Datenschutzerklärung - Life and Business Coaching

Data Protection

The trust of all users, customers, and partners, the security of your data, and the protection of your privacy are of central importance to us. Therefore, we handle your personal data in accordance with applicable data protection laws and this privacy policy. The privacy policy applies regardless of the devices used (desktop or mobile) on which the website is operated, as well as for the social media channels we use. This privacy policy informs you about the type, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within our online services, associated websites, features, and content, as well as external online presences such as our social media profiles.

Name and address of the responsible party:

The responsible party within the meaning of the EU General Data Protection Regulation (GDPR) and other data protection regulations is:

Merle Schulze
Knorrpromenade 3
10245 Berlin

E-Mail: merle.coaching@gmail.com
Website: www.merlaid.com

Types of processed data:

Master data (e.g. names, addresses)
Contact data (e.g. email, phone numbers)
Content data (e.g. text entries, photographs, videos)
Usage data (e.g. visited websites, interest in content, access times)
Meta/communication data (e.g. device information, IP addresses)

Purpose of processing:

Providing the online service, its functions, and content
Responding to contact inquiries and communicating with users
Security measures
Reach measurement/marketing
Processing of bookings, purchases of services, online programs, and digital products

Terms used:

Personal data refers to information that can be used to learn your identity, such as your IP address, real name, address, or phone number.

When you view and use our site without registering or explicitly providing information to us, we process the data transmitted to us with each request from your browser (see below "Log Data"). If you explicitly provide us with personal data (e.g. via email or when making a booking/purchase), this is processed solely for the purpose of the respective inquiry or request.

We point out that data transmission over the internet can never be completely protected from third-party access.

Processing refers to any operation or set of operations performed on personal data, with or without the help of automated processes. This term is broad and covers practically every handling of data.

Als The controller is the natural or legal person, authority, organization, or other entity that alone or jointly with others determines the purposes and means of processing personal data.

Changes and updates to the privacy policy:

We ask you to regularly review the contents of our privacy policy. We will adjust the privacy policy as soon as changes to our data processing require it. We will inform you if changes require your participation (e.g., consent) or any other individual notification.

Legal basis for the processing of personal data:

If we obtain consent from the data subject for processing personal data, Article 6(1)(a) of the GDPR serves as the legal basis.

For processing personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) of the GDPR serves as the legal basis. This also applies to processing activities required to carry out pre-contractual measures.

If processing personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) of the GDPR serves as the legal basis.

If processing personal data is necessary to protect the vital interests of the data subject or another natural person, Article 6(1)(d) of the GDPR serves as the legal basis.

If processing is necessary for the purposes of the legitimate interests pursued by our company or a third party and the interests, fundamental rights, and freedoms of the data subject do not override the first-mentioned interest, Article 6(1)(f) of the GDPR serves as the legal basis for data processing.

Data deletion and retention period:

Personal data will be deleted as soon as the purpose for storing it no longer applies. Retention may occur further if required by European or national laws or other regulations to which the controller is subject. Data will also be blocked or deleted when a retention period prescribed by the aforementioned regulations expires, unless further retention is required for the conclusion or performance of a contract.

System and information security:

We secure our website and other systems through technical and organizational measures to prevent loss, destruction, unauthorized access, alteration, or distribution of stored data by unauthorized persons. However, despite controls, complete protection against all risks is not possible. Just by being connected to the internet and the technical possibilities it offers, we cannot guarantee that content and information flows will not be viewed and recorded by third parties.

Log Data:

The automatic collection and storage of log data by the internet service provider (ISP) is performed because processing of this data is technically necessary to display our website to you and to ensure its stability and security. The log data includes the following information:

Date and time of the request
Internet address (URL) requested
URL the visitor accessed immediately before
Used browser and language
Used operating system and its interface
IP address and hostname of the visitor
Access status/http status code
Amount of data transferred

This data is transmitted to us automatically and cannot be reasonably attributed to a person. The legal basis for the processing of this data is our legitimate interest pursuant to Art. 6(1)(f) GDPR, as this data processing is necessary for the operation and display of the website. The data is deleted as soon as it is no longer needed for the purpose it was collected. For data collection to provide the website, this occurs when the session ends. Data collection for the provision of the website and storage in log files is essential for the operation of the website. Therefore, the user has no right to object.

Cookies:

To make your visit to our website attractive and to enable the use of certain features, we use so-called cookies. These are small text files that are stored on your device and save certain information for exchanging with our system. The legal basis for processing this data is Article 6(1) sentence 1 lit. f GDPR.

Some of the cookies we use are deleted after the browser session ends, meaning after you close the browser. These include session or session cookies. They store a unique identifier (Session ID). This Session ID allows various requests from your browser to be assigned to a single session. This allows your device to be recognized if you return to our website during a session. Session cookies are also deleted as soon as you log out.

Other cookies remain on your device for a set period and enable us to recognize your browser or device during your next visit.

If you view content using the Flash plugin, Flash cookies may be used. These are not captured and stored by your browser but by the Flash plugin itself. If you do not wish the processing of Flash cookies, you must install a corresponding add-on, e.g., "Better Privacy" for Mozilla Firefox or the "Adobe-Flash-Killer-Cookie" for Google Chrome.

Configuring Cookie Settings in Your Browser:

You have the option to prevent cookies from being stored on your computer by adjusting your browser settings. Each browser manages cookie settings differently. You can find this information in the help menu of each browser, which explains how to change your cookie settings. You can find these for the respective browsers under the following links:

Chrome™: http://support.google.com/chrome/ bin/answer.py?hl=de&hlrm=en&answer=95647

Firefox™ https://support.mozilla.org/de/ kb/cookies-erlauben-und-ablehnen

Internet Explorer™: http://windows.microsoft.com/ de-DE/windows-vista/Block-or-allow-cookies

Opera™: http://help.opera.com/Windows/ 10.20/de/cookies.html

Safari™: https://support.apple.com/ de-de/guide/safari/sfri11471/mac

Encryption through SSL:

For security reasons, our website uses SSL encryption (Secure Sockets Layer). This protects the transmitted data so that it cannot be read by third parties. You can recognize a successful encryption by the change in the protocol label in the browser’s status bar from "http://" to "https://" and the presence of a closed lock symbol.

Web Hosting:

We use the services of ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, D-02742 Friedersdorf for web hosting for our websites and have concluded a data processing agreement in accordance with Art. 28 GDPR with ALL-INKL.COM.

For more information, please refer to ALL-INKL.COM’s privacy policy at all-inkl.com/datenschutzinformationen/The legal basis is our legitimate interest in operating and ensuring the operational security of these websites in accordance with Art. 6(1) sentence 1 lit. f GDPR.

Comments:

For the comment function on this page, along with your comment, information about the time of creation, your email address, and the username you choose are stored. Our comment function does not store IP addresses of users who write comments.

Published comments remain online indefinitely, unless the commented content is completely deleted or comments need to be removed for legal reasons (e.g., for offensive comments). The storage of comments is based on your consent, given by clicking the "Submit" button (Art. 6(1) lit. a GDPR).

You can withdraw your consent at any time. A simple email to us stating the URL and content of your comment is sufficient. The lawfulness of the data processing activities that have already occurred remains unaffected by the withdrawal.

Disclosure of Data:

We take data protection seriously. We will not disclose your data to third parties unless this is legally permitted.

Disclosure of Data to Third Parties:

Your data may be disclosed if:

It is required for the fulfillment of a contract and is then permitted under Art. 6(1) lit. b GDPR, or
Based on our legitimate interest in efficient service provision under Art. 6(1) lit. f GDPR, or
It is covered by your consent, or
It becomes necessary if we are legally compelled to disclose your data by a state or authority under Art. 6(1) lit. c GDPR.

If your data is shared with third parties, this will be listed in this privacy policy.

Transfer of Data Abroad, Especially to the USA:

Our website uses external providers for various functions that are based outside the EU. In this context, cookies, active JavaScripts, and other techniques may lead to processing and storing your data outside the EU. However, we will not transfer your data to a third country unless the European Commission has determined that the third country provides an adequate level of data protection or you have given us your consent or we have entered into standard contractual clauses with the provider to protect your data.

For more information about your rights regarding data transfers to the USA, please visit: https://ec.europa.eu/justice/ data-protection/document/citizens-guide_en.pdf.

1:1 and Group Meetings with Screen Sharing and Webinars via Zoom:

We use platforms and applications from third-party providers (hereinafter referred to as "third-party providers") for the purposes of conducting video and audio meetings and other types of video and audio conferences. When selecting third-party providers and their services, we adhere to legal requirements.

In this context, data of communication participants is processed and stored on the servers of the third-party providers as part of communication with us. This data may include registration and contact data, visual and audio contributions, as well as inputs in chats and shared screen contents.

If users are referred to third-party providers or their software or platforms within the framework of communication, business, or other relationships with us, third-party providers may process usage data and metadata for security, service optimization, or marketing purposes. We recommend that you review the privacy notices of the respective third-party providers.

Legal Bases for Processing: If we ask users for their consent to use third-party providers or certain features (e.g., consent for recording conversations), the legal basis for processing is consent. Additionally, their use may be part of our (pre)contractual services if the use of third-party providers is agreed upon within this framework. Otherwise, user data is processed based on our legitimate interests in efficient and secure communication with our communication partners. We also refer you to the information regarding the use of cookies in this privacy policy.

The third-party provider we use, Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA, processes stock data (e.g., names, addresses), contact data (e.g., email addresses, phone numbers), content data (e.g., text inputs, photographs, videos), usage data (e.g., visited websites, interest in content, access times), meta/communication data (e.g., device information, IP addresses).

We use Zoom for communication after consent (Art. 6(1) sentence 1 lit. a GDPR), for contract fulfillment, and in case of pre-contractual inquiries (Art. 6(1) sentence 1 lit. b GDPR). There is a legitimate interest according to Art. 6(1) sentence 1 lit. f GDPR.

If personal data is transferred outside the EU, appropriate security measures are implemented to protect your personal data. This includes transfers in accordance with applicable transfer mechanisms and the European Commission’s standard contractual clauses: Standardvertragsklauseln der Europäischen Kommission: https://zoom.us/de-de/privacy.html.

Real Cookie Banner:

Zur Verwaltung der eingesetzten Cookies und ähnlichen Technologien (Tracking-Pixel, Web-Beacons etc.) und diesbezüglicher Einwilligungen setzen wir das Consent Tool „Real Cookie Banner“ ein. Details zur Funktionsweise von „Real Cookie Banner“ findest du unter <a href="/en/“https://devowl.io/de/rcb/datenverarbeitung/“/" rel="“noreferrer“" target="“_blank“">https://devowl.io/de/rcb/datenverarbeitung/</a>.

The legal bases for the processing of personal data in this context are Art. 6(1) lit. c GDPR and Art. 6(1) lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies and related consents.

The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obligated to provide the personal data. If you do not provide the personal data, we cannot manage your consents.

Use of Calendly for Appointment Scheduling:

To schedule individual appointments, we use the online service Calendly, 271 17th St NW, Ste 1000 Atlanta, GA 30363 USA.

In compliance with the GDPR, Calendly shows a cookie banner to users (persons with a Calendly account), invited persons (those planning a meeting with users), and visitors (persons viewing the website) located in the EU before permanent cookies are stored.

When an appointment is booked, the entered data is sent by the provider to our calendar tool. After booking an appointment via the scheduling tool, you will receive an email with the appointment, the automatically generated Zoom link, and the option to save the appointment in your calendar.

Use of Buttons with Links to Social Networks:

The icons for Facebook, Instagram, Pinterest, and LinkedIn displayed in the footer of our website are merely links to the respective social media platforms. By clicking on the embedded graphic, you will be redirected to the page of the respective provider, meaning that user information will be transmitted to the respective provider only at that point. Please refer to the respective privacy policies of the providers for information on how they handle your personal data.

"Share" Function for Social Networks:

We use the share function on our website for the following social media channels:

Instagram
Facebook
Pinterest
Linkedin

We fulfill the request of many users: Articles on the internet can be shared quickly and easily on social networks like Facebook or Twitter. Normally, these social plugins cause every visitor of a page to be immediately captured by these services with their IP address, and their further activities on the internet are logged. This happens even if the user does not click on one of the buttons.

Um das zu verhindern nutzen wir die Shariff-MethodeTo prevent this, we use the Shariff method. Our social buttons establish a direct connection between the social network and you or your profiles only when you actively click on the share button. If you are already logged into a social network, this happens without another window. You can thus share our content in social networks without allowing them to create full browsing profiles.

We take the privacy interests of our visitors into account with the Shariff method as far as possible according to the current state of technology. The Shariff method is already used by many websites to protect their users. The initiative came from www.heise.dewhere you can find further information on the current state of the discussion.

The legal basis for this processing is our legitimate interest (according to Art. 6(1) lit. f GDPR).

Google Analytics:

We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google uses cookies. The information generated by the cookie about the use of the online services by the users is generally transmitted to a Google server in the USA and stored there.

Google will use this information on our behalf to evaluate the use of our online services by users, to compile reports on activities within this online service, and to provide us with further services related to the use of this online service and internet usage. Pseudonymous user profiles may be created from the processed data.

We use Google Analytics only with IP anonymization activated. This means that the user's IP address will be truncated by Google within the European Union member states or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

The IP address transmitted by the user's browser will not be merged with other data from Google. You can prevent the storage of cookies by rejecting the tracking of statistical cookies in our embedded cookie banner or by adjusting the settings in your browser software. Additionally, you can prevent the collection of data generated by the cookie and related to your use of the online services by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/ dlpage/gaoptout?hl=de.

If we ask for the users' consent (e.g., as part of cookie consent), the legal basis for this processing is Article 6(1)(a) GDPR. Otherwise, the personal data of the users is processed based on our legitimate interests (i.e., the interest in analyzing, optimizing, and economically operating our online services as per Article 6(1)(f) GDPR).

For more information on how Google uses data, options for settings and objections, you can refer to Google's privacy policyhttps://policies.google.com/privacyand the ad settings (https://adssettings.google.com/ authenticated).

The personal data of users will be deleted or anonymized after 14 months.

An opt-out cookie will be placed on your device. If you delete your cookies, you will need to set your preferences again in our cookie banner.

For further information about Google, you can refer to:

http://www.google.com/analytics/ terms/de.html

Privacy Overview:

http://www.google.com/intl/de/ analytics/learn/privacy.html und
http://www.google.de/intl/de/ policies/privacy.

Facebook Pixel and Facebook Custom Audiences:

On our website, we use the Facebook Conversion Tracking, also known as the "Facebook Pixel," provided by the social network Facebook, for the purpose of analyzing and optimizing our website. The provider of these services is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook").

By using the Facebook Pixel, Facebook can identify and target visitors of our website as potential audiences for displaying ads (so-called "Facebook Ads") after you consent to marketing cookies on this website. We use the Facebook Pixel to display Facebook and Instagram ads only to those Facebook and Instagram users who have shown an interest in our website or have certain characteristics (interests determined by visited websites, etc.). We send this information to Facebook, creating so-called "Custom Audiences."

By using the Facebook Pixel, we primarily aim to ensure that our Facebook and Instagram ads match the potential interests of visitors and are not perceived as harassment. By using the Facebook Pixel, we can statistically track the effectiveness of the Facebook and Instagram ads and conduct market research. We analyze whether visitors are directed to our website after clicking on a Facebook ad, i.e., whether a so-called "conversion" occurs.

For general information on data processing by Facebook, refer to https://www.facebook.com/policy.phpFurther details about the Facebook Pixel are available here: https://www.facebook.com/business/ help/651294705016616.

You can opt-out of the Facebook Pixel tracking and the use of your data for displaying Facebook and Instagram ads. To set the types of ads displayed to you within Facebook and Instagram, visit the Facebook settings page and follow the instructions for managing usage-based advertising: https://www.facebook.com/ settings?tab=adsThe settings apply across platforms, meaning they will be adopted for all devices, such as desktop computers or mobile devices.

Use of Scalable Central Measurement Procedure:

We use the "Scalable Central Measurement Procedure" (SZM) from INFOnline GmbH (INFOnline GmbH, Brühler Str. 9, D-53119 Bonn) to determine statistical metrics for the likelihood of text copying.

Anonymous measurement data is collected. The access measurement uses either a session cookie or a signature created from various automatically transmitted information from your browser to recognize computer systems. IP addresses are only processed in anonymized form. The procedure was developed with privacy protection in mind. The sole purpose of the procedure is to determine the likelihood of copying individual texts. At no time are individual users identified. Your identity is always protected, and you will not receive any advertising through the system.

Our blog posts contain JavaScript calls through which we report accesses to the Verwertungsgesellschaft Wort (VG Wort). This ensures the statutory remuneration for the use of copyrighted works according to § 53 UrhG.

Usage data and metadata of the users are processed, with IP addresses being truncated, and the measurement procedures are pseudonymous. The truncated IP address is stored for a maximum of 60 days. The usage data linked to a pseudonymous identification value ("Identifier") is stored for a maximum of 6 months.

Users also have the option to opt out of the data collection for the aforementioned purposes: https://optout.ioam.deFurther information can be found in INFOnline's privacy policy: https://www.infonline.de/ datenschutz/benutzer.

Right to Access, Deletion, and Blocking:

You have the right to:

Request information about your personal data processed by us in accordance with Article 15 GDPR, including information on the processing purposes, the category of personal data, the categories of recipients to whom your data has been disclosed or will be disclosed, the planned storage duration, the existence of the right to rectification, deletion, restriction of processing, or objection, the existence of the right to lodge a complaint, the origin of your data if not collected by us, and whether automated decision-making, including profiling, exists and relevant details about them;

Request the correction of inaccurate or the completion of your stored personal data without delay in accordance with Article 16 GDPR;

Request the deletion of your stored personal data in accordance with Article 17 GDPR, unless processing is required to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest, or for the assertion, exercise, or defense of legal claims;

Request the restriction of processing your personal data in accordance with Article 18 GDPR if the accuracy of the data is disputed, the processing is unlawful but you oppose its deletion, we no longer need the data, but you need it for the assertion, exercise, or defense of legal claims, or you have filed an objection to the processing under Article 21 GDPR;

Request your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format in accordance with Article 20 GDPR or request its transfer to another controller;

Withdraw your consent at any time in accordance with Article 7(3) GDPR. This means that we can no longer continue processing based on your consent for the future; and

Lodge a complaint with a supervisory authority in accordance with Article 77 GDPR. In most cases, you can contact the supervisory authority at your usual place of residence.

Right to Object:

If your personal data is processed based on legitimate interests in accordance with Article 6(1) sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data under Article 21 GDPR, provided there are reasons related to your particular situation, or if the objection is against direct marketing. In the latter case, you have a general right to object, which we will implement without specifying a particular situation.

If you wish to exercise your right of withdrawal or objection, an email to hallo@merlaid.com or contact us at the above address is sufficient.

Version of the Privacy Policy: December 30, 2024.