PRIVACY POLICY

for FrauLeadership by Dr. Mareike Wiedmann
Version 1.0
Effective Date: 17.02.2025

In case of discrepancies, the German version shall be legally binding.

With this privacy policy, I fulfill my information obligations under Articles 13 & 14 of the General Data Protection Regulation (GDPR). It is important to me to transparently inform you about the type, scope, purpose, and duration of the processing of your personal data, as well as the measures I take to protect your personal data. This privacy notice has been in effect since July 2022. If updates to this document become necessary due to the further development of the website or changes in legal requirements, I will document these here and clearly indicate the revised version. Personal data is collected on this website.

Transparency and reliability are the foundations of a trustworthy partnership: Therefore, I assure you that your personal data will be processed in accordance with the applicable data protection regulations. I process your personal data only with your active consent, solely for the purpose of contract execution, or to safeguard my legitimate interests. Processing includes collecting, transmitting, storing, and deleting your personal data, as well as processing by third parties on my behalf. Below, I explain in detail how and why your personal data is processed.

Table of Contents

  1. Responsible Entity for Data Processing
  2. General Information on Data Processing
  3. Data Collection on This Website
  4. Social Media Profiles
  5. Your Rights as a Data Subject

 

1. Responsible Entity for Data Processing

The entitiy responsible for data processing under Article 4 No. 7 GDPR is:
Dr. Mareike Wiedmann
FrauLeadership
Vereinsstraße 12
40789 Monheim am Rhein, Germany
E-Mail: hello@frauleadership.com

No data protection officer has been appointed for this website.

2. General Information on Data Processing

1. Scope of Processing Personal Data

I process personal data on this website only to the extent necessary to provide a functional website and my content and services. The processing of personal data on this website generally occurs only after your active consent. This is ensured through the configuration of the consent management tool (commonly known as the cookie banner), where you actively agree to the processing of your personal data. An exception applies in cases where obtaining prior consent is technically impossible and data processing is permitted by legal regulations.

2. Legal Basis for Processing Personal Data
When I obtain consent from the data subject, Article 6(1)(a) GDPR serves as the legal basis. For processing personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) GDPR applies. This also applies to processing required for pre-contractual measures. If processing is necessary to safeguard my legitimate interests or those of a third party, and these interests are not overridden by the fundamental rights and freedoms of the data subject, Article 6(1)(f) GDPR serves as the legal basis.

3. Data Deletion and Storage Duration

Personal data of the data subject is deleted or blocked as soon as the purpose of storage ceases. Storage may occur beyond this period if required by European or national laws. Data will also be deleted when legally prescribed retention periods expire, unless further storage is necessary for contract fulfillment.

 

3. Data Collection on This Website

Website Hosting and Log FIles

Each time this website is accessed, the system automatically records data and information from your device’s operating system. The following data is collected:

  • Your IP address
  • Date and time of access
  • Time zone difference to server time
  • Request type
  • Client information (type, version)
  • Your operating system (device, version)
  • Website from which you accessed my site
  • Content of the request and retrieved file
  • Status of the request (success, error, etc.)
  • Transferred data volume

This website is hosted on the infrastructure of checkdomain GmbH. A data processing agreement has been concluded with the provider.

  • Purpose of Processing: Website hosting
  • Legal Basis & Legitimate Interest: Ensuring the security and stability of the website under Article 6(1)(f) GDPR
  • Data Recipient: checkdomain GmbH, Große Burgstraße 27/29, 23552 Lübeck, Germany
  • Privacy Policy

 

Cookie Consent via Borlabs Cookie
This website uses Borlabs Cookie Consent Technology to collect and document your consent to cookie storage. Upon accessing the website, a cookie is stored in your browser, recording your consent or withdrawal. These data are not shared with Borlabs Cookie. Borlabs Cookie does not store personal data.

Provider: Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany
Details regarding data processing by Borlabs Cookie

 

Email Contact
You can contact me via the provided email address. In this case, personal data transmitted with the email will be processed.

  • Purpose of Processing: Handling your inquiry
  • Legal Basis: Article 6(1)(b) GDPR for pre-contractual or contractual inquiries
  • In the context of using a mailing service provider, processing is carried out based on my legitimate interest pursuant to Article 6(1)(f) GDPR. Your personal data will only be processed based on your consent under Article 6(1)(a) GDPR. You may withdraw your consent at any time by unsubscribing from the newsletter.
  • Storage Duration: The aforementioned personal data will be stored until you unsubscribe from the newsletter and will be deleted upon unsubscribing.
  • Data Recipient: Kit, Inc., Corporation Service Company, 1305 12th Avenue Road, Nampa, Idaho 83686, US
  • Privacy Policy: https://kit.com/privacy

 

Google Analytics in Connection with Google Tag Manager
This website uses Google Analytics in combination with Google Tag Manager. Google Tag Manager is used to optimize marketing measures. It is a product of Google Ireland Limited. This service does not set cookies or process personal data but may trigger so-called tags that can lead to data collection. The data is only shared in an anonymized form. Disabling Google Tag Manager will disable all tracking tags triggered through Google Tag Manager.

Google Analytics is a web analytics service provided by Google Ireland Limited. Google uses cookies to provide its services, personalize advertising, and analyze traffic. Usage and user-related information, such as IP address, location, time, or frequency of visits to this website, are transmitted to a Google server in the USA and stored there. Google Analytics is used with an anonymization function, meaning that Google shortens the IP address within the EU or EEA. Google only receives this information if you have consented to the use of Google Analytics when accessing the website.

Use of LinkedIn Advertisement Insights Tag

This website uses the LinkedIn Advertisement Insights Tag, a service provided by LinkedIn Corporation (LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland). This tag allows us to track and measure the effectiveness of our LinkedIn advertising campaigns and optimise our content accordingly.

When you visit this website, the LinkedIn Tag establishes a connection to LinkedIn’s servers, enabling LinkedIn to collect certain data, such as your IP address, device information, and interactions with this website. If you are logged into your LinkedIn account, LinkedIn may associate this data with your user profile. We do not receive personal data from LinkedIn but only aggregated reports on ad performance.

The legal basis for processing this data is your consent in accordance with Art. 6 (1) (a) GDPR. You can withdraw your consent at any time by adjusting your cookie preferences or disabling LinkedIn cookies in your browser settings. For more details on how LinkedIn processes your data, please refer to LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy.

Calendly
I use the Calendly service for appointment scheduling. When you book an appointment, Calendly collects and processes data on my behalf. This data includes:

  • Name
  • Address
  • Email Address
  • Phone number (optional)
  • Purpose of Processing: Appointment scheduling
  • Legal Basis and Legitimate Interest: Data processing is based on my overriding legitimate interest (Art. 6(1)(f) GDPR) in providing a stable and professional appointment booking system.
  • Data Recipient: Calendly, 271 17th St NW, Ste 1000, Atlanta, GA 30363 USA, https://calendly.com/de/
  • Calendly Privacy Policy: https://calendly.com/de/pages/privacy
  • Third-Country Transfer: Standard Contractual Clauses, which can be viewed at the following link: https://calendly.com/de/pages/dpa
  • Storage Duration: Until consent is revoked. Afterwards, processing is restricted.

 

Online Meetings via Zoom
My workshops, meetings, and coaching sessions take place online using Zoom’s video conferencing system.

  • Purpose: Delivery of services.
  • Legal Basis: If you book a service with me, I process your personal data in accordance with Art. 6(1)(b) GDPR as part of contractual measures.
  • Telecommunications Service Provider: Zoom Video Communications Inc., San José, California, USA.
  • Privacy Notice: https://explore.zoom.us/de/gdpr/

4. Social Media Profiles

I use social media platforms to communicate with customers and inform them about my services. When interacting with me via social media, personal data is processed by me and the respective platform operator. These processing activities are carried out under joint responsibility in accordance with Art. 26 GDPR together with the respective platform operators. For the processing activities that I conduct, the general data processing information outlined in this document applies. For the processing activities of social media platforms, I am not responsible. The respective platforms’ privacy policies apply. At this point, I would like to emphasize that the active use of social media platforms such as Facebook, Instagram, LinkedIn or Twitter is entirely your personal responsibility. This applies in particular to functions such as commenting, sharing, and rating. Below, you will find a list of all the social media platforms where I maintain a profile.

Facebook Page & Group
On Facebook you find me under FrauLeadership.

When you visit this Facebook page, your IP address is transmitted to Facebook. If you are currently logged into Facebook, a cookie containing your Facebook ID is stored on your device. This allows Facebook to track that you have visited this website. Using Facebook is free of charge. Facebook is funded, among other things, through personalized advertisements, which are assigned based on the evaluation of your personal data. Facebook processes user data for the following purposes:

  • Advertising (analysis, creation or personalised ads)
  • Creation of user profiles
  • Market research

You generally have the option to limit your use of the Facebook page. To do so, log out of Facebook or disable the “stay logged in” feature, delete the cookies stored on your device, and restart your browser. Limited use means that interactions (such as likes, comments, shares, messages, etc.) will not be possible, as they require a login.

 

Instagram
On Instagram you find me under my profile FrauLeadership.

On my website, you can see the latest posts as locally stored images. If you click on one of the images, you will be automatically redirected to Instagram. The Instagram service is a Meta product provided by Meta Platforms Ireland Limited. Using Instagram is free of charge. Like Facebook, Instagram is funded through personalized advertisements, which are determined by analyzing your personal data.

 

LinkedIn
On LinkedIn you find me under my company page FrauLeadership and also under my name: Mareike Wiedmann, PhD.

LinkedIn is a social network for maintaining and building business connections. The basic version of LinkedIn is free to use. You generally have the option to view my LinkedIn profile in a limited way without logging into the platform. To do so, log out of LinkedIn or disable the “stay signed in” feature, delete the cookies stored on your device, and restart your browser. Limited use means that interactions (such as likes, comments, shares, and messages) will not be possible, as they require a login.

5. Your Rights as a Data Subject

If your personal data is processed, you are considered a data subject (see Art. 4(1) GDPR). As such, you have the following rights regarding me as the data controller:

5.1 Rights to Access
You may contact me in writing at any time to request whether I process personal data concerning you. If such processing occurs, I will provide you with the following information:

(1) The purposes for which the personal data is processed;

(2) The categories of personal data that are being processed;

(3) The recipients or categories of recipients to whom your personal data has been disclosed or will be disclosed;

(4) The planned duration of storage of your personal data, or if specific details are not possible, the criteria used to determine the storage duration;

(5) The existence of a right to rectification or deletion of your personal data, the right to restrict processing, or the right to object to such processing;

(6) The right to lodge a complaint with a supervisory authority;

(7) All available information regarding the source of the data, if the personal data was not collected directly from you;

(8) The existence of automated decision-making, including profiling, in accordance with Art. 22(1) and (4) GDPR, and – at least in such cases – meaningful information about the logic involved as well as the significance and intended consequences of such processing for you as the data subject.

You also have the right to request information on whether your personal data is transferred to a third country or an international organization. In this context, you may request to be informed of the appropriate safeguards under Art. 46 GDPR concerning the transfer.

To exercise this right, you can contact me via email with the subject line: Request for Information.

5.2 Rights to Rectification
If you find that your personal data is incorrect and/or incomplete, you have the right to request its correction and/or completion. Please send me an email with the subject line: Request for Correction. I will process your request as soon as possible and confirm the correction.

5.3 Rights to Restriction of Processing
You have the right to request the restriction of processing of your personal data under the following conditions:

(1) If you dispute the accuracy of the data;

(2) If the processing is unlawful and you oppose the deletion of the personal data, requesting instead the restriction of its use;

(3) If I no longer need the personal data for processing purposes; or

(4) If you have objected to processing in accordance with Art. 21(1) GDPR and it has not yet been determined whether my legitimate grounds for processing outweigh your reasons.

If you wish to restrict processing, please send me an email with the subject line: Restriction of Processing.

Once the processing of your personal data is restricted, your data—apart from being stored—may only be processed with your consent or for the establishment, exercise, or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been lifted based on the above conditions, I will inform you before the restriction is removed.

5.4 Right to Erasure

5.4.1 Obligation to Delete Personal Data
You have the right to request the immediate deletion of your personal data. I am obligated to delete this data without delay if one of the following conditions applies:

(1) Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.

(2) You withdraw your consent on which the processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) GDPR, and there is no other legal basis for the processing.

(3) You object to the processing pursuant to Art. 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR.

(4) Your personal data has been unlawfully processed.

(5) The deletion of your personal data is necessary to comply with a legal obligation under Union law or the law of a Member State to which I am subject.

(6) Your personal data was collected in relation to the offer of information society services pursuant to Art. 8(1) GDPR.

5.4.2 Notification to Third Parties
If I, as the data controller, have made your personal data public and am obligated to delete it pursuant to Art. 17(1) GDPR, I will take appropriate measures to inform other data controllers that you have requested the deletion of all links to your personal data or copies or replications of your personal data.

5.4.3 Exceptions
The right to erasure does not apply if processing is necessary for:

(1) Exercising the right to freedom of expression and information;

(2) Compliance with a legal obligation that requires processing;

(3) Reasons of public interest in the field of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) GDPR;

(4) Archival purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) GDPR, provided that the right to erasure is likely to render the achievement of these processing objectives impossible or seriously impair them;

(5) The establishment, exercise, or defense of legal claims.

If you wish to exercise your right to erasure, please send me an email with the subject line: Delete My Personal Data.

5.5 Right to Notification

If you have exercised your right to rectification, deletion, or restriction of processing, I am obligated to inform all recipients to whom I have disclosed your personal data of this rectification, deletion, or restriction of processing, unless this proves impossible or involves disproportionate effort. You also have the right to request information about these recipients.

5.6 Right to Data Portability

You have the right to receive the personal data you have provided to me in a structured, commonly used, and machine-readable format. Additionally, you have the right to request the transfer of this data to another controller without interference from me. If you wish to exercise your right to data portability, please send me an email with your request, and I will assess whether a technical transfer is possible.

5.7 Right to Object

You have the right to object at any time to the processing of your personal data that is based on my overriding legitimate interest (Art. 6(1)(f) GDPR); this also applies to profiling based on these provisions.

I will no longer process your personal data unless I can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves to establish, exercise, or defend legal claims.

If your personal data is processed for direct marketing purposes, you have the right to object at any time to this specific processing. This applies in particular to profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

5.8 Right to Withdraw Consent
You have the right to withdraw your consent to data processing at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

5.9 Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

The supervisory authority to which the complaint is submitted will inform you of the status and outcome of the complaint, including the possibility of a judicial remedy.

The responsible supervisory authority is located in North Rhine-Westphalia, Germany.

List of Supervisory Authorities in Germany

Federal Authority

The Federal Comissioner for Data Protection and Freedom of Information
Graurheindorfer Str. 153
53117 Bonn, Germany
Phone: +49(0)228 997799-0
Email: poststelle@bfdi.bund.de
De-Mail: poststelle@bfdi.de-mail.de

State Authority for North Rhine-Westphalia:

The State Commissioner for Data Protection and Freedom of Information of Nord Rhine-Westphalia
P.O. Box 20 04 44, 40102 Düsseldorf
Kavalleriestraße 2-4, 40213 Düsseldorf, Germany
Phone: 0211/384 24 – 0
Fax: 0211/384 24 – 10
Email: poststelle@ldi.nrw.de
Website: www.ldi.nrw.de