Privacy Policy

1. Controller

The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

ECC Betreuungsbüro Ralf Fodor
Reichenberger Str. 30, 10999 Berlin, Germany
Phone: 030 - 89727432
Fax: 030 - 89727434
E-Mail: leitung@ecc-betreuungsbuero.de
A Data Protection Officer has not been appointed and is not legally required.

2. General Information on Data Processing

We process personal data only to the extent necessary for the technical operation of this website and the processing of inquiries. No tracking or analysis tools (e.g., Google Analytics, Meta Pixel) are used.

3. Hosting and Server Log Files (Netlify)

This website is provided via the hosting service Netlify.

  • Data processed: IP address, date and time of access, pages/files accessed (URL), referrer URL, browser type/version, operating system, and technical request metadata.
  • Purposes: Delivery of the website, IT security (e.g., DDoS protection), and error analysis.
  • Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in a secure and efficient operation).
  • Recipient: Netlify, Inc., USA (Data Processor).
  • Third country transfer: Transfers to the USA are secured by the adequacy decision of the EU Commission (EU-U.S. Data Privacy Framework) and/or EU Standard Contractual Clauses.
  • Retention period: Server log data is deleted or anonymized after 30 days at the latest.

4. Content via CMS (Sanity)

We use Sanity as a Content Management System to deliver content.

  • Data processed: Technical access data (specifically IP address) when retrieving media/content.
  • Legal basis: Art. 6 (1) (f) GDPR.
  • Recipient / Third country: Sanity, Inc., USA. The transfer is secured via the EU-U.S. Data Privacy Framework or EU Standard Contractual Clauses.

5. Contact Form (Netlify Forms)

  • Data: Name, e-mail address, phone number (optional), message, and technical timestamps.
  • Purposes: Processing your inquiry and spam prevention (honeypot procedure).
  • Legal basis: Art. 6 (1) (b) GDPR (contract initiation/fulfillment) or Art. 6 (1) (f) GDPR (efficient communication).
  • Retention period: Inquiries are deleted approximately 6 months after final processing, provided no statutory retention obligations exist.
  • Note on sensitive content: Please do not transmit special categories of personal data (e.g., health data) via the form unless expressly required.

6. Contact via E-mail, Phone, or Fax

If you contact us directly, we process the data you transmit to handle your request.

  • Legal basis: Art. 6 (1) (b) or (f) GDPR.
  • Retention period: Deletion after completion of the processing, provided no archiving obligations (e.g., 6 or 10 years according to HGB/AO) exist.

7. Local Storage of Language Preference (localStorage)

We store your chosen language (“preferred-language”) locally in your browser.

  • Purpose: Display of the website in the desired language.
  • Legal basis: § 25 (2) No. 2 TDDDG. Access to the end device is strictly necessary to provide the telemedia service explicitly requested by the user (website in the correct language). Therefore, no consent is required.
  • Retention period: Until the manual deletion of the browser storage by the user.

8. External Links (Map Providers)

We link to Google Maps, Apple Maps, and OpenStreetMap. Only upon clicking the link do you leave our website and are redirected to the provider. The privacy policy of the respective provider applies there.

9. Your Rights as a Data Subject

You have the following rights toward us regarding your personal data:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)

If a processing operation is based on consent, you can revoke it at any time with effect for the future.

10. Right to Lodge a Complaint with the Supervisory Authority

You have the right to complain to a data protection supervisory authority about the processing of your personal data by us. The authority responsible for us is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59–61, 10555 Berlin
E-Mail: mailbox@datenschutz-berlin.de

11. Data Security

We use SSL encryption (HTTPS) to protect your data during transmission according to the state of the art.