Privacy Policy
With this privacy policy, we inform you about the nature, scope and purpose of the processing of personal data within the scope of our online service 123sanctions.eu. Personal data is any data that can be used to personally identify you.
1. Controller
Controller pursuant to Article 4 No. 7 of Regulation (EU) 2016/679
(General Data Protection Regulation, GDPR) is:
Daniel H. Gerl
Langenbergsweg 40
53179 Bonn
Germany
Email:
admin@123sanctions.eu
2. General Information on Data Processing
2.1 Categories of Personal Data Processed
In the course of operating this website and the services offered, we process – depending on usage – the following categories of personal data:
- Inventory data (e.g. names, company affiliation, project names)
- Contact data (e.g. email address)
- Content data (e.g. uploaded files, text entries)
- Usage data (e.g. access times)
- Meta and communication data (e.g. IP address)
2.2 Recipients of Personal Data
Personal data is only disclosed to third parties insofar as this is necessary for contract fulfillment, a legal obligation exists, or we use processors pursuant to Article 28 GDPR for this purpose.
2.3 Storage Duration
Personal data is only stored for as long as is necessary for the respective processing purposes or legal retention periods exist. Subsequently, the data is deleted or anonymized.
2.4 Transfers to Third Countries
The processing of personal data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) may occur in the context of using web hosting services, particularly insofar as this is necessary for the operation, maintenance or support of the hosting infrastructure.
Such processing only takes place in accordance with the legal requirements of Articles 44 ff. GDPR. The data protection framework conditions result from the data processing agreement concluded with our web hosting provider.
Further information can be found in the data processing agreement of our hosting provider Hostinger at https://www.hostinger.com/legal/dpa .
Such processing only takes place if it is necessary for the fulfillment of our (pre-)contractual obligations, on the basis of consent, due to a legal obligation or on the basis of our legitimate interests. Furthermore, processing in third countries only takes place under the special conditions of Articles 44 ff. GDPR, particularly on the basis of appropriate safeguards such as an adequacy decision by the European Commission or using standard contractual clauses approved by the European Commission.
3. Data Processing on Behalf
Insofar as users upload or process personal data of third parties (e.g. employees, business partners or other data subjects) in the course of using our service, this processing takes place on behalf of the user. Once this service is available, we will provide information here about the technical framework conditions and the resulting data protection implications.
In these cases, 123sanctions.eu acts as a processor within the meaning of Article 4 No. 8 and Article 28 GDPR, while the respective user remains the controller in terms of data protection law.
A data processing agreement (DPA) can be viewed and concluded in the customer account. We will inform you here as soon as this function is available.
4. Visiting Our Website
4.1 Server Log Files
When accessing our website, the hosting server automatically records the following technically necessary information:
- Date and time of access
- Browser type and version
- Operating system
- IP address
- Referrer URL
- Accessed file and status code
This data is not merged with other data sources or analyzed for marketing purposes. The legal basis is Article 6(1)(f) GDPR (legitimate interest in secure website operation).
4.2 Cookies
This website only uses technically necessary cookies. Consent is not required for these. The legal basis is Article 6(1)(f) GDPR.
4.3 Hosting
The website is hosted by a provider with server locations within the European Union. A data processing agreement pursuant to Article 28 GDPR exists with the hosting provider (see section 2.4).
5. Contact
When contacting us by email or letter, the data you provide is processed exclusively for the purpose of handling your inquiry. The legal basis is Article 6(1)(b) or (f) GDPR.
6. Online Presence in Social Media
We may maintain online presences in social networks. These are only accessible via external links. The privacy policies of the respective providers apply to the data processing that takes place there.
7. Your Rights
As a data subject, you are entitled to the following rights in particular:
- Right of access (Article 15 GDPR)
- Right to rectification (Article 16 GDPR)
- Right to erasure (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object (Article 21 GDPR)
- Right to withdraw consent (Article 7(3) GDPR)
- Right to lodge a complaint with a supervisory authority (Article 77 GDPR)
The competent supervisory authority is the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia.