Data protection
Privacy Policy
Name and address of the responsible party:
The controller within the meaning of the EU General Data Protection Regulation and other data protection regulations is:
Smart Heal
Black Corner 37
03096 Burg
DE +49 35603 765601
https://www.smartheal.de
We respect your data!
We appreciate your interest in our website. The trust of all visitors and customers, the security of your data, and the protection of your privacy are of paramount importance to us. Therefore, we process your personal data in accordance with applicable data protection regulations and this privacy policy. Personal data is information that can be used to identify you, such as your real name, address, or telephone number.
When you view and use our website without registering or otherwise explicitly providing us with information, we process the data transmitted to us with each request from your browser (see "Log Data" below). If you explicitly provide us with personal data, this is done solely for the purpose of processing your inquiry or order. Please note that data transmission over the internet can never be completely protected against access by third parties.
Below, we would like to explain in more detail which data we process, when, and for what purpose. We will explain how our services work and how the protection of your personal data is ensured.
Legal basis for the processing of personal data
If we obtain the consent of the data subject for processing personal data, Article 6(1)(a) GDPR serves as the legal basis.
For the processing of personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations necessary for carrying out pre-contractual measures.
If the processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) GDPR serves as the legal basis.
In the event that the processing of personal data is necessary to protect the vital interests of the data subject or of another natural person, Article 6(1)(d) GDPR serves as the legal basis.
If processing is necessary for the purposes of the legitimate interests pursued by our company or a third party, and the interests or fundamental rights and freedoms of the data subject do not override those interests, then Article 6(1)(f) GDPR serves as the legal basis for the data processing.
Data deletion and storage period
The personal data of the data subject will be erased as soon as the purpose for which it was stored no longer applies. Data may be stored beyond this point if required by European or national laws or other regulations to which the controller is subject. Data will also be blocked or erased when a storage period prescribed by the aforementioned regulations expires, unless further storage of the data is necessary for the conclusion or performance of a contract.
Your rights
You have the right to receive information free of charge about the data we have stored about you, as well as, where applicable, the right to rectification, restriction of processing, or erasure of this data. You also have the right to data portability. Finally, you have the right to lodge a complaint with the data protection supervisory authority regarding our processing of your personal data.
We would also like to inform you that you can object to the future processing of your personal data at any time in accordance with the legal requirements pursuant to Article 21 of the GDPR. This objection can be made, in particular, against processing for direct marketing purposes.
Providing information
For questions regarding the collection, processing or use of your personal data, for information, for the correction, blocking or deletion of data, as well as for the revocation of any consent given or to object to a specific use of data, please contact us using the following email address:
support@smartheal.de
Log data
The automatic collection and storage of log data by the internet service provider (ISP) occurs because processing this data is technically necessary to display our website to you and to ensure its stability and security. The log data includes the following information:
· Date and time of the respective request
· Internet address (URL) that was requested
· URL that the visitor visited immediately before
· Browser and language used
· Operating system used and its interface
· Visitor's IP address and hostname
· Access status / HTTP status code
· Each data volume transferred
The transmission of this data to us is automatic and cannot be linked to you personally without disproportionate effort. The legal basis for processing this data is our legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, as this data processing is necessary for the operation and display of the website. The data is deleted as soon as it is no longer required for the purpose for which it was collected. In the case of data collection for the provision of the website, this is the case when the respective session has ended. The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, there is no possibility for the user to object.
Cookies
To make your visit to our website more attractive and to enable the use of certain functions, we use cookies. These are small text files that are stored on your device and contain certain information for exchange with our system. The legal basis for processing this data is Article 6(1)(f) GDPR. Some of the cookies we use are deleted after the end of your browser session, i.e., after you close your browser (transient cookies). These include, in particular, session cookies. These store a unique identifier (session ID). This session ID allows different requests from your browser to be associated with a single session. This allows your device to be recognized when you return to our website during a session. Session cookies are also deleted when you log out.
Other cookies remain on your device for a specified period and allow us to recognize your browser or device on your next visit (persistent cookies).
Please note that certain cookies are already set as soon as you enter our website. You can configure your browser to notify you when cookies are set and decide individually whether to accept them, or to block cookies in certain cases, particularly third-party cookies, or to block them altogether. If you do not accept cookies, the functionality of our website may be limited for you.
Configuring cookie settings in the browser
You have the option to prevent cookies from being stored on your computer by adjusting your browser settings. Each browser differs in how it manages cookie settings. This is described in the help menu of each browser, which explains how to change your cookie settings. You can find this information for the respective browsers at the following links:
Internet Explorer™:http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
Safari™:
https://support.apple.com/de-de/guide/safari/ibrw850f6c51/18.0/mac/15.0
Chrome™:http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
Firefox™https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Opera™:http://help.opera.com/Windows/10.20/de/cookies.html
Encryption via SSL
For security reasons, our website uses SSL encryption (Secure Sockets Layer). This protects transmitted data and prevents it from being read by third parties. You can recognize successful encryption by the fact that the protocol designation in the browser's status bar changes from "http://" to "https://" and a closed padlock symbol is visible there.
united domains GmbH
Web hosting united domains
We use the services of united domains GmbH, Gautinger Straße 10, D-82319 Starnberg for web hosting for our websites and have concluded a data processing agreement with united domains GmbH in accordance with Art. 28 GDPR.
Further information can be found in the privacy policy of united domains GmbH athttps://www.united-domains.de/unternehmen/datenschutz/
Legal basis
The legal basis for processing this data is our legitimate interest in operating and maintaining the operational security of these websites in accordance with Art. 6 paragraph 1 lit. f GDPR.
zoom
As part of our services, we use the services of Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA, represented by Lionheart Squared, 2 Pembroke House, Upper Pembroke Street 28-32, Dublin, DO2 EK84, Republic of Ireland for online meetings, webinars and video conferences.
Zoom is a product of Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA.
Please note that there is a possibility that data may be transferred to the USA and processed by US authorities.
Zoom Video is not certified under the EU-US Data Privacy Framework.
We have concluded a Data Processing Agreement with Zoom Video in accordance with a contract for commissioned data processing pursuant to Art. 28 GDPR.
Zoom has committed to complying with the Standard Contractual Clauses (SCC) for the transfer of personal data to third countries in accordance with Directive 2016/679.
Further information on the standard contractual clauses can be found at
https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_deas underhttps://blog.zoom.us/de/sicherheit-und-datenschutz-bei-zoom-unsere-antworten-auf-ihre-fragen/.
Further information can be found in Zoom's privacy policy.https://zoom.us/de-de/privacy.html, as well as underhttps://zoom.us/de-de/gdpr.
Legal basis
The legal basis for this processing of data is your consent pursuant to Art. 6 para. 1 lit. a GDPR as well as your explicit consent pursuant to Art. 49 para. 1 lit. a GDPR.
Advertising
Facebook Pixel and Facebook Custom Audiences
Our website uses Facebook conversion tracking, also known as the "Facebook Pixel" (Meta Pixel), from the social network Facebook for the purpose of analyzing and optimizing our website. The provider of this service is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If you are located in the EU, the service provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter "Facebook").
By using the Facebook pixel, Facebook can identify and define visitors to our website as a potential target audience for displaying advertisements (so-called "Facebook Ads"). We use the Facebook pixel to ensure that our Facebook Ads are only shown to Facebook users who have demonstrated an interest in our website or who exhibit certain characteristics (interests determined based on visited websites, etc.). We transmit this information to Facebook, thereby creating so-called "Custom Audiences." Our primary goal with the Facebook pixel is to ensure that our Facebook Ads align with the potential interests of our visitors and are not perceived as intrusive. Furthermore, the Facebook pixel allows us to statistically track the effectiveness of our Facebook Ads for market research purposes. We analyze whether visitors are redirected to our website after clicking on a Facebook Ad, i.e., whether a "conversion" occurs.
Meta Platforms Ireland Limited processes the data in the EU.
To protect your personal data, we have concluded a Data Processing Agreement with Meta Platforms Ireland Limited in accordance with Article 28 GDPR.
It cannot be ruled out that data may also be processed in the USA. However, the parent company, Meta Platforms Inc., which is based in the USA, is certified under the EU-US Data Privacy Framework.
Data transfers to the USA are therefore currently considered sufficiently secure.
General information on how Facebook processes data can be found here.https://www.facebook.com/policy.php.
Further information and details about the Facebook pixel can be found here:
www.facebook.com/business/help/742478679120153
You can object to the collection of data by the Facebook pixel and the use of your data for displaying Facebook ads. To adjust which types of ads are displayed to you on Facebook, you can visit the page provided by Facebook and follow the instructions for managing your ad preferences.https://www.facebook.com/settings?tab=adsThe settings are platform-independent, meaning they apply to all devices such as desktop computers or mobile devices.
Legal basis
The legal basis for this processing of data is your consent pursuant to Art. 6 para. 1 lit. a GDPR as well as your explicit consent pursuant to Art. 49 para. 1 lit. a GDPR.
System and information security
We protect our website and other systems through technical and organizational measures against loss, destruction, access, alteration, or distribution of stored data by unauthorized persons. Despite these measures, complete protection against all risks is not possible. Due to the inherent nature of internet connectivity and the resulting technical possibilities, we cannot guarantee that content and information flow will not be viewed and recorded by third parties.
Objection to unsolicited advertising via email
In accordance with our legal obligation to provide contact information pursuant to Section 5 of the German Telemedia Act (TMG), we have published general contact details and an email address on our website. We hereby object to the use of these contact details for the unsolicited sending of informational materials, advertising, or spam emails that we have not explicitly requested.
Privacy policy as of March 2025