Werbefotografie und Produktfotografie, Lauktien & Friends Creative Commercial Imaging Studiofotografie am Set

Privacy Policy (Datenschutzerklärung)

Controller
Lauktien.Studio – Rüdiger Lauktien
Birkenhof 37
16767 Leegebruch
Germany

Phone: +49 173 83 52 519
E-Mail: post@lauktien-friends.de

No Data Protection Officer appointed
A company data protection officer has not been appointed, as the legal requirements are not met.

1. Hosting & Server Logs

When accessing this website, the hosting provider automatically processes connection data (IP address, date/time, URL, referrer, user agent) in log files to ensure operation, security and error analysis.
Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in secure and smooth operation).

2. Contact Form & Communication

When you contact us via form or e-mail, we process the data provided (e.g. name, e-mail, message) to handle your inquiry; if cooperation arises, we further process the data for contract performance.
Legal bases:

  • Art. 6 (1) lit. b GDPR (pre-contractual/contractual purposes),

  • Art. 6 (1) lit. f GDPR (legitimate interest in responding to requests).
    Storage period: Inquiries are deleted once resolved. If related to contracts, statutory retention periods apply (generally 6 years for business correspondence under the German Commercial Code, 8 years for accounting records under the Fiscal Code as of 2025; previously partly 10 years).

3. Cookies & Consent Management (TTDSG/GDPR)

We use non-essential cookies/trackers only with your consent via our cookie banner. You can change your choice anytime in the footer under “Cookie Settings.”
Legal bases: § 25 (1) TTDSG (storing/reading information on devices only with consent), Art. 6 (1) lit. a GDPR (consent). Technically necessary cookies are used according to § 25 (2) TTDSG/Art. 6 (1) lit. f GDPR.

4. Web Analytics with Google Analytics (GA4)

We use Google Analytics (GA4) for reach measurement. GA4 does not log/store IP addresses; data from EU devices is initially processed via EU domains/servers (regional controls possible). GA4 is operated only with your consent via the banner; without consent, no non-essential cookies are set.
Provider/recipient: Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland); possibly Google LLC (USA).
Legal basis: Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TTDSG (consent).
Third-country transfer: Data may be transferred to the USA. Protected by the EU-US Data Privacy Framework (DPF) and/or Standard Contractual Clauses (SCCs).
Controls: We support Google Consent Mode v2 to align tag processing with your consent.
Further information: https://policies.google.com/privacy

5. Marketing: Meta Pixel (Facebook & Instagram)

We use the Meta Pixel to measure ad effectiveness and build target audiences. Data such as page views, events, online identifiers and browser/device information may be processed. Use occurs only with your consent via the banner.
Provider/recipient: Meta Platforms Ireland Limited (Dublin, Ireland); possibly Meta Platforms, Inc. (USA).
Legal basis: Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TTDSG (consent).
Joint controllership (Art. 26 GDPR): For the collection and transmission of certain event data to Meta, there is a joint controllership with Meta under the Controller Addendum; Meta is solely responsible for further processing.
Third-country transfer: Protected by DPF and/or SCCs.
More information & opt-out: Via your Meta account settings.

6. Google Fonts

We use Google Fonts for consistent font display. When using external embedding (CDN), your browser requests fonts from Google servers, transmitting your IP address and possibly transferring data to the USA. We recommend/use locally hosted fonts where possible.
Legal basis:

  • External via CDN: Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TTDSG (consent),

  • Locally hosted: Art. 6 (1) lit. f GDPR (legitimate interest in consistent layout).
    Note: German courts have ruled against external font embedding in individual cases.

7. Data Sources & Provision

We generally receive your data directly from you (e.g. form, e-mail). There is no obligation to provide data; without certain details we may not be able to process your request.

8. Recipients of Data

Depending on purpose, data may be transferred to processors (e.g. hosting/IT providers), Google (Analytics) and Meta (Pixel) – solely within the purposes/legal bases stated. Processing agreements under Art. 28 GDPR are in place with service providers.

9. Storage Period

We process personal data only as long as necessary for purpose, consent or statutory obligations; afterwards we delete or anonymize. Statutory retention: generally 6 years (commercial/business letters) and 8 years (accounting records as of 2025), otherwise up to 10 years under HGB/AO, each from year-end.

10. Your Rights

You have the right of access, rectification, erasure, restriction, data portability, and to object to processing based on Art. 6 (1) lit. e/f GDPR as well as the right to withdraw consent with effect for the future. You also have the right to lodge a complaint with a supervisory authority, in particular in Brandenburg:
The State Commissioner for Data Protection and for the Right of Access to Files Brandenburg, Stahnsdorfer Damm 77, 14532 Kleinmachnow, Germany
E-Mail: poststelle@lda.brandenburg.de
Phone: +49 33203 356-0

11. Withdrawal & Opt-out

You can withdraw consent anytime in the “Cookie Settings” in the footer. Browser add-ons/platform settings (Google/Meta) provide additional opt-out options.

12. Data Security

We use TLS encryption as well as organizational and technical measures in line with the state of the art.

13. Changes

We may update this policy if legal requirements, services or processes change.
Effective date: September 29, 2025.