Blattner Coaching (“company”, “we”, “us”, “our”, “controller”) is dedicated to maintaining your privacy and protecting your personal information online. We work to protect your personal information and maintain your privacy through your use of our website.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to Blattner Coaching. As the controller, Blattner Coaching has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone.
1. INFORMATION COLLECTED
1.1 Personal Data
Personal Data is information that can be used to identify you specifically, including your name, address, email address, telephone number or demographic information like your age, gender or hometown. You consent to giving us this information by providing it to us voluntarily on our website or via email. You may provide some of this information when you register with or make purchases from our website. You may also provide this information by participating in various activities associated with our site, including responding to blogs, contacting us with questions or participating in group trainings. Your decision to disclose this data is entirely voluntary. You are under no obligation to provide this information, but your refusal may prevent you from accessing certain benefits from our website or from making purchases.
1.2 Derivative Data
Derivative data is information that our servers automatically collect about you when you access our website, such as your IP address, browser type, the dates and times that you access our website and the specific pages you view. If you are using a mobile device, our servers may collect information about your device name and type, your phone number, your country of origin and other interactions with our website.
1.3 Financial Data
1.4 Social Networking Data
We may access personal information from social networking sites and apps, including Facebook, Instagram, LinkedIn, Twitter, Snapchat or other social networking sites or apps not named specifically here, which may include your name, your social network username, location, email address, age, gender, profile picture and any other public information. If you do not want us to access this information, please go to the specific social networking site and change your privacy settings.
1.5 Mobile Device Data
If you use our website via a mobile device, we may collect information about your mobile device, including device ID, model and manufacturer and location information.
1.6 Other data
On occasion, you may give us additional data in order to enter into a contest or giveaway or to participate in a survey. You will be prompted for this information and it will be clear that you are offering this kind of information in exchange for an entry into such a contest or giveaway.
2. HOW WE USE YOUR INFORMATION
You information allows us to offer you certain products and services, including the use of our website, to fulfill our obligations to you, to customize your interaction with our company and our website and to allow us to suggest other products and services we think might interest you. We generally store your data and transmit it to a third party for processing. However, to the extent we process your data, we do so to serve our legitimate business interests (such as providing you with the opportunity to purchase our goods or services and interact with our website).
Specifically, we may use the information and data described above to:
(a) Create and administer your account; and
(b) Deliver any products or services purchased by you to you; and
(c) Correspond with you; and
(d) Process payments or refunds; and
(e) Contact you about new offerings that we think you will be interested in; and
(f) Interact with you via social media; and
(g) Send you a newsletter or other updates about our company or website; and
(h) Request feedback from you; and
(i) Notify you of updates to our product and service offerings; and
(j) Resolve disputes and troubleshoot any problems; and
(k) Administer contests or giveaways; and
(l) Generate a profile that is personalized to you, so that future interactions with our website will be more personal; and
(m) Compile anonymous statistical data for our own use or for a third party’s use; and
(n) Assist law enforcement as necessary; and
(o) Prevent fraudulent activity on our website; and
(p) Analyze trends to improve our website and offerings.
3. WHY WE DISCLOSE YOUR INFORMATION
The following are specific reasons why we may share your information.
3.1 Third Party Processing
We may disclose your information to third parties who assist us with various tasks, including payment processing, hosting services, email delivery and customer service. For more information, see the “Processing your information” Section below.
3.2 By Law
We may share your data as required by law or to respond to legal process, including a subpoena, or as necessary to protect the rights, property and safety of others. This includes sharing information with other parties to prevent or address fraud and to avoid credit risks.
3.3 To Protect Our Company
We may use your information to protect our company, including to investigate and remedy any violations of our rights or policies. We may also disclose your information as reasonably necessary to exercise or defend against legal claims.
3.4 Online postings
When you post online, your posts may be viewed by others, and we may distribute your comments outside the website.
3.5 External Links
Our website may include hyperlinks to other websites not controlled by us. We suggest you exercise caution when clicking on a hyperlink. Although we use reasonable care in including a hyperlink on our own web page, we do not regularly monitor the websites of these third parties, and are not responsible for any damage or consequences you suffer by using these hyperlinks. We are not bound by the Privacy Policies of any third party website that you access by a hyperlink, nor are they bound by ours. We encourage you to read the Policies of those third party websites before interacting with them or making purchases. They may collect different information and by different methods than we do.
3.6 Other purposes
We may disclose your personal data as necessary to comply with any legal obligation or to protect your interests, or the vital interests of others or our company.
4. TRACKING TECHNOLOGIES
4.1 Cookies, Log Files and Web Beacons
Like many other websites, we make use of log files. These files merely log visitors to the site – usually a standard procedure for hosting companies and a part of hosting services’ analytics. The information inside the log files includes internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date/time stamp, referring/exit pages and possibly the number of clicks. This information is used to analyze trends, administer the site, track user’s movement around the site and gather demographic information. IP addresses and other such information are not linked to any information that is personally identifiable.
Most browsers are set to accept cookies by default. If you wish to disable cookies, you may do so through your individual browser options. However, this may affect your ability to use or make purchases from our website. More detailed information about cookie management with specific web browsers can be found at the browsers’ respective websites.
5. WEBSITE ANALYTICS
6. PROCESSING YOUR INFORMATION
For the most part, we do not process your information in-house, but give it to third party processors for processing. For example, when Stripe takes your payment information, they are a third party processor. They process your payment and remit the funds to us. So in many instances, it will be necessary for us to transmit your information to a third party processor, as we do not have the capability to perform these functions. More detail on third party processing is detailed below.
However, we may, from time to time, process your data internally. The legal basis for this processing is both your consent to the processing, and our need to conduct our legitimate business interests. Our purposes in processing this information, if we do, is to administer, maintain, and improve our website and offerings, to enter into contracts with you, to fulfill the terms of those contracts, to keep records of our transactions and interactions, to be able to provide you with goods and services, to comply with our legal obligations, to obtain professional advice and to protect the rights and interests of our company, our customers (including you) and any third parties. We may process the following data:
(a) Data associated with your account, such as your name, address, email address and payment information
(b) Data about your usage of our website, such as your IP address, geographical information, and how long you accessed our website and what you viewed.
(c) Data related to your personal profile, such as your name, address.
(d) Data that you provide us in the course of using our services.
(e) Data that you post on our website, such as comments or responses to blogs.
(f) Data that you submit to us when you make an inquiry regarding our website or offerings.
(g) Data related to your transactions with us, including your purchase of our goods or services. This information may include contact details and payment information.
(h) Data that you provide to us when you subscribe to our emails or newsletters, including your email address and contact information.
(i) Data that you submit to us via correspondence, such as when you email us with questions.
(j) Any other data identified in this policy, for the purpose of complying with our legal obligations, or to protect the vital interests of you or any other natural person.
7. DATA RETENTION
We may retain personal data as long as it is needed to conduct our legitimate business purposes or to comply with our legal obligations, or until you ask us to delete your data. For example, we will retain certain personal information indefinitely for the purposes of maintaining your account, unless and until you delete your account. Data that we gather for a specific and particular purpose, such as assisting law enforcement or analyzing trends, will not be kept for longer than is necessary for that particular purpose. Data that is no longer needed by us for any of the purposes listed above will be permanently deleted.
You may request that we delete your data at any time. However, note that we cannot control the retention policies of third parties. If you wish to have any third parties, including those to whom we’ve transmitted your data, delete that data, you will need to contact those third parties directly. You may request from us a list of all third parties to whom we have transmitted your data.
8. SECURITY OF YOUR INFORMATION
We take all reasonable steps to protect your personal data and keep your information secure. We use recognized online secure payment systems and implement generally accepted standards of security to protect against personal data loss or misuse. However, no security measure is foolproof, and no method of data transmission can be guaranteed against interception or misuse. We cannot guarantee complete security of any information you transmit to us.
We will notify you promptly of any known breach of our security systems or your data which might expose you to serious risk.
This website is not designed for use by children under the age of 16, and we do not knowingly solicit personal data from anyone under the age of 16. If you are under the age of 16, do not access or use our website or related products or services. If you become aware that we have collected data of anyone under the age of 16, please contact us so that we may delete that data.
10. YOUR RIGHTS
You have certain rights with respect to your personal data, as outlined below. We reserve the right to request that you provide us with evidence of your identity before we take any action with respect to the exercise of your data rights.
10.1. Right of confirmation
Each data subject shall have the right granted by the European legislator to obtain from the controller the confirmation as to whether or not personal data concerning him or her are being processed. If a data subject wishes to avail himself of this right of confirmation, he or she may, at any time, contact the controller.
10.2. Right of access
Each data subject shall have the right granted by the European legislator to obtain from the controller free information about his or her personal data stored at any time and a copy of this information. Furthermore, the data subject shall have a right to obtain information as to whether personal data are transferred to a third country or to an international organisation. Where this is the case, the data subject shall have the right to be informed of the appropriate safeguards relating to the transfer.
If a data subject wishes to exercise this right of access, he or she may, at any time, contact the controller.
10.3. Right to rectification
Each data subject shall have the right granted by the European legislator to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
If a data subject wishes to exercise this right to rectification, he or she may, at any time, contact the controller.
10.4. Right to erasure (Right to be forgotten)
Each data subject shall have the right granted by the European legislator to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:
(a) The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
(b) The data subject withdraws consent to which the processing is based according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
(c) The data subject objects to the processing pursuant to Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR.
(d) The personal data have been unlawfully processed.
(e) The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
(f) The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
If one of the aforementioned reasons applies, and a data subject wishes to request the erasure of personal data stored by Blattner Coaching, he or she may, at any time, contact the controller. Blattner Coaching shall promptly ensure that the erasure request is complied with immediately.
Where the controller has made personal data public and is obliged pursuant to Article 17(1) to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform other controllers processing the personal data that the data subject has requested erasure by such controllers of any links to, or copy or replication of, those personal data, as far as processing is not required.
10.5. Right of restriction of processing
Each data subject shall have the right granted by the European legislator to obtain from the controller restriction of processing where one of the following applies:
(a) The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
(b) The processing is unlawful and the data subject opposes the erasure of the personal data and requests instead the restriction of their use instead.
(c) The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims.
(d) The data subject has objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
If one of the aforementioned conditions is met, and a data subject wishes to request the restriction of the processing of personal data stored by Blattner Coaching, he or she may at any time contact the controller.
10.6. Right to data portability
Each data subject shall have the right granted by the European legislator, to receive the personal data concerning him or her, which was provided to a controller, in a structured, commonly used and machine-readable format. He or she shall have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR, or on a contract pursuant to point (b) of Article 6(1) of the GDPR, and the processing is carried out by automated means, as long as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, in exercising his or her right to data portability pursuant to Article 20(1) of the GDPR, the data subject shall have the right to have personal data transmitted directly from one controller to another, where technically feasible and when doing so does not adversely affect the rights and freedoms of others.
In order to assert the right to data portability, the data subject may at any time contact the controller.
10.7. Right to object
Each data subject shall have the right granted by the European legislator to object, on grounds relating to his or her particular situation, at any time, to processing of personal data concerning him or her, which is based on point (e) or (f) of Article 6(1) of the GDPR. This also applies to profiling based on these provisions.
Blattner Coaching shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.
If the controller processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing. This applies to profiling to the extent that it is related to such direct marketing. If the data subject objects to the controller to the processing for direct marketing purposes, Blattner Coaching will no longer process the personal data for these purposes.
In order to exercise the right to object, the data subject may contact the controller. In addition, the data subject is free in the context of the use of information society services, and notwithstanding Directive 2002/58/EC, to use his or her right to object by automated means using technical specifications.
10.8. Automated individual decision-making, including profiling
Each data subject shall have the right granted by the European legislator not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her, or similarly significantly affects him or her, as long as the decision (1) is not is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) is not authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is not based on the data subject’s explicit consent.
If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) it is based on the data subject’s explicit consent, the controller shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express his or her point of view and contest the decision.
If the data subject wishes to exercise the rights concerning automated individual decision-making, he or she may, at any time, contact the controller.
10.9. Right to withdraw data protection consent
Each data subject shall have the right granted by the European legislator to withdraw his or her consent to processing of his or her personal data at any time.
If the data subject wishes to exercise the right to withdraw the consent, he or she may, at any time, contact the controller.
11. NEWSLETTER PRIVACY
We offer the opportunity for you to volunteer certain information to us that is used for email and marketing purposes. This information includes, but is not limited to, your name and email address. You will have an opportunity to unsubscribe from any future communications via email.
12. LAW AND JURISDICTION
Last Updated: April 19, 2021