This privacy policy informs you about the type, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within our online services and the associated websites, functions, and content, as well as external online presences, such as our social media profiles (hereinafter collectively referred to as the "online offering"). Regarding the terminology used, such as "processing" or "controller," we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Controller:
Isabell Wegner
Kemnitzer Weg 9
17509 Hanshagen
Germany

Email: allerlei@art-in-vielfalt.de

Types of Data Processed:
- Master data (e.g., names, addresses)
- Contact data (e.g., email, phone numbers)
- Content data (e.g., text entries, photographs, videos)
- Usage data (e.g., visited websites, interest in content, access times)
- Meta/communication data (e.g., device information, IP addresses)

Purpose of Processing:
- Provision of the online offering, its functions, and content
- Responding to contact inquiries and communication with users
- Security measures
- Reach measurement / marketing

Definitions:
"Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); a natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier (e.g., cookie), or to one or more specific characteristics of their physical, physiological, genetic, mental, economic, cultural, or social identity.

"Processing" means any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and covers virtually any handling of data.

"Controller" means the natural or legal person, authority, institution, or other body that alone or jointly with others determines the purposes and means of the processing of personal data.

Legal Basis:
In accordance with Art. 13 GDPR, we inform you of the legal bases of our data processing. If not explicitly stated, the legal basis is as follows: consent – Art. 6(1)(a) and Art. 7 GDPR; processing to fulfill contractual obligations – Art. 6(1)(b) GDPR; processing to comply with legal obligations – Art. 6(1)(c) GDPR; processing to protect legitimate interests – Art. 6(1)(f) GDPR; processing to protect vital interests – Art. 6(1)(d) GDPR.

Security Measures:
Please check this privacy policy regularly for updates. We will adjust it whenever changes in our data processing require it. If updates require your action (e.g., consent) or individual notification, we will inform you.

Collaboration with Processors and Third Parties:
We share data with other persons or companies (processors or third parties) only based on legal permission, your consent, contractual necessity, or our legitimate interests. Any engagement of third parties as processors is based on Art. 28 GDPR.

Transfers to Third Countries:
Data transfers outside the EU or EEA occur only when necessary for contractual obligations, based on consent, legal obligations, or legitimate interests, and comply with the GDPR requirements (e.g., EU adequacy decisions or standard contractual clauses).

Rights of Data Subjects:
You have the right to request confirmation, access, rectification, erasure, restriction of processing, data portability, and to lodge a complaint with the competent supervisory authority, in acco