For the mere visit of my website, I do not require any personal and person-related data from you. Nevertheless, your Internet browser sends data to my web server due to the technical necessity of calling up web pages, which is also partly recorded on the basis of technical necessity (server logs).

This data usually includes the following information:

• Used web browser incl. browser version and used operating system
• Type of device you are using (desktop computer/smartphone/tablet/etc.)
• Size and colorfulness of your monitor/display
• Information about the last opened web page from which you visit us
• Information about the web pages you visit on our site, the date and time of your visit, and the length of time you spend on each page
• Name of the requested files, transmission protocols, transferred data volume
• Name of your Internet Service Provider
• The IP address assigned to you by your Internet Service Provider.

In accordance with Art. 6 para. 1 lit. f GDPR, this data is stored for reasons of technical security, to defend against cyber attacks on my servers and to protect your personal data and that of other visitors. By shortening the IP addresses after seven calendar days at the latest, this data is then automatically anonymized by my backend and stored indefinitely for statistical analysis. A personal reference based on this data can then no longer be established.

The basis for the extended data collection of your personal data is the currently applicable legal provisions. For all cases in which I am not legally obligated to collect your personal data and to stockpile it for legally clearly defined periods of time, I will request your personal consent.

Data processing of personal data is permitted by Art. 6 GDPR if:

• you have given your consent in accordance with Art. 6 Para. 1 lit. a GDPR,

• the data is required for the fulfillment of a contract / pre-contractual measures according to Art. 6 para. 1 lit. b GDPR,

• the data is necessary for the fulfillment of a legal obligation according to Art. 6 para. 1 lit. c GDPR or

• are required to protect the legitimate interests of our company pursuant to Art. 6 (1) lit. f GDPR, provided that your interests worthy of protection do not outweigh these.

The personal data I collect about you will, of course, be treated confidentially. Within my company, I only grant access to your personal data to authorized persons and contractually authorized service providers.

I will only pass on your data to third parties within the framework of the statutory provisions or with your corresponding consent, unless I am obliged to do so on the basis of mandatory legal provisions.

Legal basis Art. 6 para. 1 lit. a, b GDPR

You will find various contact forms on my website, which can be used by you to contact me electronically and to order marketing materials, slide samples and the like. If you use these forms for data transmission, you thereby grant me permission to contact you via the contact data you have provided and to process/answer your concerns, questions and requests. When designing those forms, I will only request and process the personal data from you that I absolutely need to contact you and process your concerns and requests in order to save and avoid data. For technical necessity and for legally compliant protection, I will also process your IP address when collecting this data. If these forms contain further fields that may be filled in on a voluntary basis, by submitting the forms you give me permission to process this data as well and to stock it within the legal time limits.

If, while entering your data in the forms provided by me, you decide not to send the form to me after all, the data you have entered up to that point will not be processed further. There is also no server-side tracking of this cancellation (conversion tracking, bounces) for statistical evaluation.

Legal basis Art. 6 para. 1 lit. a, b GDPR

If you contact me by e-mail to one of my specified e-mail addresses, I will process your personal data provided to me in this e-mail solely for the purpose of processing your message, unless I am already permitted or required to process and store your data for other legal reasons.

Legal basis Art. 6 para. 1 lit. a, b GDPR

On this website, I do not offer users the opportunity to register by providing personal data.

Legal basis Art. 6 para. 1 lit. ff GDPR

I use cookies on this website at m-ebahimi.de. Cookies are text files with a low data volume that are generated when you visit my website and stored locally on your terminal device. We need these cookies to improve the user-friendliness of our website, to temporarily store your preferences, such as your language selection, and to increase the security of our website. Cookies are automatically generated by my server when you visit this website and are saved locally on your data storage by your browser. Your browser can then access them as needed and change their content.

I primarily use so-called session cookies on this website, which are normally automatically deleted by your browser after your visit as soon as their validity period - usually six months - is exceeded. However, you can also delete these cookies yourself at any time. This can be done either via the security settings of your browser or manually by deleting these files from the corresponding folders in your file system.

Internet browsers are normally set to automatically accept cookies after the installation process. You can, of course, change this preselection at any time, restrict the use of cookies or switch them off completely.

Please note, however, that after deleting our cookies or by rejecting their use, you will no longer be able to visit our Internet pages to their full extent and only with a reduction in user-friendliness.

I store your personal data without your individual consent exclusively for the period of time required to achieve the respective processing purpose or as specified by statutory retention periods. A data transfer of your personal data to third parties will only take place if this is required by law or if this is necessary within the scope of the respective processing purpose to fulfill your request or order. If an exchange of data should be necessary within the scope of these requirements, this exchange will always be carried out in compliance with the legal requirements and obligations with the highest possible security and in compliance with the principle of data economy and data avoidance only with the data actually required for the processing process.

Examples of unavoidable data transfer to third parties:

• Government agencies and institutions (such as the tax office)
• External data protection officers (generally only with contractually secured data protection clause)
• External quality management representatives (in principle only with contractually secured data protection clause)
• External environmental management officers (in principle only with contractually secured data protection clause)
• Companies that perform credit checks
• Banks, savings banks and credit institutions
• Shipping service providers, suppliers, payment services
• Other business units at the corporate group
• Service providers within the scope of commissioned processing (in principle only with contractually secured data protection clause)
• Internal and external specialist departments

I take the security of your personal data very seriously and therefore only use security mechanisms of the highest quality when operating my web and mail servers. My security measures are developed by security experts according to the current state of the art, reviewed at regular intervals and adapted to new standards and trends.

The exchange of your personal data to and from my web server as well as to and from my mail servers is encrypted to protect against data loss and data theft. For my web and mail server, I have chosen a TLS certificate from the provider Thawte (DigiCert Inc.) with PKCS #1 SHA-256 and RSA encryption algorithm at domain level, which can be classified as extremely secure. You can check this certificate and its validity at any time via your web browser. An automatic check is performed by most web browsers every time you visit a page and successful encryption is usually indicated by a green closed padlock in the URL bar. We use this TLS encryption both in the frontend (visitor display) and in the backend (administration interface) of our web server to also prevent data loss and data theft during the administration and content maintenance of our website.

Alternatively, of course, you always have the option of foregoing data exchange with me in digital form and choosing analog communication channels (e.g., postal dispatch of data and information).

Where my website contains links to the websites of other companies, e-mail addresses or telephone numbers, these are identified as such. You can also check each link before clicking by positioning the pointer of your mouse (desktop computer/laptop) or your finger or operating stylus (mobile devices/touchscreen/touchpad) over the link or by holding the link longer instead of clicking (hover behavior).

I would like to point out that I have no influence on the contents of linked external websites and cannot accept any guarantee or liability for these contents. The provider and operator is responsible for the content and data security of these linked pages. All external sites linked to my website have been checked and evaluated by us for possible legal violations, illegal content and data security within the scope of our possibilities before linking. Only after a positive evaluation have these links then been included on my pages. However, I cannot reasonably be expected to permanently monitor and control the content of the linked pages. However, I will remove such external links immediately after becoming aware of any legal violations and violations of data protection laws. If you become aware of such violations, please send me this information to me@m-ebrahimi.de.

This site uses so-called web fonts provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must connect to Google's servers. This may also result in the transmission of personal data to the servers of Google LLC. in the USA. In this way, Google obtains knowledge that our website was accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO. If your browser does not support web fonts, a standard font will be used by your computer.

You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/

Based on the statutory requirements, you have the right to free information about the use and content of the personal data stored by me from you and about you. Furthermore, you have the right to correction, restriction of data collection and processing as well as deletion of your data, provided that this does not conflict with any legally prescribed retention periods.

In addition, based on the current legal situation, you have the right to a general objection to data processing, the right to data transfer or to file a complaint with the competent supervisory authority for data protection.

You can, of course, revoke any consent given to us for data processing at any time without giving reasons for the future after asserting this right.

If I process your data to protect legitimate interests, you may object to this processing on personal grounds at any time. Unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, the processing is required by law or the processing is for the purpose of asserting, exercising or defending legal claims, I will then no longer process your data in the future after receipt of the objection and completion of the review of the legal claim.

My data protection officer will be happy to answer any questions you may have regarding data protection, data collection and data processing at any time at me@m-ebrahimi.de.