Privacy Policy – Leela Hoedle

1. DATA PROTECTION AT A GLANCE

General Information. This privacy policy explains what happens to your personal data when you visit this website. Personal data is any data that can identify you personally. Detailed information can be found in the sections below.

Data Collection on This Website.

Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator. Contact details can be found in the section “Information on the Responsible Party”.

How do we collect your data? Your data is collected when you provide it to us (e.g., contact form). Other data is collected automatically when you visit the website (e.g., IP address, browser type, operating system, time of access).

What do we use your data for? We use data to ensure the proper functioning of the website, to respond to inquiries, and, if applicable, to process contracts. Some data may also be used for analytics.

What rights do you have? You have the right to access, rectify, delete, restrict processing, and transfer your data. You may also withdraw consent at any time and lodge a complaint with a supervisory authority.

2. HOSTING

External Hosting. This website is hosted externally. Personal data collected is stored on the servers of the hosting provider(s). This may include IP addresses, contact requests, metadata, communication data, contract data, contact details, names, website access logs, and other data generated via a website.

Processing is based on Art. 6(1)(b) GDPR (contract), Art. 6(1)(f) GDPR (legitimate interest in secure and efficient provision), and where applicable Art. 6(1)(a) GDPR (consent). Consent may be withdrawn at any time.

3. GENERAL INFORMATION AND MANDATORY DISCLOSURES

Data Protection We take the protection of your personal data very seriously and treat it confidentially in accordance with statutory data protection regulations and this privacy policy.

We note that data transmission over the internet (e.g., email communication) may have security gaps. Complete protection against third-party access is not possible.

Information on the Responsible Party

Ingrid Hoedle Emmertsgrund 14 69126 Heidelberg Germany
Phone: +49 155 60468843 Email: info@leela-hoedle-cranio.com
The responsible party is the natural or legal person who determines the purposes and means of processing personal data.

Storage Period Unless otherwise stated, personal data is stored until the purpose for processing no longer applies. If you request deletion or withdraw consent, data will be deleted unless legal retention obligations exist.

Legal Bases for Processing We process personal data on the basis of:
• Art. 6(1)(a) GDPR (consent)
• Art. 6(1)(b) GDPR (contract)
• Art. 6(1)(c) GDPR (legal obligation)
• Art. 6(1)(f) GDPR (legitimate interest)

Recipients of Personal Data We only share personal data if required for contract fulfillment, legal obligations, legitimate interests, or with consent. Data processors are used under valid processing agreements.

Withdrawal of Consent You may withdraw consent at any time. Processing before withdrawal remains lawful.
Right to Object (Art. 21 GDPR) You have the right to object to processing based on Art. 6(1)(e) or (f) GDPR at any time for reasons arising from your particular situation. If you object, we will no longer process your data unless we can demonstrate compelling legitimate grounds or legal claims. If your data is processed for direct marketing, you may object at any time.

Right to Lodge a Complaint You have the right to lodge a complaint with a supervisory authority in your country of residence, workplace, or place of the alleged infringement.

Right to Data Portability You have the right to receive data in a machine-readable format or have it transferred to another controller where technically feasible.

Right of Access, Rectification and Erasure You have the right to access, correct, or delete your personal data at any time.

Right to Restriction of Processing You may request restriction of processing if:
• Accuracy is contested
• Processing is unlawful
• Data is no longer needed but required for legal claims
• An objection is pending

Restricted data may only be processed with consent or for legal purposes.
This website uses SSL/TLS encryption. You can recognize this by “https://” and the lock symbol in your browser.

4. DATA COLLECTION ON THIS WEBSITE

Contact Form If you submit inquiries via contact form, your data is stored for processing and follow-up questions. Data is not shared without consent. Processing is based on Art. 6(1)(b), (a), or (f) GDPR depending on context. Data is stored until the purpose no longer applies.
Email / Phone / Fax Inquiries Data submitted via email, phone, or fax is processed to handle inquiries and is not shared without consent.

5. ANALYTICS AND ADVERTISING

WP Statistics We use WP Statistics by Veronalabs, Tatari 64, 10134 Tallinn, Estonia (https://veronalabs.com).

This tool analyzes visitor behavior using log data such as IP address, browser type, referrer, and actions on the website. Data is stored only on our server.

Processing is based on Art. 6(1)(f) GDPR or consent under Art. 6(1)(a) GDPR and Section 25(1) TDDDG.

6. NEWSLETTER

If you subscribe to our newsletter, we collect your email address and confirmation of consent. Data is used exclusively for sending newsletters. Processing is based on Art. 6(1)(a) GDPR. You may unsubscribe at any time. After unsubscribing, data may be stored in a blacklist to prevent future mailings (Art. 6(1)(f) GDPR).

7. PLUGINS AND TOOLS

Google Fonts (Local Hosting) Google Fonts are hosted locally. No connection to Google servers is made. More: https://developers.google.com/fonts/faq Privacy: https://policies.google.com/privacy.

Google Maps This website uses Google Maps (Google Ireland Limited, Dublin, Ireland).

When using Google Maps, your IP address may be transmitted to Google servers in the USA and stored there. We have no control over this.

Use is based on Art. 6(1)(f) GDPR or consent under Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Data transfer to the USA is based on EU Standard Contractual Clauses and the EU–US Data Privacy Framework.

More information: https://policies.google.com/privacy DPF: https://www.dataprivacyframework.gov/participant/5780