Privacy policy

in accordance with Article 13 GDPR

Thank you for your interest in our website. The trust of all visitors, the security of your data and the protection of your privacy are of central importance to us.

Your personal data will therefore be treated by us in accordance with the applicable statutory data protection regulations and this privacy policy. Personal data is information that can be used to determine your identity. Typical personal data includes your surname, first name, address, telephone number, IP address, cookies and e-mail address.

When you view and use our website or otherwise expressly transmit information to us, we process the data that is automatically transmitted to us with each request from your browser (see the “Log data” section). If you voluntarily provide us with personal data, it will be processed exclusively for the purpose of the request or the respective order. We would like to point out that data transmission on the Internet can never be completely protected against access by third parties.

In the following sections, we would like to explain to you in more detail what data we process, when and for what purpose. It explains how our services work and how the protection of your personal data is guaranteed.

Name and address of the person(s) responsible:

The controller within the meaning of the EU General Data Protection Regulation and other data protection regulations is

Christoph Pekel
Schloßstr. 14B (1st floor)
82031 Grünwald

Legal basis for the processing of personal data

As a provider, we may only process the personal data of website visitors if one of the following conditions exists as a legal basis:

Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis.

Art. 6 para. 1 lit. b GDPR serves as the legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for data processing.

Data erasure and storage duration

The personal data of the data subject will be deleted as soon as the purpose of storage no longer applies.

Data may also be stored if this is provided for by European or national laws or other regulations to which the controller is subject.

The data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

Contact us

When you contact us (e.g. by contact form, email, telephone or via social media), your details will be processed to process the contact request and its handling in accordance with Art. 6 para. 1 lit. b) GDPR (so-called pre-contractual measure).

We delete the requests if they are no longer required. We review this necessity every two years. Furthermore, the statutory archiving obligations apply.

Legal basis

The legal basis for the processing of this data is so-called pre-contractual measures pursuant to Art. 6 para. 1 lit. b GDPR.

Protocol data

The provider of the Internet services (provider) automatically collects “log data” in server log files.

The log data includes the following information:

• Date and time of the respective request
• Internet address (URL) that was requested.
• URL that the visitor visited immediately before (referrer)
• Browser and language used
• Operating system used
• IP address and host name of the visitor
• Access status / http status code
• Amount of data transferred in each case

The transmission of this data to us is automatic and this data cannot be assigned to your person with reasonable effort.

Legal basis

The legal basis for the processing of this data is our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.

Logging is used for access control and monitoring of technical processes and their optimization. In addition, this data is used in accordance with Section 76 of the German Federal Data Protection Act (BDSG) to check the processing procedures from a data protection perspective.

The data will not be passed on to third parties, except to law enforcement authorities by court order.

The data will be deleted as soon as it is no longer required for the purpose for which it was collected or after the statutory deletion period has expired.

Consequently, there is no possibility for the user to object.

Your rights

You have a right to free information about the personal data we have stored about you and, if applicable, a right to rectification, restriction of processing or erasure of this data. You also have the right to data portability. Finally, you also have the right to complain to the data protection supervisory authority about the processing of your personal data by us.

Right of objection

We would also like to point out that you can object to the future processing of your personal data at any time in accordance with the legal requirements pursuant to Art. 21 GDPR. In particular, you may object to processing for direct marketing purposes.

Right to information

If you have any questions regarding the collection, processing or use of your personal data, for information, for the correction, blocking or deletion of data as well as for the revocation of any consent given or for objection to a specific use of data, please contact us using the following e-mail address:

christoph@pekel.de

Encryption through SSL / TLS

For security reasons, our website uses SSL or TLS encryption. This ensures that transmitted data is protected and cannot be read by third parties. You can recognize successful encryption by the fact that the protocol name in the status bar of the browser changes from “http://” to “https://” and that a closed lock symbol is visible there.

Linking

This website may contain links to websites operated by other companies, including, for example, websites of social media channels.

If you follow such links, you may encounter cookies that are not under our control. We cannot accept any liability for this and we refer you to the data protection provisions or cookie guidelines of the respective websites.

Web hosting via hosting.de

We use the services of hosting.de – hosting.de GmbH, Franzstr. 51, 52064 Aachen for web hosting for our websites and have concluded an order processing contract with hosting.de in accordance with Art. 28 GDPR.

Further information can be found in hosting.de’s privacy policy at https://www.hosting.de/ueber-uns/datenschutz/.

Legal basis

The legal basis for the processing of this data is our legitimate interest in operating and maintaining the operational security of these websites in accordance with Art. 6 para. 1 lit. f GDPR.

Google Web Fonts

We use Google Web Fonts. All fonts are loaded locally.
When using Google Web Fonts, no personal data is forwarded to third parties.

WPML

We use the WPML plugin from OnTheGoSystems Limited, 22/F 3 Lockhart Road, Wanchai Hong Kong, to display the content of our website in multiple languages.

WPML does not process any personal data.

Further information can be found at https://wpml.org/documentation/privacy-policy-and-gdpr-compliance/.

Legal basis

The legal basis is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

Amelia

On our website we offer an appointment booking service for our courses. In order to offer you these products in an appealing form and to ensure efficient and simple booking, we use the services of Touch Me Soft d.o.o. Milutina Milankovica 11b, 11000 Belgrade, Serbia (hereinafter referred to as Amelia).

The following categories of data are processed during the booking process:

• Master data (first name, surname, telephone number, e-mail address)
• Specific questions (voluntary non-mandatory information)

No personal data is forwarded to third parties.

Your personal data will only be used to the extent that it is necessary for processing the booking process and will be stored in accordance with the statutory provisions.

Legal basis

The processing of this data in the course of the booking and the ordering process is based on Art. 6, para. 1 lit b GDPR.

Fluent CRM – Registration

We use the services of “fluentCRM” for registration in our driving school. An offer from WP Manage Nina, Sunset Lake Road, Suite B-2, Newark, 19702, USA.

If you use our registration form, your registration with a valid e-mail address and thus your consent to the processing of your personal data by us is required. Please note the declaration of consent on the registration form.

In connection with the registration, in addition to the e-mail address, the time of registration, the time of confirmation, the IP address and the consent text are stored and we use the e-mail address exclusively for your registration, unless you have expressly consented to other use.

Your personal data is processed on our servers and is not forwarded to third parties.

The sending of a copy of your identity card to us is based on your express consent.

Legal basis

The use of the form is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR.
The sending of a copy of your ID card is based on your express consent in accordance with Art. 9, para. 2, lit. a.

Google reCAPTCHA

We use the reCAPTCHA service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland to protect against unwanted bots.
reCAPTCHA is a service that runs in the background and helps us to exclude machines from using our offers.

We would like to point out that there is a possibility that data may be transferred to the USA and processed by US authorities.

Google is certified under the Trans Atlantic Data Privacy Framework (TADPF) and thus offers a guarantee of compliance with European data protection law https://www.dataprivacyframework.gov/list.

Further information can be found at https://ec.europa.eu/commission/presscorner/detail/en/ip_23_3721 and https://www.dataprivacyframework.gov/s/.

Should the TADPF cease to apply, the standard contractual clauses for the transfer of personal data to third countries in accordance with Directive 2016/679 (Standard Contractual Clauses – SCC), which Google has undertaken to comply with, will apply.

You can find more information on the standard contractual clauses at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en and at https://policies.google.com/privacy/frameworks?hl=en

Further information about Google reCAPTCHA can be found at https://www.google.com/recaptcha

Google’s privacy policy is available at https://policies.google.com/privacy.

Legal basis

The legal basis for this processing is our legitimate interest in protecting ourselves from spamming and misuse in accordance with Art. 6 para. 1 lit. f GDPR.

Cookies

In order to make your visit to our website attractive and to enable the use of certain functions, we use so-called cookies. These are small text files that are stored on your end device and store certain information for exchange with our system.

Cookie types

First-party cookies – Necessary cookies

These are generated by our website and are necessary for the error-free operation of the application. These cookies are also known as session cookies or transient cookies and are automatically deleted at the end of the browser session, i.e. when the browser is closed.

Without these cookies, error-free operation of the website cannot be guaranteed.

Legal basis

The legal basis for the processing of this data is Art. 6 para. 1 sentence 1 lit. f GDPR.

Cookies from third-party providers

These are set by various services (e.g. analysis services or Facebook) and store a unique identifier that recognizes your end device the next time you visit (persistent cookies).

These cookies remain on your end device for a specified period of time. This duration is variable.

Legal basis

The legal basis for the processing of this data is Art. 6 para. 1 sentence 1 lit. a GDPR.

We would like to point out that with some providers, especially providers from the USA, there is a possibility that data will be transferred to the USA and processed by US authorities.

There is currently an adequacy decision for the USA in the form of the Trans Atlantic Data Privacy Framework (TADPF). Many companies have certified themselves here and thus offer a guarantee of compliance with European data protection law https://www.dataprivacyframework.gov/list.

Further information is available at https://ec.europa.eu/commission/presscorner/detail/en/ip_23_3721.

Should the TADPF cease to apply, the standard contractual clauses for the transfer of personal data to third countries pursuant to Directive 2016/679 (Standard Contractual Clauses – SCC) will apply.

You can find more information on the standard contractual clauses at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en

Please note that many companies are neither certified in the TADPF nor have committed themselves to complying with the standard contractual clauses.
These companies must offer suitable guarantees in accordance with Art. 46 GDPR.

We would like to point out that in the event of non-compliance with the aforementioned standard contractual clauses for unsafe third countries, the legal basis is your express consent pursuant to Art. 49 para. 1 lit. a GDPR.

Deactivate cookies

Please note that certain cookies are already set as soon as you enter our website.

You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or to exclude the acceptance of cookies for certain cases, in particular cookies from third parties (third-party cookies) or in general.

If you do not accept cookies, the functionality of our website may be restricted for you.

Borlabs Cookie

This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabsCookie) to store your cookie consent.

Borlabs Cookie does not process any personal data.

The borlabs cookie stores the consent you gave when you entered the website. If you wish to revoke this consent, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked for your cookie consent again.

Cookie settings (borlabs)

Consent history (borlabs)

Your consent history:

If you have any questions, please contact us using the following UID.

UID:

Cookie list (borlabs)

We use the following cookies:

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).Google Analytics uses so-called “cookies”, text files that are stored on your computer and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. According to the GDPR, the USA is considered a third country with an insecure level of data protection.

However, if IP anonymization is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports and statistics on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

If you delete your cookies, you must click this link again.

This website uses Google Analytics with the extension of IP masking (“anonymizeIp”). As a result, IP addresses are further processed in abbreviated form; according to Google, this is intended to virtually exclude the possibility of personal references. Insofar as the data collected about you is personally identifiable, this should therefore be excluded immediately and the personal data deleted immediately.

We use Google Analytics to analyze and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

Google is certified under the Trans Atlantic Data Privacy Framework (TADPF) and thus offers a guarantee of compliance with European data protection law https://www.dataprivacyframework.gov/list.

Further information can be found at https://ec.europa.eu/commission/presscorner/detail/en/ip_23_3721 and https://www.dataprivacyframework.gov/s/.

Should the TADPF cease to apply, the standard contractual clauses for the transfer of personal data to third countries in accordance with Directive 2016/679 (Standard Contractual Clauses – SCC), which Google has undertaken to comply with, will apply.

You can find more information on the standard contractual clauses at

https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en and at https://policies.google.com/privacy/frameworks?hl=en.

To protect your personal data, we have concluded a contract for commissioned data processing in accordance with Art. 28 GDPR and a special supplementary addendum to data processing with Google and have accepted the amendment to Google’s terms and conditions and the amended contract data processing conditions with regard to the use of the standard contractual clauses.

Further information can be found at:

https://privacy.google.com/businesses/processorterms/

Users’ personal data is deleted or anonymized after 14 months.

You can find more information about Google here:

Terms of use https://www.google.com/analytics/terms/en.html

Overview of data protection https://policies.google.com/?hl=en, as well as the privacy policy: https://www.google.de/intl/de/policies/privacy

Legal basis

The legal basis for this data processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR.

The texts of this privacy policy are protected by copyright.
The copying of texts, even in part, is prohibited and constitutes a copyright infringement.

Last updated on 04.07.2025.