Privacy Statement

Version 2.0 effective from 1st April 2025

At REBECCA RŒGER design, accessible from www.rebecca-roeger.de, we are committed to protecting the privacy of our visitors. This Privacy Statement outlines the types of information we collect, how we use it, and the measures we take to ensure its protection.

Responsible person within the meaning of the GDPR:
REBECCA RŒGER design
Rebecca Röger
13353 Berlin, Germany

E-mail address: post(at)rebecca-roeger(punkt)de
Website: rebecca-roeger.de

When you visit our website, your browser automatically sends information to our website server. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:

- IP address of the requesting computer
- Date and time of access
- Name and URL of the retrieved file
- Website from which the access was made (referrer URL)
- Browser used and, if applicable, the operating system of your computer

We process the aforementioned data for the following purposes:

- Ensuring a smooth connection and performance of the website
- Ensuring a comfortable use of our website-
- Analysing system security and stability

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above.

We do not use cookies or similar technologies on our website to analyse or store information.

We do not use other external services such as YouTube, Google Maps or other third-party embeddings on our website.

Our website is hosted via the following providers, which adhere to strict security standards.
‍
Strato
The provider is Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin (hereinafter ‘Strato’). When you visit our website, Strato collects various log files including your IP addresses.
‍
Further information can be found in Strato's privacy policy: strato.de/datenschutz
The use of Strato is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
‍
Order processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract prescribed by data protection law, which guarantees that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.
‍‍
Webflow
The provider is Webflow, Inc, 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter referred to as Webflow). When you visit our website, Webflow collects various log files including your IP addresses.
Webflow is a tool for creating and hosting websites. Webflow stores cookies or other recognition technologies that are required to display the page, to provide certain website functions and to ensure security (necessary cookies). Details can be found in Webflow's privacy policy: webflow.com/legal/eu-privacy-policy
The use of Webflow is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time and data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here.

The company is certified in accordance with the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider here.

When you use our website, we may collect certain personally identifiable information, limited to what you provide through our contact form. This typically includes:

- Name
- Email Address
- Message (any additional information you choose to provide in the contact form)

The following data is also stored at the time the message is sent:

Your consent will be obtained for the processing of the data as part of the sending process and reference will be made to this privacy policy. Alternatively, you can contact us via the e-mail address provided. In this case, the sender's personal data transmitted with the e-mail will be stored.

The processing of the personal data from the input mask serves us solely to process the contact and to provide our design services. The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (fulfilment of contract or pre-contractual measures).

The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. This is the case when the respective conversation with the user has ended and the enquiry has been finally processed. The personal data will be deleted at the latest when they are no longer required for the provision of our services.

We have taken technical and organisational security measures to protect your personal data from loss, destruction, manipulation and unauthorised access. All persons involved in data processing are obliged to comply with data protection laws and to handle personal data confidentially.

Our website is transmitted via a secure SSL connection. You can recognise this by the lock symbol in your browser line and the address line with ‘https://’.

Your personal data will not be transferred to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:

- You have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR
- The disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data
- in the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
- this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.

As a visitor of our website, you have the following rights regarding your personal data: Right

- to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details;
- in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us
- in accordance with Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims
- in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
- in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller
- in accordance with Art. 7 para. 3 GDPR, to revoke your consent to us at any time. The consequence of this is that we may no longer continue the data processing that was based on this consent in the future and
- to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.

If you would like to exercise your right of revocation or objection, simply contact us here.

It may become necessary to amend this privacy policy as a result of the further development of our website and services or due to changes in legal or official requirements. You can access and print out the current privacy policy at any time on the website on this page.

This is version 2.0 of this policy, effective as of 01st April 2025.

Version 1.0 (effective from January, 2024) Download (pdf) here

If you have any questions or concerns about our Privacy Statement, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us at here.