STUDIO 3000®erving good brands
DE

Data Protection

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

Studio 3000 GmbH

Venloer Str. 547
50825 Cologne
Germany
Email: mail@studio3000.de

2. Data Protection Officer

A data protection officer has not been appointed for our company, as there is no legal obligation to do so.

3. General Information on Data Processing

The protection of your personal data is very important to us. We process personal data exclusively within the framework of the applicable legal provisions, in particular the GDPR.

Personal data is any data with which you can be personally identified. This privacy policy informs you about what data is collected on this website and for what purpose.

4. Hosting

Our website is hosted by the external hosting provider Vercel.

The servers are located within the European Union. When visiting our website, Vercel collects various log files, including:

  • IP address

  • Date and time of the request

  • Browser type and version

  • Operating system used

  • Referrer URL

This data is processed to ensure the smooth operation of the website and to improve our services (Art. 6 para. 1 lit. f GDPR).

5. Cookies and Consent Management

We use cookies. Cookies are small text files that are stored on your device.

The use of cookies is managed via the consent tool Cookie-Script. Through this tool, you can decide for yourself which cookies may be set when you first visit the website.

The legal basis for technically necessary cookies is Art. 6 para. 1 lit. f GDPR.

The legal basis for all cookies requiring consent is Art. 6 para. 1 lit. a GDPR.

The consent data collected via Cookie-Script is stored for 30 days.

6. Google Tag Manager

We use Google Tag Manager.

Google Tag Manager itself does not process any personal data. It is used solely for managing and deploying tools.

7. Google Analytics 4

This website uses Google Analytics 4, a web analytics service.

Google Analytics 4 uses cookies that enable an analysis of the use of the website. Among other things, the following data is processed:

  • Pages accessed

  • Length of stay

  • Approximate location data (country/region)

  • Technical information about browser and device

The IP address is automatically shortened by Google (IP anonymization), so that direct personal identification is excluded.

The use of Google Analytics is based exclusively on your explicit consent (Art. 6 para. 1 lit. a GDPR), which is obtained via the consent banner. You may revoke your consent at any time.

The recipient of the data is Google Ireland Limited. A transfer of data to the USA cannot be ruled out. The data transfer is based on the standard contractual clauses approved by the European Commission and the EU–US Data Privacy Framework.

A data processing agreement pursuant to Art. 28 GDPR has been concluded with Google.

8. Appointment Scheduling via cal.com

A booking tool provided by the external provider cal.com, Inc. is integrated on our website. The integration is carried out via an iframe as well as via redirects to pages of cal.com.

When using the booking tool, personal data is processed in particular:

  • Name

  • Email address

  • Appointment-related information

  • IP address

  • Technical access data (browser, operating system, time of access)

In addition, cal.com may set cookies on your device.

The use of the booking tool is only permitted after your explicit consent via the consent banner (Art. 6 para. 1 lit. a GDPR).

The recipient of the data is cal.com, Inc., USA. A transfer of data to a third country (USA) cannot be ruled out. The data transfer is based on the standard contractual clauses approved by the European Commission.

Further information on data processing by cal.com can be found in cal.com’s privacy policy.

9. Email Communication

If you contact us by email, the data transmitted by you (e.g. email address, content of the message) will be stored for the purpose of processing your inquiry.

Email communication is handled via our provider Strato.

Legal basis: Art. 6 para. 1 lit. b GDPR (initiation of a contract) and Art. 6 para. 1 lit. f GDPR (legitimate interest in communication).

10. No External Content

Currently, no external content is integrated on this website, in particular:

  • no Google Maps

  • no YouTube or Vimeo

  • no external fonts (e.g. Google Fonts)

  • no social media plugins

11. Your Rights

You have the right at any time to:

  • obtain information about your stored data (Art. 15 GDPR)

  • rectification of inaccurate data (Art. 16 GDPR)

  • erasure of your data (Art. 17 GDPR)

  • restriction of processing (Art. 18 GDPR)

  • data portability (Art. 20 GDPR)

  • object to the processing (Art. 21 GDPR)

You also have the right to lodge a complaint with the competent supervisory authority:

State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia

Kavalleriestraße 2–4, 40213 Düsseldorf, Germany

12. Revocation of Your Consent

You may revoke any consent you have given at any time via the cookie consent tool. The lawfulness of the processing carried out prior to the revocation remains unaffected.

13. Data Security

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, or unauthorized access.

14. Status of This Privacy Policy

Status: November 2025