Privacy Policy

General

This privacy policy is intended to inform users of this website about the nature, scope, and purpose of the collection and use of personal data by the website operator Petrossian Consulting.

The website operator takes your privacy very seriously and treats your personal data confidentially and in accordance with legal regulations. Due to the constant development of new technologies and the ongoing evolution of this website, changes to this privacy policy may be made. Therefore, we recommend that you regularly reread the privacy policy.

Definitions of the terms used can be found in Article 4 of the General Data Protection Regulation (DSGVO).

This privacy policy applies to data processing by:

Dr. Gurgen Petrossian

Email: info @petrossian-consulting.org

Petrossian Consulting is the „controller“ within the meaning of Article 4 No. 7 of the General Data Protection Regulation (DSGVO). The operational data protection officer of the controller can be reached at the above address, attention to Dr. Gurgen Petrossian, or at info @petrossian-consulting.org.

Processing of personal data as well as the type and purpose of their use

When you access our website www.petrossian-consulting.org, information is automatically sent to the server of our website by the browser used on your end device (PC, laptop, tablet, smartphone, etc.). This information is temporarily stored in a so-called log file for up to 14 days. Where technically possible and reasonable, IP addresses are anonymized after 24 hours.

The following information is collected without your intervention and stored until automated deletion:

Visited website
Time of access
Amount of data sent in bytes
Source/reference from which you accessed the page
Used browser
Used operating system
Used IP address

These pieces of information constitute personal data within the meaning of Article 4 No. 1 of the General Data Protection Regulation (DSGVO) and are processed by us in accordance with the principles of Article 5(1) of the DSGVO for the following purposes:

to maintain secure server operations,
to ensure smooth connection establishment to the website,
to ensure comfortable use of our website,
for the evaluation of system security and stability, and
for other administrative purposes.

The legal basis for data processing is Article 6(1) sentence 1 lit. f of the General Data Protection Regulation (DSGVO). Our legitimate interest arises from the purposes of data collection listed above. Under no circumstances do we use the collected data to draw conclusions about your person.

Furthermore, personal data may only be processed by us if

You have given us your consent to the processing of personal data concerning you for one or more specific purposes (Article 6(1) sentence 1 lit. a DSGVO).
The processing is necessary for the performance of a contract to which you are a party, or for the implementation of pre-contractual measures carried out at your request (Article 6(1) sentence 1 lit. b DSGVO).
The processing is necessary to fulfill a legal obligation to which the controller is subject (Article 6(1) sentence 1 lit. c DSGVO).
The processing is necessary to protect the vital interests of the data subject or of another natural person (Article 6(1) sentence 1 lit. d DSGVO).
The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller (Article 6(1) sentence 1 lit. e DSGVO).
The processing is necessary to safeguard the legitimate interests of the controller or a third party, unless your interests or fundamental rights and freedoms, which require the protection of personal data, prevail, especially if you are a child (Article 6(1) sentence 1 lit. f DSGVO).

During the operation of our website, personal data is processed by an external service provider (IT hosting service) („processor“). According to Article 28(1) of the General Data Protection Regulation (DSGVO), the processor provides sufficient guarantees that appropriate technical and organizational measures are implemented so that the processing is in accordance with the requirements of the DSGVO and ensures the protection of the rights of the data subject. The processing by the processor is carried out in accordance with Article 28(3) sentence 1 of the DSGVO on the basis of a data processing agreement that binds the processor to us. This agreement specifies the subject and duration of the processing, the nature and purpose of the processing, the type of personal data, the categories of data subjects, and the obligations and rights of the controller.

Processing of personal data for other purposes

The processing of personal data for purposes other than those for which the personal data were originally collected („further processing“) is permissible if the processing is compatible with the purposes for which the personal data were originally collected (principle of purpose limitation and compatibility). In this case, no separate legal basis is required other than the one for the collection of personal data.

If the further processing is based on consent (Article 6(1)(a) of the General Data Protection Regulation), or on a legal provision of the Member States that constitutes a necessary and proportionate measure to safeguard the objectives referred to in Article 23(1) of the GDPR in a democratic society, the assessment of compatibility with the original purpose may be waived.

Cookies

We use cookies to optimize the website experience for our users. A cookie is a text file that is stored by a web server on a computer or mobile device. The content of a cookie can only be accessed and read by the server that created the cookie. Cookies are unique to the browser or mobile application you are using. The text in a cookie consists of identifiers, the name of the website(s), and some numbers and characters.

Similar to cookies, locally shared objects (also called Flash cookies) and local storage in HTML5 store information on your device and can record information about your activities and preferences.

The storage of cookies on your end device or access to cookies already stored on your end device is only permissible, subject to Section 25(2) of the German Telemedia Data Protection Act (TTDSG), if you give your consent using a consent management platform provided by us (Section 25(1) sentence 1 TTDSG).

Most browsers accept cookies automatically. However, you can configure your browser to prevent cookies from being stored on your computer or to always display a notice before a new cookie is created. However, disabling cookies entirely may result in not being able to use all the features of our website.

If you do not want cookies for audience measurement to be stored on your device, you can object to the use of these files here:

Cookie deactivation page of the Network Advertising Initiative: http://optout.networkadvertising.org/?c=1#!/
Cookie deactivation page of the U.S. website: http://optout.aboutads.info/?c=2#!/
Cookie deactivation page of the EU website: http://optout.networkadvertising.org/?c=1#!/

Social Media Plug-Ins

On our website, based on Article 6(1) sentence 1 lit. f of the General Data Protection Regulation (DSGVO), we use the technical platform and services of the social network linkedin to increase awareness of our website. The underlying advertising purpose is to be considered a legitimate interest within the meaning of the GDPR. The responsibility for the data protection-compliant operation lies with their respective providers. The integration of these plugins by us is done using the so-called two-click method to provide the best possible protection for visitors to our website: https://www.linkedin.com/legal/privacy-policy

Rights of data subjects

As an data subject within the meaning of Article 4 No. 1 of the GDPR, you have the following rights:

a) Right to withdraw consent

According to Article 7(3) of the GDPR, you have the right to withdraw your consent at any time.

b) Right to information

According to Article 15 of the GDPR, you have the right to obtain confirmation as to whether or not personal data concerning you are being processed. If this is the case, you have the right to information about this personal data and the following information:

The processing purposes;
the categories of personal data processed;
the recipients or categories of recipients to whom the personal data have been or will be disclosed, particularly regarding recipients in third countries or international organizations;
if possible, the planned duration for which the personal data will be stored, or, if this is not possible, the criteria for determining this duration;
the existence of the right to correction or deletion of personal data concerning you or to restriction of processing by us or the right to object to such processing;
the existence of the right to lodge a complaint with a supervisory authority;
if the personal data are not collected from you, all available information about the origin of the data;
the existence of automated decision-making, including profiling, in accordance with Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the involved logic as well as the scope and intended effects of such processing for you

c) Right to correction and completion

According to Article 16 of the GDPR, you have the right to demand the immediate correction of personal data concerning you that is incorrect or incomplete.

d) Right to erasure („right to be forgotten“)

According to Article 17 of the GDPR, you have the right to request the immediate deletion of personal data concerning you. If further processing is not required for the purposes mentioned in Article 17(3) of the GDPR, we are obligated to delete personal data immediately if one of the following reasons applies:

The personal data are no longer necessary for the purposes for which they were collected or otherwise processed,
You withdraw your consent on which the processing was based according to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, and there is no other legal basis for the processing.
You object to the processing pursuant to Article 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or you object pursuant to Article 21(2) GDPR,
The personal data have been unlawfully processed,
The deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject, or
The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

e) Right to restriction of processing

According to Article 18 of the GDPR, you have the right to request the restriction of processing when:

the accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data,
the processing is unlawful, and you oppose the erasure of the personal data and request the restriction of their use instead;
we no longer need the personal data for the purposes of the processing, but you require them for the establishment, exercise, or defense of legal claims, or
you have objected to processing pursuant to Article 21(1) GDPR, pending the verification of whether our legitimate grounds override yours.

f) Right to data portability

According to Article 20 of the GDPR, you have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller without hindrance from us, provided that

the processing is based on consent pursuant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR or on a contract pursuant to Article 6(1)(b) GDPR, and
the processing is carried out by automated means.

to ensure that the personal data are transferred directly from us to another controller, where technically feasible.

g) Right to object

According to Article 21 of the GDPR, you have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you based on Article 6(1)(e) or (f) GDPR, including profiling based on these provisions. In such a case, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims. If personal data are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, including profiling related to such direct marketing. If you object to processing for direct marketing purposes, the personal data will no longer be processed for these purposes. You also have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR, unless the processing is necessary for the performance of a task carried out in the public interest

h) Right to lodge a complaint

According to Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement, if you believe that the processing of personal data concerning you violates the GDPR.

In addition, the provisions of Chapter 3 (Articles 12-23) of the GDPR apply.

To exercise your data subject rights, a simple email to: info@petrossian-consulting.org is sufficient.

Data security

We implement appropriate technical and organizational measures to protect your data against accidental or intentional manipulation, partial or complete disclosure, partial or complete loss, partial or complete destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

During your visit to the website, we use the widely adopted SSL (Secure Socket Layer) protocol in conjunction with the highest encryption level supported by your browser. This is typically 256-bit encryption. If your browser does not support 256-bit encryption, we revert to 128-bit v3 technology instead. You can recognize whether a particular page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser.

Timeliness and changes to this privacy policy

This privacy policy is currently valid and as of November 2023.

Due to the ongoing development of our website and offerings through it, or due to changes in legal or regulatory requirements, it may be necessary to change this privacy policy. The current privacy policy can be accessed and printed by you at any time on the website at www.petrossian-consulting.org.