Privacy Policy

1. General Information

The protection of your personal data is very important to us. We handle your personal data confidentially and in accordance with applicable data protection regulations, in particular the General Data Protection Regulation (GDPR), as well as this Privacy Policy.

When you visit our website, various personal data may be collected. Personal data means any information that can identify you personally.

This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data. Please note that data transmission on the internet (e.g., communication by email) may have security vulnerabilities.

2. Controller

aboutchiro
Owner: Matthew John Hender
Innsbrucker Straße 22
10825 Berlin, Germany
Phone: 0157 / 32402208
Email: info@aboutchiro.de

The controller is the natural or legal person who determines the purposes and means of processing personal data.

3. Hosting via Webflow

Our website is hosted by Webflow (Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA). When you visit our website, Webflow automatically collects technical data such as your IP address, browser type, date and time of access, and pages visited.

The use of Webflow is based on Article 6(1)(f) GDPR. We have a legitimate interest in the secure and reliable presentation of our website. A data processing agreement pursuant to Article 28 GDPR has been concluded with Webflow.

Data transfers to the USA are based on the EU–US Data Privacy Framework or Standard Contractual Clauses.

4. Data Collection on This Website

4.1 Server Log Files

The website provider automatically collects and stores information in so-called server log files that your browser automatically transmits to us:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources. It is processed based on Article 6(1)(f) GDPR to ensure the secure and stable operation of the website.

4.2 Cookies

Our website uses cookies. Cookies are small text files stored on your device.

  • Necessary cookies: required for the operation of the site (legal basis: Art. 6(1)(f) GDPR).
  • Analytics and marketing cookies: used only with your explicit consent (Art. 6(1)(a) GDPR).

You can withdraw your consent at any time through the cookie settings on our site.

5. Online Services

5.1 Appointment Booking via Doctolib

We use Doctolib GmbH, Mehringdamm 51, 10961 Berlin, Germany, to manage online appointments. When you book through Doctolib, the data you provide (name, contact details, appointment details and, if applicable, health data) is processed on our behalf.

Purpose: appointment scheduling, reminders, management, and communication.
Legal basis: Article 6(1)(b) GDPR (contract), Article 6(1)(f) GDPR (legitimate interest), Article 9(2)(a) GDPR (explicit consent for health data).
Recipients: Doctolib as a processor, authorized staff of our practice.
Storage: within the EU, retained only as required by law.
More information: https://www.doctolib.de/datenschutz.

The Doctolib widget loads only after you provide consent via our cookie banner.

5.2 Contact Forms

If you contact us through a contact form, the data you provide (name, email, phone number, message) is processed for the purpose of handling your inquiry.

Legal basis: Article 6(1)(b) GDPR (contract initiation) or Article 6(1)(f) GDPR (legitimate interest in efficient communication).
Your data will be deleted once your inquiry is resolved or legal retention periods have expired.

5.3 Newsletter

If you subscribe to our newsletter, we collect your email address and, if applicable, your name.

Purpose: sending information about our services, offers, and updates.
Legal basis: Article 6(1)(a) GDPR (consent).
You can unsubscribe at any time using the link provided in each email or by contacting us directly.

If we use a third-party provider to send the newsletter, this is done under a data processing agreement in accordance with Article 28 GDPR.

5.4 Language Preferences

Our website offers a language switch (English/German). If you select a language, this preference may be stored in a cookie or local storage.

Purpose: to provide a user-friendly website experience.
Legal basis: Article 6(1)(f) GDPR.

6. Plugins and Tools

6.1 Instagram Plugin

Our website uses a plugin from Instagram (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland). When you visit a page containing an Instagram plugin, a connection to Instagram’s servers is established, and your IP address and browser information may be transmitted.

If you are logged into Instagram, your visit may be directly associated with your account.

Legal basis: Article 6(1)(a) GDPR (consent).
You can withdraw this consent at any time through the cookie settings.
More information: https://privacycenter.instagram.com/policy.

6.2 Google Maps

We use Google Maps (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA, USA) to display our practice location. When the map is loaded, your IP address and browser information are transmitted to Google.

Legal basis: Article 6(1)(f) GDPR (legitimate interest in providing an accessible location display).
More information: https://policies.google.com/privacy.

6.3 Google Fonts & reCAPTCHA

We use Google Fonts to ensure consistent typography across our website. This involves transmitting your IP address to Google. We also use Google reCAPTCHA to protect our forms from spam and abuse.

Legal basis: Article 6(1)(f) GDPR (legitimate interest in security and consistent presentation).

7. Blog & Testimonials

7.1 Blog / News

Our website includes a blog/news section. Only technical analytics data (e.g., IP address, browser information) are collected when reading articles. Public comments are not currently enabled.

7.2 Testimonials

We publish patient testimonials only with their explicit consent (Article 6(1)(a) GDPR). Data may be anonymized or published with the person’s name, depending on the agreement. Consent can be withdrawn at any time, and the testimonial will be removed.

8. Analytics and Marketing Tools

We use Google Analytics to analyze how visitors use our website.

  • Legal basis: Article 6(1)(a) GDPR (consent).
  • IP anonymization is enabled.
  • You can withdraw consent at any time.

More information: https://policies.google.com/privacy.

9. Data Retention

We store personal data only for as long as necessary to fulfill the purposes stated in this Privacy Policy or as required by legal retention periods. After this period, data are deleted or anonymized.

10. Your Rights

Under the GDPR, you have the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

You can exercise these rights at any time by contacting us at the details provided above.

11. Withdrawal of Consent

If data processing is based on your consent, you can withdraw that consent at any time. The legality of data processing carried out before the withdrawal remains unaffected.

12. Data Security

We use SSL/TLS encryption to protect your data during transmission. You can recognize an encrypted connection by the “https://” in your browser’s address bar and the lock icon.

13. Changes to This Privacy Policy

We reserve the right to adapt this Privacy Policy to reflect legal or technical developments or changes to our services.

Last updated: Septmeber 2025