Privacy Policy

The responsible body within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Rainer Thormann

Your rights as a data subject

You can exercise the following rights at any time using the contact details provided for our data protection officer:

  • Information about your data stored by us and its processing,
  • Correction of incorrect personal data,
  • Deletion of your data stored by us,
  • Restriction of data processing, if we are not yet allowed to delete your data due to legal obligations,
  • Objection to the processing of your data by us, and
  • Data portability, provided you have consented to the data processing or have entered into a contract with us.

If you have given us your consent, you can withdraw it at any time with effect for the future.

You can contact your local supervisory authority at any time with a complaint. Your competent supervisory authority depends on the federal state of your residence, your work, or the alleged violation. A list of supervisory authorities (for the non-public sector) with addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Purposes of data processing by the responsible body and third parties

We process your personal data only for the purposes stated in this privacy policy. Your personal data will not be transferred to third parties for purposes other than those mentioned. We only share your personal data with third parties if:

  • You have given your express consent,
  • Processing is necessary to fulfill a contract with you,
  • Processing is necessary to comply with a legal obligation,

Processing is necessary to protect legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data.

Deletion or blocking of data

We adhere to the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes stated here or as provided for by the various storage periods prescribed by law. After the respective purpose no longer applies or these periods expire, the corresponding data is routinely blocked or deleted in accordance with legal regulations.

Hosting and server log files

Our website is operated by an external service provider (hosting provider). As part of the hosting process, all data generated in connection with the operation of the website is processed. This includes, in particular, server log files that are collected automatically. These include, for example, the IP address (anonymized if necessary), date and time of the request, pages/files accessed, amount of data transferred, browser type and version, operating system, and the referrer URL. This data is processed to ensure stable and secure operation of the website as well as for technical administration and optimization of our services. This data is not merged with other data sources. Processing is carried out on the basis of our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR.

SSL/TLS encryption and Let’s Encrypt

For security reasons and to protect the transmission of confidential content, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of your browser starts with “https://” and by the lock symbol in your browser bar. This ensures that data you transmit to us cannot be read by third parties.

To provide encryption, we use certificates from Let’s Encrypt, a certification authority of the Internet Security Research Group (ISRG). During the creation and renewal of certificates, connection data (e.g., IP address) may be processed for technical reasons. Use is in the interest of secure data transmission and based on our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR.

No cookies

Cookies are small files that make it possible to store specific, user-related information on the visitor’s computer while they are visiting our website. Cookies help to determine the frequency of use and the number of users of internet pages.

We have designed our website to be particularly data-efficient and currently do not use any cookies that are not necessary for the operation of WordPress. That is why you do not see a cookie banner.

Google Fonts (local)

We use Google Fonts for the uniform display of fonts. When a page is called up, the user’s browser loads the required web fonts into its own browser cache in order to display text and fonts correctly.

Google Fonts are hosted locally on this website. This means that the fonts are loaded directly from our own server and no connection is established to Google’s servers. As a result, no data is transmitted to Google, and the use of the fonts is fully compliant with data protection regulations.

Changes to our privacy policy

We reserve the right to adjust this privacy policy so that it always meets current legal requirements or to implement changes to our services in the privacy policy, e.g., when introducing new services. The new privacy policy will then apply to your next visit.

Questions for the data protection officer

If you have any questions about data protection, please send us an email or contact the person responsible for data protection in our organization directly:

Rainer Thormann
Allerheiligen Str. 7
60313 Frankfurt am Main
Email: info@waschsalon-frankfurt.de

Updated on 2026-03-27.