Privacy Policy

1) Information on the Collection of Personal Data and Contact Details of the Controller

1.1 Personal data refers to all information that can be used to identify you personally.

1.2 The data controller responsible for processing on this website under the General Data Protection Regulation (GDPR) is AC Digital Creator. The controller solely determines the purposes and means of processing personal data.

1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the "https://" prefix and the padlock symbol in your browser’s address bar.

2) Data Collection When Visiting Our Website

When using our website purely for informational purposes (without registering or submitting information), we collect only the data your browser transmits to our server ("server log files"). These include:

• Visited website

• Date and time of access

• Amount of data sent (in bytes)

• Source/referrer from which you reached the page

• Browser used

• Operating system used

• IP address used (possibly in anonymized form)

Processing is carried out in accordance with Art. 6(1)(b) and (f) GDPR to ensure the stable operation of the website. No data is passed on or used otherwise unless there are concrete indications of unlawful use.

3) Cookies

To enhance user experience and enable certain functions, we use cookies—small text files stored on your device. Some cookies are deleted after closing your browser (session cookies), while others remain and recognize your browser on your next visit (persistent cookies).

Cookies may collect data such as browser type, location, and IP address. Persistent cookies are deleted automatically after a defined period. You can find their storage durations in your browser’s cookie settings.

In some cases, cookies simplify processes (e.g., remembering shopping cart content). Where cookies process personal data, processing is based on Art. 6(1)(b), (a), or (f) GDPR.

You can configure your browser to notify you about cookie settings, accept them individually, or block them completely. Instructions for cookie settings:

• Internet Explorer

• Firefox

• Chrome

• Safari

• Opera

4) Contacting Us

When contacting us (e.g., via email), we collect personal data such as your name, email address, and message content. These are stored and used solely to process your request (Art. 6(1)(f) GDPR). If contact aims to conclude a contract, Art. 6(1)(b) GDPR applies additionally. Data is deleted once your inquiry is resolved unless legal retention periods apply.

5) Online Appointment Scheduling – Calendly

We use "Calendly" by Calendly, LLC, USA for appointment scheduling. Data such as name, email address (and phone number if required) is collected and transmitted to Calendly under Art. 6(1)(b) and (f) GDPR. After the appointment, data is deleted.

Calendly complies with GDPR via a Data Processing Addendum (https://calendly.com/pages/dpa) and uses standard contractual clauses for data transfer outside the EEA. Privacy policy: https://calendly.com/de/pages/privacy

6) Use of Social Media: Videos

YouTube Integration This website uses YouTube embedding from Google Ireland Ltd. with extended data protection mode, meaning data is only collected when the video is played.

Cookies may collect user behavior data (e.g., video statistics, misuse prevention). If you are logged into Google, this data is linked to your account. Log out before playing to avoid this. Data may also be transferred to Google LLC servers in the USA.

Privacy policies:

• YouTube Terms

• Google Privacy Policy

7) Online Marketing

Facebook Pixel with Advanced Matching

With your consent (Art. 6(1)(a) GDPR), we use Facebook Pixel with advanced matching (Facebook Ireland Ltd.). When you click a Facebook ad, additional URL data is stored via cookie to track conversions.

Data such as email (collected during purchases or sign-ups) may be sent to Facebook to improve targeting of Facebook ads (custom audiences). This allows precise targeting and measurement of ad effectiveness.

Data may be transferred to Facebook Inc. servers in the USA. Consent can be withdrawn at any time. Facebook privacy policy: https://www.facebook.com/about/privacy/

8) Data Subject Rights

8.1 Under the GDPR, you have the following rights:

• Access (Art. 15 GDPR): Information about stored personal data, purposes, recipients, retention period, etc.

• Rectification (Art. 16 GDPR): Correction of incorrect/incomplete data.

• Erasure (Art. 17 GDPR): Deletion of personal data under certain conditions.

• Restriction (Art. 18 GDPR): Limiting processing when disputing accuracy or needing data for legal claims.

• Notification (Art. 19 GDPR): Obligation to notify recipients about rectification/erasure/restriction.

• Data Portability (Art. 20 GDPR): Right to receive data in a structured, machine-readable format.

• Withdrawal of Consent (Art. 7(3) GDPR): Can be revoked at any time with future effect.

• Complaint (Art. 77 GDPR): To a supervisory authority, particularly in your place of residence or the location of the alleged infringement. Supervisory authority for Islas Baleares: www.agpd.es

8.2 Right to Object You may object at any time to the processing of your data based on our legitimate interest (Art. 6(1)(f) GDPR). We will stop processing unless we demonstrate compelling legitimate grounds.

You may object to direct marketing at any time; we will stop processing your data for this purpose.

9) Data Retention Period

Storage duration depends on legal basis, processing purpose, and statutory retention periods:

• Consent-based data (Art. 6(1)(a) GDPR) is stored until consent is withdrawn.

• Contract-related data (Art. 6(1)(b) GDPR) is stored for 7 years (tax and commercial law).

• Data under Art. 6(1)(f) GDPR is stored as long as justified by legitimate interest.

Unless otherwise specified, personal data is deleted once it is no longer required for its original purpose.