Privacy Policy

1. Introduction

We take the protection of your personal data very seriously. This Privacy Policy explains how personal data is collected, used, and processed when you visit this website or contact our practice.

Personal data refers to any information that can be used to identify you personally.

2. Responsible for Data Processing

Responsible for data processing on this website:

**Natalie Schwindenhammer
Leonardo-da-Vinci-Allee 18e
60486 Frankfurt am Main
Germany

Phone: to be provided
Email: to be provided

3. Data Collection When Visiting the Website

When you visit this website, certain information is automatically collected by the hosting provider.

This may include:

• IP address

• browser type and version

• operating system

• date and time of access

• pages visited on the website

• referrer URL

This data is used solely to ensure the stability, functionality, and security of the website.

The legal basis for this processing is Art. 6 para. 1 lit. f GDPR, based on our legitimate interest in maintaining a secure and functional website.

4. Contact by Email or Contact Form

If you contact us via email or through a contact form on this website, the personal data you provide will be stored for the purpose of processing your inquiry and for possible follow-up questions.

This may include:

• name

• email address

• telephone number

• message content

The legal basis for processing this data is Art. 6 para. 1 lit. b GDPR, as the processing is necessary for responding to your request.

Your data will not be shared with third parties without your consent.

5. Online Appointment Booking

Appointments can be booked directly through this website. To provide this service, we use the appointment booking software Billfox, provided by Endorphin Digital GmbH, Düsseldorf, Germany.

When booking an appointment, the information entered into the booking form will be processed. This may include:

• name

• contact information

• requested appointment time

• other information necessary for appointment scheduling

The purpose of this processing is to organize and manage appointments.

The provider stores the data on secure servers located in Germany. Technical log data such as time of access, browser type, and anonymized IP address may also be processed to ensure the proper operation of the service.

The legal basis for this processing is Art. 6 para. 1 lit. f GDPR, based on our legitimate interest in providing an efficient appointment booking system.

Where consent is required, processing is additionally based on Art. 6 para. 1 lit. a GDPR and §25 para. 1 TTDSG.

You may revoke your consent at any time with effect for the future.

Further information about data protection at Billfox can be found at:
https://www.billfox.de/datenschutz

6. Data Processing Agreement

We have concluded a Data Processing Agreement (DPA) with Endorphin Digital GmbH. This agreement ensures that personal data of our website visitors is processed only according to our instructions and in full compliance with the General Data Protection Regulation.

7. Data Storage Duration

Personal data will only be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by legal retention periods.

Once the purpose of storage no longer applies, the data will be deleted in accordance with applicable legal regulations.

8. Your Rights

Under the General Data Protection Regulation, you have the following rights:

• right to access your personal data

• right to rectification of inaccurate data

• right to erasure of your data

• right to restriction of processing

• right to data portability

• right to withdraw consent at any time

To exercise these rights, you may contact us at any time.

9. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates data protection law.

The responsible supervisory authority in Hessen is the Hessischer Beauftragter für Datenschutz und Informationsfreiheit.

10. Data Security

We use appropriate technical and organizational security measures to protect your personal data against loss, misuse, or unauthorized access.

Please note that data transmission over the internet may have security vulnerabilities.