Privacy Policy

1. General Information

The protection of personal data is our top priority. Below, we provide comprehensive information on the processing of personal data when you visit our website, your data subject rights, and the technical and organizational measures we implement to protect your data. Personal data refers to all information relating to an identified or identifiable natural person.

2. Controller

Galerie Anna Probst
Anna Probst
Uhlandstrasse 145a
10719 Berlin
Email: info@galerieannaprobst.de

The Controller alone determines the purposes and means of processing personal data.

3. Collection and Storage of Personal Data and the Nature and Purpose of Processing

3.1 Automatic Data Collection During Website Visit

When you access our website, information is automatically transmitted to our website’s server by the browser used on your device. This includes, in particular:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access is made (referrer URL)
  • Browser used and, if applicable, the operating system of your device

Data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in ensuring the smooth operation of the website.

3.2 Data Processing Based on Your Input

Personal data is also processed when you actively provide it to us, for example, in the context of:

  • a contact inquiry
  • a newsletter subscription

Legal bases:

  • Art. 6 para. 1 lit. a GDPR (consent)
  • Art. 6 para. 1 lit. b GDPR (performance of a contract or pre-contractual measures)

4. Hosting by IONOS

Our website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur. All personal data collected during your visit to the website is stored on IONOS servers.

Processing by IONOS is based on a data processing agreement in accordance with Art. 28 GDPR.

Legal bases:

  • Art. 6 para. 1 lit. f GDPR (legitimate interest in secure and stable provision)
  • Art. 6 para. 1 lit. b GDPR (performance of a contract)

5. Data Security – SSL/TLS Encryption

To ensure the security of your data, we use SSL/TLS encryption on our website. You can recognize an encrypted connection by “https://” and the padlock symbol in your browser’s address bar. This prevents third parties from reading data you transmit.

6. Cookies and Analytics Tools (Google Analytics)

6.1 Use of Cookies

Our website uses cookies to enable, optimize, and analyze its use. Cookies are small text files stored on users’ devices.

Technically necessary cookies are processed on the basis of Art. 6 para. 1 lit. f GDPR. Analytics and marketing cookies are only used with consent in accordance with Art. 6 para. 1 lit. a GDPR.

[borlabs-cookie type=”all”]

6.2 Google Analytics

We use Google Analytics, a web analytics service provided by Google Ireland Limited. Cookies are used to evaluate user behavior. The collected data may be transferred to the USA.

Legal basis: Art. 6 para. 1 lit. a GDPR (consent via the cookie banner).
You can withdraw your consent at any time.

7. Contact Forms (WordPress)

When you use our contact form, the personal data you enter (e.g., name, email address, message) is processed for the purpose of handling your inquiry.

Processing is carried out in accordance with:

  • Art. 6 para. 1 lit. b GDPR (contract-related inquiries)
  • Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient communication)

8. Newsletter Dispatch via Brevo (Sendinblue)

8.1 Data Collected

For newsletter dispatch, we require your email address and your consent in accordance with Art. 6 para. 1 lit. a GDPR.

8.2 Processing by Brevo

Newsletters sent via Brevo enable statistical evaluations (e.g., open and click rates).

You can unsubscribe at any time via the corresponding link in the newsletter.
After unsubscribing, your email address will be added to a blacklist to prevent future mailings (Art. 6 para. 1 lit. f GDPR).

9. Social Media & Embeds

9.1 Facebook

Our website may contain plugins or embedded content from Facebook. When you access such content, a connection is automatically established with the provider’s servers. Personal data, such as your IP address, may be transmitted.

Legal basis: Art. 6 para. 1 lit. f GDPR.

9.2 Instagram

We embed content from Instagram (Meta Platforms Ireland Limited). When you access a page with an integrated Instagram feed or post, a connection is established with Instagram servers. Personal data may be transmitted.

If you are logged in to Instagram, the provider can associate your visit with your user account.

Legal basis: Art. 6 para. 1 lit. f GDPR.

9.3 Social Media Buttons

WordPress plugins can provide social media buttons that only transmit data after active use. No transmission occurs without interaction.

10. Google Maps (Use with Consent)

We use Google Maps exclusively with your prior consent in accordance with Art. 6 para. 1 lit. a GDPR. Only after activating the service will a connection be established with Google’s servers and data transmitted.

11. Data Subject Rights

You have the following rights under the GDPR:

  • Right to information (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to withdraw consent (Art. 7 para. 3 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

12. Objection to Promotional Emails

The use of contact data published within the scope of the imprint obligation for sending unsolicited advertising is hereby prohibited.

Status of the Privacy Policy: current version

[borlabs-cookie type="service-list" /]