Privacy Policy
I. Information on the processing of your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR)
1. Controller and Data Protection Officer
The controller responsible for this website is
- Aúpa Che Denegris & Cavallero GbR
Sebastián Pablo Denegris
Andrés Guillermo Cavallero
Maybachufer 6
12047 Berlin
You can contact the Data Protection Officer via email at
2. Data processed for the provision of the website and creation of log files
a. What data is processed for what purpose?
Each time content is accessed on the website, data that may allow identification is temporarily stored. The following data is collected:
- Date and time of access
- IP address
- Hostname of the accessing computer
- Website from which the website was accessed
- Websites accessed via this website
- Page visited on our website
- Message whether the retrieval was successful
- Data volume transmitted
- Information about the browser type and version used
- Operating system
The temporary storage of this data is necessary for the visit to the website to proceed and for the website to be delivered. Additional storage in log files is used to ensure the functionality and security of the website. This is also our legitimate interest in data processing.
b. On what legal basis is this data processed?
The data is processed on the basis of Art. 6(1)(f) GDPR.
c. [If applicable] Are there other recipients of the personal data besides the controller?
The website is hosted by [Name, postal address, email address of the hosting provider]. The hosting provider receives the above data as a processor.
d. How long is the data stored?
The data is deleted as soon as it is no longer needed for the purpose it was collected for. In the case of providing the website, this is when the session ends. Log files are stored [for up to 24 hours] and are only accessible to administrators. Afterwards, they are only available indirectly through backup tapes and are finally deleted after [maximum four weeks].
3. Data Subject Rights
a. Right of access
You can request information under Art. 15 GDPR about your personal data that we process.
b. Right to object
You have the right to object for special reasons (see Section II below).
c. Right to rectification
If your personal data is inaccurate or incomplete, you can request its rectification or completion under Art. 16 GDPR.
d. Right to erasure
You can request the erasure of your personal data under Art. 17 GDPR.
e. Right to restriction of processing
Under Art. 18 GDPR, you have the right to request the restriction of processing of your personal data.
f. Right to lodge a complaint
If you believe the processing of your personal data violates data protection laws, you have the right under Art. 77(1) GDPR to lodge a complaint with a supervisory authority of your choice. This includes the authority responsible for the controller: State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, https://www.ldi.nrw.de/kontakt/ihre-beschwerde.
g. Right to data portability
If the conditions of Art. 20(1) GDPR are met, you have the right to receive data that we process automatically based on your consent or a contract, or to have it transmitted to another controller. However, data collected for providing the website and stored in log files is necessary for website operation and not based on consent or contract, but justified by Art. 6(1)(f) GDPR. Therefore, Art. 20(1) GDPR does not apply in this case.
II. Right to Object under Art. 21(1) GDPR
You have the right to object at any time, for reasons arising from your particular situation, to the processing of your personal data based on Art. 6(1)(f) GDPR. The controller will no longer process your personal data unless they can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims. The collection of data to provide the website and store log files is essential for the operation of the website.