Legals - Shanti | Satsang-Lehrer aus Deutschland

Data protection

1) Information about the collection of personal data and contact details of the person responsible

1.1 We are pleased that you are visiting our website and thank you for your interest. Here, we explain how your personal data is used and handled by us. Personal data means any data with which you can be personally identified.

1.2 “We”, “Us”, “Our”, refers to Shanti Consultancy Unlimited Ltd. a private limited company incorporated in England and Wales and holding company number 13048152. Registered office address:
71 Queen Victoria Street, London, England, EC4V 4BE

1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the responsible person), this website uses an SSL or TLS encryption. You can recognise an encrypted connection by the character string “https://” and the lock symbol in your browser line.

1.4 “GDPR” means the General Data Protection Regulation as implemented EU-wide in May 2018.

2) Data collection when visiting our website

If you only use our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you visit our website, we collect the following data that is technically necessary for us to display the website to you:

Our visited website
Date and time of access
Amount of data sent in bytes
Source/reference from which you came to the page
Browser used
Operating system used
IP address used (if necessary: in anonymous form)

The processing takes place in accordance with Article 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are indications of illegal use.

3) Cookies

In order to make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your end-device. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your end device and enable us or our partner companies (third-party cookies) to recognise your browser on your next visit (persistent cookies). If cookies are set, they collect and process certain user information such as browser and location data as well as IP address values to an individual extent. Persistent cookies are automatically deleted after a specified period,

If personal data is also processed by individual cookies implemented by us, the processing takes place in accordance with Article 6(1)(b) GDPR, either to execute the contract or in accordance with Article 6(1)(f) GDPR to safeguard our legitimate interests the best possible functionality of the website and a customer-friendly and effective design of the page visit.

We may work with advertising partners who help us to make our website more interesting for you. For this purpose, cookies from partner companies are also stored on your hard drive when you visit our website (third-party cookies). If we work together with the aforementioned advertising partners, you will be informed individually and separately about the use of such cookies and the scope of the information collected in each case within the following paragraphs.

Please note that you can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept or exclude them for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. These can be found for the respective browsers under the following links:

Internet Explorer: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies

Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und- reject

Chrome: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647

Safari: https://support.apple.com/de-de/guide/safari/sfri11471/ Mac

Opera: http://help.opera.com/Windows/10.20/de/cookies.html

Please note that if cookies are not accepted, the functionality of our website may be restricted.

4) Contact

When contacting us (e.g. via contact form or e-mail), personal data is collected. Which data is collected when using a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you. The legal basis for the processing of this data is our legitimate interest in answering your request in accordance with Article 6(1)(f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Article 6(1)(b) GDPR.

5) Data processing to process donations

For the processing of donations that you may send us, we usually process the following personal data: first and last name, address, e-mail address.

Your data will be stored by us together with the information on the amount of the donation, the frequency of the donation and the purpose of the donation and will be kept for ten years.

Depending on the payment method selected, the above data will also be forwarded to the payment service provider you have selected for the donation and processed there exclusively and only to the extent necessary to process your donation.

The processing mentioned above takes place on the basis of Article 6(1)(b) GDPR and serves exclusively to properly carry out your donation payment and to record it in the accounts. The storage for a period of 10 years is based on Article 6(1)(c) GDPR in connection with § 147 AO, according to which we are subject to a corresponding storage obligation for business processes.

6) Use of Customer Data for Direct Marketing

6.1 Subscribing to our email newsletter

If you register for our e-mail newsletter, we will regularly send you information about our services. The only mandatory information for sending the newsletter is your e-mail address. Providing further data is voluntary and is used in order to be able to address you personally. We use the so-called double opt-in procedure to send the newsletter. This means that we will only send you an e-mail newsletter if you have expressly confirmed to us that you consent to receiving newsletters. We will then send you a confirmation email asking you to click on a link to confirm that you wish to receive the newsletter in the future.

By activating the confirmation link, you give us your consent to the use of your personal data in accordance with Article 6(1)(a) GDPR. When you register for the newsletter, we save your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace possible misuse of your e-mail address at a later point in time. The data collected by us when registering for the newsletter will only be used for advertising purposes by way of the newsletter. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a message to the person responsible mentioned at the beginning. After you have unsubscribed, your e-mail address will be deleted immediately from our newsletter distribution list,

6.2 Newsletter dispatch via MailChimp

Our e-mail newsletter is dispatched via the technical service provider The Rocket Science Group, LLC d/b/a MailChimp, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA ( http ://www.mailchimp.com/ ), to which we pass on the data you provided when registering for the newsletter. This transfer takes place in accordance with Article 6(1)(f) GDPR and serves our legitimate interest in using an effective, secure and user-friendly newsletter system. Please note that your data is usually transferred to a MailChimp server in the USA and stored there.

MailChimp uses this information to send and statistically evaluate the newsletter on our behalf. For the evaluation, the e-mails sent contain so-called web beacons or tracking pixels, which represent one-pixel image files that are stored on our website. In this way it can be determined whether a newsletter message has been opened and which links have been clicked on. With the help of the web beacons, Mailchimp automatically creates general, non-personal statistics about the reaction behaviour to newsletter campaigns. On the basis of our legitimate interest in the statistical evaluation of the newsletter campaigns to optimise advertising communication and better alignment with recipient interests, the web beacons in accordance with Article 6(1)(f) GDPR but also data of the respective newsletter recipient (mail address, time of retrieval, IP address, browser type and operating system) and used. This data allows an individual conclusion to be drawn about the newsletter recipient and is processed by Mailchimp to automatically generate statistics that show whether a specific recipient has opened a newsletter message.

If you want to deactivate the data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.

MailChimp can also use this data in accordance with Article 6(1) (f) GDPR itself due to its own legitimate interest in the needs-based design and optimization of the service and for market research purposes, for example to determine from which countries the recipients come from. However, MailChimp does not use the data of our newsletter recipients to write to them themselves or to pass them on to third parties.

To protect your data in the USA, we have concluded a data processing agreement (“Data Processing Agreement”) with MailChimp based on the standard contractual clauses of the European Commission in order to enable the transmission of your personal data to MailChimp. If you are interested, this data processing contract can be viewed at the following Internet address: https://mailchimp.com/legal/data-processing-addendum/

You can view MailChimp’s data protection provisions here:

https://mailchimp.com/legal/privacy/

7) Use of Social Media: Videos

7.1 Use of Vimeo Videos

Plugins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA are integrated in our website. If you access a page on our website that contains such a plugin, your browser establishes a direct connection to the Vimeo servers. The content of the plugin is transmitted directly to your browser by Vimeo and integrated into the page. Through this integration, Vimeo receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Vimeo account or are not currently logged in to Vimeo. This information (including your IP address) is transmitted directly from your browser to a Vimeo server in the USA and stored there.

If you are logged in to Vimeo, Vimeo can immediately assign your visit to our website to your Vimeo account. If you interact with the plugins (such as pressing the start button of a video), this information is also sent directly to a Vimeo server and stored there.

The data processing operations described are carried out in accordance with Article 6(1)(f) GDPR on the basis of Vimeo’s legitimate interest in market research and the needs-based design of the Vimeo service.

If you do not want Vimeo to directly assign the data collected via our website to your Vimeo account, you must log out of Vimeo before visiting our website.

The purpose and scope of the data collection and the further processing and use of the data by Vimeo as well as your rights in this regard and setting options for protecting your privacy can be found in Vimeo’s data protection information: https://vimeo.com/privacy

The Google Analytics tracking tool from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, is automatically integrated into videos from Vimeo that are integrated on our site. This is Vimeo’s own tracking, to which we have no access and which cannot be influenced from our side. Google Analytics also uses cookies for tracking. The information generated by the cookie about your use of this website is usually transmitted to a Google server and stored there. It can also be transmitted to the servers of Google LLC. come in the US.

This processing takes place on the basis of Vimeo’s legitimate interest in the statistical analysis of user behaviour for optimization and marketing purposes.

Insofar as this is legally required, we have obtained your consent in accordance with Article 6(1)(a) GDPR to process your data as described above. You can revoke your consent at any time. To exercise your revocation, deactivate this service in the “Cookie Consent Tool” provided on the website.

7.2 Use of Youtube Videos

This website uses the Youtube embedding function to display and play videos from the provider “Youtube”, which belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

The extended data protection mode is used here, which, according to the provider, only initiates the storage of user information when the video(s) is/are played. If the playback of embedded Youtube videos is started, Youtube uses cookies to collect information about user behaviour. According to information from Youtube, these are used, among other things, to collect video statistics, improve user-friendliness and prevent abusive practices. If you are logged in to Google, your data will be assigned directly to your account when you click on a video. If you do not wish to be associated with your profile on YouTube, you must log out before activating the button. Google saves your data (even for users who are not logged in) as usage profiles and evaluates them. Such an evaluation is carried out in accordance with Article 6(1)(f) GDPR on the basis of Google’s legitimate interests in the display of personalised advertising, market research and/or the needs-based design of its website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. When using YouTube, personal data may also be transmitted to the servers of Google LLC. come to the US. whereby you must contact YouTube to exercise this.

Regardless of whether the embedded videos are played back, a connection to the Google network is established each time this website is accessed, which can trigger further data processing operations without our influence.

You can find more information on data protection at Youtube in their terms of use at https://www.youtube.com/static?template=terms and in Google’s data protection declaration at https://www.google.de/intl/ de/policies/privacy

Insofar as this is legally required, we have obtained your consent in accordance with Article 6(1)(a) GDPR to process your data as described above. You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the “Cookie Consent Tool” provided on the website.

8) Tools and Miscellaneous

8.1 Cookie consent tool based on Usercentrics technology

This website uses a cookie consent tool with technology from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich (hereinafter “Usercentrics”) to obtain effective user consent for cookies that require consent and cookie-based applications.

By integrating a corresponding JavaScript code, a banner is displayed to users when the page is accessed, in which consent can be given for certain cookies and/or cookie-based applications by ticking the box. The tool blocks the setting of all cookies that require consent until the respective user gives their consent by ticking the box. This ensures that such cookies are only set on the respective end device of the user if consent has been given.

So that the cookie content tool can clearly assign page views to individual users and can individually record, log and save the consent settings made by the user for the duration of the session, certain user information (including the IP address) is stored by the cookie content tool when our website is accessed. collected, transmitted to the Usercentrics server and stored there.

This data processing takes place in accordance with Article 6(1)(f) GDPR on the basis of our legitimate interest in a legally compliant, user-specific and user-friendly consent management for cookies and therefore in a legally compliant design of our website.

Another legal basis for the data processing described is Article 6(1)(c) GDPR. As the person responsible, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.

We have concluded an order processing contract with Usercentrics, with which we oblige Usercentrics to protect the data of visitors to our website and not to pass it on to third parties.

For more information on how Usercentrics uses data, see the Usercentrics Privacy Policy at https://usercentrics.com/privacy-policy/

8.2 – Google Web Fonts

This site uses so-called web fonts provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”) for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly.

For this purpose, the browser you are using must connect to the Google servers. This can also result in the transmission of personal data to the servers of Google LLC. come to the US. In this way, Google becomes aware that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offering. This represents a legitimate interest within the meaning of Article 6(1)(f) GDPR. If your browser does not support web fonts, a standard font will be used by your computer. You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s privacy policy:https://www.google.com/policies/privacy/

8.3 – Google Maps

On our website we use Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Google Maps is a web service for displaying interactive (land) maps to visually display geographic information. Using this service will show you our location and make it easier to get there.

As soon as you call up those sub-pages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transmitted to Google’s servers and stored there. This can also result in transmission to the servers of Google LLC. come to the US. This occurs regardless of whether Google provides a user account through which you are logged in or whether a user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google saves your data (even for users who are not logged in) as usage profiles and evaluates them. The collection, storage and evaluation are carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of Google’s legitimate interest in the display of personalised advertising, market research and/or the needs-based design of Google websites. You have the right to object to the creation of these user profiles, although you must contact Google to exercise this right. If you do not agree to the future transmission of your data to Google when using Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website cannot then be used.

You can view Google’s terms of use at https://www.google.de/intl/de/policies/terms/regional.html , the additional terms of use for Google Maps can be found at https://www.google.com/intl /de_US/help/terms_maps.html

Detailed information on data protection in connection with the use of Google Maps can be found on the Google website (“Google Privacy Policy”): https://www.google.de/intl/de/policies /privacy/

Insofar as this is legally required, we have obtained your consent in accordance with Article 6(1)(a) GDPR to process your data as described above. You can revoke your consent at any time with effect for the future. To exercise your revocation, please follow the above-described option to make an objection.

8.4 – Wordfence

For security purposes, this website uses the “Wordfence” plugin, a service provided by Defiant Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter “Wordfence”). The plugin protects the website and the associated IT infrastructure against unauthorised third-party access, cyber attacks, viruses and malware. Wordfence collects the IP addresses of users and, if necessary, other data about your behaviour on our website (in particular accessed URLs and header information) in order to recognize and ward off illegitimate page access and dangers. The recorded IP address is compared with a list of known attackers. If the recorded IP address is identified as a security risk, Wordfence can automatically block it for page access. The information collected in this way is sent to a server of Defiant Inc.

The data processing described is carried out in accordance with Article 6(1)(f) GDPR on the basis of our legitimate interests in protecting the website from harmful cyber attacks and in maintaining structural and data integrity and security.

Defiant Inc. relies on the standard data protection clauses according to Article 46(2)c) GDPR as the legal basis for the transmission of data to the USA.

If visitors to the website have login rights, Wordfence also sets cookies on the visitor’s end device. With the help of the cookies, certain location and device information can be read, which enables an assessment to be made as to whether the login-authorised access comes from a legitimate person. At the same time, access rights can be evaluated via the cookies and released via an internal firewall according to the authorisation level. Finally, the cookies are used to register irregular access by site administrators from new devices or new locations and to notify other administrators of this.

These cookies are only set if a user has login rights. Wordfence does not set any cookies for site visitors without login authorization.

If personal data is processed via the cookies, the processing takes place in accordance with Art. 6 Para.1 lit f.

We have concluded a data processing agreement with Defiant Inc., with which we oblige the company to protect the data of site visitors and not to pass it on to third parties.

For more information on how Defiant Inc. uses data for Wordfence, see Wordfence’s privacy policy athttps://www.wordfence.com/privacy-policy/ .

8.5 – Zoom

We use the “Zoom” service from Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA (hereinafter “Zoom”) to conduct online meetings, video conferences and/or webinars.

When using Zoom, different data is processed. The scope of the processed data depends on which data you provide before or during participation in an online meeting, video conference or webinar. When using Zoom, the data of the communication participants is processed and stored on Zoom servers. This data can include, in particular, your login data (name, email address, telephone (optional) and password) and meeting data (topic, participant IP address, device information, description (optional)). In addition, visual and auditory contributions from the participants as well as voice inputs can be processed in chats.

When processing personal data that is required to fulfil a contract with you (this also applies to processing operations that are required to carry out pre-contractual measures), Article 6(1)(b) GDPR serves as the legal basis. If you have given us your consent to the processing of your data, the processing will take place on the basis of Article 6(1)(a) GDPR. A given consent can be revoked at any time with effect for the future.

Otherwise, the legal basis for data processing when conducting online meetings, video conferences or webinars is our legitimate interest in conducting the online meeting, webinar or video conference effectively. For more information on how Zoom uses data, see Zoom’s privacy policy at https://zoom.us/docs/de-de/privacy-and-legal.html

9) Rights of the data subject

9.1 The applicable data protection law grants you the following data subject rights (rights to information and intervention rights) vis-à-vis the person responsible with regard to the processing of your personal data, whereby reference is made to the legal basis given for the respective exercise requirements:

Right to information according to Art. 15 GDPR;
Right to rectification according to Art. 16 GDPR;
Right to erasure according to Art. 17 GDPR;
Right to restriction of processing in accordance with Art. 18 GDPR;
Right to information according to Art. 19 GDPR;
Right to data portability according to Art. 20 GDPR;
Right to revoke granted consent in accordance with Art. 7 Para. 3 GDPR;
Right to complain according to Art. 77 GDPR.

9.2 Right to Object

If we process your personal data on the basis of a balancing of interests in our previous legitimate interests, you have the right at any time to object to this processing for reasons arising from your particular situation with effect for the future.

If you exercise your right to object, we will stop the processing of the data involved. However, further processing remains reserved if we can prove comprehensive reasons for processing that override your interests, fundamental rights and fundamental freedoms, or if the processing is for the certification, exercise or defence of legal claims.

If your personal data is processed by us for direct advertising purposes, you have the right to object at any time to the processing of your personal data for the purposes of such advertising. You may object as described above.

If you exercise your right to object, we will stop the processing of the data involved for direct marketing purposes.

10) Duration of storage of personal data

The duration of the storage of personal data is based on the respective legal basis, the processing purpose and – if relevant – also based on the respective statutory retention period (e.g. commercial and tax retention periods).

If personal data is processed on the basis of an express consent in accordance with Article 6 (1)(a) GDPR, this data will be stored until the data subject revokes his consent.

If there are statutory retention periods for data that are processed as part of legal or similar obligations on the basis of Article 6(1)(b) GDPR, this data will be routinely deleted after the retention period has expired, provided that it is no longer required to fulfil or initiate a contract and/or we have no legitimate interest in further storage.

When personal data is processed on the basis of Article 6(1)(f) GDPR, this data is stored until the data subject exercises his or her right to object in accordance with Article 21(1) GDPR, unless we have compelling reasons worthy of protection for processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.

When processing personal data for the purpose of direct advertising on the basis of Article 6 (1)(f) GDPR, this data is stored until the data subject exercises his right of objection under Article 21(2) GDPR.

Unless otherwise stated in the other information in this declaration on specific processing situations, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.

Facebook

1) Information about the collection of personal data and contact details of the person responsible

1.1Please check carefully what personal data you share with us via Facebook. As long as you are logged into your Facebook account and visit our Facebook profile, Facebook can assign this to your Facebook profile. We expressly point out that Facebook stores the data of its users (e.g. personal information, IP address, etc.) and may also use this for business purposes. You can find more information about data processing by Facebook in Facebook’s privacy policy at https://de-de.facebook.com/policy.php.

We have no influence on data collection and further processing by Facebook. Furthermore, it is not clear to us to what extent, where and for how long the data is stored by Facebook, to what extent Facebook fulfils existing deletion obligations, which evaluations and links with the data are carried out by Facebook and to whom the data is passed on by Facebook will. If you would like to prevent Facebook from processing personal data that you have sent to us, please contact us by other means. Our complete contact details can be found in our imprint on Facebook.

Insofar as the data you transmit to us via Facebook is also or exclusively processed by Facebook (Insights data), Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland is also responsible for data processing in the within the meaning of the General Data Protection Regulation (GDPR). In this respect, data processing takes place on the basis of an agreement between joint controllers in accordance with Art. 26 GDPR, which you can view here:

https://www.facebook.com/legal/terms/page_controller_addendum.

The person responsible for the processing of personal data is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data.

2) Data Protection Officer

You can contact Facebook’s data protection officer using the online contact form provided by Facebook at https://www.facebook.com/help/contact/540977946302970.

3) Data processing when contacting you

We collect personal data ourselves if you contact us via contact form or messenger. You can see which data we collect when you contact us via the contact form from the relevant contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Article 6(1)(f) GDPR. If you contact us with the aim of concluding a contract, the additional legal basis for processing is Art. 6(1)(b) GDPR. Your data will be deleted after your request has been processed, provided that there are no legal storage requirements to the contrary. We assume a final processing if it can be inferred from the circumstances that the matter in question has been finally clarified.

4) Data processing for statistical and marketing purposes

Page Insights

Facebook provides us with so-called page insights for our Facebook page: https://www.facebook.com/business/a/page/page-insights. This is aggregated data that helps us understand how people interact with our site. Page Insights may be based on personal information collected in connection with an individual’s visit or interaction with our Site and its content. According to Art. 6(1)(f) GDPR, this serves to protect our legitimate interests in an optimised presentation of our offer and effective communication with customers and interested parties.

You can object to the processing of your data for the aforementioned purposes at any time by changing your settings for advertisements in your Facebook user account at https://www.facebook.com/settings?tab=ads.

5) Duration of storage of personal data

If personal data is processed on the basis of an express consent in accordance with Article 6 (1)(a) GDPR, this data will be stored until the data subject revokes his consent.

When processing personal data for the purpose of direct advertising on the basis of Article 6(1)(f) GDPR, this data is stored until the data subject exercises his right of objection under Article 21 Paragraph 2 GDPR.

For any questions on the above policies please contact us at team@shanti-satsang.de.