Principles of data processing at the casayohana foundation
You came to this page via a link because you want to inform yourself about our handling of (your) personal data. In order to fulfil our information obligations in accordance with Art. 12 ff. of the Basic Data Protection Regulation (DSGVO), we are pleased to present our information on data protection below.
Who is responsible for data processing?
Responsible in terms of the data protection law is
, in the administration of thesmt StiftungsManagement & Treuhandgesellschaft mb
You will find further information about our foundation, details of the persons authorized to represent it and also further contact possibilities in the imprint of our website:https://www.casayohana.org/impressum
Which of your data are processed by us? And for what purposes?
If we have received data from you, we will only process it for the purposes for which we have received or collected it.
Data processing for other purposes can only be considered if the necessary legal requirements according to Art. 6 Par. 4 DSGVO exist. In this case, we will of course comply with any information obligations under Art. 13 para. 3 DSGVO and Art. 14 para. 4 DSGVO.
On what legal basis is this based?
The legal basis for the processing of personal data is in principle – unless there are specific legal provisions – Art. 6 DSGVO. Here the following possibilities come into consideration in particular:
- Consent (Art. 6 para. 1 lit. a) DSGVO)
- Data processing for the performance of contracts (Art. 6 para. 1 letter b) DSGVO
- Data processing based on a balancing of interests (Art. 6 para. 1 letter f) DSGVO)
- Data processing to fulfil a legal obligation (Art. 6 para. 1 lit. c) DSGVO)
If personal data are processed on the basis of your consent, you have the right to revoke this consent at any time with effect for the future.
If we process data on the basis of a balancing of interests, you as the data subject have the right to object to the processing of personal data, taking into account the provisions of Art. 21 DSGVO.
How long is the data stored?
We process the data as long as this is necessary for the respective purpose.
Insofar as statutory storage obligations exist – e.g. in commercial law or tax law – the relevant personal data is stored for the duration of the storage obligation. After expiration of the obligation to keep records, a check is made as to whether there is any further need for processing. If a need no longer exists, the data is deleted.
As a matter of principle, we review data towards the end of a calendar year with regard to the need for further processing. Due to the volume of data, this check is carried out with regard to specific types of data or purposes of processing.
Of course, you may at any time (see below) request information about your personal data stored by us and, if not necessary, request that the data be deleted or processing restricted.
To which recipients will the data be forwarded?
Your personal data will only be passed on to third parties if this is necessary for the execution of the contract with you, if the transfer is permitted on the basis of a weighing of interests within the meaning of. Art. 6 1 para. f). DSGVO, if we are legally obliged to transfer the data or if you have given your consent.
Data collection on the website
Basically, every website uses session cookies, including ours. Session cookies temporarily save the Internet call and are deleted when the browser is closed. This type of cookie does not store any information about the user, but is only used for control purposes such as scrolling forward and backward in the browser.
Server log files
When you access our website, your IP address is recorded and stored in log files. This IP address is stored by our hoster (Hetzner Online GmbH) for a maximum of seven days to detect and defend against attacks.
Sie haben die Möglichkeit zu verhindern, dass von Ihnen hier getätigte Aktionen analysiert und verknüpft werden. Dies wird Ihre Privatsphäre schützen, aber wird auch den Besitzer daran hindern, aus Ihren Aktionen zu lernen und die Bedienbarkeit für Sie und andere Benutzer zu verbessern.
Further information and a good first point of contact for further questions on this subject can be found here: https://www.gooding.de/faq
Google Web Fonts
This site uses so-called web fonts, which are provided by Google, for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.
For this purpose, the browser you use must connect to Google’s servers. This enables Google to know that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 letter f DSGVO.
If your browser does not support web fonts, a default font is used by your computer.
If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter.
We use the so-called double opt-in procedure to ensure that newsletters are sent by mutual agreement. In the process, the potential recipient can be added to a distribution list. Afterwards, the user receives a confirmation e-mail to confirm the registration in a legally binding manner. Only if confirmation is received, the address will be actively added to the distribution list.
We use this data exclusively for sending the requested information and offers.
The newsletter software used is Newsletter2Go. Your data will be transmitted to the Newsletter2Go GmbH. Newsletter2Go is not allowed to sell your data and use it for other purposes than sending newsletters. Newsletter2Go is a German, certified provider, which was selected according to the requirements of the Data Protection Basic Regulation and the Federal Data Protection Act.
You can find further information here: https://www.newsletter2go.de/informationen-newsletter-empfaenger/
You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, e.g. by using the “unsubscribe” link in the newsletter.
Your rights as a “data subject“
You have the right to be informed about the personal data we process about you.
In the case of a request for information that is not made in writing, we ask for your understanding that we may then ask you to provide proof that you are the person you claim to be.
Furthermore, you have a right to correction or deletion or to restriction of processing, as far as you are legally entitled to do so.
You also have the right to object to the processing within the scope of the legal requirements. The same applies to a right to data transferability.
In particular, you have a right of objection under Art. 21 para. 1 and 2 DSGVO against the processing of your data in connection with a direct advertising campaign, if this is based on a weighing of interests.
Our data protection officer
Due to the requirements of Article 37 DSGVO and Paragraph 38 BDSG (new), we do not need a data protection officer in our foundation and have not appointed one. That means of course not that we don’t care about data protection, on the contrary. Therefore, we would like to give you the opportunity to contact us with questions about data protection at:
The right to complain
You have the right to complain about the processing of personal data by us to a data protection watchdog.