Data Privacy Protection Regulations on the website www.grandma-aupair.com, owned and operated by Mechthild Brundiers, Weinsbergstraße 172, 50823 Köln (referred to below as “Grandma- Aupair“).
Responsible according to DSGVO, Data Privacy Protection
The person responsibleaccording to the Basic Data Privacy Protaction Regulation [Datenschutzgrundverordnung] (DSGVO) is
Phone: +49221 51091738
I take the protection of personal data very seriouly. I observe the legal data protection requirements in the operation of my website. I want you to know, which data I gather when, how I process and use it and which rights you have as a consumer regarding your personal data.
In general, you can use my website without disclosing your identity, in the form of personal data. There are parts of the website, which are marked exceptions: the registration, becoming a member, and using the “sing in” function after successfully registering, to access your profile. It is made clear in the process of registration for membership, which information is mandatory, and which is optional. I advise you, that the information of your short profile will be accessible by the general public on the internet, as well as the search engine crawlers. The contents of the detailed profile are only visible to users with a membership registration.
Personal data is information, that can be used to discern your identity. That includes names, postal addresses, phone numbers, IP-addresses and e-mail-addresses. Information that cannot be traced to you, e.g. the number of users on the website, are not part of your personal data. You can use my website without revealing personal data, with the exception of a technical data logfile permittet in conformity with Art. 6 Abs. 1 lit. f DSGVO. It contains date and time of the access, the page requested, information on browser and operation system, internet service provider and IP-address. The data is collected to ensure the functionality, safety and security of the website. The data is collected automatically, there is no possibility of objection. After seven days at the most, the data is either deleted or alienated in a way, that makes attribution to any person impossible.
Copy of identification card/photo ID
Being an au pair in another family’s home means intimate contact with the personal domestic life of the other party. That requires trust. As far as I reserve the right to request a copy of your ID card in accordance with § 20 Abs. 2 PAuswG, § 18 Abs. 3 Passgesetz [Passport Law], that is only done in the justifiable interest of ascertaining your identity, specifically your name and address. I will always first attempt to verify your identity another, less intrusive way, such as phone book listings or postal service. The legal basis for that is Art. 6 Abs. 1 lit. a und f DSGVO. I advise you to blacken the data on the copy, that I do not need for my purpose, like any login-numbers and the serial number of your ID card.
As soon as I finish my check, I will destroy the copy of your ID card immediately. I do not store the copy. If the person asked for identification (a representative of a host family or a Granny) does not have the German ID card, another identification document like a passport is sufficient.
DSGVO as legal basis
I am obliged to inform you on the legal basis for the processing of personal information.
I may only collect and process your personal data, if you consent to it, conforming to Art. 6 Abs. 1 lit. a DSGVO. An exception can be made, if the consent cannot be obtained prior to the collection or in some specific cases defined in the law.
I only use your personal information for the purpose of negotiating and completing/executing the contract. Legal basis for that is Art. 6 Abs. 1 lit. b DSGVO. Furthermore, Art. 6 Abs. 1 lit.c. DSGVO is relevant in its application to my legal obligations in handling your personal information; Art. 6 Abs. 1 lit. d DSGVO is applicable in so far as the protection of your or another natural person’s vital interests is concerned.
I am furthermore allowed to process your personal information under Art. 6 Abs. 1 lit.f DSGVO, if my business has a justified interest and my interest outweighs your interests (including personal rights) in a consideration, that has to precede the processing of your personal information.
I am obliged to inform you, that any data transfer via the internet is subject to security risks and complete protection from unwanted access cannot be guaranteed. Please make sure that your data and devices are protected against unauthorized access and equiped with updated security softare.
The personal data I receive from you are stored on secured servers in Germany. Hosting and administration of the website, including the database, are performed in Germany by a third party. I regularly update my security measures to conform to industry standards. Particularly, the website is SSL encrypted to prevent any unencrypted access. Apart from the exceptions regulated in this text (Data Privacy Protection), the storage, processing and usage of your personal data is only performed in order to make contact and to facilitate your membership. Only a few specially authorized individuals are able to access your information and only for the purposes of technical support, accounting or moderating and editing of contents.
In my contact form mandatory fields are marked, as opposed to optional information and I link to the Data Privacy Protection statement. By obtaining your consent, which is not strictly necessary, the legal basis is Art. 6 Abs. 1 lit. a DSGVO. For an intended contract closure, the legal basis is Art. 6 Abs. 1 lit. b DSGVO. I delete your e-mail address, if and when it is foreseeable that the membership will not be achieved or it has ended. You can always withdraw your consent to the processing of your personal data by sending me a message demanding the deletion of your personal data, i.a. by using the contact form or writing an e-mail to: firstname.lastname@example.org.
I may only use your data for marketing purposes with your explicit consent.
Transfer of personal data to third parties
I only use your personal information on the website Grandma-Aupair and only for the facilitation of my services as desired by you. I do not transfer your personal data to third parties without your expressed consent, with the exception of third party companies I hire to provide technical services for me and companies I employ to facilitate payments and collect open claims. To carry out transactions, I transmit the necessary data to the payment service provider you selected. I am bound by law to tranfer data to entities that are permitted to request personal information under certain circumstances, e.g. law enforcement.
Grandma-Aupair uses Google Fonts provided by the Google APIs (https://developers.google.com/apis-explorer/#search/fonts/webfonts/v1/). I use those services due to my justified interest according to Art. 6 Abs. 1 lit. f DSGVO to present my website in a homogenous and customer-friendly design. You can find Google’s data privacy protection regulations under: https://policies.google.com/privacy?hl=en. When you open my website, your ip-address is transmitted to Google and WebFonts are loaded to your browser cache. You can block advertisements: https://policies.google.com/technologies/ads.
Rights of persons affected (Right to access, correction, limitation, deletion, revocation and rights concerning data transfer, your rights concerning automated decisions, objections, right of notification, right to complaints with the regulating authority)
The DSGVO is meant to strengthen your rights as the person affected by the processing of your personal data. The execution of your rights is free of charge.
Right to access: I am obliged upon request to disclose to you any data concerning your person, that is stored by me, including, if you refer to the origin of the data, the recipients or category of recipients, the purpose and duration of the storage and apply criteria defined by you, if such are given. (Art. 15 DSGVO)
Right to correction: Your right to correction encompasses all personal data stored on this site, that is incomplete or incorrect. (Art. 16 DSGVO)
Right to deletion: You have the right to deletion of your personal information, if it has been processed illegitemately, or if the purpose of the data processing is no longer exists, or if you rescind your consent, or object and there is no other legal basis for the processing (Art. 17 Abs. 1 DSGVO). I am also obliged to inform any third parties about your demand to delete all of your personal data as well as any copies. You are not entitled to deletion, if I can invoke a legitimate interest by my legal rights, if there is a legal requirement preventing it, if it is in the public interest, if it is necessary in the execution of public authority, or if freedom of speech is violated.
Right to limitation: According to Art 18 DSGVO, you have the right to limit the processing of your personal data, if you demand limitation instead of deletion, or if you need your personal data for the enforcement of your legal rights, or if you dispute the correctness of your personal data.
Right to revocation: You can always revoke your given consent for the future. (Art. 7 Abs. 3 DSGVO)
Rights concerning data transfer: According to Art. 20 DSGVO, you have the right to data transferability, which is understood as an export of your data in a standardardized, machine-readable format. You are allowed to transfer this data to a third party. That does not apply if the execution of public power is hindered.
Your rights concerning automated decisions on an individual basis, including profiling according to Art. 22 DSGVO is supposed to protect you from being subject to automated decisionmaking, if it impairs you to no small degree. An exception, apart from your consent, can be made, if the necessity is drawn from the contract or law demands it, but only, if you are adequately protected by measures. Art 9 Abs. 1 and Abs. 2 lit a and g DSGVO are especially pertinent when special categories of personal information are concerned.
Right to objection: According to Art. 21 DSGVO, you have the right to object at any time to the processing of your personal data, if the processing is performed on the base of Art. 6 Abs. 1 lit. e or f DSGVO, particularly to object to personalized advertisements.
Right to complaints with the regulation authority: If you are of the opinion, that my treatment and processing of your personal data is in violation of data protection laws, particularly the DSGVO, you have the right according to Art. 77 DSGVO to file a complaint with the regulation authority, who will inform you of the proceedings according to Art. 78 DSGVO. The regulating authority of the place of the violation, your workplace or the member-state of your location is responsible. Other legal remedies are not affected by this.
You can contact me:
Phone: +49221 51091738
If you have executed any of your rights as a person affected as mentioned above, you have the right to information in the way, that I have to inform any third parties I shared your information with about your execution of your rights. (Art. 19 DSGVO.)
Utilization of Matomo
On this website, data is saved in accordance with Art. 6 Abs. 1 lit. f DSGVO for the purpose of statistical analysis of user behaviour and for optimization and marketing purposes, for this, the software Matomo (www.matomo.org), a service provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, Neuseeland, is used. From the collected data, pseudonymized usage profiles can be created for the same purpose. Cookies may be used in this process.
Cookies are small text files, that are stored locally in the browser cache of the person visiting the website. Cookies allow for the recognition of browsers. The data collected with Matomo is stored and processed on our servers.
The pseudonymized profile are not used to identify users personally and they are not merged with personal data of the person behind the pseudonym.
If you do not agree to the analysis of this data, you can disable the storage and processing by clicking on the checkbox below. Your browser will then save an opt-out-cookie, which will disable data collection. Please be aware, that if you delete all of your cookies, the opt-out-cookie will be deleted as well and will have to be re-enabled.
Disable Mamoto Tracking
There are some instances where cookies are used on this website. Most internet browsers are set to automatically accept cookies. You can limit the cookies saved, deactivate the automatic saving or set your browser to inform you about any cookie requests. You can also delete cookies, that have been saved before. Please inform yourself on the way to configure your browser to your liking. If you deactivate cookies completely, the functionality of my website might me impaired and you might not be able to use all of the functions.
Cookies are small text files, that are stored on your computing device and saved by your browser to personalize our offer to you, that is the reasons you can decide to disallow cookies. If you access our website, our provider’s server will deliver the website and, if applicable, the cookie to your browser. The browser then determines, whether the cookie is stored on your device. Cookies as pure text files cannot damage your system or intrude in any way. They are submitted by our server and analyzed at repeat visits to our site.
Upon opening my website, a banner informs you about the usage of cookies on my website and links to the Data Privacy Protection page. No vital information is obscured by the banner.
Data privacy protection regulations with regard to Facebook links, logout
Grandma-Aupair uses a picture-symbol (icon) to link the website to Facebook, operated by Facebook Inc., 1601 Willow Road, Menlo Park, California, 94025, USA (“Facebook”). It is recognizable as the white “F” in the blue box. This is not a plugin, which would transmit data as soon as you visit my page. I base my legitimate interest on Art. 6 Abs. 1 lit f DSGVO, the connection of my social network with my website is beneficial for me and my customers. If you open a page containing the icon-link, there is no connection made to the Facebook servers. Only if you click on the link and follow it to the Facebook website, your visit on my website will be transmitted to (known by) Facebook. For more information on the purpose and scope of the collection and processing of data by Facebook, consult the data privacy protection policy of Facebook: https://www.facebook.com/policy.php. If you want to avoid the transfer of data from my website to facebook, you should log out of Facebook before visiting my website.
Duration of data storage, data erasure
I only store your personal data for the duration given by the mentioned regulations of the DSGVO and as long as necessary for the duration of your membership and/or the contact opportunity. The storage of data to protect my legitimate interest, legal safekeeping periods and connected requests are not affected by this. Otherwise personal data is deleted.
Application and changing of the data privacy protection regulations
Grandma-Aupair reserves the right to change these regulations due to changes on the website or changes in law.