Privacy

We are delighted that you have visited our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to take this opportunity to inform you about what personal data we collect when you visit our website and what purposes it is used for.

This privacy policy applies to the website accessible under the domain https://dr-kinner.de/ and the various subdomains (“our website”).

Contact details of the controller and contact person for data protection

Controller

for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)

Dr. Sabine Kinner
Postallee 45a
45964 Gladbeck

Phone
Email

Contact person for data protection

HUBIT Datenschutz GmbH & Co. KG

Lise-Meitner-Str. 2

28359 Bremen

Website: www.hubit-datenschutz.de

Data protection telephone number: 0421-33114300

General information on data protection

This privacy policy complies with the legal requirements for transparency in the processing of personal data. This includes all information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, email address, IP address, or user behavior when visiting a website. Information that we cannot relate to your person (or only with disproportionate effort), e.g., through anonymization, is not personal data. The processing of personal data (e.g., collection, retrieval, use, storage, or transmission) always requires a legal basis and a defined purpose.

Stored personal data will be deleted as soon as the purpose of processing has been fulfilled and there are no legal grounds for further storage of the data. We will inform you of the specific storage periods or criteria for storage in the individual processing operations. Irrespective of this, we store your personal data in individual cases for the assertion, exercise, or defense of legal claims and in the event of statutory retention obligations.

Transfer of data

We only forward personal data that we process on our website to third parties if this is necessary for the fulfillment of the purposes and is covered by the legal basis (e.g., consent or protection of legitimate interests) in individual cases. We also forward personal data to third parties in individual cases if this serves to assert, exercise, or defend legal claims. Possible recipients may then include, for example, law enforcement authorities, lawyers, auditors, courts, etc.

If we use service providers for the operation of our website who process personal data on our behalf within the scope of order processing in accordance with Art. 28 GDPR, these recipients may be recipients of your personal data. You can find more detailed information on the use of processors and web services in the overview of the individual processing operations.

Use of cookies

Cookies are small text files that are sent to your browser by us when you visit our website and stored there. As an alternative to cookies, information can also be stored in your browser’s local storage. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Other cookies, however, enable us to perform various analyses so that, for example, we are able to recognize the browser you are using when you visit our website again and transmit various information to us (non-necessary cookies). Cookies help us to make our website more user-friendly and effective for you, for example by tracking your use of our website and determining your preferred settings (e.g., country and language settings). If third parties process information via cookies, they collect this information directly via your browser. Cookies do not cause any damage to your device. They cannot execute programs or contain viruses.

We provide information about the relevant services for which we use cookies in the individual processing operations. Detailed information about the cookies used can be found in the cookie settings or in the consent manager of this website.

Domain Name Description Storage Period

Exercising Data Subject Rights

Information about data subject rights

Every data subject can assert their rights (data subject rights) towards the controller. This can be done by email, post, or using a provided form. Telephone inquiries are also possible. These will only be accepted by telephone, not answered by telephone. The controller selects the medium (post, email, other media) and sends the data subject the response to their inquiry via this medium. Responses to inquiries regarding data subject rights are provided free of charge. In the event of data subject rights being excessively exercised (e.g., frequent requests), a fee may be charged. Responses will be provided within the statutory period of one month. This period may be extended in exceptional cases (e.g., high number of requests or high complexity of the request). The extension of the deadline must be justified. The rights of data subjects are listed below. For the sake of clarity, we have summarized the rights of data subjects in bullet points. Behind each bullet point, you will find a link to detailed explanations (on the HUBIT data protection website).

The data subject must authenticate themselves to the controller to ensure that they are entitled to exercise their data subject rights.

On the HUBIT data protection website, you will find a form that you can use to exercise your data subject rights. Form for exercising data subject rights

How is my data processed in detail?

Below, we inform you about the individual processing operations, the scope and purpose of data processing, the legal basis, the obligation to provide your data, and the relevant storage period. There is no automated decision-making in individual cases, including profiling.

Provision of the website

Type and scope of processing

When you visit and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a log file:

IP address of the requesting computer
Date and time of access
Name and URL of the file accessed
Website from which access is made (referrer URL)
Browser used and, if applicable, the operating system of your computer, as well as the name of your access provider

[Our website is not hosted by us, but by a service provider who processes the aforementioned data on our behalf in accordance with Art. 28 GDPR.]

Purpose and legal basis

The processing is carried out to protect our overriding legitimate interest in displaying our website and ensuring its security and stability on the basis of Art. 6 para. lit. f GDPR. The collection of data and storage in log files is essential for the operation of the website. There is no right to object to the processing due to the exception under Art. 21 para. 1 GDPR. Insofar as further storage of the log files is required by law, processing is carried out on the basis of Art. 6 para. 1 lit. c GDPR. There is no legal or contractual obligation to provide the data, but it is technically impossible to access our website without providing the data.

Storage period

The aforementioned data will be stored for the duration of the website display [and for technical reasons for a maximum of [7 days] beyond that.

Presence on social media platforms

We maintain fan pages, accounts, or channels on the networks listed below in order to provide you with information and offers within social networks and to offer you additional ways to contact us and find out about our offers. Below, we inform you about which data we or the relevant social network process about you in connection with your access to and use of our fan pages/accounts.

Data that we process about you

If you wish to contact us via messenger or direct message via the relevant social network, we generally process your username through which you contact us and, if necessary, store other data you provide to the extent necessary to process/respond to your request.

The legal basis is Art. 6 para. 1 sentence 1 f) GDPR (processing is necessary to safeguard the legitimate interests of the controller).

(Static) usage data that we receive from social networks

We receive statistics about our accounts automatically via Insights features. The statistics include the total number of page views, likes, information about page activity and post interactions, reach, video views, and information about the ratio of men to women among our fans/followers.

The statistics contain only aggregated data that cannot be traced back to individual persons. They are not identifiable to us.

What data the social networks process about you

In order to view the content of our fan pages or accounts, you do not need to be a member of the relevant social network and, in this respect, no user account for the relevant social network is required.

Please note, however, that when you visit the relevant social network, the social networks also collect and store data from website visitors without a user account (e.g., technical data to enable you to view the website) and use cookies and similar technologies, over which we have no influence. Details can be found in the privacy policy of the relevant social network (see the corresponding links above).

If you wish to interact with the content on our fan pages/accounts, e.g., comment on or share our posts/contributions or like them, and/or contact us via messenger functions, you must first register with the relevant social network and provide personal data.

We have no influence on the data processing carried out by social networks within the scope of your use. To the best of our knowledge, your data is stored and processed in particular in connection with the provision of the services of the relevant social network and, furthermore, for the analysis of usage behavior (using cookies, pixels/web beacons, and similar technologies) on the basis of which advertising based on your interests is displayed both within and outside the relevant social network. It cannot be ruled out that your data may also be stored by social networks outside the EU/EEA and passed on to third parties.

Information on, among other things, the exact scope and purposes of the processing of your personal data, the storage period/deletion, and guidelines on the use of cookies and similar technologies in connection with the registration and use of social networks can be found in the privacy policies/cookie guidelines of the social networks. There you will also find information about your rights and options for objection.

Instagram page

When you visit our Instagram page, Instagram (Meta) collects, among other things, your IP address, and other information stored on your PC in the form of cookies. This information is used to provide us, as the operator of the Instagram pages, with statistical information about the use of the Instagram page. Instagram provides more detailed information on this at the following link (note: clicking on the following link will take you to the website of the social network Facebook, which is also part of the Meta group. However, the information provided via the link applies equally to the social network Instagram): https://facebook.com/help/pages/insights.

The statistical information transmitted does not enable us to draw any conclusions about individual users. We only use this information to respond to the interests of our users and to continuously improve and ensure the quality of our online presence.

We collect your data via our fan page solely for the purpose of enabling communication and interaction with us. This collection generally includes your name, message content, comment content, and the profile information you have made “public.”

The processing of your personal data for the purposes mentioned above is based on our legitimate business and communication interest in offering an information and communication channel in accordance with Art. 6 para. 1 f) GDPR. If you as a user have given your consent to data processing to the relevant social network provider, the legal basis for processing extends to Art. 6 para. 1 a), Art. 7 GDPR.

Due to the fact that the actual data processing is carried out by the social network provider, our access to your data is limited. Only the provider of the social network is authorized to access your data in full. For this reason, only the provider can take and implement appropriate measures to fulfill your user rights (request for information, request for deletion, objection, etc.). The most effective way to assert your rights is therefore directly against the relevant provider.

We are jointly responsible with Instagram for the personal content of the fan page. Data subject rights can be asserted towards Meta Platforms Ireland Ltd. and towards us.

The primary responsibility for the processing of Insights data lies with Instagram in accordance with the GDPR, and Instagram fulfills all obligations under the GDPR with regard to the processing of Insights data. Meta Platforms Ireland Ltd. makes the essence of the Page Insights supplement available to the data subjects.

We do not make any decisions regarding the processing of Insights data and the storage duration of cookies on user devices.

Further information can be found directly on Instagram (supplementary agreement with Facebook): https://www.facebook.com/legal/terms/page_controller_addendum.

For more information, including the exact scope and purposes of the processing of your personal data, the storage period/deletion, and guidelines on the use of cookies and similar technologies in the context of registration and use, please refer to Instagram’s privacy policy/cookie policy (note: clicking on the following link will take you to the Facebook social network website):

https://help.instagram.com/519522125107875/?helpref=uf_share

This information can also be found in the help section of the Instagram website via the following link:

https://help.instagram.com/581066165581870

Third-party providers

Below, you will find the third-party providers that are integrated into our website.

Google Analytics

Type and scope of processing

We use Google Analytics from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as an analysis service for the statistical evaluation of our online offering. This includes, for example, the number of visits to our online offering, the subpages visited, and the length of time visitors spend on our website.

Google Analytics uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on website activity.

Purpose and legal basis

The use of Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular to the USA. Data transfers to the USA are carried out in accordance with Art. 45 (1) GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where no adequacy decision by the European Commission exists (including US companies that are not certified under the EU-U.S. DPF), we have agreed on other appropriate safeguards with the recipients of the data in accordance with Art. 44 ff. GDPR. Unless otherwise specified, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. A copy of these standard contractual clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

We will also obtain your consent in accordance with Art. 49 (1) sentence 1 lit. a GDPR prior to any such transfer to a third country, which you can give via the Consent Manager (or other forms, registrations, etc.). We would like to point out that there may be unknown risks associated with transfers to third countries (e.g., data processing by security authorities in the third country, the exact scope of which and the consequences for you we do not know, over which we have no influence, and of which you may not be aware).

Storage period

The specific storage period for the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Analytics: https://policies.google.com/privacy.

Google Tag Manager

Type and scope of processing

We use Google Tag Manager from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is used to manage website tags via an interface and enables us to control the precise integration of services on our website.

This allows us to flexibly integrate additional services to evaluate user access to our website.

Purpose and legal basis

The use of Google Tag Manager is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. Data transfer to the USA is carried out in accordance with Art. 45 (1) GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified under the EU-US Data Privacy Framework (EU-US DPF).

In cases where no adequacy decision has been made by the European Commission (including US companies that are not certified under the EU-US DPF), we have agreed to other appropriate safeguards with the recipients of the data in accordance with Art. 44 et seq. GDPR. Unless otherwise specified, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. A copy of these standard contractual clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

We will also obtain your consent in accordance with Art. 49 (1) sentence 1 lit. a GDPR prior to any such transfer to a third country, which you can give via the Consent Manager (or other forms, registrations, etc.). We would like to point out that there may be unknown risks associated with transfers to third countries (e.g., data processing by security authorities in the third country, the exact scope of which and consequences for you we do not know, over which we have no influence, and of which you may not be aware).

Storage period

We have no influence on the specific storage period of the processed data; this is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Tag Manager: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.

jQuery CDN

Type and scope of processing

We use jQuery CDN to ensure the proper provision of the content on our website. jQuery CDN is a service provided by jQuery that acts as a content delivery network (CDN) on our website.

A CDN helps to deliver content from our online offering, in particular files such as graphics or scripts, more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to jQuery servers, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of jQuery CDN.

Purpose and legal basis

The use of the Content Delivery Network is based on our legitimate interests, i.e. our interest in the secure and efficient provision and optimization of our online offering in accordance with Art. 6 para. 1 lit. f. GDPR.

Storage period

We have no influence on the specific storage period of the processed data; this is determined by jQuery. Further information can be found in the privacy policy for jQuery CDN: https://www.stackpath.com/legal/privacy-

Dr. Sabine Kinner
Practice for Digital Orthodontics

Postallee 45a 45964 Gladbeck

Phone: 02043 / 258 16

Email: praxis@dr-kinner.de

Privacy

Contact details of the controller and contact person for data protection

General information on data protection

Transfer of data

Use of cookies

Exercising Data Subject Rights

Information about data subject rights

How is my data processed in detail?

Third-party providers

Dr. Sabine Kinner Practice for Digital Orthodontics

Menu

Dr. Sabine Kinner
Practice for Digital Orthodontics