Privacy Policy
Introduction
This website is operated by: Dr Lenoir Consulting.
It is very important to us to handle the data of our website visitors in a trustworthy manner and to protect it in the best possible way. For this reason, we make every effort to fulfil the requirements of the GDPR.
Below we explain how we process your data on our website. We use language that is as clear and transparent as possible so that you really understand what happens to your data.
General information
Processing of personal data and other terms
Data protection applies to the processing of personal data. Personal data means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Such data is processed when ‘something happens to it’. Here, for example, the IP is transmitted from the browser to our provider and automatically stored there. This is then a processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
Applicable regulations/laws – GDPR, BDSG and TDDDG
The scope of data protection is regulated by law. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.
In addition, the TDDDG supplements the provisions of the GDPR as far as the use of cookies is concerned.
Person responsible
The controller within the meaning of the GDPR is responsible for data processing on this website. This is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
You can reach the person responsible at:
Dr Lenoir Consulting
Brauhofstr. 15, 10587 Berlin
How data is generally processed on this website
As we have already established, there is data (e.g. IP address) that is collected automatically. This data is mainly required for the technical provision of the website . If we also use personal data or collect other data, we will inform you of this or ask for your consent.
You consciously provide us with other personal data.
You will find detailed information on this below.
Your rights
The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the rectification, blocking or erasure of this data or lodge a complaint with the competent data protection supervisory authority. You can revoke your consent at any time.
You can find out what these rights look like in detail and how to exercise them in the last section of this privacy policy.
Data protection – Our view
Data protection is more than just a chore for us! Personal data has great value and careful handling of this data should be a matter of course in our digitalised world. As a website visitor, you should also be able to decide for yourself what “happens” to your data, when and by whom. That is why we are committed to complying with all legal regulations, only collect the data that is necessary for us and, of course, treat it confidentially.
Forwarding and deletion
The transfer and deletion of data are also important and sensitive issues. We would therefore like to briefly inform you in advance about our general approach to this.
Data will only be passed on on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if it is a so-called processor and an order processing contract has been concluded in accordance with Art. 28 GDPR.
We delete your data when the purpose and legal basis for processing no longer apply and the deletion does not conflict with any other legal obligations. Art. 17 GDPR also provides a ‘good’ overview of this.
For further information, please refer to this privacy policy and contact the person responsible if you have any specific questions.
Hosting
This website is hosted externally. The personal data collected on this website is stored on the host’s servers. This includes the automatically collected and stored log files (see below for more details), as well as all other data provided by website visitors.
External hosting is used for the purpose of secure, fast and reliable provision of our website and in this context serves to fulfil the contract with our potential and existing customers.
The legal basis for the processing is Art. 6 para. 1 lit. a, b and f GDPR, as well as § 25 para. 1 TDDDG, insofar as consent includes the storage of cookies or access to information in the terminal device of the website visitor or user within the meaning of the TDDDG.
Our hoster only processes data that is required to fulfil its performance obligation and acts as our processor, i.e. it is subject to our instructions. We have concluded a corresponding contract for order processing with our hoster.
We use the following hoster: Hostinger
HOSTINGER operations UAB, Švitrigailos str. 34, LT-03230 Vilnius, Lithuania.
https://www.hostinger.de/datenschutz-bestimmungen.
Legal basis
The processing of personal data always requires a legal basis. The GDPR provides the following options in Art. 6 para. 1 sentence 1:
- The data subject has given their consent to the processing of their personal data for one or more specific purposes;
- Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
- Processing is necessary for compliance with a legal obligation to which the controller is subject;
- Processing is necessary in order to protect the vital interests of the data subject or of another natural person;
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
- Processing is necessary for the purposes of the legitimate interests pursued by the controller(s) or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
In the following sections, we will provide you with the specific legal basis for the respective processing.
What happens on our website
When you visit our website, we process your personal data.
We use SSL or TLS encryption to protect this data in the best possible way against unauthorised access by third parties. You can recognise this encrypted connection by the https:// or lock symbol in the address bar of your browser.
Below you can find out what data is collected when you visit our website, for what purpose this is done and on what legal basis.
Data collection when accessing the website
When you visit the website, information is automatically stored in so-called server log files. This is the following information:
– Browser type and browser version
– Operating system used
– Referrer URL
– Host name of the accessing computer
– Time of the server request
– IP address
This data is temporarily required in order to be able to display our website to you permanently and without any problems. In particular, this data is used for the following purposes:
– System security of the website
– System stability of the website
– Troubleshooting on the website
– Establishing a connection to the website
– Presentation of the website
Data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR and is based on our legitimate interest in the processing of this data, in particular our interest in the functionality of the website and its security.
Where possible, this data is stored pseudonymised and deleted once the respective purpose has been achieved.
If the server log files make it possible to identify the data subject, the data is stored for a maximum period of 14 days. An exception is made if a security-relevant event occurs. In this case, the server log files are stored until the security-relevant event has been rectified and finally clarified.
Otherwise, no merging with other data takes place.
Cookies
General information
This website uses so-called cookies. This is a data record, information that is stored in the browser of your end device and is related to our website.
The use of cookies can make it easier for visitors to navigate the website.
In our cookie consent tool you will find all information about the cookies that we use on our website (if applicable, after your consent).
Rejecting cookies
You can manage all cookies that are not technically necessary directly via our cookie consent tool.
You can prevent cookies from being set by adjusting your browser settings.
Here you will find the corresponding links to frequently used browsers:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+l%C3%B6schen&redirectlocale=en
Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Microsoft Edge: https://support.microsoft.com/de-de/windows/l%C3%B6schen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Safari: https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web and https://support.apple.com/de-de/guide/safari/sfri11471/mac.
If you are using a different browser, we recommend that you enter the name of your browser and ‘delete and manage cookies’ in a search engine and follow the official link to your browser.
Alternatively, you can also manage your cookie settings at www.aboutads.info/choices/
or www.youronlinechoices.com.
However, we must point out that a comprehensive blocking/deletion of cookies can lead to impairments in the use of the website.
Technically necessary cookies
We use technically necessary cookies on this website to ensure that our website functions correctly and in accordance with the applicable laws. They help to make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.
The legal basis for this is Art. 6 para. 1 lit. b, c and/or f GDPR, depending on the individual case.
Technically unnecessary cookies
We also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyse the surfing behaviour of the website visitor or to offer website functions that are not technically necessary.
The legal basis for this is your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Technically unnecessary cookies are only set with your consent, which you can revoke at any time in the cookie consent tool.
Contacting us
When you contact us by email, we process your email address and any other data contained in the email. This data is stored on the mail server and in some cases on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.
Telephone
If you contact us by telephone, the call data may be stored in pseudonymised form on the respective end device and with the telecommunications provider used. Personal data collected during the telephone call will only be processed in order to deal with your enquiry. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.
Contact form
We offer a contact form. This is used to contact our company.
In this form, we usually process your first and last name, your telephone number, your e-mail address, a postal address and the content of the message. The data is stored on our web server and forwarded internally to the relevant e-mail addresses.
The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in responding to your request and in an uncomplicated way of contacting you. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
We delete this data no later than 3 months after receipt, unless it is required for a contractual relationship that has arisen.
We bind the contact form from
WPForms
WPForms LLC, WPForms 7732 Maywood Crest Dr, West Palm Beach, FL 33412, USA
https://wpforms.com/privacy-policy/
on our website.
Appointment scheduling tool
Microsoft Bookings
In order to be able to arrange an appointment with us, we integrate the functions of Microsoft Bookings on our website. This service is provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.
The data requested for this purpose is used for the planning, realisation and follow-up of the appointment.
This data is used exclusively for technical provision and is then automatically deleted.
Microsoft Bookings uses cookies to collect and store data on our website. These cookies are only set with consent. This consent can be revoked and managed at any time in our cookie consent tool. The legal basis for this is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as this consent includes access to information in the user’s terminal device or the storage of cookies within the meaning of the TDDDG.
In addition, the legal basis for the use of Microsoft Bookings is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in engaging in direct dialogue with customers, potential customers and other interested parties and processing enquiries directly and as quickly as possible.
The data will be stored until the data subject requests its erasure, withdraws consent to its storage or the purpose for which it was stored no longer applies. Mandatory statutory provisions on retention periods remain unaffected.
You can find more information here:
https://privacy.microsoft.com/de-DE/privacystatement
Cookie Consent Tool
CookieYes
We use the CookieYes consent management tool to ensure that only those cookies are set on our website for which there is a legal basis. This service is provided by Mozilor Limited, 3 Warren Yard, Wolverton Mill, Milton Keynes, England, MK12 5NW, United Kingdom.
We use CookieYes to obtain the website visitor’s consent to the storage of certain cookies in their browser or the use of certain technologies and to document them in accordance with data protection regulations.
When this website is accessed, the consent given by the website visitor or the revocation of consent is stored in the website visitor’s browser.
A connection to the CookieYes servers is established for this purpose.
The legal basis is Art. 6 para. 1 lit. c GDPR. CookieYes is used to obtain the legally required consent for the use of cookies.
The data collected will be stored until the website visitor requests deletion or deletes CookieYes themselves or the purpose for storing the data no longer applies. This
The mandatory statutory retention periods remain unaffected by this.
Newsletter
MailerLite
We use MailerLite to provide our newsletter. This service is provided by MailerLite Limited, 38 Mount Street Upper, Dublin 2, D02 PR89, Ireland.
This service can be used to organise and analyse the sending of newsletters. The data entered to receive the newsletter is stored on MailerLite’s servers.
Interactions with the newsletter can be analysed with the help of MailerLite. Conversion rates can also be determined and newsletter users can be categorised in order to adapt the newsletter to different target groups.
You can object to this analysis via the link in every newsletter message.
The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time by unsubscribing from the newsletter. The legality of the processing that has already taken place remains unaffected by any revocation.
The data will be deleted at the end of the contract between us and MailerLite, unless the website visitor revokes their consent beforehand. If this is the case, the data will be deleted from the mailing list.
In addition, after unsubscribing from the newsletter, the e-mail address is stored on a blacklist separately from other data for an indefinite period of time. The legal basis for this is Art. 6 para. 1 lit.f GDPR. It serves the interest of the website visitor as well as our interest in using/operating a newsletter in accordance with the legal requirements.
Further details:
https://www.mailerlite.com/features.
https://www.mailerlite.com/legal/privacy-policy.
Analysis and tracking tools
MailerLite
We use the MailerLite analysis and tracking service on our website, offered by UAB “MailerLite”, 38 Mount Street Upper, Dublin, Ireland.
MailerLite offers a platform for creating and analysing websites and landing pages. For this purpose, personal data such as email addresses, IP addresses, usage data and technical information such as browser and device type are processed.
The purpose of data processing is to analyse user behaviour in order to optimise marketing measures. The legal basis for data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR.
MailerLite may set cookies to track user behaviour on the website and to support analysis. These cookies are only set with your consent. The legal basis for the setting of cookies is Art. 6 para. 1 lit. a GDPR.
There is no transfer of personal data to third countries, as the data is processed in the EU. The data will be stored until the user cancels the newsletter or revokes their consent.
Further information on data processing can be found at:
https://www.mailerlite.com/legal/privacy-policy.
Social Media
In addition to our website, we are also present with our company on social networks. Here we want to present our company and create the opportunity to get in touch with us.
We also use the opportunity to place adverts and job advertisements on social media.
In the following, we provide information about which data we and the respective social network process you visit and interact with our profile.
We operate a LinkedIn profile on https://www.linkedin.com/. This social network is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
Interaction with our company profile
When you visit our LinkedIn profile and interact with us via it, we process personal data.
personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest
interest to provide relevant and interesting content and to enable the use and functionality of our LinkedIn profile
Insofar as an enquiry is related to the fulfilment of a contract or is necessary to carry out pre-contractual
measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
Page Insights
LinkedIn provides us with summarised statistics and insights (so-called page insights) that give us information about how people interact with our company page. Among other things, we receive information about the number of profiles that view, comment on or otherwise interact with our posts, as well as summarised demographic and other information that helps us to learn about the interaction with our page or our LinkedIn profile. Pages Insights provided to us by LinkedIn consist of aggregated data, and LinkedIn does not provide us with any personally identifiable information about members in relation to Page Insights. We also have no way of linking Page Insights to individual members.
When placing adverts, LinkedIn sends us information about the types of people who see our adverts and about the success of our adverts. Personal data is only passed on to us if this person has consented to such processing. We also receive information from LinkedIn that enables us to understand which of our adverts led to a purchase being made or an action being taken.
The purpose of processing this data is to analyse our reach and to adapt our content and advertisements to user interests. By analysing this data, we can recognise how our content, our profile and our advertising are consumed. This enables us to create target group-orientated content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Page Insights, the processing is carried out in joint responsibility with LinkedIn in accordance with Art. 26 para. 1 GDPR.
We have concluded a corresponding agreement with LinkedIn for this purpose, which can be viewed here (https://legal.linkedin.com/pages-joint-controller-addendum).
The contact details of LinkedIn are:
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
For LinkedIn, you can contact the data protection officer at the following link:
https://www.linkedin.com/help/linkedin/ask/TSO-DPO.
Processing by LinkedIn
In connection with your visit to our company profile, LinkedIn may also process additional personal data. In this case, the processing is carried out under the sole responsibility of LinkedIn and without our knowledge. You can find more information from LinkedIn on this at
https://de.linkedin.com/legal/privacy-policy.
Third-party content
Polylang
We offer the functions of Polylang on our website. This service is provided by WP SYNTEX, 28 rue Jean Sebastien Bach, 38090 Villefontaine, France.
Polylang is a WP plugin that can translate posts, pages, media, tags, widgets and navigation menus.
The Polylang plugin does not send any personal data of the website visitor to WP SYNTEXT.
However, the Polylang plugin can set a cookie that remembers the language selected by the user when this user visits the website again. This cookie has a standard expiry time of 1 year.
Legal basis for the processing Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in being able to translate our website into different languages in order to be able to offer our website internationally.
Further information:
https://polylang.pro/privacy-policy/.
Audio and video conferencing
Microsoft Teams
We use Microsoft Teams to communicate with customers. Microsoft Teams is an online conferencing tool. This service is provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.
When communicating with this tool via video or audio conferencing, personal data is processed by us and the provider of the tool. The data collected includes all information that you provide when using the tool. Metadata relating to the conference is also processed. Furthermore, technical information is processed that is required for the function of online communication. Furthermore, all files that are shared within the tool are stored on the tool provider’s servers.
Microsoft Teams can also set cookies. These cookies are only set with consent. This consent can be revoked at any time. The legal basis for this is Art. 6 para. 1 lit. a GDPR.
Otherwise, the legal basis for the processing of data by Microsoft Teams is Art. 6 para. 1 lit. b GDPR. The communication is related to the fulfilment of a contract or is necessary for the fulfilment of pre-contractual obligations. Furthermore, this tool is used to simplify communication with our company. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
This data is stored until the data subject requests its deletion, the consent to its storage is revoked or the purpose for its storage no longer applies. Cookies remain on the end device until the user deletes them. Mandatory statutory provisions on retention periods remain unaffected.
Further details:
https://privacy.microsoft.com/de-de/privacystatement.
Cloud backups
We use cloud backup functions on our website to protect the data and content of the website from data loss, corruption or security incidents. This ensures that the website can be restored quickly and completely in the event of a server failure, a hacker attack or other unforeseen events.
If personal data is stored on our website, it is transferred to the servers of the respective provider during backups.
The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in securing our data.
We use the following cloud backup service:
One Drive
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
https://privacy.microsoft.com/de-de/privacystatement.
What else is important
Finally, we would like to inform you in detail about your rights and how you will be informed about changes to data protection requirements.
Your rights in detail
Right to information according to Art. 15 GDPR
You can request information about whether your personal data is being processed. If this is the case, you can request further information on the type and manner of processing. A detailed list can be found in Art. 15 para. 1 lit. a to h GDPR.
Right to rectification in accordance with Art. 16 GDPR
This right includes the correction of incorrect data and the completion of incomplete personal data.
Right to erasure in accordance with Art. 17 GDPR
This so-called ‘right to be forgotten’ gives you the right, under certain conditions, to request the deletion of personal data by the controller. This is generally the case if the purpose of the data processing no longer applies, if consent has been withdrawn or the initial processing took place without a legal basis. A detailed list of reasons can be found in Art. 17 para. 1 lit. a to f GDPR. This “right to be forgotten” also corresponds to the controller’s obligation under Art. 17 para. 2 GDPR to take reasonable measures to bring about the general erasure of data.
Right to restriction of processing in accordance with Art. 18 GDPR
This right is subject to the conditions set out in Art. 18 para. 1 lit. a to d.
Right to data portability in accordance with Art. 20 GDPR
This regulates the basic right to receive your own data in a commonly used form and to transfer it to another controller. However, this only applies to data processed on the basis of consent or a contract in accordance with Art. 20 (1) (a) and (b) and insofar as this is technically feasible.
Right to object pursuant to Art. 21 GDPR
In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the controller in the processing and if the processing relates to direct marketing and/or profiling.
Right to “individual decision-making” pursuant to Art. 22 GDPR
In principle, you have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects concerning you or similarly significantly affects you. However, this right is also subject to restrictions and additions in Art. 22 (2) and (4) GDPR.
Further rights
The GDPR includes comprehensive rights to inform third parties whether or how you have asserted rights under Art. 16, 17, 18 GDPR. However, this only applies insofar as this is possible or feasible with reasonable effort.
We would like to take this opportunity to remind you of your right to withdraw your consent in accordance with Art. 7 (3) GDPR. However, this does not affect the lawfulness of the processing carried out up to that point.
We would also like to draw your attention to your rights under §§ 32 ff. BDSG, which, however, are largely congruent with the rights just described.
Right to lodge a complaint pursuant to Art. 77 GDPR
You also have the right to lodge a complaint with a data protection supervisory authority if you consider that the processing of personal data relating to you infringes this Regulation.
What if the GDPR is abolished tomorrow or other changes take place?
The current status of this data protection declaration is 28 March 2025. From time to time it is necessary to adapt the content of the data protection declaration in order to react to actual and legal changes. We therefore reserve the right to amend this privacy policy at any time. We will publish the amended version in the same place and recommend that you read the privacy policy regularly.
Created with the kind support of Dieter macht den Datenschutz.