Data Protection

​​Introduction

​

We ("we," "us," "our") - the term "we" is used below to represent Theresa Gessert - take the privacy of users ("users" or "you") of our website and/or mobile app (the "Website" or "Mobile App") very seriously and are committed to protecting the information users provide to us in connection with their use of our website and/or mobile app (collectively, "Digital Assets"). Furthermore, we are committed to protecting and using your information in accordance with applicable law.

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your information through the use of our Digital Assets (the "Services") when you access the Services through your devices.

Please read the Privacy Policy carefully and ensure that you fully understand our practices regarding your information before using our Services. If you have read this Policy, fully understand it, and do not agree with our practices, you must stop using our digital assets and services. By using our Services, you acknowledge the terms of this Privacy Policy. Your continued use of the Services constitutes your acceptance of this Privacy Policy and any changes to it.

​

This Privacy Policy tells you:

- How we collect information

- What information we collect

- Why we collect this information

- Who we share the information with

- Where the information is stored

- How long the information is retained

- How we protect the information

- How we treat minors

- Updates or changes to this Privacy Policy

​

What information do we collect?

Category: Always

Below is an overview of the information we may collect:

 

Unidentified and non-identifiable information that you provide during the registration process or that is collected through your use of our Services ("Non-Personal Information"). Non-Personal Information does not allow for any identification of who collected it. The Non-Personal Information we collect consists primarily of technical and aggregated usage information.

Individually identifiable information, meaning anything that can be used to identify you or could reasonably be identified ("Personal Information"). The Personal Information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. When we combine Personal Information with Non-Personal Information, we treat it as Personal Information as long as it remains in combination.

 

How do we collect information?

 

Category: Always

Below are the main methods we use to collect information:

 

We collect information when you use our Services. So, when you visit our digital assets and use services, we may collect, record, and store usage, session, and related information.

We collect information that you provide to us, for example, when you contact us directly through a communication channel (e.g., an email with a comment or feedback).

We may collect information from third-party sources, as described below.

We collect information you provide when you sign in to our Services through a third-party service provider, such as Facebook or Google.

 

Why do we collect this information?

Category: Always

We may use your information for the following purposes:

 

to provide and operate our Services;

to develop, customize, and improve our Services;

to respond to your feedback, requests, and requests, and to provide assistance;

to analyze request and usage patterns;

for other internal, statistical, and research purposes;

to improve our data security and fraud prevention capabilities;

to investigate violations and enforce our terms and policies, and to comply with applicable law, regulations, or government requests;

to send you updates, news, promotional materials, and other information related to our Services. For promotional emails, you may opt out of receiving them. If not, simply click the unsubscribe link in these emails.

​

Who do we share this information with?

Category: Always

We may share your information with our service providers to operate our Services (e.g., storing data through third-party hosting services, providing technical support, etc.).

 

We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent, or take action regarding unlawful activities or other wrongdoing; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, as well as the safety of our users or the public; (iv) in the event of a change of control of us or one of our affiliates (through a merger, acquisition, or purchase of (substantially) all of our assets, among other things); (v) to collect, retain, and/or manage your information through authorized third parties (e.g., cloud service providers) as reasonably necessary for our business purposes; (vi) to work with third parties to improve your user experience. For the avoidance of doubt, we may transmit, share, or otherwise use non-personal information with third parties at our sole discretion.

​

Category: User has a blog or forum

Please note that our Services enable social interactions (e.g., posting content, information, and comments publicly and chatting with other users). Please be aware that any content or data you make available in these areas may be read, collected, and used by others. We advise against posting or sharing information that you do not want to be public. If you upload content to our Digital Assets or otherwise make it available as part of your use of a Service, you do so at your own risk. We cannot control the actions of other users or members of the public who have access to your data or content. You understand and acknowledge that copies of your data may remain accessible on cached and archived pages even after deletion or after a third party creates a copy/store of your content.

​

Cookies and Similar Technologies

When you visit or access our Services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services ("Tracking Technologies"). These Tracking Technologies may enable third parties to automatically collect your information to enhance your browsing experience on our Digital Assets, optimize their performance, and provide a tailored user experience, as well as for security and fraud prevention purposes.

 

To learn more, please read our Cookie Policy.

​

Category: User is NOT connected to an advertising service

We will not share your email address or other personal information with advertising companies or ad networks without your consent.

​

Category: User is connected to an advertising service, a campaign manager, or Facebook Ads

We may deliver advertising through our Services and our Digital Assets (including websites and applications that use our Services), which may also be tailored to you, such as: B. Ads based on your recent browsing behavior across websites, devices, or browsers.

 

To deliver these ads to you, we may use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or HTML5 local storage and/or other technologies. We may also use third parties, such as network advertisers (i.e., third parties who display ads based on your website visits), to deliver targeted ads. Third-party ad network providers, advertisers, sponsors, and/or website traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or Flash cookies and/or other technologies to measure the effectiveness of their ads and to tailor advertising content to you. These third-party cookies and other technologies are subject to the specific privacy policy of the third party, not this one.

​

Where do we store the data?

Category: Always

Non-Personal Data

 

Please note that our companies, as well as our trusted partners and service providers, are located around the world. For the purposes explained in this Privacy Policy, we store and process any non-personal data we collect in different jurisdictions.

 

Category: User collects personal data

Personal Data

Personal Data may be maintained, processed, and stored in the United States, Ireland, South Korea, Taiwan, Israel, and to the extent necessary for the proper provision of our services and/or required by law (as further explained below), in other jurisdictions.

 

How long is the data retained?

Category: Always

Please note that we retain the data we collect for as long as necessary to provide our services, comply with our legal and contractual obligations to you, resolve disputes, and enforce our agreements.

We may correct, amend, or delete inaccurate or incomplete data at any time at our sole discretion.

 

How do we protect the data?

Category: Always

The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data may be stored via our hosting provider's data storage, databases, and common applications. They store your data on secure servers behind a firewall, and they provide secure HTTPS access to most areas of their services.

 

Category: User Accepts Payments/eCom

All payment options offered by us and our hosting provider for our digital assets comply with the PCI-DSS (Payment Card Industry Data Security Standard) regulations of the PCI Security Standards Council. This is a collaboration between brands such as Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card data (including physical, electronic, and procedural measures) by our store and service providers.

​

Category: Always

Despite the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee the absolute protection and security of any information you upload, post, or otherwise share with us or others.

For this reason, we ask that you use strong passwords and, where possible, not send us or others any confidential information whose disclosure you believe could cause you significant or lasting harm. Furthermore, because email and instant messaging are not considered secure forms of communication, we ask that you do not share any confidential information through any of these communication channels.

 

 

How do we deal with minors?

Category: Users DO NOT collect data from minors

The Services are not intended for users who have not yet reached the legal age of majority. We will not knowingly collect data from children. If you are under the legal age of majority, you should not download or use the Services or provide us with any information.

 

We reserve the right to request proof of age at any time so that we can verify that minors are using our Services. If we become aware that a minor is using our Services, we may prohibit and block that user's access to our Services, and we may delete any data we have stored about that user. If you have reason to believe that a minor has provided information to us, please contact us as explained below.

​

Category: User Collects Data from Minors

Children can use our Services. However, if they wish to access certain features, they may be required to provide certain information. Some information (including information collected through cookies, web beacons, and other similar technologies) may be collected automatically. If we knowingly collect, use, or disclose information collected from a child, we will provide notice and obtain parental consent in accordance with applicable law. We will not condition a child's participation in an online activity on the child providing more contact information than is reasonably necessary to participate in that activity. We will only use the information we collect in connection with the services the child has requested.

 

We may also use a parent's contact information to communicate about the child's activities on the Services. Parents can review information we have collected from their child, prohibit us from collecting further information from your child, and request that all information we have collected be deleted from our records.

 

Please contact us to access, update, or delete your child's data. To protect your child, we may ask for proof of your identity. We may refuse access to your data if we believe your identity is in question. Please note that certain data cannot be deleted due to other legal obligations.

​

Category: Always

We will only use your personal data for the purposes set out in the Privacy Policy and only if we are satisfied that:

 

the use of your personal data is necessary to perform or enter into a contract (for example, to provide you with the Services themselves or customer or technical support);

the use of your personal data is necessary to comply with relevant legal or regulatory obligations; or

the use of your personal data is necessary to support our legitimate business interests (provided that this is always done in a manner that is proportionate and respects your data protection rights).

​

As an EU resident, you can:

 

request confirmation as to whether or not personal data concerning you is being processed, and request access to your stored personal data, as well as certain additional information;

 

request receipt of personal data you have provided to us in a structured, commonly used, and machine-readable format;

 

request rectification of your personal data held by us;

 

request erasure of your personal data;

 

object to our processing of your personal data;

 

request restriction of processing of your personal data, or

 

lodge a complaint with a supervisory authority.

 

Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how we use it, please contact us as indicated below.

​

In the course of providing the Services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the Services, you consent to the transfer of your data outside the EEA.

 

If you are located in the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that an adequate or equivalent level of personal data protection exists. We will take appropriate steps to ensure that we have appropriate contractual arrangements with our third parties to ensure that appropriate safeguards are in place to minimize the risk of unlawful use, alteration, deletion, loss, or theft of your personal data and that these third parties act in compliance with applicable laws at all times.

California Consumer Privacy Act Rights

 

If you use the Services as a California resident, you may have the right to request access to and deletion of your information under the California Consumer Privacy Act (“CCPA”).

 

To exercise your right to access and delete your information, please see below for details on how to contact us.

 

Category: The Site Does Not Sell User Data

We do not sell users' personal data for the purposes of the CCPA.

 

Category: Sites with a Blog or Forum

Users of the Services who are California residents and under 18 years of age may request and obtain removal of their posted content by emailing us at the address provided below in the "Contact Us" section. All requests must be marked "California Removal Request." All requests must include a description of the content you wish to have removed and sufficient information to allow us to locate the material. We will not accept communications that are unmarked or improperly delivered, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not guarantee complete or comprehensive removal of the material. For example, material you post may be republished or reposted by other users or third parties.

​

Updates or Changes to the Privacy Policy

Category: Always

We may revise this Privacy Policy from time to time at our sole discretion; the version posted on the website will always be the most current (see "Effective Date" notice). We encourage you to check this Privacy Policy frequently for changes. If any changes are material, we will post a notice on our website. Your continued use of the Services after we have posted notice of changes on our website will constitute your acknowledgment and acceptance of the changes to the Privacy Policy and your agreement to be bound by the terms of those changes.

 

 

Contact

Category: Always

If you have general questions about the Services or the information we collect about you and how we use it, please contact us at:

 

Theresa Gessert Photography

c/o Block Services

Stuttgarter Str. 106

70736 Fellbach

Email address: Theresa.gessert@gmail.com

​

DISCLAIMER

The information contained herein is not a substitute for legal advice, and you should not rely on it alone. Specific requirements regarding legal terms and regulations may vary from state to state and/or jurisdiction to jurisdiction. As set out in our Terms of Use, you are responsible for ensuring that your services are permitted under, and that you comply with, any applicable laws.

 

To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand your specific requirements.

 

 

Information on Cookies and the Terms of Use.