top of page
Eventfotografie-München-38.JPG
fp_logo.png

PRIVACY POLICY

PRIVACY POLICY

1. Data Protection at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in the privacy policy below.

Data Collection on This Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. Their contact details can be found in the section "Information on the Responsible Party" in this privacy policy.

How do we collect your data?

Your data is collected in part by you providing it to us, for example by filling out a contact form. Other data is collected automatically or with your consent by our IT systems when you visit the website. This includes technical data (e.g., browser, operating system, time of page visit). This data is collected automatically as soon as you access this website.

What do we use your data for?

Some of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze user behavior.

 

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time and free of charge. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. Under certain circumstances, you also have the right to request the restriction of the processing of your personal data. Furthermore, you have the right to file a complaint with the competent supervisory authority. You can contact us at any time with questions about data protection.

2. Hosting and Content Delivery Network (CDN) by WIX

We host our website with Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel ("WIX"). WIX provides tools for building and hosting websites. When you visit our site, WIX may analyze user behavior, visitor sources, the region of visitors, and visitor numbers. WIX stores cookies on your browser that are essential for displaying the website and ensuring its security (necessary cookies). Data is stored on WIX servers in Israel. Israel is considered a third country with an adequate level of data protection equivalent to that of the EU. For more information, please refer to WIX’s privacy policy: https://de.wix.com/about/privacy.

 

The use of WIX is based on Art. 6(1)(f) GDPR. We have a legitimate interest in a reliable presentation of our website. If consent was requested, processing is based solely on Art. 6(1)(a) GDPR; consent can be revoked at any time.

Data Processing Agreement

We have signed a data processing agreement with WIX, ensuring that WIX processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

3. General Information and Mandatory Disclosures

Data Protection

The operator of this website takes the protection of your personal data very seriously. We handle your data confidentially and in accordance with the legal data protection regulations and this privacy policy.

When using this website, various personal data may be collected. This policy explains which data we collect, how, and for what purpose. Please note that data transmission over the Internet (e.g., via email) may be subject to security gaps. Complete protection of the data from access by third parties is not possible.

Controller of Data Processing:

Thomas Friedl
Pfälzer-Wald-Str. 47
81539 Munich
Germany
info@friedl-photography.de
Phone: +49 179 4997395

The controller is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration

Unless a specific storage period is stated in this privacy policy, your personal data will remain with us until the purpose for processing no longer applies. If you make a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless there are other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, deletion takes place after these reasons cease to apply.

Data Transfers to the U.S. and Other Third Countries

Our website includes tools from companies based in the U.S. or other non-EU countries that do not guarantee a comparable level of data protection. When these tools are active, your personal data may be transferred to and processed in these countries. Please be aware that these countries may not guarantee data protection standards equivalent to those of the EU. For example, U.S. authorities may access personal data for surveillance purposes without judicial recourse. We have no influence on such processing.

Withdrawal of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You may revoke your consent at any time. The legality of the processing carried out until the revocation remains unaffected.

Right to Object to Data Processing in Special Cases and to Direct Marketing (Art. 21 GDPR)

If the data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms or the processing serves to assert, exercise, or defend legal claims.

If your personal data is processed for direct marketing purposes, you have the right to object at any time to processing for such marketing; this also applies to profiling related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes.

Right to Lodge a Complaint with a Supervisory Authority

In case of GDPR violations, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the place of the alleged infringement.

Right to Data Portability

You have the right to receive data that we process based on your consent or in fulfillment of a contract in a commonly used, machine-readable format, and to request that it be transferred to another controller where technically feasible.

SSL or TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us. You can recognize an encrypted connection by the change in the address line of the browser from “http://” to “https://” and by the lock symbol in your browser address bar.

Information, Deletion, and Correction

Within the scope of applicable legal provisions, you have the right to obtain information about your stored personal data, its origin, recipient, and the purpose of data processing and, if applicable, a right to correct or delete such data at any time.

Right to Restrict Processing

You have the right to request the restriction of the processing of your personal data. This applies in particular:

  • If you contest the accuracy of the data, we will restrict processing for the duration of verification.

  • If the processing is unlawful but you oppose deletion.

  • If we no longer need the data, but you require it to exercise legal claims.

  • If you object under Art. 21(1) GDPR and a balance of interests is pending.

Where processing is restricted, such data may only be processed with your consent or for legal claims or public interest reasons.

 

4. Data Collection on This Website

 

Cookies

 

Our website uses cookies. These are small text files stored on your device, either temporarily (session cookies) or permanently. Session cookies are deleted after your visit ends. Permanent cookies remain on your device until deleted. Third-party cookies may also be used.

 

Cookies serve various functions: Some are technically necessary, others analyze user behavior or serve marketing purposes.

 

Cookies necessary for electronic communication or essential website functions are stored based on Art. 6(1)(f) GDPR unless another legal basis is specified. If consent was given, storage is based on Art. 6(1)(a) GDPR and can be revoked.

 

You can configure your browser to notify you about cookies, allow them selectively, or block them entirely. Disabling cookies may limit website functionality.

 

Server Log Files

 

The website provider automatically collects and stores information in server log files, which your browser transmits:

  • Browser type/version

  • Operating system

  • Referrer URL

  • Hostname of the accessing device

  • Time of server request

  • IP address

This data is not merged with other sources. Collection is based on Art. 6(1)(f) GDPR to ensure the proper functioning of the website.

 

Contact Form

 

If you send us inquiries via the contact form, your data from the form, including contact details, will be stored to process your inquiry. We do not share this data without your consent.

 

Data processing is based on Art. 6(1)(b) GDPR if related to a contract; otherwise, on Art. 6(1)(f) GDPR or your consent under Art. 6(1)(a) GDPR.

 

Your data will be stored until you request deletion, revoke your consent, or the purpose for storage ceases. Legal obligations remain unaffected.

 

Contact via Email, Phone, or Fax

 

If you contact us, your request including all resulting personal data will be stored and processed. We do not share this data without your consent.

 

Processing is based on Art. 6(1)(b) GDPR if related to a contract, otherwise on Art. 6(1)(f) GDPR or Art. 6(1)(a) GDPR if consent is obtained.

 

5. Social Media

 

Social Media Plugins via Shariff

 

This website uses plugins from social media platforms (e.g., Facebook, Instagram, LinkedIn) using the Shariff method. This prevents data from being transmitted to providers without user interaction. Only after activation by clicking does data transfer occur.

 

Activation constitutes consent under Art. 6(1)(a) GDPR, which can be revoked at any time.

 

6. Plugins and Tools

 

YouTube with Enhanced Privacy Mode

 

Our site includes YouTube videos (Google Ireland Ltd.). We use YouTube's extended data protection mode, which prevents storing visitor data until the video is played. However, YouTube may still contact the DoubleClick network.

When a video is played, a connection to YouTube is established, and user data (e.g., IP address) may be collected and linked to your

YouTube account. You can avoid this by logging out before use.

 

Further data processing by YouTube may occur, over which we have no control. Usage is based on Art. 6(1)(f) GDPR or consent per Art. 6(1)(a) GDPR.

 

More info: https://policies.google.com/privacy?hl=en

 

Google Web Fonts

 

For uniform font display, this site uses Google Web Fonts. When accessing a page, your browser loads these fonts into the browser cache, which requires connecting to Google servers and disclosing your IP address.

 

Use is based on Art. 6(1)(f) GDPR or your consent under Art. 6(1)(a) GDPR.

 

If your browser does not support Web Fonts, a standard font will be used. More info: https://developers.google.com/fonts/faq and https://policies.google.com/privacy?hl=en

 

 

INTERESTED?

LET'S WORK TOGETHER!

bottom of page