top of page

PRIVACY POLICY

The data controller is:

Alexander Navarro Alonso

Schiltachweg 20

71069 Sindelfingen

Germany

Info@Navarro-Photography.DE

 

We appreciate your interest in our website. Protecting your privacy is very important to us. Below, we provide detailed information about how we handle your data.

 

1. Access Data and Hosting

 

You can visit our website without providing any personal information. Each time a webpage is accessed, the web server automatically saves a so-called server log file, which contains information such as the name of the requested file, your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data), and documents the access. This access data is evaluated solely for the purpose of ensuring the smooth operation of the website and improving our services. This serves our legitimate interests, which outweigh your interests, in the correct presentation of our services in accordance with Art. 6 Para. 1 Sentence 1 lit. f GDPR. All access data is processed for as long as necessary for the purposes described above.

 

Hosting

The services for hosting and displaying this website are partly provided by our service providers as part of data processing on our behalf. Unless otherwise stated in this Privacy Policy, all access data and all data collected via forms provided on this website are processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact details provided in this Privacy Policy.

 

Our service providers are located and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection: Israel, United Kingdom, USA.

 

The adequacy decision for the USA serves as the basis for transfers to third countries, provided the respective service provider is certified. Such certification is in place.

 

Our service providers are located and/or use servers in the following countries: Brazil, Mexico, India, Ukraine.

 

There is no adequacy decision from the European Commission for these countries. Our cooperation with them is based on the following safeguards: Standard Contractual Clauses of the European Union.

 

2. Data Processing for Contact and Customer Communication

 

Contacting Us

 

When you contact us, we collect personal data in accordance with Article 6 Paragraph 1 Sentence 1 Letter b of the GDPR to process your inquiries, provided you voluntarily provide this data to us when contacting us (e.g., via contact form, live chat tool, or email). Required fields are marked as such, as we absolutely need this data to process your inquiry. The specific data collected is evident from the respective input forms. After your request has been fully processed, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 Sentence 1 lit. a GDPR or we reserve the right to use your data beyond this scope, which is legally permitted and about which we inform you in this statement.

 

After your customer request has been fully processed, your data will be restricted from further processing and deleted after the expiry of the statutory retention periods under tax and commercial law in accordance with Art. 6 Para. 1 Sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 Sentence 1 lit. a GDPR or we reserve the right to use your data beyond this scope, which is legally permitted and about which we inform you in this statement.

 

3. Email Advertising

 

3.1 Email Newsletter with Registration, Newsletter Tracking with Separate Consent

 

When you subscribe to our newsletter, we use the data required for this purpose or data you have separately provided to send you our email newsletter regularly based on your consent pursuant to Art. 6 Para. 1 Sentence 1 lit. a GDPR. You can unsubscribe from the newsletter at any time by sending a message to the contact details provided below or by using the unsubscribe link in the newsletter. After unsubscribing, we will delete your email address from the mailing list unless you have expressly consented to further use of your data pursuant to Art. 6 Para. 1 Sentence 1 lit. a GDPR or we reserve the right to further data processing as permitted by law, about which we inform you in this privacy policy.

... If you have additionally given us your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR to analyze our newsletters, we will also analyze your interaction with our newsletter by measuring, storing, and evaluating open and click rates for the purpose of designing future newsletter campaigns ("newsletter tracking").

 

For this analysis, the emails sent contain single-pixel technologies (e.g., so-called web beacons, tracking pixels) that are stored on our website. For the analyses, we link the following "newsletter data" in particular:

  • the page from which the page was requested (so-called referrer URL),

  • the date and time of access,

  • the description of the type of web browser used,

  • the IP address of the requesting computer,

  • the email address,

  • the date and time of registration and confirmation,

  • and the single-pixel technologies with your email address or your IP address and, if applicable, a unique ID. Links in the newsletter may also contain this ID.

 

You can unsubscribe from newsletter tracking at any time, either by sending a message to the contact address provided or by using the unsubscribe link in the newsletter.

 

The information will be stored for as long as you are subscribed to the newsletter.

 

3.2 Newsletter Distribution

 

The newsletter and the newsletter tracking described above may also be sent by our service providers as part of processing on our behalf. If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact details provided in this privacy policy.

 

Our service providers are located and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: Israel, United Kingdom, USA.

 

The adequacy decision for the USA serves as the basis for the transfer of data to third countries, provided the respective service provider is certified. Such certification exists.

 

Our service providers are located and/or use servers in these countries: Brazil, Mexico, India, Ukraine.

 

There is no adequacy decision from the European Commission for these countries. Our cooperation with them is based on the following safeguards: Standard Contractual Clauses of the European Union.

4. Cookies and Other Technologies

 

General Information

To make visiting our website attractive and to enable the use of certain functions, we use various technologies, including so-called cookies, on different pages. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted after the end of your browser session, i.e., after you close your browser (session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies).

 

Protection of Privacy on Devices

When using our online services, we use essential technologies to provide the explicitly requested telemedia service. The storage of information on your device or access to information already stored on your device does not require your consent.

 

Subsequent Data Processing by Cookies and Other Technologies

 

We use technologies that are essential for the use of certain functions of our website (e.g., website preference settings). These technologies collect and process your IP address, the time of your visit, device and browser information, and information about your use of our website (e.g., information about your preferences). This serves our overriding legitimate interests in optimizing the presentation of our services, in accordance with Art. 6 Para. 1 Sentence 1 lit. f GDPR.

 

5. Use of Cookies and Other Technologies for Web Analytics and Advertising Purposes

 

We use the following cookies and other third-party technologies on our website. Unless otherwise stated for the individual technologies, this is done on the basis of your consent pursuant to Art. 6 Para. 1 Sentence 1 lit. a GDPR. The data collected in this context will be deleted once the purpose for which it was collected has been fulfilled and we have ceased using the respective technology. You can withdraw your consent at any time with effect for the future. Further information about your options for withdrawing your consent can be found in the section "Cookies and Other Technologies." Further information, including the basis of our cooperation with the individual providers, can be found under the individual technologies. If you have any questions about the providers and the basis of our cooperation with them, please contact us using the contact details provided in this privacy policy.

6. Social Media

 

Our online presence on Facebook (by Meta), Instagram (by Meta)

 

If you have given your consent to the respective social media operator in accordance with Art. 6 Para. 1 Sentence 1 lit. a GDPR, your data will be automatically collected and stored when you visit our online presence on the aforementioned social media platforms for market research and advertising purposes. Pseudonymous user profiles are created from this data. These profiles can be used, for example, to display advertisements within and outside the platforms that are likely to correspond to your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as contact options and your related rights and settings for protecting your privacy, please refer to the providers' privacy policies linked below. Should you require further assistance, please contact us.

 

Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is generally transferred to and stored on a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA. Data processing in connection with visits to a Facebook (by Meta) fan page is based on a joint controllership agreement pursuant to Article 26 GDPR. Further information (information on Insights data) can be found here.

 

Our service providers are located and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

 

The adequacy decision for the USA serves as the basis for the transfer of data to third countries, provided the respective service provider is certified. Certification is in place.

 

Our service providers are located and/or use servers in the following countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico.

 

For these countries, there is no adequacy decision from the European Commission. Our cooperation with them is based on the following safeguards: Standard Contractual Clauses of the European Commission.

 

Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is generally transferred to and stored on a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, CA 94025, USA. Data processing in connection with visiting an Instagram (by Meta) fan page is based on a joint controllership agreement pursuant to Article 26 GDPR. Further information (information on Insights data) can be found here.

 

Our service providers are located in and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

 

The adequacy decision for the USA serves as the basis for transfers to third countries, provided the respective service provider is certified. Such certification is in place.

 

Our service providers are located in and/or use servers in the following countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico.

 

There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on the following safeguards: Standard Contractual Clauses of the European Commission.

 

7. Contact Options and Your Rights

 

7.1 Your Rights

As a data subject, you have the following rights:

 

  • pursuant to Article 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;

  • pursuant to Article 16 GDPR, the right to request the immediate rectification of inaccurate personal data or the completion of incomplete personal data stored by us;

  • pursuant to Article 17 GDPR, the right to request the erasure of your personal data stored by us, unless further processing is necessary:

    • for exercising the right of freedom of expression and information;

    • for compliance with a legal obligation;

    • for reasons of public interest; or

    • for the establishment, exercise, or defense of legal claims;

  • pursuant to Article 18 GDPR, the right to request the restriction of processing of your personal data where:

    • the accuracy of the data is contested by you,

    • the processing is unlawful, but you oppose its erasure;

    • We no longer need the data, but you require it for the establishment, exercise, or defense of legal claims, or

    • you have objected to the processing pursuant to Article 21 GDPR;

  • you have the right, pursuant to Article 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or to request its transmission to another controller;

  • you have the right, pursuant to Article 77 GDPR, to lodge a complaint with a supervisory authority. You can usually contact the supervisory authority of your habitual residence, your place of work, or our company's registered office.
     

Right to object

 

To the extent that we process personal data as explained above to protect our overriding legitimate interests within the framework of a balancing of interests, you may object to this processing with effect for the future. If the processing is for direct marketing purposes, you may exercise this right at any time as described above. If the processing is for other purposes, you only have a right to object if there are grounds relating to your particular situation.

 

After you have exercised your right to object, we will no longer process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

 

This does not apply if the processing is for direct marketing purposes. In that case, we will no longer process your personal data for this purpose.

 

 

7.2 Contact Options

If you have any questions regarding the collection, processing or use of your personal data, for information, correction, restriction or deletion of data, as well as for the revocation of granted consent or objection to a specific use of data, please contact us directly using the contact details in our legal notice.

Stay connected

EMAIL

Legal Notice

Privacy Policy

General terms and conditions of business

© 2026 Navarro Photography.

bottom of page