Privacy Policy
The controller within the meaning of applicable data protection laws, in particular the EU General Data Protection Regulation (GDPR), is Carsten Bohling (operator of this website and the Homerockr service).
1. Data protection information
The following information provides a simple overview of what happens to your personal data when you use this website and/or the Homerockr online service (the “Service”). Personal data is any data by which you can be personally identified.
1.1 Controller
Carsten Bohling
Homerockr (sole proprietorship)
Königsberger Strasse 37
22952 Lütjensee
Germany
email address: carsten.bohling@gmail.com
2. General Information on Data Collection
Who is responsible for data collection on this website and within the Service (Homerockr)?
Data processing is carried out by the website and app operator. Please refer to the Legal Notice (Imprint) and the “Controller” section above for contact details.
How do we collect your data?
Your data is collected, on the one hand, when you provide it to us (e.g., by sending us an email or submitting information via a contact form, if available). Other data is collected automatically or with your consent when you visit the website or use the Service through our IT systems. This includes primarily technical data (e.g., internet browser, operating system, time of page access). This data is collected automatically as soon as you enter the website.
What do we use your data for?
Some of the data is collected to ensure the error-free provision of the website and the Service. Other data may be used to analyze usage behavior. In particular, we process data for the following purposes:
- To provide the core functionality of Homerockr.
- To process payments within the scope of our services (membership).
- To respond to your requests and inquiries.
- To improve our service based on received information.
- To collect ideas and feedback regarding this software.
- To occasionally send emails about news and updates (disabled by default and can be enabled/disabled at any time).
- To ensure effective customer service and/or technical support.
What rights do you have regarding your data?
You have the right to receive, free of charge, information about the origin, recipients, and purpose of your stored personal data at any time. You also have the right to request the correction or deletion of this data.If you have given consent to data processing, you can withdraw your consent at any time with effect for the future. In addition, you have the right, under certain circumstances, to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the competent supervisory authority.For these purposes, as well as for further questions regarding data protection, you may contact us at any time using the address stated in the Legal Notice (Imprint).
3. Security
As with any internet-enabled system, there is an ongoing risk of unauthorized access. It is therefore important that you protect your password and contact us if you suspect that unauthorized persons may have gained access to your account.
We implement organizational, contractual, and technical security measures in accordance with the state of the art to ensure compliance with data protection laws and to protect the personal data we process against accidental or intentional manipulation, loss, destruction, or unauthorized access.
Our security measures include in particular the encrypted transmission of data between your browser and our server. In addition, personal data on our online platform is stored in encrypted form and backed up regularly.
4. Transfers to the USA and Other Third Countries
We disclose user data to third parties only within the limits of legal requirements—e.g., where necessary for billing purposes or for other purposes required to fulfill our contractual obligations towards users.
Where we engage subcontractors (processors) to provide our services, we take appropriate legal precautions as well as suitable technical and organizational measures to protect personal data in accordance with applicable legal requirements.
If, within the scope of this Privacy Policy, content, tools, or other services from third-party providers are used and such providers are located in a so-called “third country,” it must be assumed that data may be transferred to those countries. “Third countries” are countries in which the GDPR is not directly applicable—generally countries outside the EU/EEA. Transfers to third countries take place only if an adequate level of data protection is ensured, if user consent exists, or if another legal basis permits the transfer.
5. Hosting and server locations
Our Service is hosted by Bubble.io, a third-party hosting provider that provides the infrastructure required to operate the Service. Data we collect is stored on Bubble.io servers. Please note that Bubble.io servers may be located in the United States.
Where we process data in a third country (e.g., the USA) or where processing occurs in the context of using third-party services or disclosing/transferring data to other persons, entities, or companies, this will only be done in accordance with applicable legal requirements.
6. Payment service provider
Within our services you may initiate booking and payment processes. To the extent necessary for performance of the contract, data may be transferred to our payment service providers or the credit institution commissioned with the payment processing. The scope of the data is limited to the minimum required for contract processing.
When paying by credit card, EPS or giroPay, payment processing is carried out via Stripe by the payment service provider Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland. Further information about Stripe’s privacy practices can be found at:
https://stripe.com/privacy
7. SSL or TLS encryption
This website and our Service use SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us. You can recognize an encrypted connection by the address line in your browser changing from “http://” to “https://” and by the lock symbol in your browser.
If SSL/TLS encryption is enabled, data you transmit to us cannot be read by third parties.
8. Information, deletion and correction
Within the scope of applicable legal provisions, you have the right at any time to obtain information free of charge about your stored personal data, its origin and recipients, and the purpose of data processing, and, if applicable, a right to correction or deletion of such data. For this purpose and for further questions about personal data, you may contact us at any time.
9. Data Collection on Our Website and within the Service
server log files
The host of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- operating system used
- Referrer URL
- host name of the accessing computer
- Time of server request
- IP address
This data is not merged with other data sources. The legal basis for processing is Art. 6(1)(f) GDPR (legitimate interests). The website operator has a legitimate interest in the technically error-free presentation and optimization of the website—this requires the collection of server log files.
Inquiries by email, telephone or fax
If you contact us by email, telephone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We do not disclose this data without your consent.
Processing is based on Art. 6(1)(b) GDPR where your inquiry is related to the performance of a contract or is necessary to take steps prior to entering into a contract. In all other cases, processing is based on our legitimate interest in effectively handling inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if such consent was requested.
The data you send to us in the context of inquiries remains with us until you request deletion, withdraw your consent to storage, or the purpose for storage no longer applies (e.g., after your request has been fully processed). Mandatory legal retention obligations remain unaffected.
10. Changes to This Privacy Policy
We reserve the right to update this Privacy Policy to ensure it always complies with current legal requirements or to reflect changes to our services, e.g., when introducing new features. The updated Privacy Policy will apply on your next visit.
