Privacy Policy

This is a convenience translation of our German privacy information (Datenschutzinformation, version dated 10 June 2026). In case of discrepancies, the German version prevails.

Version: 10 June 2026

With this information, the controller named in section 1 (“we”) informs the user of this website (“you” or “user”) pursuant to Art. 13 and 14 of the General Data Protection Regulation (GDPR) about the collection and processing of personal data. We also inform you when we store information on the terminal device you use to access our website, or when we access information already stored on your terminal device.

For the use of third-party websites, e.g. referred to via links, the privacy information provided there applies.

  1. General Information
  2. Controller and Data Protection Officer

1.1 The controller responsible for data processing on this website is: Anja Kasper, Straße im Walde 65, 12555 Berlin, Germany, info@anja-kasper.de

1.2 We are not required to appoint a data protection officer.

1.3 Our website is hosted by ALL-INKL.COM (www.all-inkl.com), i.e. it is technically provided on web servers of this hosting provider.

  1. Data Subject Rights

Where we collect personal data from you, you have the following rights as a “data subject”:

2.1 Right of access: You may request information pursuant to Art. 15 GDPR about the personal data concerning you that we process.

2.2 Right to object: You have a right to object on grounds relating to your particular situation pursuant to Art. 21(1) GDPR. We inform you about this separately from this information under section “B”.

2.3 Right to rectification: If the information concerning you is not (or no longer) accurate, you may request rectification pursuant to Art. 16 GDPR. If your data is incomplete, you may request that it be completed.

2.4 Right to erasure: You may request the erasure of your personal data under the conditions of Art. 17 GDPR.

2.5 Right to restriction of processing: In the cases specified in Art. 18 GDPR, you have the right to request that the processing of your personal data be restricted (“blocking”).

2.6 Right to lodge a complaint: If you believe that the processing of your personal data violates data protection law, you have the right pursuant to Art. 77(1) GDPR to lodge a complaint with a data protection supervisory authority of your choice.

2.7 Right to data portability: In the event that you have provided us with personal data pursuant to Art. 20(1) GDPR, you have the right to receive the data that we process automatically on the basis of your consent or in performance of a contract, in a structured, commonly used and machine-readable format, for yourself or for transmission to third parties. The collection of data for the provision of the website and the storage of log files (section 3.1 below) are strictly necessary for the operation of the website. They are therefore not based on consent pursuant to Art. 6(1)(a) GDPR or on a contract pursuant to Art. 6(1)(b) GDPR, but are justified under Art. 6(1)(f) GDPR. The conditions of Art. 20(1) GDPR are therefore not met in this respect.

  1. Procedure: Provision of the Website and Creation of Log Files

3.1 Which data is processed for which purpose?

Each time content on this website is accessed, the web server of our hosting provider, on which our website is stored, temporarily collects and stores information (data) from the internet browser of the accessing computer or terminal device of the user. This data may make it possible to identify the user and therefore constitutes personal data.

3.1.1 The following data is collected and stored by our hosting provider: the user’s IP address; date and time of access to the website; the protocol, e.g. HTTP; the request method (“GET” or “POST”); the content of the request or details of the retrieved file transmitted to the user; the access status (successful transmission, error, etc.); the amount of data transferred in bytes; incoming and outgoing data traffic (“traffic”); a process identification number (“process ID”); the time taken by the web server to respond to the user’s request; the website from which the user’s access originated; the browser used by the user, the operating system, the interface, the browser language and the version of the browser software.

3.1.2 The temporary storage of this user data is necessary for the course of a website visit in order to enable delivery of the website. For this purpose, the user’s IP address must necessarily remain stored for the duration of the session (i.e. the website visit).

3.1.3 Beyond this purpose, the IP address together with the data listed above is further stored in log files. This is done so that our hosting provider can ensure the functionality of the website and the security of the IT systems.

3.2 On which legal basis is this data processed?

The data referred to in section 3.1 is collected and processed by our hosting provider for the aforementioned temporary storage purpose and also for the further storage purpose pursuant to Art. 6(1)(f) GDPR. The legitimate interest in the data processing lies in this purpose. This legitimate interest is that of our hosting provider, but also our own legitimate interest in a functioning website.

3.3 Are there recipients of the aforementioned data other than the controller?

Our hosting provider, as our processor, has technical access to the data referred to in section 3.1.

3.4 How long is the data stored?

The data referred to in 3.1.1 is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the provision of the website, this is when the respective session has ended. The log files are retained for a maximum of 30 days, unless a security incident requires longer retention.

3.5 Is there an obligation to provide the data?

You must provide the data referred to in 3.1 to our hosting provider. Otherwise, you cannot technically use our website and our hosting provider cannot ensure secure technical operation.

  1. Data Processing Procedures

4.1 Processing of data and information requiring consent

Where we may collect and process personal data only with your consent, we provide the relevant information in our consent banner in the context of the consent dialogue.

4.2 Use of e-mail address and contact form data based on legitimate interests

4.2.1 Which data is processed for which purpose? Where we provide you with an e-mail address and a contact form with input fields, this serves the purpose of enabling you to get in touch with us. If you transmit personal data to us, we store it and process it for the purpose of handling the contact.

4.2.2 On which legal basis is this data processed? The data referred to in 4.2.1 is processed on the basis of Art. 6(1)(f) GDPR (legitimate interest of us as the controller). If your enquiry is aimed at concluding a contract, Art. 6(1)(b) GDPR constitutes an additional legal basis (initiation, conclusion and performance of a contract).

4.2.3 Are there recipients of the aforementioned data other than the controller? Our hosting provider, as our processor, has technical access to the data referred to in 4.2.1.

4.2.4 How long is the data stored? The data referred to in 4.2.1 is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent to us by e-mail or via the contact form, this is the case when the respective correspondence with the user has ended and storage is not required for other reasons. The conversation has ended when it can be inferred from the circumstances that the matter in question has been conclusively resolved.

4.2.5 Is there an obligation to provide the data? You are not obliged to provide us with the data referred to in 4.2.1. You are not required to communicate with us.

  1. Processing of Information from Your Terminal Devices

5.1 Where we intend to store information on the terminal device you use when visiting our website and/or to access information already stored on your terminal device, we ask for your consent on the basis of clear and comprehensive information. This is done via a consent banner used by us. Where consent is required, we obtain it before accessing your device. You may revoke your consent at any time. For certain purposes specified by law, however, your consent is not required, and in these cases we do not ask for it. On the one hand, consent is not required if the sole purpose of storing information on the end user’s terminal device, or the sole purpose of accessing information already stored on the end user’s terminal device, is to carry out the transmission of a communication over a public telecommunications network. On the other hand, consent to the use of your terminal device is not required if the storage of information on the end user’s terminal device, or access to information already stored on the end user’s terminal device, is strictly necessary for us, as provider of a telemedia service, to provide a telemedia service expressly requested by the user.

5.2 Such access to terminal devices is possible via certain technologies. The best-known technology is cookies. Cookies are objects that can be stored in the internet browser or by the internet browser on the user’s terminal device. When a user accesses a website, the server of the website operator or a third party can read the cookie stored there via the user’s operating system and consequently the information stored in it. A cookie may, but need not, contain a characteristic string of characters that enables the browser to be uniquely identified when the website is accessed again.

5.3 Removal options: The user can prevent or restrict the installation of cookies by adjusting the settings of their browser. Cookies that have already been stored can also be deleted by the user at any time via their browser. The relevant settings depend on the respective browser. If the user prevents or restricts the installation of cookies, this may mean that not all functions of the website can be used to their full extent. What applies to cookies also applies to other technologies that make use of the user’s terminal device.

5.4 Cookies and similar technologies requiring consent: Our consent banner on the website provides information about cookies and similar technologies requiring consent. This currently concerns Google Analytics for the evaluation of Google Ads. See section 8 for details.

5.5 Cookies and similar technologies not requiring consent: For cookies and similar technologies not requiring consent, we have documented internally that consent is not required pursuant to Section 25(2) of the German Telecommunications-Telemedia Data Protection Act (TTDSG).

  1. Consent Banner

6.1 In order to obtain legally required consent from you for certain services or functions, or to observe your revocation of such consent, a consent banner is displayed to you. Your consent or non-consent relates to our use of your terminal device (computer, laptop, smartphone, tablet) through cookies or similar technologies, by which information can be stored on or read from your terminal device. Your consent may also be required for the processing of personal data by us or third parties pursuant to Art. 6(1) sentence 1(a) GDPR in connection with your use of our website. In certain cases, the law permits us to use your terminal device without consent and/or to subsequently process your personal data without your consent.

6.2 Via the consent banner, we provide information about all services and functions requiring your consent before we deploy the service or function. The consent banner consists of an overview of all processing operations requiring consent, with details for each so that you as a user can assess the meaning and scope of your consent. You can consent to each operation via a button/click area by activating it, or reject the operation by deactivating it. There are three decision options:

Choosing “Auswahl treffen und speichern” (Make selection and save) means that the user’s decision is saved as made via the buttons/click areas. All consent-based services and functions to which the user has consented are active and can be used. Services and functions that cannot be used without consent are not embedded on the website.

Choosing “Alles ablehnen und speichern” (Reject all and save) means that this decision is not saved. The user’s decision is thus not to consent to anything requiring consent, with the consequence that all consent-based services and functions will not work for this user. The banner is hidden.

Choosing “Alles akzeptieren und speichern” (Accept all and save) means that all consent-based services and functions are activated. This means that you have given consent under the GDPR and also consent to the use of your terminal device. The banner is then hidden.

In the course of further use of the website, the user can actively bring up the consent banner again in order to revoke consent given or to grant consent not initially given. To do so, the user clicks the link “Zustimmungs-Einstellungen” (consent settings). The consent banner appears again.

Your consent can thus be revoked at any time with effect for the future. A later revocation does not affect the lawfulness of the access or storage of information carried out up to the point of revocation.

6.3 All three of the user’s decision options (“Auswahl treffen und speichern”, “Alles ablehnen und speichern” or “Alles akzeptieren und speichern”) are stored via the browser of the user’s terminal device in what is known as “local storage” on the user’s terminal device. Storage there is permanent. The information is stored in the object “wbkConsent”. This technology is not a cookie in the strict sense. The information in “wbkConsent” also contains no personal reference, i.e. the user is not recognised when they access the website again. The consent decision is not stored on our server. This use of the user’s terminal device does not require consent pursuant to Section 25(2) no. 2 TTDSG (user request).

  1. Technical Measures

7.1 SSL/TLS: For security reasons and to protect the transmission of confidential content, for example enquiries you send to us as site operator, our website uses active SSL or TLS encryption. An encrypted connection can be recognised by the browser address bar changing from “http://” to “https://” and by a padlock symbol in the browser bar. As a result of this encryption, data you transmit to us cannot be read by third parties.

7.2 End-to-end communication: If you contact us via an e-mail address provided on our website, the transport of the e-mail content to us is not end-to-end encrypted. This means that although e-mails are generally encrypted in transit between the e-mail providers involved, they are stored unencrypted on their servers. Contacting us via the contact form provided is therefore, technically, a secure form of communication.

7.3 Video embedding: Where you can watch videos on our website that are marked as external links to third-party websites, this is done exclusively via the technique of linking to the respective referenced website or to a third-party video portal. The videos are stored there under the data protection responsibility of the respective third-party provider. The referenced website or video portal is therefore not directly embedded in our website. This ensures that no user information is transmitted to the portal merely by loading the page on which the video is integrated. It also ensures that the mere link cannot be used to place cookies or similar technologies for tracking user activity by the portals or their advertising partners on your terminal device. Only after you deliberately click on the video preview image is a connection to the third-party portal established and the associated data processing triggered. This, and the resulting possible processing of your user data on the linked portal, then occurs solely because of your wish to watch the video there. The data processing triggered as a result is outside our sphere of influence and is the responsibility of these third-party providers, who provide more or less detailed information about their data processing. If you do not agree to the data processing by the third-party provider, please do not click on the video preview image.

  1. Procedure: Google Ads with Conversion Measurement and Google Analytics

8.1 Which data is processed for which purpose? We use Google Ads, an online advertising service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), as well as Google Analytics for the evaluation of our Google Ads campaigns. If you have given your consent via our consent banner, cookies or similar technologies are used on your terminal device. In particular, the following data may be processed: online identifiers (e.g. cookie IDs), IP address, information about the browser and terminal device used, pages of our website visited, date and time of the visit, and so-called conversion events (e.g. submitting the contact form after clicking on one of our ads). The purpose of the processing is to measure the effectiveness of our advertisements (conversion tracking) and to statistically evaluate the use of our website in order to optimise our advertising campaigns. Without your consent, these services are not loaded.

8.2 On which legal basis is this data processed? The processing takes place exclusively on the basis of your consent pursuant to Art. 6(1)(a) GDPR; the storage of information on your terminal device or access to it takes place on the basis of your consent pursuant to Section 25(1) TTDSG. You may revoke your consent at any time with effect for the future via the link “Zustimmungs-Einstellungen” (consent settings) (see section 6).

8.3 Are there recipients of the aforementioned data other than the controller? The recipient of the data is Google Ireland Limited. Data may also be transferred to servers of Google LLC in the USA. Google LLC is certified under the EU-U.S. Data Privacy Framework; in addition, standard contractual clauses of the EU Commission are in place. Further information on data processing by Google can be found at: https://policies.google.com/privacy

8.4 How long is the data stored? The storage period depends on the lifetimes of the cookies used (conversion cookies from Google Ads generally expire after 90 days). Event and user data collected in Google Analytics is deleted after 14 months.

8.5 Is there an obligation to provide the data? No. Our website can be used without restriction without your consent to these services.

  1. Procedure: Integration of ProvenExpert (Rating Seal and Rating Widgets)

9.1 Which data is processed for which purpose? On our website, we embed rating seals and rating widgets of the ProvenExpert service. The provider is Expert Systems AG, Quedlinburger Str. 1, 10589 Berlin, Germany (“ProvenExpert”). When our website is accessed, a connection to ProvenExpert’s servers is established in order to load the current rating content (e.g. average rating, seal). In the process, technically necessary data is transmitted to ProvenExpert, in particular the user’s IP address, date and time of access, and information about the browser and terminal device used. The purpose of the integration is the transparent presentation of customer reviews of our services.

9.2 On which legal basis is this data processed? The integration takes place on the basis of Art. 6(1)(f) GDPR. Our legitimate interest lies in the transparent presentation of customer reviews and a trustworthy external presentation of our services.

9.3 Are there recipients of the aforementioned data other than the controller? ProvenExpert receives the data referred to in 9.1. Further information on data processing by ProvenExpert can be found in its privacy policy: https://www.provenexpert.com/en-us/privacy-policy/

9.4 How long is the data stored? The specific storage period of the data processed by ProvenExpert is determined by ProvenExpert and cannot be influenced by us. Please refer to ProvenExpert’s privacy policy for details.

9.5 Is there an obligation to provide the data? No.

  1. External Links and Partner Logos

On our website, we refer to external third-party websites via links – in some cases in the form of logos or seals, e.g. the logo of the agency “Freie Redner” (freieredner.com). The logos and graphics used for this purpose are stored on our own web server; therefore, no data is transmitted to the linked providers merely by accessing our website. Only when you click on such a link do you leave our website, and the privacy information of the respective provider applies (see also the note at the beginning of this privacy information).

  1. Special Information

Special right to object pursuant to Art. 21(1) GDPR

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data carried out on the basis of Art. 6(1)(f) GDPR (processing for the purposes of legitimate interests pursued by us or by a third party), pursuant to Art. 21(1) GDPR. You may address your objection to the address given in section 1.1.

We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves the establishment, exercise or defence of legal claims.

In the event of your objection, you must explain your interests (your “particular situation”) to us in detail so that we can carry out a new balancing of interests. If our interests in continued storage do not prevail, the personal data stored in the course of the contact will be deleted. If they continue to prevail, we will continue the data processing.