Privacy Policy of www.ymum.de
This website collects personal data from its users. This document can be printed for reference using the browser’s print command.
Provider and Data Controller
Andreas Wagner Yoga
Max-Planck-Str. 7
85716 Unterschleißheim
Email address of the provider: [email protected]
Types of Data Collected
The personal data processed by this website, either independently or through third parties, include the following: trackers; usage data; number of users; session statistics; browser history; clicks; user identifiers; IP address; browser information; unique device identifiers for advertising (e.g., Google Advertising ID or IDFA); session duration; scroll-to-page interactions; country; time zone; device information; mouse movements; interaction events; diagnostic events; page events; custom events; layout details; location data; email.
Complete details on each type of personal data processed are provided in the dedicated sections of this privacy policy or in explanatory texts displayed prior to data collection.
Personal data may be freely provided by the user or, in the case of usage data, collected automatically when using this website. Unless otherwise specified, all data requested by this website is mandatory. Failure to provide this data may make it impossible for the website to provide its services to the user.
In cases where the website explicitly states that certain data is optional, users are free to refrain from providing such data without any impact on the availability or functionality of the service.
Users uncertain about which personal data is mandatory can contact the provider for clarification.
Use of Cookies and Tracking Tools
Any use of cookies or other tracking tools by this website, or by third-party service providers employed by this website, is intended to provide the service requested by the user and for other purposes described in this document and the Cookie Policy.
Users are responsible for any third-party personal data obtained, published, or shared through this website.
Type and Location of Data Processing
Processing Methods
The provider processes users' personal data in a proper manner and takes appropriate security measures to prevent unauthorized access, disclosure, alteration, or destruction of data.
The data processing is carried out using computers or IT-based systems, following organizational procedures and modes strictly related to the purposes indicated.
In addition to the provider, certain other individuals may operate this website internally (such as personnel in administration, sales, marketing, legal, or IT departments) or externally. External operators, where necessary, are appointed as data processors by the provider (e.g., technical service providers, delivery companies, hosting providers, IT companies, or communication agencies) and may have access to the data. A current list of these parties can be requested from the provider at any time.
Location
The data is processed at the provider's headquarters and any other locations where parties involved in the data processing are situated.
Depending on the user’s location, data transfers may involve transferring the user's data to a country other than their own. To learn more about the location of data processing, users can refer to the section providing detailed information on the processing of personal data.
Retention Period
Unless otherwise specified in this document, personal data is processed and stored for as long as required to fulfill the purposes for which it was collected.
Additionally, data may be retained for a longer period if required to comply with a legal obligation or based on the user’s consent.
Purposes of Processing
Personal data about the user is collected to allow the provider to deliver the service, fulfill legal obligations, respond to enforcement requests, protect its rights and interests (or those of users or third parties), and detect malicious or fraudulent activities.
Furthermore, data is collected for the following purposes: advertising, traffic optimization and distribution, displaying content from external platforms, analytics, tag management, heat mapping and session recording, and managing contacts and sending messages. Users can find more detailed information about these processing purposes and the personal data used for each specific purpose in the section “Detailed Information on the Processing of Personal Data” of this document.
Detailed Information on the Processing of Personal Data
Personal data is collected for the following purposes using the following services:
- Analytics
- Displaying Content from External Platforms
- Heat Mapping and Session Recording
- Traffic Optimization and Distribution
- Tag Management
- Managing Contacts and Sending Messages
- Advertising
Information on Opting Out of Interest-Based Advertising
In addition to any opt-out features provided by the services listed in this document, users can learn more about how to generally opt-out of interest-based advertising in the relevant section of the Cookie Policy.
Cookie Policy
This website uses trackers. Further information can be found in the Cookie Policy.
Additional Information for Users
Legal Basis for Processing
The provider is permitted to process users' personal data only if one of the following conditions applies:
- Users have given their consent for one or more specific purposes.
- Data collection is necessary for the performance of a contract with the user and/or for any pre-contractual obligations.
- Processing is necessary for compliance with a legal obligation to which the provider is subject.
- Processing is related to a task carried out in the public interest or in the exercise of official authority vested in the provider.
Processing is necessary to safeguard the legitimate interests of the provider or a third party.
In any case, the provider will gladly provide information about the specific legal basis on which the processing is based, particularly whether the provision of personal data is a statutory or contractual requirement or a prerequisite for entering into a contract.
Further Information on Retention Period
Unless otherwise specified in this document, personal data is processed and stored for as long as required to fulfill the purposes for which it was collected. Data may also be retained longer if required to fulfill a legal obligation or based on the user’s consent.
As a general rule:
- Personal data collected for the performance of a contract between the provider and the user will be retained until the contract has been fully performed.
- Personal data collected to safeguard the legitimate interests of the provider will be retained as long as necessary to fulfill these purposes.
Users can find more detailed information about the legitimate interests of the provider in the relevant sections of this document or by contacting the provider directly.
In addition, the provider may retain personal data for a longer period if the user has consented to such processing, provided the consent is not withdrawn.
The provider may also be required to retain personal data for a longer period to comply with legal obligations or upon the order of an authority.
Once the retention period has expired, personal data will be deleted. As a result, rights such as access, deletion, rectification, and data portability cannot be exercised after the expiration of the retention period.
User Rights under the General Data Protection Regulation (GDPR)
Users have specific rights regarding their data processed by the provider. In particular, users have the right to:
-
Withdraw consent at any time
Users can withdraw previously given consent for the processing of their personal data at any time. -
Object to the processing of their data
Users have the right to object to the processing of their data if the processing is based on a legal ground other than consent. -
Access their data
Users have the right to know whether their data is being processed, to obtain details about certain aspects of the processing, and to receive a copy of their data. -
Verify and request rectification
Users have the right to verify the accuracy of their data and request updates or corrections. -
Restrict the processing of their data
Users have the right to restrict the processing of their data. In this case, the provider will process the data solely for storage purposes. -
Request the deletion or removal of their personal data
Users can request the deletion of their data from the provider. -
Receive their data and transfer it to another controller
Users have the right to receive their data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. -
File a complaint
Users have the right to lodge a complaint with their competent data protection authority. -
Request details about data transfers
Users have the right to obtain information about the legal basis for data transfers to other countries or international organizations governed by public international law, such as the UN, and the security measures the provider takes to safeguard their data.
Details on the Right to Object to Processing
When personal data is processed in the public interest, in the exercise of official authority vested in the provider, or for the provider’s legitimate interests, users may object to such processing by providing a reason related to their particular situation.
Users are informed that they can object to the processing of their personal data for direct marketing purposes at any time without providing a reason. If the user objects to processing for direct marketing purposes, their personal data will no longer be processed for such purposes.
Whether the Provider Processes Personal Data for Direct Marketing Purposes
Users can find information on whether the provider processes personal data for direct marketing purposes in the relevant sections of this document.
How to Exercise User Rights
All requests to exercise user rights can be sent to the provider using the contact details provided in this document. These requests can be made free of charge and will be processed by the provider as soon as possible, but no later than within one month, with the legally required information provided to users.
Any correction, deletion of personal data, or restriction of processing will be communicated by the provider to all recipients to whom the personal data has been disclosed, unless this proves impossible or involves a disproportionate effort. Upon request, the provider will inform the user about these recipients.
Additional Information on the Collection and Processing of Data
Legal Actions
The user’s personal data may be processed by the provider for legal enforcement purposes in judicial proceedings or in preparation for such proceedings arising from improper use of this website or the related services.
The user acknowledges that the provider may be required to release personal data at the request of public authorities.
Additional Information about Users' Personal Data
In addition to the information contained in this privacy policy, this website may provide the user with further context-specific information concerning particular services or the collection and processing of personal data upon request.
System Logs and Maintenance
This website and third-party services may collect files that record interactions with this website (system logs) or use other personal data (e.g., IP addresses) for operational and maintenance purposes.
Information Not Contained in This Privacy Policy
Further details about the collection or processing of personal data can be requested from the provider at any time using the contact information provided.
Changes to This Privacy Policy
The provider reserves the right to make changes to this privacy policy at any time by notifying users on this page and, where feasible, through this website and/or, if technically and legally possible, by notifying users via any contact information available to the provider.
Users are encouraged to check this page regularly and to note the date of the last modification at the bottom of the page.
If changes involve data processing activities based on the user’s consent, the provider will seek new consent where required.
Definitions and Legal References
Personal Data (or Data)
Any information that directly, or when combined with other information, allows the identification of a natural person.
Usage Data
Information collected automatically by this website (or third-party services employed by this website), such as:
- IP addresses or domain names of computers used by the user.
- URI addresses (Uniform Resource Identifier).
- The time of the request.
- The method used to submit the request to the server.
- The size of the file received in response.
- The numerical code indicating the server's response status (e.g., successful, error, etc.).
- The country of origin.
- Features of the user’s browser and operating system.
- Time-related details per visit (e.g., time spent on each page).
- Path followed within the application, including the order of pages visited.
- Other parameters regarding the user’s operating system and/or IT environment.
User
The individual using this website who, unless otherwise specified, coincides with the data subject.
Data Subject
The natural person to whom the personal data refers.
Processor (or Data Processor)
A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller, as described in this privacy policy.
Controller (or Provider, sometimes also Owner)
The natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of processing personal data, including security measures concerning the operation and use of this website. Unless otherwise specified, the controller is the natural or legal person through which this website is offered.
This Website (or Application)
The hardware or software tool by which the personal data of the user is collected and processed.
Service
The service provided by this website as described in the relevant terms and conditions (if available) and on this website/application.
European Union (or EU)
Unless otherwise specified, any reference in this document to the European Union includes all current member states of the European Union and the European Economic Area (EEA).
Cookie
Cookies are trackers consisting of small data sets stored in the user’s browser.
Tracker
Tracker refers to any technology – such as cookies, unique identifiers, web beacons, embedded scripts, E-Tags, or fingerprinting – that enables tracking of users, such as by accessing or storing information on the user’s device.
Legal Notice
This privacy policy applies exclusively to this website, unless stated otherwise in this document.