INFORMATION ON DATA PROTECTION
- THE CONTROLLER FOR DATA PROCESSING
SERENE CENTER GUIDING UNIVERSAL5 LIMITED
112C High Street, 1st floor
Company Number: 12495924
Tel: +44 (0)13 2292 7753
“Personal data” is any information concerning an identified or identifiable natural person (hereinafter referred to as “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future.
“Profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.
“Pseudonymisation” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
“File system” means any structured set of personal data which are accessible according to specific criteria, whether centralised, decentralised or dispersed on a functional or geographical basis;
“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for his nomination may be provided for by Union or Member State law.
“Processor” means a natural or legal person, public authority, agency or other body, which processes personal data on behalf of the controller.
“Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities, which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law, shall not be regarded as recipients. The processing of this data by those public authorities shall be in compliance with the applicable data protection rules and in accordance with the purposes of the processing.
“Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
“Consent” of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
III. PROCESSING PROCEDURES
We gather and process the following personal data relating to you and provided to us by you:
- Contact and address information, so long as you provided us with your contact details or if you registered on our website,
- Online identifiers (e.g. your IP address, browser type and browser version, the operating system used, the referrer-URL, its IP address, the file name, access status, volume of data transmitted, date and time of server request),
- Social media identifiers,
- Meta data (Salutation, name, date of birth, address and possibly e-mail address) for legitimising a new user account,
- Password (either entered by the user or the default password issued by the system, in any case stored in encrypted format),
- Your customer number,
- Payment information, as long as you provided it to us,
- the addition “recruited by”, as long as you provided this information to us,
- Your VAT ID number, if you are working for us and are VAT registered with HMRC.
IV. PURPOSES OF THE PROCESSING
We process your data for the following reasons:
- for contact purposes as requested by you,
- for information concerning our offer,
- for processing and implementation of the contract, particularly for consultation purposes,
- for advertising purposes,
- for sending our newsletter by e-mail, provided you registered for this,
- for quality assurance, and
- for our statistics.
V. LEGAL BASIS FOR THE PROCESSING
Your data is processed based on the following legal framework:
- Your consent, pursuant to Article 6 (1) (a) of the GDPR,
- For fulfilment of a contract with you, pursuant to Article 6 (1) (b) of the GDPR,
- For fulfilment of legal obligations, pursuant to Article 6 (1) (c) of the GDPR, or
- On the basis of our legitimate interests, pursuant to Article 6 (1) (f) of the GDPR.
If the processing of your personal data is based on our legitimate interests within the meaning of Article 6 (1) (f) of the GDPR, those interests may include
- improvement of our web content,
- protection of our website from misuse, and
- to maintain our statistics.
VI. DATA SOURCES
We get the data from you (including through the devices you use). If we do not collect the personal data directly from you, we shall inform you separately of the source from which the personal data originates and, if applicable, whether it came from publicly accessible sources.
VII. TRANSMISSION / CATEGORIES OF RECIPIENTS
When processing your data, we work with the following service providers, which have access to your data:
- Providers of web analysis tools,
- Payment service providers,
- Transport service providers,
- Telephone service providers,
The use of web analysis tools may lead to data being transmitted to third countries outside the European Union. If this happens, transmission will take place on the basis of legally envisaged contractual regulations which are meant to ensure adequate protection of your data and which you can view on request.
VIII. DURATION OF STORAGE
We shall store your personal data only for as long as it is necessary for attainment of the processing purpose, or if the storage is based on a legal retention obligation.
We store your data,
- if you have given your consent for the processing, until you revoke your consent,
- if we need the data for implementation of a contract, but at most for as long as the contractual relationship between you and us exists or if the retention periods are still valid,
- if we are using the data on the basis of a legitimate interest, for as long as your interest in deletion or anonymisation does not outweigh ours.
Application data for a job as Reader shall be deleted automatically after six months, provided no contract has been concluded.
IX. YOUR RIGHTS
You have the right, partly under certain preconditions,
- To demand information about the processing of your data, as well as to get a copy of your personal data stored with us. You can, among other things, also demand information about the purpose of the processing, the categories of personal data being processed, the recipients of the data (if the data is shared), duration of storage or the criteria for determining the storage duration;
- To correct your data. In the event that your personal data is incomplete, you have the right to demand completion of this data, taking into consideration the purpose of the processing;
- To have your data deleted or blocked. Reasons for demanding deletion or blocking of the data can include: the data subject revokes the consent under which the processing is being conducted; the data subject objects to the processing; the personal data is being processed unlawfully;
- to have the processing of your data restricted;
- to object to the processing of your data;
- to revoke your consent for the processing of your data in future, and
- to complain to the responsible supervisory authority about unauthorised data processing. The supervisory authority in the United Kingdom is the ICO. If you are not based in the United Kingdom, you may contact the supervisory authority that is relevant to you.
The ICO’s contact information is as follows:
The ICO’s address:
Information Commissioner’s Office
Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk
X. CONTACT FORM & E-MAIL CONTACT
There is a contact form on our website which can be used for making contact electronically. If a user chooses this option, the data entered into the input mask is transmitted to us and stored here, provided we do not already have this data (because you are logged on to your account). Alternatively, it is possible to make contact using the e-mail address provided. In this case, the user’s personal data that is transmitted together with the e-mail is stored.
You can voluntarily open an account on our website by providing the necessary personal data. In this process, data provided by you during registration will be transmitted to us and stored by us, subject to revocation by you. The user can temporarily or permanently close his user account at any time. To do this, the user can simply send a text message (e-mail or letter) stating clearly his intention to close the account. We expressly reserve the right to verify such requests, as well as other customer requests, with regard to their legitimacy, in order to prevent unauthorised use by third parties.
You can hold consultations with external consultants through our website, using telephone service. All information you exchange with the consultant during the conversation is voluntary and shall remain confidential. Third parties will not listen in on your conversation.
Consultations by telephone will take place via a device connecting the external consultant and the customer. In this process, no personal data will be transmitted to the parties except the customer number. We shall record the conversations, if we are obliged to do so by law. We might record the conversations for quality control and training purposes. The conversations will be deleted upon expiry of the statutory retention period.
You can rate the consultations using the evaluation function on our website, in order to give the consultants valuable feedback and to make it easy for other customers to select the right consultants. This is done by giving a rating of 1 to 5 stars via the telephone menu directly after the conversation, or via the website by giving a rating of 1 to 5 stars as well as a text reflecting your experience with the respective consultant.
The text evaluations together with the stars awarded will be visible on the public profile of the consultant and the HTML site-map, whereby the latest ratings will appear on top of the list. Users will be able to see the heading and text of the rating, the number of stars, the customer’s first name, and the date and rating given.
XIV. DATA PROTECTION
We have taken extensive technical and organisational measures to protect your data against possible threats such as unauthorised access or unauthorised perusal, modification or distribution, as well as against loss, damage or misuse.
To protect personal data from access by unauthorised third parties during transmission, we safeguard the data transmissions using SSL-encryption, where possible. This is a standardised encryption procedure for online services, particularly for the web.
XV. LOG FILES
Usage data is transmitted via the respective Internet browser every time you access our website, and this data is stored in log files, so-called server log files. The data records which are stored in the process contain the following data: The domain from which the user accesses the website; date and time of the request; IP address of the requesting computer, website(s) which the user visits within the context of the services offered; data volume transmitted; browser type and version, operating system used, name of the Internet service provider; message indicating whether the request was successful. These log file records are evaluated in an anonymous form in order to improve the service and make it more user-friendly, as well as to find and rectify errors and to control the utilised capacity of servers.
We distinguish between the following types of cookies:
First-Party Cookies: First-party cookies are transmitted by the platform just visited.
Third-Party Cookies: Third-party cookies are cookies transmitted by a platform/website other than the one visited by the user. If a user accesses a website and another entity transmits a cookie through this website, this will be considered a third-party cookie.
Absolutely necessary cookies: These cookies are necessary for you to be able to navigate through the website and use its functions, e.g. to access secure sections of the website. Without these cookies, certain services cannot be provided, e.g. display of content tailored to your computer or device.
Performance cookies: These cookies generate information regarding the use of the website by the visitors, e.g. which web pages are requested more frequently and whether users get error messages from these web pages. However, these cookies do not gather any information relating to the identity of the visitor. All information collected by these cookies is amalgamated and is therefore anonymous. It is used only to optimise the website.
Functionality cookies: These cookies enable the website to store decisions made by you (e.g. language settings and your region), and to offer you improved and personalised functions. They can also be used to store your settings with regard to font size, fonts and other individualised parts of the web-site. They can also be used to provide services requested by you, e.g. to show a video or to use the comment function of a blog. Information collected by these cookies can be anonymised. Your surfing activities cannot be tracked on other platforms.
Social media cookies: These cookies are used when you click on a button on the website for purposes of sharing information on social media. The social network will record this action and can use it for marketing or advertising purposes.
XVII. EXTERNAL TOOLS, PARTNERS AND SERVICES
COOKIE CONSENT WITH
This website uses a cookie consent tool with technology from xxxxxxx (hereinafter “xxxxxx”) to obtain valid user consent for cookies and cookie-based applications where required. The party offering this technology is xxxxxxxxxxx, website: https://xxxxxxxxxxxxx.com/ (hereinafter referred to as “xxxxxxxxxxx“).
Whenever you visit our website, the following personal data will be transferred to xxxxxxxxx:
- Your declaration(s) of consent or your revocation of your declaration(s) of consent
- Your IP address
- Information about your browser
- Information about your device
- The date and time you visited our website
Moreover, xxxxxxxx shall store a cookie in your browser to be able to allocate your declaration(s) of consent or any revocations of the former. The data that are recorded in this manner shall be stored until you ask us to eradicate them, delete the xxxxxxxxxxx cookie or until the purpose for archiving the data no longer exists. This shall be without prejudice to any mandatory legal retention periods.
GOOGLE TAG MANAGER
This website uses the Google Tag Manager. This service allows website tags to be managed through an interface. Google Tool Manager only implements tags. This means that no cookies are used and no personal information is collected. Google Tool Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it remains valid for all tracking tags if they are implemented with the Google Tag Manager.
FACEBOOK CUSTOM AUDIENCES
This website uses the Facebook Pixel and the “Custom Audiences” function of Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter referred to as: “Facebook”). This function serves the purpose of presenting visitors to this website with advertisements (“Facebook-Ads”) based on their interests, within the framework of their visit to the social network provider Facebook. Further-more, the function also makes it possible to display individualised advertising banners in the social network provider Facebook, which can contain products previously viewed by the user on the website of PsychicReadings24.com (remarketing).
PINTEREST CONVERSION TRACKING
Our website uses Pinterest social network conversion tracking technology (Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland), which enables us to show Pinterest relevant advertisements and offers on Pinterest to our website visitors who have already taken an interest in our website and our content/offers and are Pinterest members. For this purpose, a so-called conversion tracking pixel from Pinterest is integrated into our pages, which tells Pinterest when you visit our website that you have visited our website and which parts of our offers you are interested in. For example, if you have taken an interest in our subscriptions on our website, Pinterest may display an advertisement on our subscriptions.
You can opt-out of the collection of data to display interest-based advertising on Pinterest at any time in your Pinterest account settings at https://www.pinterest.de/settings or at https://help.pinterest.com/de/article/personalization-and-data#info-ad.
GOOGLE ADS TRACKING
PsychicReadings24.com uses the Conversion-Tracking system of Google Ireland Limited (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), being the latter’s advertising customer (“Google Adwords customer”), for purposes of marketing performance measurement. For this purpose, a Google Adwords pixel is integrated on each of the registration pages of PsychicReadings24.com, and this pixel transmits the registration event to Google without any details of the customer concerned – besides the common technical features of every website visit (e.g. browser, IP-address). For purposes of recognition and assignment of the users, a cookie will be installed by Google, provided you ac-cessed the website through a Google advert. These cookies will lose their validity after 30 days. Each AdWords user receives a different Cookie. Cookies cannot therefore be tracked via the websites of AdWords users. For further information on data protection at Google, visit https://www.google.com/policies. Besides, users can also deactivate or revoke Google adverts as a whole or in parts at https://privacy.google.com/?hl=de#google-experience (execute Opt-Out).
You can find more information and possibilities concerning the deactivation of this ad placement at https://adssettings.google.com/u/0/authenticated (go to “Ad settings” link, then “Deactivation”).
MICROSOFT BING ADS
In addition, our websites use Conversion Tracking and the Universal Event Tracking from Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA). For this purpose, tracking pixels from Microsoft are integrated on the order confirmation page and on other selected pages of this website. When the user visits these web pages, the usual technical information (such as the operating system, browser used, IP-address) as well as information about the user’s surfing behaviour (e.g. products/services viewed), is transmitted to Microsoft and stored there. If an order (e.g. a signup or a call to a Reader) is made, only data without any references to the person, such as the order number, item number and the order value, is transmitted to Microsoft. This information helps evaluate and optimise PsychicReadings24.com’s advertisements in connection with Microsoft Bing ads programme.
For purposes of recognition and assignment of the users, so-called cookies are used, provided you accessed our website through a Microsoft Bing advert. We together with Microsoft Bing can know that someone clicked on an advert and was forwarded to our website. No personal information regarding the identity of the user is disclosed. If you do not wish to take part in the tracking process, you can also reject the placement of a Cookie required for this, through the browser settings, which generally deactivates the automatic installation of cookies. You can find more information about data protection and the installed cookies, as well as the possibility of revocation at Microsoft Bing, on Microsoft’s website: https://privacy.microsoft.com/en-US/privacystatement
MailChimp, which provides the software and infrastructure for sending consent-based electronic messages. MailChimp is a marketing platform for small businesses created by the Rocket Science Group.
The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA
MailChimp is aware of its obligation towards recipients of such messages and has a zero-tolerance policy for spam.
Furthermore, MailChimp offers various possibilities of analysing how the despatched newsletters are opened and used, e.g. to how many users an e-mail was sent, whether the e-mails were rejected, and whether the users unsubscribed after receiving the e-mail. These analyses are, however, only group-related and we do not use them to rate individuals.
If you don’t wish to continue receiving our newsletter, you can unsubscribe at any time by clicking on the relevant link contained in every mailing.
For further information on data protection at MailChimp, visit https://mailchimp.com/legal/privacy/
We use the service provider YouTube for the integration of videos, among other things, in our web-site. YouTube is operated by YouTube LLC with headquarters in 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google Ireland Limited with headquarters in Gordon House, Barrow Street, Dublin 4, Ireland.
If you visit pages of our website equipped with a Plugin – for example, our media library – a connection is established with the YouTube servers, and the Plugin is displayed in the process. Through this, a message will be sent to the YouTube server indicating which of our websites you visited. If you are logged onto YouTube as a member, YouTube will assign this information to your personal user ac-count. If the Plugin is used, e.g. when the start button of a video is clicked, this information will also be assigned to your user account. You can prevent this assignment by logging out of your YouTube user account as well as other user accounts belonging to YouTube LLC and Google Ireland Ltd. and deleting the relevant cookies of those providers before using our website.
You can find further information on data processing and data protection by YouTube (Google) at www.google.de/intl/de/policies/privacy/.
FACEBOOK VISITOR ACTION PIXEL
With your consent, we use the “visitor action pixel” from Facebook Inc. within our websites. With the help of these pixels, we can track the actions of users after they have seen or clicked on an advert. This will enable us to gauge the effectiveness of adverts on the mentioned platforms for market re-search purposes. The data collected in this way is anonymous to us; that is, we do not see the personal data of individual users. This data is, however, stored and processed by the respective platform providers – something we shall inform you of to the best of our knowledge. For more information, we refer you to the respective privacy policies: https://www.facebook.com/about/privacy/.
Plugins of the social network provider, Facebook, are integrated on our website. The provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. You can recognise the Facebook Plugins by the Facebook logo or the “Like” button on our web page. You can find an overview of the Facebook Plugins here: http://developers.facebook.com/docs/plugins/.
FACEBOOK CONNECT (SOCIAL NETWORK CONNECT
Payments are processed through our partner Bambora. Bambora AB, reg. no. 556233-9423, is a Swedish Acquirer and payment institution with a license to provide payment services under the supervision of the Swedish Financial Supervisory Authority (“Bambora”), Vasagatan 16, Stockholm, Stockholm 11347, Sweden (hereinafter referred to as: “Bambora”). We shall transmit your IP address to Bambora for purposes of preventing and exposing fraud cases. Your IP address will then be stored by Bambora during the process of storing the credit card as well as during the online prepayment procedure. All data is stored in encrypted form.
Telephone and SMS services are processed through Twilio. Twilio is a cloud communications platform that provides communications to web and mobile applications. Twilio Inc., 375 Beale Street, Suite 300, San Francisco, CA 94105.
When you visit our Facebook Page or Instagram Page (hereinafter “Facebook”), we are jointly responsible with Facebook for the processing of your personal data. Instagram is part of the Facebook group of companies and shares infrastructure, systems and technology with Facebook and other Facebook companies (https://www.facebook.com/help/111814505650678?ref=dp).
Below we inform you about the associated data processing:
Information about the collection of personal data and contact details of the person responsible
|Data||Purpose of Use||Legal Basis|
|1||User interactions (postings, likes etc.)||User communication via social media||Art. 6 para. 1 lit. f) GDPR|
|2||Cookies||Target group advertising||Art. 6 para. 1 lit. f) GDPR|
|3||Demographic data (e.g. based on age, location, language or gender)||Target group advertising||Art. 6 para. 1 lit. f) GDPR|
|4||Aggregated data without personal reference (e.g. page activities, page views, page previews, likes, recommendations, articles, videos, page subscriptions including origin, times of day)||Target group advertising||Art. 6 para. 1 lit. f) GDPR|
The promotional use of your personal data is particularly important for Facebook. We use the statistics function to learn more about the visitors of our fan page. Using this function enables us to adapt our content to the respective target group, by using demographic information about the users, such as age and locations.
To provide the social media service in the form of our Facebook fan page and to use the Insight function, Facebook usually stores cookies on the user’s device. These include session cookies that are deleted when the browser is closed and persistent cookies that remain on the device until they expire or are deleted by the user.
A cookie is a tiny text file that allows a website to recognize a browser. When a website is called up, cookies are stored in a text file on the computer and are called up and read the next time the web server is called up. As a user, you can decide yourself via your browser settings whether and which cookies you wish to allow, block or delete.
According to Facebook, the cookies used by Facebook are used for authentication, security, website and product integrity, advertising and measurements, website functions and services, performance, and analysis and research. Details of the cookies used by Facebook (e.g., cookie names, duration of function, content collected and purpose) can be found at on the following links: https://www.facebook.com/policies/cookies/ and https://help.instagram.com/1896641480634370?ref=ig There you will also find the option to deactivate the cookies used by Facebook. The collection and storage of data through the use of the above-mentioned Facebook cookies can also be refused at any time with effect for the future by clicking on the following opt-out link: http://www.youronlinechoices.com/de/praferenzmanagement/.
Note about Facebook Insights:
Pursued legitimate interests, provided that the legal basis is Art. 6 para. 1 lit. f) GDPR
We see our legitimate interest in data processing in the presentation of our company and our products and services for your information.
Transmission and use of personal data
Recipients or categories of recipients: Facebook and Instagram. If you interact within Facebook and Instagram directly, Facebook Inc, 1601 Willow Road, Menlo Park, California 94025, USA, also has access to your data. Facebook is located here in a third country where the level of data protection is lower. Facebook is subject to the EU-U.S. Privacy-Shield in order to guarantee an adequate level of data protection according to European standards.
We cannot fulfil our information obligations according to Art. 13 EU-DSGVO, as only Facebook has full access to the user data. If you wish to exercise your rights as a data subject, please contact Facebook directly here. You are entitled to the following rights:
- Right of access by the data subject: Art. 15 EU-GDPR
- Right to rectification: Art. 16 EU-GDPR
- Right to erasure (‘right to be forgotten’): Art. 17 EU-GDPR
- Right of restriction of processing: Art. 18 EU-GDPR
- Right to object: Art. 21 EU-GDPR
- Right to data portability: Art. 20 EU-GDPR
- Right to lodge a complaint with a supervisory authority: Art. 77 EU-GDPR
- Right of withdrawal consent at any time: Art. 7 Para. 3 EU-GDPR
According to Art. 21 EU-GDPR,you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1), including profiling based on those provisions. 2 The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.if personal data are processed for the purpose of direct marketing, you also have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is necessary to ensure that the data are not processed for the purpose of direct marketing.
Data protection officer
You can contact the data protection officer of Facebook via the online contact form provided by Facebook at https://www.facebook.com/help/contact/540977946302970.