top of page

data protection

Michaela Buck - non-medical practitioner for psychotherapy (hereinafter "Michaela Buck") is pleased that you are visiting our website. At this point we would like to inform you which of your personal data we record when you visit our website and for which purposes it is used.

Since changes in the law or changes to our internal practice processes may make it necessary to adapt this data protection declaration, we ask that you read this data protection declaration regularly. The data protection declaration can be called up, saved and printed out at any time under data protection declaration.

​

§1    Responsible and scope

​

The person responsible within the meaning of the EU General Data Protection Regulation (hereinafter: GDPR) and other national data protection laws of the member states as well as other data protection regulations is:

Developing Minds GmbH
Rathausstrasse 2
46519 Alps
Email: info@michaelabuck.com 
Website: www.michaelabuck.com

This data protection declaration applies to Michaela Buck's website, which can be accessed under the domain www.michaelabuck.com and the various subdomains (hereinafter referred to as "our website").

​

§ 2    Data Protection Officer


There is no obligation to appoint an external data protection officer, since fewer than ten people are employed for the regular processing of personal data. The obligation for a data protection officer results from Art. 37 DSGVO, the restriction to the so-called 10-person rule results from Art. 38 Federal Data Protection Act new (BDSG-new).

§ 3    Principles of data processing

Personal data is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, your age, your address, your telephone number, your date of birth, your e-mail address, your IP address or user behavior. Information for which we cannot (or only with a disproportionate effort) establish a reference to your person, e.g. by making the information anonymous, is not personal data. The processing of personal data (e.g. collection, querying, use, storage or transmission) always requires a legal basis or your consent. Processed personal data will be deleted as soon as the purpose of the processing has been achieved and there are no longer any statutory retention requirements.

If we process your personal data for the provision of certain offers, we will inform you below about the specific processes, the scope and purpose of the data processing, the legal basis for the processing and the respective storage period.

§ 4    Individual processing operations

1.     Provision and use of the website

a.    Type and scope of data processing
When you access and use our website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file. When you use our website, we collect the following data that is technically necessary for us to display our website to you and to ensure stability and security:

•    IP address of the requesting computer,
•    date and time of access,
•    Name and URL of the retrieved file,
•    website from which access is made (referrer URL),
•    browser used and, if applicable, the operating system of your computer and the name of your access provider

b.    Legal basis
Article 6 (1) (f) GDPR serves as the legal basis for the data processing mentioned. The processing of the data mentioned is necessary for the provision of a website and thus serves to protect a legitimate interest of our company.

c.    Duration of storage
As soon as the data mentioned are no longer required to display the website, they will be deleted. The collection of the data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user. Further storage can take place in individual cases if this is required by law.


2.    contact form

a.    Type and scope of data processing
On our website we offer you the option of contacting us using a form provided. As part of the process of sending your request via the contact form, reference is made to this data protection declaration in order to obtain your consent. If you use the contact form, the following personal data will be processed:

•    Name
•    email address
•    your message

The purpose of providing your e-mail address is to assign your request and to be able to reply to you. When you use the contact form, your personal data will not be passed on to third parties.

b.    Legal basis
The data processing described above (cf. § 4 5. a.) for the purpose of establishing contact takes place in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of legitimate interest.

c.    Duration of storage
As soon as the inquiry you have made has been dealt with and the matter in question has been finally clarified, the personal data processed by you via the contact form will be deleted. Further storage can take place in individual cases if this is required by law.

 

3.     Online Appointment Scheduling - Microsoft Bookings

a.    Type and scope of data processing
We collect and process personal data for online booking of initial phone calls. For this purpose, Developing Minds GmbH uses the "Microsoft Bookings" service from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. The connection to the service is only established if you call up the online booking function via a button on our website. For more information on how user data is handled, see Microsoft's privacy policy. We would like to point out that you are not obliged to use Microsoft Bookings to make an appointment. If you do not wish to use the service, please use another of the contact options offered to make an appointment.

If you make use of Microsoft Bookings, the following personal data will be processed about you:

•    IP address
•    Browser fingerprint including time of use
•    name
•    contact details (email address, telephone number, mobile number, optional address)
•     calendar dates
•    Notes (unspecified)

b.    Legal basis
The legal basis for data transmission, storage and processing is your consent in accordance with Article 6 Paragraph 1 Letter a GDPR and Article 6 Paragraph 1 Letter f based on legitimate interest. The legitimate interest is optimization of appointment allocation and appointment implementation

c.    Duration of storage
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected.
You have the option at any time to revoke your consent to data processing or to object to the use of the data. In this case, the intended contact with the user is no longer possible or a communication that has already started can no longer be continued.

4.    Jameda

a.    Type and scope of data processing
Our website contains seals or widgets from jameda GmbH, Balanstr. 71a, 81541 Munich. A widget is a small window that displays changing information. Our seal also works in a similar way, ie it doesn't always look the same, but the display changes regularly. The corresponding content is displayed on our website, but it is retrieved from the jameda servers at this moment. This is the only way to always show the current content, especially the current rating. To do this, a data connection must be established from this website to jameda and jameda receives certain technical data (date and time of the visit; the page from which the query is made; Internet protocol address used (IP address), browser type and version, device type , operating system and similar technical information) necessary for the content to be delivered. However, this data is only used to provide the content and is not stored or used in any other way. With the integration, we are pursuing the purpose and legitimate interest of presenting current and correct content on our homepage.

b.   Legal basis
The legal basis is Art. 6 Para. 1 f) GDPR.

c.   Duration of storage
We do not store the data mentioned due to this integration. Further information on data processing by jameda can be found in the privacy policy of the sitehttps://www.jameda.de/jameda/datenschutz.phpremove.

 

§ 5    Disclosure of data


We only pass on your personal data to third parties if:

•    you have given your express consent to this in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR,
•    if there is a legal obligation for disclosure under Article 6 Paragraph 1 Clause 1 Letter c GDPR,
•    this is permitted by law and required to fulfill a contractual relationship with you under Article 6 Paragraph 1 Sentence 1 lit. b GDPR,
•    disclosure pursuant to Article 6 Paragraph 1 Clause 1 Letter f GDPR is required to assert, exercise or defend legal claims and there is no reason to assume this that you have an overriding legitimate interest in not disclosing your data.

§ 6    Use of cookies

a.    Type and scope of data processing
We use cookies on our website. Cookies are small files that are sent by us to the browser of your end device and stored there when you visit our website. Some functions of our website cannot be offered without the use of technically necessary cookies. Other cookies, on the other hand, enable us to carry out various analyses. For example, cookies are able to recognize the browser you are using when you visit our website again and to transmit various information to us. With the help of cookies, we can, among other things, make our website more user-friendly and effective for you, for example by understanding how you use our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly via your browser. Cookies do not damage your end device. They cannot run programs and do not contain viruses.

Various types of cookies are used on our website, the type and function of which are explained in more detail below.

Types of cookies differentiated by functionality
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Statistics cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
Marketing cookies are used to follow visitors on websites. The intent is to show ads that are relevant and engaging to the individual user and therefore more valuable to publishers and third party advertisers.

Types of cookies with differentiation of temporal availability
Session cookies are deleted after the browser window is closed. The next time a user browses a site, they will be unrecognized and treated as a total stranger.
Persistent cookies are cookies that are stored in your browser for a longer period of time and transmit information to us. The respective storage period differs depending on the cookie. You can delete persistent cookies independently via your browser settings.

§ 7    Plugins

jameda seal and widget: Seals or widgets from jameda GmbH, St. Cajetan-Straße 41, 81669 Munich are integrated into our website. A widget is a small window that displays changing information. Our seal also works in a similar way, ie it doesn't always look the same, but the display changes. The corresponding content is displayed on our website, but it is retrieved from the jameda servers at this moment. This is the only way to always show the current content, especially the current rating. To do this, a data connection must be established from this website to jameda and jameda receives certain technical data (date and time of the visit; the page from which the query is made; Internet protocol address used (IP address), browser type and version, device type , operating system and similar technical information) necessary for the content to be delivered. However, this data is only used to provide the content and is not stored or used in any other way. With the integration, we are pursuing the purpose and legitimate interest of presenting current and correct content on our homepage. The legal basis is Article 6 Paragraph 1 Letter f GDPR. We do not store the data mentioned due to this integration. Further information on data processing by jameda can be found in the data protection declaration on the website www.jameda.de.


§ 8    hyperlinks
   
Our website contains so-called hyperlinks to websites of other providers. If you activate these hyperlinks, you will be forwarded from our website directly to the website of the other provider. You can recognize this by the change in the URL, among other things. We cannot assume any responsibility for the confidential handling of your data on these third-party websites, as we have no influence on whether these companies comply with data protection regulations. Please refer to these websites directly for information on how these companies handle your personal data.

§ 9     concerned rights

As a person affected by the processing of personal data, the GDPR gives you the following rights:

  • In accordance with Art. 15 GDPR, you can request information about your personal data processed by us. In particular, you can obtain information about the processing purposes, the categories of personal data, the categories of recipients to whom your data was or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right to complain, request the origin of your data, if not collected from us, via transmission to third countries or to international organizations and the existence of automated decision-making including profiling and, if necessary, meaningful information about their details.

  • In accordance with Art. 16 GDPR, you can immediately request the correction of incorrect or the completion of your personal data stored by us.

  • In accordance with Art. 17 GDPR, you can request the deletion of your personal data stored by us, insofar as the processing is not necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend against legal claims is required.

  • In accordance with Art. 18 GDPR, you can request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, we no longer need the data and you refuse to delete it because you use it to assert, exercise or need defense of legal claims. You are also entitled to the right under Art. 18 GDPR if you have lodged an objection to the processing in accordance with Art. 21 GDPR.

  • In accordance with Art. 20 GDPR, you can request to receive your personal data that you have provided to us in a structured, common and machine-readable format or you can request transmission to another person responsible.

  • In accordance with Art. 7 Para. 3 GDPR, you can revoke the consent you have given us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future.

  • According to Art. 77 GDPR you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.


§ 10     right of objection

If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided that there are reasons for this which arise from your particular situation or the objection is directed against direct advertising. In the case of direct advertising, you have a general right of objection, which we will implement without specifying a particular situation.

§ 11     data security and security measures

We are committed to protecting your privacy and treating your personal information confidentially. In order to avoid manipulation, loss or misuse of your data stored by us, we take extensive technical and organizational security precautions, which are regularly checked and adapted to technological progress. This includes, among other things, the use of recognized encryption methods (SSL or TLS). However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures are not observed by other persons or institutions for whom we are not responsible. In particular, unencrypted data - e.g. B. if this is done by e-mail - read by third parties. We have no technical influence on this. It is the responsibility of the user to protect the data they have provided against misuse by encryption or in some other way.

bottom of page