Privacy Policy

1. Preamble With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") we process, for what purposes and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and, in particular, on our website forster.company, in mobile applications and within external online presences, such as our social media profiles. Status: March 20262. Controller Florian Forster, Germany Website: https://forster.company3. Overview of Processing The following overview summarizes the types of data processed and the purposes of their processing:Types of Data Processed Inventory data (e.g., names, addresses).Contact data (e.g., email, telephone numbers).Content data (e.g., text entries, photographs, videos).Usage data (e.g., websites visited, interest in content, access times).Meta/communication data (e.g., device information, IP addresses).Purposes of Processing Provision of the online offer and user-friendliness.Contact requests and communication.Security measures (e.g., bot protection via reCAPTCHA).Web analytics and reach measurement.Provision of integrated third-party content (e.g., Maps, YouTube).4. Relevant Legal Bases We process data based on the following legal grounds of the General Data Protection Regulation (GDPR):Consent (Art. 6 (1) (a) GDPR): For specific processing operations where we obtain your explicit consent (e.g., certain cookies or tracking).Performance of a contract (Art. 6 (1) (b) GDPR): Necessary for fulfilling a contract or pre-contractual measures (e.g., contact inquiries).Legitimate interests (Art. 6 (1) (f) GDPR): Necessary for the protection of our legitimate interests (e.g., technical stability, security, and analysis of our website).5. International Data Transfers (USA) Some of the services we use (specifically Google services) may transfer data to the USA. We ensure that these transfers are compliant with the GDPR. We rely on the EU-US Data Privacy Framework (DPF), which ensures an adequate level of data protection for certified companies in the USA. Additionally, we have concluded Standard Contractual Clauses (SCCs) with our service providers to ensure data safety in the event the DPF is not applicable.6. Security Measures and Hosting Our website is hosted by Hostinger (HOSTINGER operations, UAB, Švitrigailos str. 34, Vilnius 03230 Litauen). Hostinger processes connection data and server log files (IP address, date, time) on our behalf to ensure the secure and efficient provision of our website. Legal basis: Legitimate interests (Art. 6 (1) (f) GDPR).SSL/TLS Encryption For security reasons and to protect the transmission of confidential content, such as inquiries you send to us, this site uses SSL or TLS encryption.7. Contact Management & Communication WPForms (Contact Form) When you use our contact form provided by WPForms, the data entered (Name, Email, Message) is processed to handle your inquiry. Legal basis: Performance of a contract or pre-contractual measures (Art. 6 (1) (b) GDPR).WhatsApp Business If you contact us via WhatsApp Business, please note that WhatsApp Inc. receives data (e.g., your mobile number). We use the business version to ensure a professional communication channel. We recommend reviewing WhatsApp’s own privacy policy for details on their data handling.8. Web Analysis and Marketing Google Analytics & Google Tag Manager We use Google Analytics to analyze website usage and Google Tag Manager to manage website tags. These services are provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).Anonymization: We use the "IP anonymization" function.Consent: These tools are only activated if you provide consent via our cookie banner. Legal basis: Consent (Art. 6 (1) (a) GDPR).9. Plugins and Integrated Content Google Maps We embed maps from Google Maps to show our location in Munich. This requires your IP address to be sent to Google. Legal basis: Consent (Art. 6 (1) (a) GDPR).YouTube We embed videos from YouTube. When you play a video, YouTube (Google) sets cookies and processes data about your behavior. Legal basis: Consent (Art. 6 (1) (a) GDPR).Google reCAPTCHA v3 To protect our contact forms from automated "bots" and spam, we use Google reCAPTCHA v3. This service analyzes your behavior on the website to distinguish humans from machines. Legal basis: Legitimate interests (Art. 6 (1) (f) GDPR).Google Fonts (Local Integration) To protect your privacy, we have integrated Google Fonts locally on our server. This means that when you visit our site, your browser does not connect to Google’s servers to load fonts, and no IP address is transmitted to Google for this purpose.

Font Awesome This website uses Font Awesome, a service by Fonticons, Inc. (307 S. Main St., Suite 202, Bentonville, AR 72712, USA). When you access our site, your browser loads icons from Font Awesome's servers (use.fontawesome.com), which may transmit your IP address. Legal basis: Legitimate interests (Art. 6(1)(f) GDPR). More information: https://fontawesome.com/privacy10. Your Rights As a data subject, you have the following rights:Right of access: To know what data we store.Right to rectification: To correct inaccurate data.Right to erasure: To have your data deleted.Right to restrict processing: To limit how we use your data.Right to object: Especially against processing based on legitimate interests.Right to data portability: To receive your data in a machine-readable format.Right to lodge a complaint: With a supervisory authority (e.g., the Bayerisches Landesamt für Datenschutzaufsicht in Munich).