“Data controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
2. “GDPR” means the General Data Protection Regulation (EU) 2016/679;
“Personal data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
“Personal data breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
“Special categories of personal data” means personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.
3. Access to Personal Data
Only me at freecard-winni.com who need access to the Personal Data to perform my work tasks is processing the Personal Data.
3.1 Right to Access Personal Data
You have the right to obtain from Freecard-winni.com confirmation as to whether or not Personal Data concerning you are being processed, and, where that is the case, access to the Personal Data and the following information:
4. Right to Rectification etc.
I´m aiming at processing only Personal Data which is correct and that it is
You have the right to obtain from me without undue delay the rectification of inaccurate Personal Data concerning you.
5.1 The right to be forgotten
You have the right to obtain from me the erasure of Personal Data concerning you without undue delay and I have the obligation to erase Personal Data without undue delay inter alia when the Personal Data is no longer necessary in relation to the purposes for which they were collected or otherwise processed or you have withdrawn consent on which the processing is based.
5.2 Restriction of processing
You have the right to obtain from me restriction of processing if you have a particular reason for wanting the restriction. This may be if you have issues with the content of the information I hold or how I have processed your personal data. It can also be the case when I no longer needs the Personal Data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims.
5.3 Data portability
You have the right to receive the Personal Data concerning you, which you have provided to me, in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller without hindrance from me where the processing is based on consent or on a contract or the processing is carried out by automated means.
You have the right to object to processing of Personal Data concerning you based on automated decisions and/or profiling. This shall not apply if the decision is necessary for entering into, or performance of, a contract between you and me or follows from a legal obligation.
5.5 Right to lodge a complaint
You have the right to lodge a complaint with the supervisory authority.
Postcards & more - Winfried Jung - Zabel-Krüger-Damm 50 - 13469 Berlin - Allemagne
Phone: +49 30 403 99 106
Fax: +49 30 402 33 29
6. The Personal Data We Collect and/or Receive
When you sign up to become a User or when you purchase a Product, you may be required to provide me with Personal Data about yourself, including, without limitation, your name, phone number, e-mail address, and profile picture. The legal basis for such processing is the performance of the contract with you. And, if you contact me via the Contact Us page, you’ll need to provide your name and other contact information. I don’t collect any Personal Data from Visitors or Users when they use the Service, unless they provide such information voluntarily. Some of this Personal Data (User name/name, products and/or shops which you have chosen to save to your profile, the Users that you follow and the Users that follow you), will be publically accessible through the Service, and I may display this publically accessible Personal Data to other Users or elsewhere on the Service, by itself or in connection with other Information relating to your activities on the Service or with any User Content you provide.
In addition I may collect or receive additional information. Such other information may be collected:
7. The Personal Data Collected by or through Third-Party Advertising Companies
08. How I use and share the Personal Data
I may use the Personal Data to provide and improve our Website, Service, and other products and services; to process transactions you request; to inform you about my products and services and those of my promotional partners; and to bring you customized content (such as newsletters) based on your activity in connection with the Service.
I may use and/or share Personal Data as described below.
09. Accessing and Modifying Personal Data and Communication Preferences
Users may access, remove, review, and/or make changes to their Personal Data by following the instructions found on the Website. In addition, you may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of any freecard-winni marketing e-mail. I will use commercially reasonable efforts to process such requests in a timely manner. You should be aware, however, that it is not always possible to completely remove or modify information in our subscription databases. Users and job applicants cannot opt out of receiving transactional e-mails related to their account with freecard-winni.
10. How I protect the Personal Data
I take reasonable steps to protect the Personal Data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Please understand, however, that no security system is impenetrable. I can not guarantee the security of my databases, nor can I guarantee, that the Personal Data that you supply will not be intercepted while being transmitted to and from me over the Internet. In particular, e-mail sent to or from the Website may not be secure, and you should therefore take special care in deciding what information you send to me via e-mail.
11. Transfer of Personal Data to other countries
The Service, the Website and its servers may be operated in the European Union (EU), the United States, and elsewhere. Please be aware that your Personal Data, may be transferred to, processed, maintained, and used on computers, servers, and systems located outside of your state, province, country, or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction.. When Information is transferred from the EU/EEA to a third country, i.e. a country outside of the EU/EEA, I take all appropriate legal, technical and organisational measures to secure that the level of protection is the same as within the EU/EEA. In case Personal Data is processed outside of the EU/EEA the level of protection is guaranteed either via a decision of the European Commission that the country in question has an adequate level of protection for Personal Data or by using appropriate safety measures such as binding corporate rules or Privacy Shield.
12. External Websites
14. Storage of Personal Data
I only store your Personal Data as long as it is necessary for the purposes for which the Personal Data are processed.