Head and Heart
Data Privacy

Data Privacy

Information on data protection

The protection of your personal data is important to us, HEAD AND HEART Consultants GmbH, Hindenburgstraße 52, 71638 Ludwigsburg, Germany ("HEAD AND HEART", "we", "us"). With this information on data protection, we explain to you how we, as the responsible party, process personal data.

The terms "data", "personal data" and "personal information" are used interchangeably in this policy and each includes any information relating to an identified or identifiable natural person.

We process personal information from or about the following categories of individuals, as described in more detail in the following sections:

  • Visitors to the Website

  • Business contacts and communication partners

  • Legal basis according to the DS-GVO

  • Your rights

1. Visitors to the website

In designing this website, we have undertaken to comply with the applicable legal provisions on the protection of personal data and data security. In the following, we would like to inform you about the circumstances under which we collect information from you, how we handle it and to whom we may make it available.

1.1 Consent to data use

Through our website, we do not collect any personal data from you (e.g. your name, address, telephone number or e-mail address), unless you voluntarily choose to provide us with it (e.g. when placing an order, submitting an inquiry, completing a survey or submitting an application), or unless otherwise permitted by applicable laws and regulations for the protection of your personal data.

1.2 Purpose

The purpose of data processing is the presentation of us and our offers on the Internet and the exchange with communication partners. The purpose of evaluating user behavior on the website is to design the website in line with requirements.

The legal basis for the processing is Article 6 (1) f) DS-GVO (legitimate interest, operation of an Internet presence and exchange with communication partners). The legal basis for the analysis of user behavior is Article 6 (1) f) DS-GVO (legitimate interest, namely the needs-based design of the website).

1.3 Logging

With every request, our web server processes a series of data that your browser automatically transmits to our web server. This is the IP address currently assigned to your device, the date and time of the request, the time zone, the specific page or file accessed, the http status code and the amount of data transferred; in addition, the website from which your request came, the browser used, the operating system of your end device and the language set. The web server uses this data to display the contents of this website in the best possible way on your device.

Protocol and communication data will not be passed on to third parties without the occurrence of special circumstances. In case of suspicion of a criminal act or in investigation proceedings, data may be transmitted to the police and the public prosecutor's office. We also use service providers by way of order processing in the provision of services, in particular for the provision, maintenance and care of IT systems.

1.4 Data retention

We store the personal data you provide to us only for as long as it is needed to fulfill the purposes for which the data was provided, if you have actively given us your consent to do so, or as long as required by law.

1.5 Secure communication

We use SSL encryption to ensure secure transmission of your personal data. This form of transmission is recognized as a secure form of data transmission according to the current state of knowledge. If a transmission takes place without this option (e.g. e-mail communication), it is not a secure transmission.

1.6 Security

To protect your personal data against accidental or unlawful destruction, loss or alteration and against unauthorized disclosure or access, HEAD AND HEART Consultants uses technical and organizational security measures. Our employees are bound to secrecy and data protection.

1.7 Use of technically necessary cookies

Within our online offer we use cookies. In this context, we would like to point out that cookies may also originate from third parties and / or be loaded from third-party servers, even though you are only visiting our website.

Cookies are small files that are stored on the devices used to use the online offers (computers, cell phones, tablets, TV sets or similar). In these files, information is stored that is related to the use of the online offer and the device used for use. There are "permanent cookies", which store data for a defined period of time beyond the visit of the online offer. "Non-permanent cookies" or so-called "session cookies" are deleted directly after the end of the visit to the online offer. Cookies can also be used to store various preferences of the user for marketing purposes, whereby such use in our online offers takes place exclusively within the framework of the user's consent. More on this in the section on technically unnecessary cookies.

1.8 E-mail

If you provide your e-mail address, we will communicate with you by e-mail. Your e-mail address will not be passed on to third parties outside HEAD AND HEART. You can revoke this consent to use e-mail communication with us at any time subsequently.

1.9 Links to other sites

In the case of links on our website to external companies, HEAD AND HEART accepts no responsibility for the privacy requirements or the content of these websites.

2 Business contacts and communication partners

2.1 We process the data of interested parties and communication partners for the purpose of communicating with the data subjects.

2.2 The legal basis for the processing of interested parties and other communication partners is Article 6 (1) f) DS-GVO (legitimate interest, namely communication with interested parties and communication partners).

2.3 We use service providers by way of order processing in the provision of services, in particular for the provision, maintenance and care of IT systems.

2.4 Inquiries and communications are automatically deleted after ten calendar years.

2.5 The provision of data is required for interested parties and communication partners. Communication is not possible without providing data.

3 Legal basis according to the DS-GVO

3.1 The legal basis for processing your data in accordance with the DS-GVO is as follows:

  • Web Server Log Data - The legal basis for processing web server log data generated during the use of the website is our legitimate interest, namely the operation of a website and user interaction.

  • Web Analytics Data - The legal basis for analyzing user behavior is our legitimate interest in optimizing our website by measuring and analyzing the use of our website.

  • Business contact and communication partner data - The legal basis for processing data of current and potential business contacts and communication partners is the legitimate interest, in particular communication with potential business contacts and communication partners.

3.2 The aforementioned legal bases for processing your data are governed by the DS-GVO as follows: "consent" is governed by Article 6(1)(a) DS-GVO, "contract" is governed by Article 6(1)(b) DS-GVO, "legal obligations" is governed by Article 6(1)(c) DS-GVO and "legitimate interest" is governed by Article 6(1)(f) DS-GVO.

4 Your rights

You have the following rights under the DS-GVO:

  • You may withdraw your consent at any time if your data is processed on the basis of your consent. The withdrawal of consent does not affect the lawfulness of the processing prior to the withdrawal of consent.

  • You can object to the further processing of your data at any time if your data is processed on the basis of our legitimate interest.

  • You can request information about your personal data processed by HEAD AND HEART at any time.

  • If our processing is based on your consent, you have the right to data portability.

  • You may request the correction of your personal data at any time.

  • Sie können jederzeit die Löschung Ihrer You may at any time request the erasure of your personal data, unless a right or legal obligation requires HEAD AND HEART to continue processing your personal data.

  • You may at any time request the restriction of the processing of your data.

  • You may lodge a complaint with a supervisory authority at any time.