| Status: 5 November 2025 |
| DARIUS Consulting GmbH, Siegfriedstraße 15, 40549 Düsseldorf (hereinafter “we” or “Controller”), takes the protection of your personal data very seriously. We process your data exclusively based on the applicable legal provisions, in particular the General Data Protection Regulation (GDPR) and the Telecommunications Telemedia Data Protection Act (TDDDG). |
| This privacy policy informs you about which personal data we collect when you visit our website and for what purposes these are processed. |
| 1. Controller |
| Controller according to the GDPR: |
| DARIUS Consulting GmbH
Siegfriedstraße 15
40549 Düsseldorf
Germany |
| Email: [email protected] |
| 2. General Information on Data Processing |
| 2.1 Scope of Processing Personal Data |
| We process personal data of our users only as far as necessary to provide a functional website and our content and services. Processing of personal data generally only takes place with the user’s consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of the data is permitted by law. |
| 2.2 Legal Basis for Processing Personal Data |
| Where we obtain the consent of the data subject for processing personal data, Art. 6(1)(a) GDPR serves as the legal basis. |
| For processing personal data necessary for the performance of a contract to which the data subject is party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations necessary for the implementation of pre-contractual measures. |
| Where the processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis. |
| If the processing is necessary for the purposes of a legitimate interest pursued by our company or a third party, and the interests, fundamental rights, and freedoms of the data subject do not override the former interest, Art. 6(1)(f) GDPR serves as the legal basis for processing. |
| 2.3 Data Deletion and Storage Duration |
| Personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may be continued if required by European or national legislators in EU regulations, laws, or other provisions. Data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires unless further storage of the data is required for the conclusion or fulfillment of a contract. |
| 3. Provision of the Website and Creation of Log Files |
| 3.1 Description and Scope of Data Processing |
| Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device. |
| The following data are collected: |
- IP address of the requesting device
|
|
|
- Requested pages and files
|
- Referrer URL (if available)
|
|
|
|
|
|
|
|
|
| This data is stored in our system’s log files. This data is not stored together with other personal data of the user. |
| 3.2 Legal Basis for Data Processing |
| The legal basis for the temporary storage of data and log files is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest is to provide website content for informational purposes. |
| 3.3 Purpose of Data Processing |
| Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this, the user’s IP address must remain stored for the duration of the session. |
| Storage in log files serves to ensure the functionality of the website. The data also help us optimize the website and ensure the security of our IT systems. Log data are only analyzed in aggregated and anonymized form for performance monitoring and troubleshooting. |
| 3.4 Further Recipients of Personal Data |
| This website is hosted by our service provider FTI Consulting SC GmbH as a data processor on servers operated by WP Engine Inc. in St. Ghislain, Belgium. A data processing agreement has been concluded. |
| 3.5 Storage Duration |
| The data are deleted as soon as they are no longer necessary for the purpose for which they were collected. For data collected to provide the website, this is the case when the respective session ends. When data is stored in log files, this occurs after no more than 7 days. |
| 4. Security Monitoring with WordFence |
| 4.1 Description and Scope of Data Processing |
| We use “WordFence” from Defiant Inc. as a security solution. WordFence monitors traffic on our website for malicious access patterns and may temporarily store IP addresses and user agent details in order to block harmful requests. |
| The following data may be processed: |
|
|
- User agent (browser identifier)
|
|
|
|
|
| 4.2 Legal Basis for Data Processing |
| The legal basis for this data processing is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in ensuring IT security and protecting our website from attacks. |
| 4.3 Purpose of Data Processing |
| Processing is solely for the detection and defense against security threats and attacks on our website. |
| 4.4 Storage Duration |
| The data is stored only for as long as necessary for security purposes, usually no longer than 30 days. |
| 5. Use of Google Analytics |
| 5.1 Description and Scope of Data Processing |
| This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses cookies to analyze users’ use of the website. |
| The information generated by the cookie about your use of this website is generally transmitted to and stored on a Google server in the USA. We have activated IP anonymization, so your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. |
| Data collected by Google Analytics are processed in anonymized form and used solely for analyzing website usage and improving website performance. No personal data is collected that would allow conclusions about individual users. |
| 5.2 Legal Basis for Data Processing |
| The legal basis for the use of Google Analytics is your consent pursuant to Art. 6(1)(a) GDPR and §25(1) TDDDG. |
| 5.3 Purpose of Data Processing |
| On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator. |
| 5.4 Storage Duration and Revocation |
| You can prevent the storage of cookies by setting your browser accordingly, or revoke your consent at any time via the cookie banner. You can also prevent the collection of data generated by the cookie related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at: https://tools.google.com/dlpage/gaoptout. |
| 5.5 Data Processing on Behalf |
| We have concluded a data processing agreement with Google that meets GDPR requirements. |
| 5.6 Data Transfer to Third Countries |
| Google also processes your data in the USA. The USA is recognized by the EU Commission as a country with an adequate level of data protection (adequacy decision). Google is certified under the EU-US Data Privacy Framework. |
| 6. Cookies |
| 6.1 Description and Scope of Data Processing |
| Our website uses cookies. Cookies are text files stored in the internet browser or by the internet browser on the user’s computer system. We use the following types of cookies: |
| a) Technically necessary cookies (session cookies): |
| These cookies are strictly necessary for the technical functionality of the website. They enable you to use the website and activate particular features. These cookies are automatically deleted when you close your browser. |
| Legal basis: Art. 6(1)(f) GDPR (legitimate interest) and §25(2) No. 2 TTDSG (technically required).
b) Statistics cookies:
These cookies enable us to compile statistics on the use of our website in anonymized form. For this we use Google Analytics (see above 5.). These cookies are only set with your explicit consent. |
| c) Analytics cookies: |
| These cookies enable us to analyze and improve the use of our website in anonymized form. For this we use Google Analytics (see above 5.). These cookies are only set with your explicit consent. |
| Legal basis: Art. 6(1)(a) GDPR (consent) and §25(1) TTDSG. |
| 6.2 Purpose of Data Processing |
| The purpose of technically necessary cookies is to make using websites easier for users. Some functions of our website cannot be offered without the use of cookies. |
| Analytics cookies are used to improve the quality of our website and its content. Evaluation shows us how the website is used, so we can continually optimize our offering. |
| 6.3 Storage Duration, Objection, and Removal Options |
| Cookies are stored on the user’s device and transmitted to our site. As a user, you, therefore, have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing your internet browser settings. Cookies already stored can be deleted at any time, including automatically. |
| You can revoke your consent to the use of non-essential cookies at any time via our cookie banner. Please note that disabling cookies may limit the functionality of our website. |
| 6.4 Cookie Banner and Consent Management |
| Upon your first visit to our website, a cookie banner will be displayed allowing you to give your consent to the use of non-essential cookies (especially analytics cookies). Granting consent is voluntary. You can also use the website without consent. |
| Your consent will be stored for 12 months. You can withdraw your consent at any time with effect for the future. |
| 7. No Contact Forms or Newsletters |
| Our website does not offer contact forms, newsletter registrations, user accounts, or other tools for collecting personal data through direct input. Therefore, we do not process any personal information such as names, phone numbers, or email addresses via the website. |
| 8. No External Links |
| Our website does not contain any links to third-party external websites. |
| 9. Embedded Images |
| Our website displays images of artworks. These images are hosted directly on our servers. No images from external providers are embedded, so no data is transmitted to third parties when the images are accessed. |
| 10. SSL Encryption |
| For security reasons and to protect the transmission of confidential content, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the browser’s address line changing from “http://” to “https://” and by the lock symbol in your browser line. |
| 11. Rights of Data Subjects |
| If your personal data is processed, you are a data subject within the meaning of the GDPR and have the following rights vis-à-vis the controller: |
| Right of access (Art. 15 GDPR) |
| You can request confirmation from the controller as to whether personal data concerning you are being processed. If so, you can request information about this data. |
| Right to rectification (Art. 16 GDPR) |
| You have a right to rectification and/or completion if the personal data processed concerning you are incorrect or incomplete. |
| Right to erasure (Art. 17 GDPR) |
| You can request the erasure of personal data concerning you without undue delay where one of the statutory grounds applies. |
| Right to restriction of processing (Art. 18 GDPR) |
| You have the right to demand restriction of processing where one of the statutory conditions applies. |
| Right to data portability (Art. 20 GDPR) |
| You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used, and machine-readable format. |
| Right to object (Art. 21 GDPR) |
| You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data relating to you, which is based on Art. 6(1)(f) GDPR (data processing based on legitimate interests). |
| Right to withdraw consent (Art. 7(3) GDPR) |
| You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. |
| Automated individual decision-making, including profiling (Art. 22 GDPR) |
| You have the right not to be subject to a decision based solely on automated processing – including profiling. |
| We do not use automated decision-making. |
| Right to lodge a complaint with a supervisory authority (Art. 77 GDPR) |
| Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your residence, place of work, or the place of the alleged infringement, if you believe that the processing of your personal data infringes the GDPR. |
| 12. Validity and Changes to this Privacy Policy |
| This privacy policy is valid as of November 5, 2025. |
| Due to the further development of our website or changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The current privacy policy can be accessed and printed at any time on our website. |