Legal
Privacy Policy
Datenschutzerklärung
Data protection is of particularly high importance to Michaella Benvenisti. Use of the Michaella Benvenisti website is fundamentally possible without providing any personal data. However, if a data subject wishes to make use of special services via our website, processing of personal data may become necessary. Where processing of personal data is required and there is no statutory basis for such processing, we obtain the consent of the data subject.
The processing of personal data, such as the name, address, email address, or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection provisions applicable to Michaella Benvenisti. By means of this privacy policy, we wish to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights by means of this privacy policy.
As controller, Michaella Benvenisti has implemented measures to ensure the protection of personal data processed via this website. Nevertheless, internet-based data transmissions may have security vulnerabilities, so that absolute protection cannot be guaranteed.
1. Definitions
This privacy policy is based on the terminology used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easy to read and understand for both the general public and our clients and partners.
The definitions can be found in full at: http://www.bvdw-datenschutz.de/dsgvo/kapitel-1/art-4-dsgvo
2. Name and Address of the Controller
The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union, and other provisions of a data protection nature is:
Michaella Benvenisti
Brandenburger Strasse
14467 Potsdam
Germany
Tel.: 0152/55886620
Email: michaella.benvenisti@gmail.com
Website: www.michaellabenvenisti.com
3. Cookies
This website uses cookies. Cookies are text files that are stored on a computer system via an internet browser.
Many cookies contain a so-called cookie ID — a unique identifier consisting of a string of characters by which websites and servers can be assigned to the specific internet browser in which the cookie was stored. This allows visited websites and servers to distinguish the individual browser of the data subject from other browsers that contain different cookies, and to recognise and identify a specific browser via its unique cookie ID.
Through the use of cookies, Michaella Benvenisti can provide users of this website with more user-friendly services that would not be possible without cookies. Cookies allow us to optimise the information and offers on our website in the interests of the user, and to recognise returning visitors without requiring them to re-enter their access data on each visit.
3.1 Cookie Management in Different Browsers
The data subject may prevent the setting of cookies by our website at any time via a corresponding setting in the internet browser used, and thus permanently object to the setting of cookies. Cookies already set may also be deleted at any time via an internet browser or other software programmes. This is possible in all common browsers. Should the data subject deactivate the setting of cookies in the internet browser used, not all functions of our website may be fully usable.
Different browsers have different settings. Below are links to cookie management instructions for the most common browsers:
- Google Chrome: https://support.google.com/chrome/answer/95647
- Internet Explorer: https://support.microsoft.com/en-ie/help/17442
- Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
- Safari: https://support.apple.com/en-gb/guide/safari/sfri11471/mac
- Opera: https://www.opera.com/help/tutorials/security/cookies/
4. Collection of General Data and Information
The Michaella Benvenisti website collects a series of general data and information each time the website is accessed by a data subject or an automated system. This general data and information is stored in server log files. The following may be collected: browser types and versions used, the operating system used by the accessing system, the website from which an accessing system reaches our website (so-called referrers), the sub-pages accessed via the website, the date and time of access, an internet protocol address (IP address), the internet service provider of the accessing system, and other similar data and information used to avert danger in the event of attacks on our IT systems.
When using this general data and information, Michaella Benvenisti does not draw any conclusions about the data subject. This information is needed to correctly deliver the content of our website, to ensure the permanent functionality of our IT systems and the technology of our website, and to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyberattack. This anonymously collected data and information is therefore evaluated both statistically and with the aim of increasing data protection and data security, in order to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files is stored separately from all personal data provided by a data subject.
5. Contact Options via the Website
The Michaella Benvenisti website contains, pursuant to statutory provisions, information enabling quick electronic contact and direct communication, including a general email address and a contact form. If a data subject contacts the controller by email or via the contact form, the personal data transmitted by the data subject is automatically stored. Such personal data voluntarily transmitted by a data subject to the controller is stored for the purpose of processing or contacting the data subject. This personal data is not passed on to third parties.
6. Routine Erasure and Blocking of Personal Data
The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage, or as provided for by the European legislator or other legislators in laws or regulations to which the controller is subject. If the storage purpose ceases to apply, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data is routinely blocked or erased in accordance with statutory provisions.
7. Rights of the Data Subject
7.1 Right of Access
Michaella Benvenisti is happy to inform you of what personal data is stored about you (§ 34 BDSG). This information is provided free of charge, processed promptly, and generally by email. To receive detailed information, please indicate, where possible, what type of personal data you are requesting information about. To verify that the requesting person is also the person they claim to be, we require proof of identity — this may be a copy of an official identity document. Please redact or obscure any serial numbers, passport numbers, or similar. We use this copy solely for identification and to process the request.
All rights can be read in detail at: http://www.bvdw-datenschutz.de/dsgvo/kapitel-3
7.2 Rectification, Erasure, or Blocking
You also have the right to rectification, erasure, or blocking of your personal data. To exercise these and other data subject rights, please contact us at the address provided above.
8. Data Protection in the Application Process
The controller collects and processes the personal data of applicants for the purpose of managing the application process. Processing may also be carried out electronically — in particular where an applicant submits application documents electronically, for example by email or via a web form on the website. If the controller concludes an employment contract with an applicant, the submitted data is stored for the purpose of managing the employment relationship in accordance with statutory provisions. If no employment contract is concluded, the application documents are automatically deleted two months after notification of the rejection decision, provided no other legitimate interests of the controller preclude deletion. Such legitimate interests include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
9. Data Protection Provisions for the Use of Google Products
Michaella Benvenisti uses various services of Google Inc. (USA), including Google Analytics, Google Tag Manager, Google reCAPTCHA, Google Fonts, and Google Maps.
9.1 Google Analytics (with Anonymisation Function)
The controller has integrated the Google Analytics component (with anonymisation function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, gathering, and evaluation of data about the behaviour of visitors to websites. A web analysis service collects data on, among other things, which website a data subject came from (so-called referrers), which sub-pages were accessed, and how often and for how long a sub-page was viewed.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
The controller uses the addition _gat._anonymizeIp for web analysis via Google Analytics. By means of this addition, the IP address of the data subject's internet connection is shortened and anonymised by Google when accessing our website from a member state of the European Union or from another state party to the Agreement on the European Economic Area.
Google Analytics sets a cookie on the data subject's IT system. Through the use of this cookie, Google is able to analyse the use of our website. Personal data such as access time, location, and the device used is stored via the cookie and transmitted to Google in the United States of America. Google may pass on this data to third parties.
The data subject may prevent the setting of cookies and also object to the collection of data generated by Google Analytics by installing the browser add-on available at: https://tools.google.com/dlpage/gaoptout
Further information and the applicable privacy policy of Google can be retrieved at: https://www.google.com/intl/en/policies/privacy/ and https://www.google.com/analytics/terms/
9.2 Google Tag Manager
We also use Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags via a single interface. The Tag Manager tool itself (which implements the tags) is a cookie-less domain and does not collect personal data. The tool triggers other tags which may themselves collect data. Google Tag Manager does not access this data. If deactivation has been carried out at the domain or cookie level, it remains in place for all tracking tags implemented via Google Tag Manager.
We may ask our customers for permission to share certain product data (e.g. account information) with other Google products to enable certain features. We will never share data of this kind with other Google products without the user's consent.
9.3 Google reCAPTCHA
To protect submissions via our contact form, we use the reCAPTCHA service provided by Google Inc. (Google). The query serves to distinguish whether input is made by a human or abusively by automated machine processing. The query includes the transmission of the IP address and any further data required by Google for the reCAPTCHA service. Your IP address is shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before being stored. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of reCAPTCHA is not merged with other Google data. Google's separate privacy policy applies to this data. Further information on Google's privacy policy can be found at: https://policies.google.com/privacy
10. Legal Basis for Processing
Art. 6(1)(a) GDPR serves as the legal basis for processing operations where we obtain consent for a specific processing purpose. Where processing is necessary for the performance of a contract to which the data subject is a party — such as for the delivery of goods or the provision of another service — processing is based on Art. 6(1)(b) GDPR. The same applies where processing is necessary to carry out pre-contractual measures, for example in the case of enquiries about our services. Where our organisation is subject to a legal obligation requiring processing — such as the fulfilment of tax obligations — processing is based on Art. 6(1)(c) GDPR. In rare cases, processing may be necessary to protect the vital interests of the data subject or another natural person, in which case Art. 6(1)(d) GDPR would apply. Finally, processing operations may be based on Art. 6(1)(f) GDPR where processing is necessary to safeguard a legitimate interest of our organisation or of a third party, provided the interests, fundamental rights, and freedoms of the data subject do not override.
11. Legitimate Interests Pursued by the Controller
Where the processing of personal data is based on Art. 6(1)(f) GDPR, our legitimate interest is the conduct of our business for the benefit of the wellbeing of all our employees and clients.
12. Duration of Storage
The criterion for the duration of storage of personal data is the respective statutory retention period. After the expiry of that period, the corresponding data is routinely deleted, provided it is no longer necessary for the performance or initiation of a contract.
13. Statutory or Contractual Requirements to Provide Personal Data
The provision of personal data is partly required by law (e.g. tax regulations) or may result from contractual requirements (e.g. information about contracting parties). It may be necessary for the conclusion of a contract that a data subject provides us with personal data which must subsequently be processed by us. Failure to provide such personal data would mean that the contract with the data subject could not be concluded. Before providing personal data, the data subject should contact one of our employees, who will clarify on a case-by-case basis whether the provision of personal data is required by law or contract, whether an obligation to provide it exists, and what the consequences of failing to do so would be.
14. Automated Decision-Making
We do not use automated decision-making or profiling.
15. Protection of Minors
Persons under the age of 18 should not transmit personal data to us without the consent of their parents or legal guardians. We do not request personal data from children and young people, we do not knowingly collect such data, and we do not pass it on to third parties.
16. Links to Third-Party Websites
Our website may contain links to websites of other providers. These websites are subject to the liability of their respective operators. Michaella Benvenisti has no influence over the current or future design, content, or compliance with data protection regulations of linked pages. The inclusion of external links does not imply that the provider endorses the content behind those links. Constant monitoring of external links is not reasonable without specific indication of legal violations. Upon becoming aware of any violations, such external links will be removed immediately.
17. Facebook
Michaella Benvenisti uses social plugins ("plugins") of the social network facebook.com, operated by Facebook Inc. ("Facebook"). The plugins are identified by a Facebook logo or the label "Facebook Social Plugin".
When a page of our website containing such a plugin is accessed, the browser establishes a direct connection with Facebook's servers. The content of the plugin is transmitted directly from Facebook to the browser and integrated into the page. Through this integration, Facebook receives the information that the corresponding page of our website has been visited. If a visitor has a Facebook account, Facebook may associate the visit with that account using cookies and JavaScript. Interactions with the plugins — such as clicking the "Like" button or posting a comment — are transmitted directly from the browser to Facebook and stored there. This can be prevented using appropriate browser plugins, though Facebook Social Plugins may then no longer function.
For the purpose, scope, and further processing of data collected by Facebook, as well as your rights and privacy settings, please refer to Facebook's privacy policy.
18. Encryption
This website uses HTTPS (TLS) encryption to protect the transmission of data between your browser and our server. The encryption certificate is provided via Let's Encrypt. This transport encryption protects communication from unauthorised access by third parties.
19. Infrastructure and Service Providers
19.1 Hosting
This website is hosted on a VPS (Virtual Private Server) provided by OVHcloud (OVH GmbH, St. Martin-Belleville, France), with the server located in Germany. All data processed via this website is stored on servers within Germany. OVHcloud's privacy policy can be found at: https://www.ovhcloud.com/en/personal-data-protection/
19.2 Content Management System
Contact form submissions and other content are stored using Directus, an open-source headless CMS installed on our own VPS server. No data is transmitted to third-party servers in connection with Directus — all data remains on our infrastructure hosted in Germany.
19.3 Email Delivery
For the sending of notification and confirmation emails (including contact form notifications), we use the service Resend (Resend Inc., San Francisco, USA). When a contact form is submitted, relevant personal data (name, email address, and message) is transmitted to Resend for the purpose of delivering the email notification. Resend's privacy policy can be found at: https://resend.com/legal/privacy-policy
Google Analytics Supplement
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses "cookies" — text files stored on your computer that enable analysis of your use of the website. The information generated by the cookie about your use of this website is generally transmitted to and stored on a Google server in the United States. Where IP anonymisation is activated on this website, your IP address is first shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide the website operator with other services relating to website and internet use. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.
You can prevent the storage of cookies by adjusting the settings in your browser software; however, please note that if you do so, you may not be able to use all functions of this website to their full extent. You can also prevent the collection of the data generated by the cookie and relating to your use of the website (including your IP address) by Google, as well as the processing of such data by Google, by downloading and installing the browser plugin available at: http://tools.google.com/dlpage/gaoptout
Please note that on this website, Google Analytics has been extended with the code gat._anonymizeIp(); to ensure anonymised collection of IP addresses (so-called IP masking).
reCAPTCHA
To protect your submissions via the contact form, we use the reCAPTCHA service provided by Google Inc. (Google). The query serves to distinguish whether input is made by a human or abusively by automated machine processing. The query includes the transmission of the IP address and any further data required by Google for the reCAPTCHA service. Your input is transmitted to Google and further processed there. Your IP address is shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before storage. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of reCAPTCHA is not merged with other Google data. Google's separate privacy policy applies to this data. Further information on Google's privacy policy can be found at: https://policies.google.com/privacy