1. Scope of this Statement
This privacy statement applies to all business divisions of Silke Schäfer Online GmbH and Silke Schäfer Coaching & Event GmbH, both Gudenhaldenweg 4 in 8708 Männedorf/Zurich, Switzerland, and both responsible for the data collected in accordance with this privacy statement. It applies especially to all personal data collected when you use our website www.silkeschaefer.com ("Website").
Data protection is a matter of trust and your trust is important to us. We respect your privacy and ensure that your personal data is protected and processed within the law. This privacy statement explains what personal data we collect, how we use it and how you can update, manage, export, and delete your data.
We base the processing of personal data that falls into the scope of the EU General Data Protection Regulation (GDPR) on the necessities that arise in relation to the performance of a contract (Article 6 paragraph 1 (b) GDPR) or our legitimate interests (Article 6 paragraph 1 (f) GDPR) in addition to your consent (Article 6 paragraph 1 (a) GDPR), which you can withdraw at any time.
When we talk about processing your personal data in this privacy statement, we are talking about any handling of your personal data. This includes for example:
deletion of your personal data
By using this website, you express your agreement with the regulations set out in this privacy statement. As "Usage" "use" we understand all interactions with our website, for example surfing, clicking on buttons, entering of data etc.
2. Collection and storage of data
We collect both personal as well as non-personal data (together/jointly "data") when you use the website. Personal data ("personal data") is any information relating to and identified or identifiable natural person and therefore information by which you can be identified. As far as we process data about legal persons, the handling of this data is equivalent to the handling of the personal data of natural persons.
b) Accessing our website
When visiting our website our server temporarily stores every access in a log file. In the process the following technical data is collected without any action on your part – as happens each time you connect to a server – and stored by us until it is automatically deleted after 12 months at the latest:
the IP address of the computer sending the query
the name of the owner of the IP address range (usually your internet access provider)
the date and time of access
the website from which our website was accessed
the name and the URL of the accessed file
the status code (e.g. error message)
the operating system of your computer/device
the browser used (type, version, and language)
the transmission protocol used (e.g. HTTP/1.1)
This data is collected and processed on the basis of our legitimate interests with the purpose to enable the use of our website (establishing of a connection), to permanently ensure the security and stability of the system, to allow the optimization of our website and also for internal statistical purposes.
c) Registration | User Account
For use of some of our services, especially for ordering, you first need to create a personal user account. During registration on the website we collect and store some information for the purpose of setting up your user account. This information can be edited later. We collect the following personal data for this purpose:
Telephone number (optional)
If you have a company account: UID-No (VAT identification number) and company name
The collection of this information has the purpose to make available to you as our customer a password-protected direct access to your basic data stored with us. You can see your completed and open transactions there and manage or change your personal data.
d) Use of the contact form
For questions of any kind we provide an opportunity to contact us through a contact form on our website. This requires you to provide a valid email address so that we know who sent the enquiry and so that we can answer it. Further details can be entered voluntarily. This processing of data is based on your consent (Article 6 paragraph 1 (a) GDPR).
The personal data collected by us for the use of the contact form will be automatically deleted once your enquiry has been processed.
e) Purchases in our online shop
If you wish to make purchases in our online shop, we require the following personal data for the execution of the contract:
First and last name
Date of birth, place of birth and time of birth (when ordering horoscopes and booking workshops)
Payment information (depending on the chosen method of payment)
Login data, i.e. email address and password (for registered customers)
We will use the above mentioned personal data to execute the contract, i.e. to process your order, deliver the purchased products and ensure correct payment. We will store this data for a minimum of 10 years to fulfill our accounting obligartions.
For the use of fee-based services you can choose from different payment options like credit card, instant money transfer, PayPal or on account. Payment is made directly through the provider of the payment system. When you pay with your credit card, the respective provider of the payment system collects your credit card details. For this reason, the data protection regulations of the relevant payment provider also apply.
e) Free newsletter
You can subscribe to a free newsletter via our website. For this we need your email address as well as your name for personalization. In addition, we also need your statement that you agree to the receipt of the newsletter (“consent“).
Your registration for the free newsletter is done via our website in a so-called double opt-in process. After registering you will receive an email that asks you to confirm your subscription. This confirmation is necessary to prevent people from registering with email addresses that are not theirs.
Subscriptions to the free newsletter are logged to prove that the registration process occurs in accordance with legal requirements. This includes the storage of the time of registration and of confirmation as well as the IP address. Changes to your information stored by MailChimp will also be logged.
You can withdraw your consent to receiving the free newsletter at any time. Please send your withdrawal to our email address firstname.lastname@example.org. You can also unsubscribe from the newsletter by clicking the unsubscribe link at the end of each newsletter.
Mailing of our free newsletter is done via the MailChimp platform of the American provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
The email addresses of our newsletter recipients as well as other data necessary for mailing the newsletter is stored on the servers of MailChimp in the United States of America. This information is used by MailChimp to send and analyze the newsletter on our account. According to MailChimp this data is also used to optimize or improve MailChimp’s own services, e.g. for technical optimization of newsletter dispatch and the display of the newsletter or for business purposes to determine the countries of recipients. However, MailChimp does not use the information of our newsletter-recipients to contact them directly or to pass it on to third parties.
The free newsletters sent via MailChimp contains a so-called “web-beacon”. This is a pixel-sized file that is retrieved by MailChimp’s server when the newsletter is opened. During this retrieval technical data is collected, such as:
Information about your browser and operating system
your IP address
the time of retrieval
This information is used for the technical optimization of the services based on a) the technical data or b) the target groups and their reading behavior by means of the place of retrieval (this can be determined by means of the IP address) or c) the time of retrieval.
Part of the gathered statistical data is also the determination whether the newsletters are opened, when they are opened, and which links are being clicked. For technical reasons this information can be linked to the individual newsletter recipients. However, it is neither our aim nor MailChimp’s to observe individual users. On the contrary, the analysis serves to help us understand the reading behaviors of our users and to adapt our content to our users or to share different content depending on the interests of our users.
g) Booking appointments online
To make appointments easier we are using the service provider Terminland.de by Schulz & Löw Consulting GmbH, Kreuzberger Ring 44a, 65205 Wiesbaden. To process the booking of the appointment we require the following personal information:
Specification of the appointment (date and time)
Date of birth
Time and place of birth (for the horoscope)
We process this data on the basis of your consent (Article 6 paragraph 1 (a) GDPR). You can withdraw your consent at any time. We have entered into an agreement for contract data processing with Schulz & Löw Consulting GmbH.
3. Use of data
In addition to the purposes mentioned above the collection of data in general takes place for the website’s operation and the handling and administration in relation to the services offered. The data is collected especially in view of the formation, substance, execution, and modification of the contractual relationships concluded with individual customers as well as proper accounting in case of use of fee-based services. In addition, the data collected serves the improvement of our services and the analysis of user behavior of our customers.
Beyond that we use the data collected for our own marketing purposes. In this regard you agree that we can use your email address to send you information about the website and our services. You can refuse the use of your personal for marketing purposes at any time either in writing to Silke Schäfer Online GmbH, Gufenhaldenweg 4, 8708 Männedorf, Switzerland or by email to email@example.com or withdraw your consent.
By entering your personal data as well as other data on our website you give your agreement to the processing of all data collected about your person in the manner and for the purposes described in this Privacy Statement.
4. Disclosure of data to third parties
We do not pass on your data unless you have explicitly agreed to the disclosure, there is a legal obligation for us to do so or if it is necessary for the assertion of our rights, in particular for the enforcement of claims resulting from the contractual relationship. In addition, we pass on your data to third parties as far as it is necessary for the use of the website and for contract processing (also beyond the website), in other words: for the processing of your order.
The disclosure of data is made for the purpose of providing and maintaining the functionality of our website on the basis of our legitimate interests as well as for the purpose of contract processing.
We reserve the right to transmit the collected data to and have it processed by contracted third parties nationally and abroad for the purposes mentioned in this Privacy Statement. The respective recipients of the data collected by us who have access to the data are obligated to use the data exclusively for the processing of orders and not for other purposes and they must comply with data protection regulations.
Legal disclosure requirements: Furthermore, disclosure of data to regulatory authorities, judicial authorities or other competent persons is expressly permitted when required by applicable law.
Transfer of data for business reasons: We reserve the right to transfer information including your personal data to third parties in connection with a reorganization, a restructuring, a merger, a sale, or any other kind of transfer of assets on condition that the recipient agrees to handle the transmitted personal data in a way that is consistent with this privacy statement.
5. Transfer of data to third countries
The website is hosted on servers in Switzerland. We are entitled to transfer your personal data for the purposes of the data processing described in this privacy statement to third companies/parties (contracted service providers) in third countries. These third parties must comply with data protection regulations to the same extent we do. If the level of data protection in a country does not meet Swiss or European standards we will obligate contracted third parties by contract to comply with a level of data protection that is equivalent to the one in Switzerland or the European Union.
6. Data security
We take appropriate measures to prevent that personal data can be accessed, destroyed, abused, or manipulated by unauthorized third parties. All personal data is stored in encrypted form on servers in Switzerland.
The communication with the website takes place with TLS encryption (Transport Layer Security). Nevertheless, it may happen that data transmitted to us via the internet or an e-mail service can be accessed by third parties without permission. It is also possible that due to the nature of the internet data may circulate cross-border via servers of third countries, i.e. including countries that do not offer the same level of data protection. Therefore, very sensitive information should not be transmitted via the internet (e.g. email).
Although we take the necessary technical precautions to ensure safe transfer and storage of data, it cannot be completely excluded that unauthorized third parties, e.g. by so-called hacking of our servers, obtain some data. For this reason, we exclude any liability relating to this to the extent permitted by law.
7. Your rights
You have the right to be informed upon request about the personal data we store about your person. You also have the right to demand the correction of incorrect data as well as the right to limitation of and objection to the processing and you have the right to be forgotten, to deletion of your personal data, provided there is no statutory requirement to keep records or a permission/legal basis that allows us to process the personal data. If it is not apparent in this privacy statement, we will gladly inform you on request how long individual personal data provided by you will be stored.
You can reach us for the above purposes either by letter post to Silke Schäfer Online GmbH, Gufenhaldenweg 4, 8708 Männedorf, Switzerland or by the email address firstname.lastname@example.org. As a rule, we require a proof of identity to process your request.
8. Consent and right of withdrawal
Should consent to the processing of your personal data be required, we will process your data only after we have received your express consent.
Please note that you can revoke your consent to the future processing of your personal data at any time. Please notify us of your withdrawal of consent either in writing to Silke Schäfer Online GmbH, Gufenhaldenweg 4, 8708 Männedorf, Switzerland or by email to email@example.com.
9. Tools for web analysis
For continuing optimization of our offer and the improvement of our advertising measures we collect, on the basis of our legitimate interests, so-called tracking data that provides information about the use of our website and allows the creation of reports about website activity. For this purpose, we are currently using:
- Google Analytics, https://analytics.google.com/
As part of the use of Google Analytics data including abbreviated IP addresses (prevents the identification of individual devices) is transmitted to Google. Google observes the data protection regulations of the "Swiss-U.S. Privacy Shield" and the “EU-U.S. Privacy Shield” frameworks and has registered for these frameworks with the United States Department of Commerce. (You will find information about the frameworks here: Swiss-U.S. Privacy Shield and EU-U.S. Privacy Shield). The (abbreviated) IP address transmitted to Google will not be associated with other Google data.
For the optimization of our website and the determination of pageviews on the basis of our legitimate interests as well as for contract execution so-called cookies are used. The cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Individual cookies will remain stored on your end device until you delete them, these are so-called “persistent cookies”. These cookies enable us to recognize your browser the next time you visit our website. Google Analytics also uses persistent cookies (see number 9 above).
Cookies are small files that can store specific, device-related information on the user’s device (computer, smartphone etc.) when the user is accessing a website. Cookies serve to make the website user-friendly (e.g. by storing log-in data). They also gather statistical data related to website usage so that it can be analyzed with a view to improving the web offer.
The following is a list of the most common browsers; we have linked each entry with the respective guidance for changing the settings of the relevant browser.
If your browser is not on this list, we will be pleased to assist you. Please send an email to this purpose, specifying the browser you are using, to firstname.lastname@example.org
11. Interaction with social networks
We are currently not using social plugins on our website.
12. Changes to this privacy statement
Due to the further development of our website and the services offered, the implementation of new technologies or changes to the legal framework, it may become necessary to change this privacy statement. Any significant changes to this privacy statement will be communicated to registered users by e-mail to the address provided upon registration or by a corresponding note in your personal user account. Communications to the e-mail address provided upon registration are deemed to have been legally delivered.
The current version of this privacy statement can be retrieved from our website and printed at any time.
Thank you for your kind attention.
Effective: 15 June 2018