Dr. Katharina Yadav
We are pleased that you are visiting our website. The transparent handling of your personal data is very important to us. In the following, we fulfil our legal duty to inform you in a comprehensive manner. We explain which personal data is collected when you visit our website, for what purpose and on which legal basis this is carried out, and how long your data is stored. We also inform you about your rights as a data subject.
The legal framework for data protection is primarily based on the European General Data Protection Regulation (GDPR), as well as the German Telecommunications-Telemedia Data Protection Act (TDDDG).
This Privacy Policy applies to the online service accessible under the domain kiju-psychiatrie-yadav.de.
The controller responsible for processing personal data within the meaning of the EU General Data Protection Regulation (GDPR) is:
Dr Katharina Yadav
Sierichstraße 6
22301 Hamburg
(01520) 6193887
info@kiju-psychiatrie-yadav.de
Cookies are text files that are stored on the user’s device by the browser when a website is accessed, and can be read again when the website is revisited from the same device. The characteristic string stored in a cookie allows users to be recognised across pages and, where applicable, across sessions. As an alternative to cookies, information may also be stored in the local storage of your browser. Some functions of our website cannot be provided without the use of cookies or local storage (“technically necessary cookies”). Other cookies enable us to carry out various analyses, such as recognising the browser you used on a previous visit and transmitting different information to us (“non-essential cookies”). Cookies allow us to make our online offering more user-friendly and effective, for example by understanding how our website is used and identifying your preferred settings (e.g. language and regional preferences). If third parties process information using cookies, the information is obtained directly via your browser. Cookies do not cause any damage to your device, cannot run programmes and do not contain viruses.
Details on the specific services for which we use cookies can be found in the individual processing operations described below. Comprehensive information about the cookies used can be found in the cookie settings or the consent manager embedded on this website.
As a data subject within the meaning of the General Data Protection Regulation (GDPR), you have the following rights with respect to us, the data controller:
Right of Access
You have the right to obtain confirmation as to whether personal data concerning you is being processed by us. Where this is the case, you have the right to request access to this personal data.
Right to Rectification
You have the right to request the rectification and/or completion of inaccurate or incomplete personal data concerning you. We are required to correct such data without undue delay.
Right to Erasure (“Right to be Forgotten”)
You have the right to request the immediate deletion of personal data concerning you, and we are obliged to delete such data without delay where one of the legal grounds applies.
If we have made personal data concerning you public and are obliged to erase it pursuant to Article 17 (1) GDPR, we will take reasonable steps — taking into account available technology and implementation costs — to inform other controllers processing the personal data that you have requested the deletion of all links to, copies of, or replications of that personal data.
Right to Restriction of Processing
Under the conditions set out by law, you may request the restriction of processing of your personal data.
Where processing has been restricted, such data may — apart from storage — only be processed with your consent, or for the establishment, exercise, or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or a Member State.
If the restriction of processing is lifted, you will be informed beforehand.
Right to Data Portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance.
Furthermore, you have the right — where technically feasible — to have the personal data transmitted directly from one controller to another. Rights and freedoms of others must not be adversely affected.
The right to data portability does not apply to processing necessary for performing a task carried out in the public interest or in the exercise of official authority.
Right to Withdraw Consent
You have the right to withdraw your consent at any time. The withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.
Right to Object
You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data carried out pursuant to Article 6 (1) (e) or (f) GDPR, including profiling based on those provisions.
We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or unless the processing serves the establishment, exercise, or defence of legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to such processing, including profiling related to direct marketing.
If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority - in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement - if you consider that the processing of your personal data infringes the GDPR.
The supervisory authority with which the complaint has been lodged will inform you of the progress and outcome of the complaint, including your right to a judicial remedy under Article 78 GDPR.
The competent supervisory authority for the controller is:
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
We use the services of:
TrafficPlex GmbH
Konsul-Smidt-Str. 90
28217 Bremen
for hosting our website.
Further information can be found in the Privacy Policy of TrafficPlex GmbH: https://www.lima-city.de/juristisches#datenschutzerklaerung/.
The legal basis is our legitimate interest in operating and maintaining the security of our website pursuant to Article 6 (1) sentence 1 (f) GDPR.
These data are deleted after a maximum of 7 days. They are not merged with other data sources.
The legal basis for processing is Article 6 (1) (b) GDPR, which allows the processing of data for the performance of a contract or pre-contractual measures.Processing is carried out on the basis of our overriding legitimate interest in displaying our website and ensuring its security and stability, pursuant to Article 6 (1) (f) GDPR in conjunction with § 25 (2) TTDSG.
There is no right to object to this processing due to the exception set out in Article 21 GDPR.
The data are deleted as soon as they are no longer required for the purpose for which they were collected. In the case of data collected for the provision of the website, this is the case when the respective session has ended.
Our website provides a contact form that can be used for electronic communication. If you choose to use this option, the data entered into the input fields will be transmitted to us and stored.
To submit your enquiry, the following data must be collected and stored:
Additionally, the following data may be provided voluntarily:
When using the contact form, your personal data will not be passed on to third parties. If your data needs to be transmitted to a third party for the purpose of handling your request, this will only occur with your prior consent.
The legal basis for this data processing is your consent pursuant to Article 6 (1) (a) GDPR. If your enquiry aims at entering into a contract, an additional legal basis is Article 6 (1) (b) GDPR. Processing of technically necessary data (such as timestamp and IP address) is based on our legitimate interest in ensuring IT security, pursuant to Article 6 (1) (f) GDPR. There is no legal or contractual obligation to provide your data; however, your request cannot be processed without completing the required fields.
Data will be deleted as soon as they are no longer needed for the purpose for which they were collected. For personal data transmitted via the contact form, this is the case when the conversation with the user has ended - that is, when the circumstances indicate that the matter in question has been conclusively resolved. Additional personal data collected during submission will also be deleted at the latest once the conversation has ended.
If the contents of the correspondence are subject to statutory retention periods, the data will be deleted only after these periods have expired.
When contacting us via email, the following data are processed:
You may withdraw your consent at any time. All personal data stored during email communication will then be deleted, and the conversation cannot be continued.
We use the Google Maps service to display directions and our practice location. Google Maps is a service provided by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you access content that uses Google Maps, a connection to Google’s servers is established. During this process, your IP address and, where applicable, browser information such as your user agent are transmitted. These data are processed solely for the purposes described above and to maintain the security and functionality of Google Maps.
As part of the processing activities mentioned above, a service provider with its registered office and/or server location in the United States of America (USA) is involved on the basis of a data processing agreement pursuant to Art. 28 GDPR.
The US-based company holds a certification under the adequacy decision pursuant to Art. 45 GDPR (the so-called “EU–US Data Privacy Framework” (DPF)). The DPF is an agreement between the European Union and the USA intended to ensure compliance with European data protection standards during data processing operations in the USA. Every company certified under the DPF is obliged to comply with these data protection standards. Further information can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnywAAC&status=Active
If the service provider is not certified under the DPF, an adequate level of data protection for data transfers is ensured on the basis of the Standard Contractual Clauses approved by the European Commission pursuant to Art. 46 (2) GDPR. The use of these Standard Contractual Clauses ensures compliance with European data protection standards when data is transferred to the service provider.