Privacy Policy

1. Controller

Marcus Rother

Martin-Albert-Str. 8

90491 Nürnberg

Germany

E-Mail: hello@marcusrother.de

2. Hosting

This website is hosted by Host Europe GmbH.

A data processing agreement pursuant to Art. 28 GDPR has been concluded with the hosting provider.

3. Server Log Files

When visiting this website, the following data is automatically collected:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL
  • Accessed pages

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in security and technical stability).

Retention period: Maximum 14 days.

4. Cookies and Cookie Management (CookieYes)

This website uses cookies.

Consent management is handled via CookieYes.

The following types of cookies are used:

Strictly Necessary Cookies

(e.g. login functionality, shopping cart, language switching via TranslatePress)

Legal basis: Art. 6(1)(f) GDPR.

Marketing and Analytics Cookies

(e.g. Google Ads conversion tracking)

Legal basis: Art. 6(1)(a) GDPR (consent).

5. WooCommerce (Online Shop)

When purchasing digital products, the following data is processed:

  • First and last name
  • Billing address
  • Email address
  • IP address
  • Order details
  • Payment information

Purpose:

  • Contract processing
  • Invoicing
  • Creation of user accounts
  • Compliance with tax retention obligations

Legal basis: Art. 6(1)(b) GDPR.

Retention in accordance with German tax and commercial law (§ 147 AO, § 257 HGB – 10 years).

6. User Accounts and LearnPress

Customers receive individual login credentials for access to online courses.

Processed data:

  • Username
  • Password (stored in encrypted form)
  • Course progress
  • Login timestamps
  • Interactions within the course

Legal basis: Art. 6(1)(b) GDPR.

7. Payment Providers

Stripe

Provider: Stripe Payments Europe Ltd.

Payment and transaction data are processed.

Legal basis: Art. 6(1)(b) GDPR.

PayPal

Provider: PayPal (Europe) S.à r.l. et Cie, S.C.A.

PayPal may be used for both shop purchases and bookings via Calendly.

When selecting PayPal, users are redirected to PayPal. Data processing is carried out independently by PayPal.

Legal basis: Art. 6(1)(b) GDPR.

8. Appointment Booking and Payment via Calendly

Provider: Calendly LLC, USA.

Processed data:

  • Name
  • Email address
  • Appointment details
  • Payment data (if integrated payment function is used)

Purpose:

  • Appointment management
  • Contract fulfillment
  • Payment processing

Legal basis:

  • Art. 6(1)(b) GDPR
  • Art. 6(1)(f) GDPR

Data transfer to the United States is based on Standard Contractual Clauses.

9. Live Online Courses via Zoom

Provider: Zoom Video Communications Inc., USA.

When participating in live online courses, the following data may be processed:

  • Name or displayed username
  • Email address
  • IP address
  • Audio and video data (if activated)
  • Chat content
  • Session metadata

Purpose:

  • Conducting the event
  • Communication
  • Technical provision of the session

Legal basis: Art. 6(1)(b) GDPR.

If camera or microphone are activated voluntarily:

Art. 6(1)(a) GDPR (consent).

Data transfer to the United States cannot be excluded.

Zoom uses Standard Contractual Clauses pursuant to Art. 46 GDPR.

10. WhatsApp Community

This website contains references to a WhatsApp community.

Provider: WhatsApp Ireland Limited.

If users join the community via a link or reserve sessions via WhatsApp, data processing takes place within the WhatsApp platform.

Data that may be processed:

  • Phone number
  • Profile name
  • Communication content

Legal basis: Art. 6(1)(a) GDPR (voluntary contact).

Data transfer to third countries cannot be excluded.

11. Google Ads

Provider: Google Ireland Limited.

Purpose:

  • Online advertising
  • Conversion tracking

Processed data:

  • IP address
  • Cookie information
  • Interaction data

Legal basis: Art. 6(1)(a) GDPR (consent).

12. Google Search Console

Used for technical analysis and optimization of the website.

No direct processing of personal data takes place.

13. Google reCAPTCHA

Used to protect against spam.

Processed data:

  • IP address
  • Mouse movements
  • Device information
  • Time spent on page

Legal basis:

or Art. 6(1)(a) GDPR (consent).

Art. 6(1)(f) GDPR

14. WP Mail SMTP

Emails are sent via an SMTP system.

Processed data:

  • Email address
  • Email content

Legal basis: Art. 6(1)(b) GDPR.

15. Data Retention

Personal data is stored:

until consent is withdrawn

for the duration of a contractual relationship

in accordance with statutory retention periods

16. Data Subject Rights

You have the right to:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection (Art. 21 GDPR)

You also have the right to lodge a complaint with a supervisory authority.

17. SSL Encryption

This website uses SSL/TLS encryption to ensure secure transmission of confidential content.