouTube may place cookies on your device or use similar technologies (such as device fingerprinting) to gather information about your visit. This data helps YouTube create video statistics, enhance user experience, and prevent fraud.
If you are logged into your YouTube account while browsing our site, YouTube can directly associate your browsing activity with your personal profile. You can avoid this by logging out of your YouTube account before visiting our site.
We use YouTube to present our content attractively, which is considered a legitimate interest under Art. 6(1)(f) GDPR. When applicable, processing is based on Art. 6(1)(a) GDPR and § 25(1) TTDSG if consent involves storing cookies or accessing information on the user's device (e.g., device fingerprinting). You can revoke your consent at any time.
For more details on how YouTube handles user data, please refer to the YouTube Privacy Policy.
YouTube is certified under the “EU-US Data Privacy Framework” (DPF), an agreement ensuring compliance with European data protection standards for data processing in the US. For more information, visit: DPF Participant Search.
Newsletter Data
To subscribe to the newsletter offered on this website, we require your email address and information that confirms you are the owner of the provided email address and consent to receiving the newsletter. No additional data is collected unless you provide it voluntarily. Our newsletter service is managed using MailerLite, as detailed below.
MailerLite
This website uses MailerLite for the sending of newsletters. The provider is:
MailerLite Limited
38 Mount Street Upper,
Dublin 2, D02 PR89
Ireland (for customers in the EEA, UK, or Switzerland)
MailerLite, Inc.
548 Market St, PMB 98174,
San Francisco, CA 94104-5401
United States (for customers outside the EEA, UK, or Switzerland)
For details, please refer to the MailerLite Privacy Policy: MailerLite Privacy Policy.
Data Analysis by MailerLite
MailerLite allows us to analyze the performance of our newsletter campaigns. This includes tracking whether a newsletter has been opened and which links have been clicked. Such insights help us identify popular links and assess campaign effectiveness. Additionally, MailerLite enables us to monitor predefined actions, such as purchases, that occur after receiving the newsletter, further assisting us in evaluating campaign success. MailerLite also offers features for segmenting our subscribers into categories (e.g., age, gender, location). This segmentation allows us to tailor our newsletters to better meet the needs of different target groups. If you prefer not to have your engagement analyzed by MailerLite, you can unsubscribe from the newsletter at any time. Each newsletter includes an unsubscribe link.
Legal Basis
The processing of your data is based on your consent under Art. 6(1)(a) GDPR. You can withdraw your consent at any time by unsubscribing from the newsletter. This does not affect the legality of any data processing activities that occurred before your revocation.
Storage Period
Data provided for newsletter subscription purposes will be retained until you unsubscribe. Following unsubscription, your email address may be stored in a blacklist maintained by us or MailerLite to prevent future mailings. This data is used exclusively for this purpose and is not combined with other information. The blacklist storage is indefinite, but you can object to this storage if your personal interests outweigh our legitimate interests.
For more information, please refer to the MailerLite Privacy Policy.
Data processing
We have established a data processing agreement (DPA) with MailerLite. This agreement, as required by data protection laws, ensures that MailerLite processes personal data of our website visitors solely based on our instructions and in compliance with the GDPR.