top of page

Data protection

Name and address of the controller: The controller within the meaning of the EU General Data Protection Regulation and other data protection regulations is:

 

Theresa Mietusch

I 7, 1
68159 Mannheim

E-Mail: hello@theresamietusch.com
Website: https://www.theresamietusch.com

We respect your data!

We appreciate your interest in our website. The trust of all visitors and customers, the security of your data, and the protection of your privacy are of central importance to us. We therefore treat your personal data in accordance with applicable data protection regulations and this privacy policy. Personal data is information that can be used to determine your identity, such as your real name, address, or telephone number.

If you view and use our site without registering or otherwise explicitly providing us with information, we process the data transmitted to us with each request from your browser (see "Protocol Data" below). If you explicitly provide us with personal data, this will only be used for the purpose of the request or the respective order. Please note that data transmission over the internet can never be completely protected against access by third parties.

Below, we would like to explain in more detail which data we process, when, and for what purpose. We explain how our services work and how the protection of your personal data is ensured.

 

Legal basis for the processing of personal data

If we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) (a) GDPR serves as the legal basis.
For the processing of personal data necessary to fulfill a contract to which the data subject is a party, Art. 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations necessary to implement pre-contractual measures.
If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 (1) (c) GDPR serves as the legal basis.
In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) (d) GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for data processing.

 

Data deletion and storage period

The personal data of the data subject will be deleted as soon as the purpose for which it was stored no longer applies. Storage may also occur if this is provided for by European or national laws or other regulations to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need to continue storing the data for the conclusion or fulfillment of a contract.

 

Your rights

You have the right to free information about the personal data we have stored about you, as well as, if applicable, the right to rectification, restriction of processing, or erasure of this data. You also have the right to data portability. Finally, you have the right to complain to the data protection supervisory authority about our processing of your personal data.

We would also like to point out that you can object to the future processing of your personal data at any time in accordance with the legal requirements pursuant to Art. 21 GDPR. In particular, you can object to processing for direct marketing purposes.

Providing information

If you have any questions about the collection, processing or use of your personal data, for information, for the correction, blocking or deletion of data, as well as for the revocation of any consent given or to object to a specific use of data, please contact us using the following email adress:

hello@theresamietusch.com

Protocol data

The automatic collection and storage of log data by the Internet service provider (ISP) occurs because the processing of this data is technically necessary to display our website to you and to ensure stability and security. The log data includes the following information:

  • Date and time of the respective request

  • Internet address (URL) requested

  • URL visited by the visitor immediately before

  • Browser and language used

  • Operating system and its interface used

  • IP address and hostname of the visitor

  • Access status / HTTP status code

  • Amount of data transferred in each case
     

This data is transmitted to us automatically and cannot be assigned to you personally without reasonable effort. The legal basis for processing this data is our legitimate interest pursuant to Art. 6 Paragraph 1 Sentence 1 Letter f GDPR, because this data processing is necessary for the operation and display of the website. The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. If the data is collected to provide the website, this is the case when the respective session has ended. The collection of data to provide the website and the storage of the data in log files is essential for the operation of the website. Consequently, the user has no option to object.

 

Cookies

To make visiting our website more attractive and to enable the use of certain functions, we use so-called cookies. These are small text files that are stored on your device and that store certain information for exchange with our system. The legal basis for processing this data is Art. 6 (1) (f) GDPR. Some of the cookies we use are deleted after the end of the browser session, i.e., after closing the browser (transient cookies). These include, in particular, session cookies. These store a unique identifier (session ID). This session ID allows various requests from your browser to be assigned to a common session. This allows your device to be recognized when you return to our website during a session. Session cookies are also deleted when you log out.
Other cookies remain on your device for a specified period of time and enable us to recognize your browser or device the next time you visit (persistent cookies).
Please note that certain cookies are already set as soon as you enter our website. You can set your browser to inform you about the use of cookies and decide whether to accept them individually, or to reject cookies for specific cases, particularly third-party cookies, or to generally reject them. If you do not accept cookies, the functionality of our website may be limited.

 

Configuring cookie settings in the browser

You have the option to prevent cookies from being saved on your computer by adjusting your browser settings accordingly. Each browser differs in how it manages cookie settings. This is described in the help menu of each browser, which explains how to change your cookie settings. You can find these settings for each browser at the following links:

Internet Explorer™: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies  

Safari™:
https://support.apple.com/de-de/guide/safari/ibrw850f6c51/18.0/mac/15.0

Chrome™: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647

Firefox™ https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen

Opera™: http://help.opera.com/Windows/10.20/de/cookies.html

 

Encryption through SSL

For security reasons, our website uses SSL (Secure Sockets Layer) encryption. This protects transmitted data and prevents third parties from reading it. You can tell that encryption has been successfully completed by the fact that the protocol name in your browser's status bar changes from "http://" to "https://" and that a closed lock symbol appears.

Webhosting via IONOS SE and WIX

IONOS

We use the services of IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, for web hosting for our websites and have concluded a data processing agreement with IONOS SE in accordance with Art. 28 GDPR. Further information can be found in the IONOS SE privacy policy at https://www.ionos.de/terms-gtc/terms-privacy. Legal basis The legal basis for processing this data is our legitimate interest in operating and maintaining the operational security of these websites in accordance with Art. 6 (1) (f) GDPR.

WIX

We host our website with Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel (hereinafter: "WIX"). WIX is a tool for creating and hosting websites. When you visit our website, WIX analyzes user behavior, visitor sources, the region of website visitors, and visitor numbers. WIX stores cookies on your browser that are required to display the website and to ensure security (necessary cookies). The data is stored on WIX servers in Israel. Israel is considered a third country with secure data protection laws. This means that Israel has a level of data protection equivalent to that in the European Union. For details, see WIX's privacy policy: https://de.wix.com/about/privacy. The use of WIX is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in presenting our website as reliably as possible. If consent has been requested, processing will be carried out exclusively on the basis of Art. 6 (1) (a) GDPR; consent can be revoked at any time. Bookings via Wix For appointment and course bookings, we use the booking system "Wix Bookings," a service provided by Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel. When you make a booking through our website, the data you enter (e.g., name, contact details, booking details) will be processed on Wix's servers. For more information, please see Wix's privacy policy: https://de.wix.com/about/privacy


Sending our email newsletter via “WIX”

The information provided in this section explains how our email newsletter is structured, how it is sent, how it is analyzed, and the content of it.
If you would like to subscribe to our email newsletter and read it regularly, you must register with a valid email address and thus consent to us processing your personal data. Please note the declaration of consent on the newsletter registration form.
Before we send you the newsletter, you must expressly confirm, as part of the so-called double opt-in process, that we should activate the email newsletter service for you. We do this to prevent third-party email addresses from being used for registrations. You will receive a confirmation and authorization email from us asking you to click on the link contained in this email and thereby confirm that you wish to receive our newsletter. If you do not confirm, your personal data will be automatically deleted after 14 days.
In connection with the registration, in addition to the email address, the time of registration, the time of confirmation, the IP address, and the consent text are saved. We use the email address exclusively for delivering the newsletter unless you have expressly consented to other uses.

This data is stored on WIX servers.

Further information can be found at: https://de.wix.com/about/privacy.​

Legal basis
The newsletter is sent based on the recipient's consent in accordance with Art. 6 (1) (a) GDPR.

The analysis of open and click rates is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Our interest is to create the most suitable offers for our users and to achieve this by analyzing user behavior and continuously optimizing it.

Zoom

As part of our offering, we use the services of Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA, represented by Lionheart Squared, 2 Pembroke House, Upper Pembroke Street 28-32, Dublin, DO2 EK84, Republic of Ireland, for online meetings, webinars, and video conferences.
Zoom is a product of Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA.
We would like to point out that data may be transferred to the USA and processed by US authorities.
Zoom Video is not certified under the EU-US Data Privacy Framework.

We have concluded a Data Processing Agreement with Zoom Video in accordance with a contract for order processing pursuant to Art. 28 GDPR.

Zoom has committed to complying with the Standard Contractual Clauses (SCC) for the transfer of personal data to third countries pursuant to Directive 2016/679.

Further information on the Standard Contractual Clauses can be found at
https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de and at https://blog.zoom.us/de/sicherheit-und-datenschutz-bei-zoom-unsere-antworten-auf-ihre-fragen/ .

Further information can be found in Zoom's privacy policy at https://zoom.us/de-de/privacy.html and at https://zoom.us/de-de/gdpr.

Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) (a) GDPR and your express consent pursuant to Art. 49 (1) (a) GDPR.

YouTube

Our website uses YouTube features. When you visit our site, a connection is established to YouTube's servers. This information is transmitted to the YouTube server about which of our pages you have visited. If you are logged into your YouTube account, you give YouTube the opportunity to directly associate your user behavior with your personal YouTube profile. You can prevent this by logging out of your YouTube account.
We have no knowledge of further processing or the duration of storage.
The service is operated by Google LLC, D/B/A YouTube, 901 Cherry Ave., San Bruno, CA 94066, USA.

We would like to point out that there is a possibility that data may be transferred to the USA and processed by US authorities.
However, Google LLC is certified according to the EU-US Data Privacy Framework.
Data transfer to the USA is therefore currently considered sufficiently secure.

We have concluded a data processing agreement with the provider in accordance with a contract for order processing pursuant to Art. 28 GDPR.

Further information on how YouTube handles user data can be found in YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy

Legal basis
The legal basis for this data processing is your consent in accordance with Art. 6 (1) (a) GDPR.

Stripe

To process the payment process for our sales offer, we use, among others, the services of Stripe Payments Europe, Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter "Stripe").

During the payment process, after clicking the "Order with payment" or "Buy now" button, your personal data will be forwarded to Stripe for further processing.

If the data subject selects a payment method during the ordering process in the online shop, the data subject's data will be automatically transmitted to Stripe. By selecting a payment option, the data subject consents to this transmission of personal data for the purpose of processing the payment.

The personal data transmitted to Stripe generally includes first name, last name, address, email address, IP address, and, if applicable, date of birth, telephone number, mobile phone number, and other data necessary for processing a payment.

Personal data related to the respective order is also necessary for processing the purchase contract. In particular, there may be a mutual exchange of payment information such as bank details, card number, expiration date, and CVC code, as well as data on goods and services prices.

The purpose of transmitting the data is, in particular, identity verification, payment administration, and fraud prevention. The controller will transmit personal data to Stripe, in particular if there is a legitimate interest in the transmission.

The personal data exchanged between Stripe and the controller may be transmitted by Stripe to credit reporting agencies. This transmission is for the purpose of identity and credit checks.

Stripe also transmits the personal data to service providers or subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed.

The data subject has the option of revoking their consent to the handling of personal data at any time. A revocation does not affect personal data that must be processed, used, or transmitted for contractual payment processing.

Stripe has committed to complying with the Standard Contractual Clauses (SCC) for the transfer of personal data to third countries pursuant to Directive 2016/679.

Further information on the Standard Contractual Clauses can be found at

https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de

Further information can be found at https://stripe.com/at/privacy.

Legal Basis
The legal basis for processing personal data during a booking or payment process is Article 6 (1) (b) GDPR.

System and information security

We protect our website and our other systems through technical and organizational measures against loss, destruction, access, alteration, or distribution of stored data by unauthorized persons. Despite these controls, complete protection against all threats is not possible. Due to the internet connection and the resulting technical possibilities, no guarantee can be given that content and the flow of information will not be viewed or recorded by third parties.

 

Objection to unauthorized advertising by email

In accordance with our legal obligation to provide a legal notice pursuant to Section 5 of the German Telemedia Act (TMG), we have published general contact information and an email address on our website. We hereby object to the use of this contact information for the unsolicited transmission of information materials, advertising, or spam emails that we have not explicitly requested.

Status of the privacy policy: 05/2025​

bottom of page