1. Scope of application
This privacy policy informs users about the nature, scope and purpose of the collection and use of personal data by the Church of God in Germany KdöR on this website: lifepointchurch.de/webs/impressum.html. The legal basis for data protection can be found in the EU General Data Protection Regulation (GDPR, Regulation (EU) 2016/679), the Federal Data Protection Act (BDSG), the Digital Services Act (DSA), the Telecommunications‑Digital Services Data Protection Act (TDDDG), as well as in the Data Protection Ordinance of the Church of God in Germany KdöR (short: DSO‑GeGo): gemeindegottes.de/datenschutzordnung.pdf.
2. An overview of data protection
General information
The following information provides an easy‑to‑navigate overview of what happens to your personal data when you visit this website. “Personal data” comprises all data that can be used to personally identify you. For detailed information, please read the full policy below.
Data recording on this website
Controller. The data on this website is processed by the operator of the website. Contact details are provided under Information about the controller.
How we record data. We collect data you provide to us (e.g., via contact forms). Other data is collected automatically by our IT systems when you visit the website (e.g., browser, operating system, access time); this occurs automatically upon access.
Purposes. Some information is collected to ensure error‑free provision of the website; other data may be used to analyze user behavior. If contracts can be concluded or initiated via the website, transmitted data will also be processed for contract offers, orders or other inquiries.
Your rights. You may request information about the origin, recipients and purposes of your stored personal data at any time free of charge. You have rights to rectification, erasure, restriction, portability, and to lodge a complaint. If you have given consent, you may withdraw it at any time with effect for the future. Please contact us with any questions.
3. Hosting
External hosting
This website is hosted externally. Personal data collected on this website is stored on the servers of the host; this may include IP addresses, contact requests, metadata and communications, contract information, names, page views, and other data generated via the website.
The external hosting serves to fulfill contracts with potential and existing contacts (§ 5 Abs. 2 lit. i DSO‑GeGo; cf. Art. 6(1)(b) GDPR) and to provide our online services securely, quickly, and efficiently via a professional provider (§ 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR). Where consent is required, processing is based on § 5 Abs. 2 lit. b DSO‑GeGo (cf. Art. 6(1)(a) GDPR) and § 25(1) TDDDG (e.g., for cookies/device access). Consent can be withdrawn at any time.
Host:
One.com Group AB
Stephan Wolfram, Carlsgatan 3, 211 20 Malmö, Sweden
We have concluded a Data Processing Agreement (DPA) with the provider.
4. General information and mandatory information
Information about the controller
Gemeinde Gottes LifePoint MünchenGuardinistr. 148, 81375 München, Germany
Phone: +49 (0) 176 341 38466
E‑mail: info@lifepointchurch.de
Storage duration
Unless a more specific storage period is specified, personal data will be retained until the purpose for processing no longer applies. If you request deletion or revoke consent, your data will be deleted unless legal retention obligations require otherwise.
General information on legal bases
Depending on context, we process personal data on the basis of consent (§ 5 Abs. 2 lit. b DSO‑GeGo; cf. Art. 6(1)(a) GDPR; § 8 Abs. 2 lit. a DSO‑GeGo; cf. Art. 9(2)(a) GDPR), contract (§ 5 Abs. 2 lit. i DSO‑GeGo; cf. Art. 6(1)(b) GDPR), legal obligation (§ 5 Abs. 2 lit. d DSO‑GeGo; cf. Art. 6(1)(c) GDPR), or legitimate interests (§ 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR). For transfers to third countries with explicit consent, § 33 Abs. 4 lit. a DSO‑GeGo (cf. Art. 49(1)(a) GDPR) applies. If device access is involved, § 25(1) TDDDG applies in addition. Details are provided in the relevant sections of this policy.
Data protection officer
Ralf Tumat, Wolfsklingenweg 15, 71364 Winnenden, GermanyPhone: +49 (0) 162 7511498
E‑mail: datenschutzbeauftragter@gemeindegottes.de
Recipients of personal data
We cooperate with external parties as part of our activities. We disclose personal data only where necessary to fulfill a contract, where legally required, where we have a legitimate interest, or where another lawful basis applies. With processors, we conclude processing agreements; in joint processing, we conclude joint controller arrangements.
Revocation of your consent
You may revoke consent at any time with future effect. The lawfulness of processing prior to revocation remains unaffected.
Right to object (Art. 21 GDPR; § 16 DSO‑GeGo)
If processing is based on legitimate interests, you have the right to object at any time on grounds relating to your particular situation, including profiling. We will then stop processing unless we demonstrate compelling legitimate grounds or the processing serves legal claims. If your personal data are processed for direct advertising, you may object at any time; the data will then no longer be used for such purposes.
Right to appeal to the supervisory authority
Gemeinde Gottes KdöR – DatenschutzratSchurwaldstraße 10, 73660 Urbach, Germany
Phone: +49 (0) 7181 9875 0
E‑mail: datenschutzrat@gemeindegottes.de
Right to data portability
You have the right to receive data that we process on the basis of consent or contract in a commonly used, machine‑readable format, and to request direct transfer to another controller where technically feasible.
Information, rectification and erasure
Within legal limits, you have the right to obtain information about your stored personal data, their origin and recipients, and the purpose of processing, and you may have a right to rectification or erasure.
Right to restriction of processing
You may request restriction of processing in particular where: (a) you contest the accuracy of personal data (for a period enabling verification); (b) processing is unlawful and you oppose erasure; (c) the data are no longer needed by us but are required by you for legal claims; or (d) you have objected pending verification of overriding grounds. If processing is restricted, data will be processed only with consent, for legal claims, to protect rights of others, or for important public interest.
SSL/TLS encryption
For security and to protect confidential content, this website uses SSL/TLS encryption. An encrypted connection is indicated by “https://” and the lock icon in your browser. When encryption is active, transmitted data cannot be read by third parties.
Rejection of unsolicited e‑mails
We object to the use of the contact information published in our Site Notice for sending unsolicited advertising and information materials. We reserve the right to take legal action against unsolicited promotional information (e.g., spam e‑mails).
5. Recording of data on this website
Server log files
The provider of this website automatically collects and stores information in server log files that your browser transmits: browser type/version, operating system, referrer URL, host name, time of server request, and IP address. This data is not merged with other data sources. Processing is based on legitimate interests in error‑free presentation and optimization of the website (§ 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR).
Requests by e‑mail, telephone or fax
If you contact us by e‑mail, telephone or fax, your inquiry and any resulting personal data (e.g., name, request) will be stored and processed for the purpose of handling your request. We do not pass on this data without your consent. Processing is based on contract performance/pre‑contractual measures where applicable (§ 5 Abs. 2 lit. i DSO‑GeGo; cf. Art. 6(1)(b) GDPR), on legitimate interests in efficient processing (§ 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR), or on consent (§ 5 Abs. 2 lit. b DSO‑GeGo; cf. Art. 6(1)(a) GDPR). Data are retained until you request deletion, revoke consent, or the purpose no longer applies; statutory retention periods remain unaffected.
6. Plug‑ins and Tools – Google Maps
This site uses Google Maps (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) to integrate map material. To enable its use, your IP address must be stored and is usually transferred to a Google server in the USA. If activated, Google may use Google Fonts to render text. We use Google Maps to present content attractively and to make disclosed locations easy to find (legitimate interest; § 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR). If consent has been obtained, processing is based on § 5 Abs. 2 lit. b DSO‑GeGo (cf. Art. 6(1)(a) GDPR) and § 25(1) TDDDG (cookies/device access). Consent can be revoked at any time.
Data transfer to the US may be based on Standard Contractual Clauses (SCC). For details, please consult Google’s terms and privacy policy. For more information about data processing, see Google’s privacy policy at policies.google.com/privacy. Google participates in the EU‑US Data Privacy Framework.
7. Our social media appearances
This privacy policy applies to the following social media presence:
Data processing through social networks
We maintain publicly available profiles in social networks. Social networks can analyze your user behavior if you visit their websites or pages with integrated social content. If you are logged in, your visit can be assigned to your account. Data may be collected even without an account (e.g., via cookies or IP address). The operators can create user profiles to display interest‑based advertising across devices. Additional processing operations may be carried out by the operators; please refer to their terms and privacy policies.
Legal basis
Our social media appearances ensure broad online presence (legitimate interest; § 5 Abs. 2 lit. g DSO‑GeGo; cf. Art. 6(1)(f) GDPR). Analysis processes by the platforms may rely on other legal bases set by the operators (e.g., consent).
Responsibility and assertion of rights
When you visit our social media pages (e.g., Facebook), we and the platform operator are joint controllers for processing occurring during the visit. You may exercise your rights (access, rectification, erasure, restriction, portability, complaint) against us and the operator. However, our influence over the operator’s processing is limited to their policies.
Storage time
Data collected directly by us via our social media presence is deleted when you request deletion, revoke consent, or the purpose lapses. Cookies remain on your device until you delete them. We have no control over storage duration by platform operators.
Facebook
Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. We have signed Meta’s Controller Addendum for joint responsibility. You can adjust advertising settings in your account. Transfers to the US may be based on SCC. Details and privacy policy: Facebook’s documentation.
Instagram
Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. Transfers to the US may be based on SCC. Details in Instagram’s Privacy Policy.
YouTube
Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. See Google’s Privacy Policy for details. Google participates in the EU‑US Data Privacy Framework.