{"id":755,"date":"2024-01-24T14:46:48","date_gmt":"2024-01-24T14:46:48","guid":{"rendered":"https:\/\/pathdusseldorf.de\/?page_id=755"},"modified":"2026-02-18T13:50:26","modified_gmt":"2026-02-18T13:50:26","slug":"gdpr","status":"publish","type":"page","link":"https:\/\/pathdusseldorf.de\/en\/gdpr","title":{"rendered":"GDPR"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Data Privacy Policy\u00a0<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Data Privacy Policy <\/strong><\/h1>

Last updated: 18.02.2026<\/p>

Path D\u00fcsseldorf GmbH takes the protection of personal data seriously. This Data Privacy Policy explains how personal data is processed when you visit our website or interact with us in the context of our professional activities, in accordance with the General Data Protection Regulation (GDPR \/ DSGVO), the German Federal Data Protection Act (Bundesdatenschutzgesetz \u2013 BDSG), and other applicable data-protection laws.<\/p>

\u00a0<\/p>

1. Controller<\/strong><\/h2>

The controller responsible for data processing pursuant to Art. 4(7) GDPR is:<\/p>

Path D\u00fcsseldorf GmbH<\/strong>
Gesch\u00e4ftsf\u00fchrer:\u00a0K. Hakan Hasserbetci<\/strong>
c\/o 360 Workspace
Gerresheimer Stra\u00dfe 86
40233 D\u00fcsseldorf
Germany<\/p>

Email:\u00a0support@pathdusseldorf.com<\/strong><\/p>

\u00a0<\/p>

2. General Information on Data Processing<\/strong><\/h2>

We process personal data only where permitted by law and only for specified, explicit, and legitimate purposes. Personal data is processed in accordance with the principles of lawfulness, fairness, transparency, data minimisation, accuracy, storage limitation, integrity, and confidentiality as set out in Art. 5 GDPR.<\/p>

\u00a0<\/p>

3. Website Access and Hosting<\/strong><\/h2>

When you access our website, technical data may be processed automatically by our hosting provider to ensure the secure and reliable operation of the website. This data may include:<\/p>

  • IP address<\/li>
  • Date and time of access<\/li>
  • Browser type and version<\/li>
  • Operating system<\/li>
  • Referrer URL<\/li><\/ul>

    This data is processed exclusively for technical, security, and operational purposes and is not used to identify individual users.<\/p>

    Legal basis:<\/strong>
    Art. 6(1)(f) GDPR (legitimate interest in secure and stable website operation)<\/p>

    \u00a0<\/p>

    4. No Contact Forms on the Website<\/strong><\/h2>

    Our website does\u00a0not<\/strong>\u00a0provide contact forms and does\u00a0not<\/strong>\u00a0require visitors to actively enter personal data.<\/p>

    If you contact us voluntarily via email, we will process the personal data you provide (such as your email address, name, and message content) solely for the purpose of responding to your enquiry or initiating professional communication.<\/p>

    Legal basis:<\/strong>
    Art. 6(1)(b) GDPR (pre-contractual measures)
    Art. 6(1)(f) GDPR (legitimate interest in professional communication)<\/p>

    \u00a0<\/p>

    5. Cookies and Tracking Technologies<\/strong><\/h2>

    Our website does\u00a0not<\/strong>\u00a0use cookies, analytics tools, tracking technologies, or marketing services.<\/p>

    No cookie banner is displayed, as no cookies requiring consent under applicable data-protection law are used.
    Further details are provided in our separate\u00a0Cookies Policy<\/strong>.<\/p>

    \u00a0<\/p>

    6. Processing of Client and Business Contact Data<\/strong><\/h2>

    In the course of our professional activities, we process personal data of business contacts, including clients, client representatives, training participants, and partners.<\/p>

    Such data may include names, professional contact details, organisational roles, and communication records. Processing is limited to what is necessary for:<\/p>

    • contract initiation and performance,<\/li>
    • consulting, governance, and compliance services,<\/li>
    • training delivery and documentation,<\/li>
    • compliance with legal and regulatory obligations.<\/li><\/ul>

      Legal bases:<\/strong>
      Art. 6(1)(b) GDPR
      Art. 6(1)(c) GDPR
      Art. 6(1)(f) GDPR<\/p>

      \u00a0<\/p>

      7. Processing in Consulting, DPO, and Compliance Mandates<\/strong><\/h2>

      Depending on the specific engagement, Path D\u00fcsseldorf GmbH may act as:<\/p>

      • controller<\/strong>,<\/li>
      • processor<\/strong>, or<\/li>
      • independent professional subject to statutory secrecy obligations<\/strong>, including in the role of outsourced Data Protection Officer (DPO).<\/li><\/ul>

        Where personal data of a client\u2019s employees or end customers is processed, such processing takes place strictly within the scope of the mandate and under the responsibility of the respective client as controller, unless otherwise contractually agreed.<\/p>

        \u00a0<\/p>

        8. Freelance Consultants and Advisory Board Members<\/strong><\/h2>

        Path D\u00fcsseldorf GmbH collaborates with freelance consultants and advisory board members worldwide. These individuals are\u00a0not employees<\/strong>.<\/p>

        Personal data is processed for the purposes of contractual cooperation, coordination, communication, and compliance with legal, accounting, and tax obligations.<\/p>

        Legal bases:<\/strong>
        Art. 6(1)(b) GDPR
        Art. 6(1)(c) GDPR
        Art. 6(1)(f) GDPR<\/p>

        \u00a0<\/p>

        9. Training and Events<\/strong><\/h2>

        When we organise or deliver training sessions, workshops, or professional events, we may process personal data of participants, such as names, professional contact details, attendance information, and certification-related records.<\/p>

        Processing is limited to what is necessary for training delivery, documentation, and professional follow-up.<\/p>

        Legal bases:<\/strong>
        Art. 6(1)(b) GDPR
        Art. 6(1)(f) GDPR<\/p>

        \u00a0<\/p>

        10. International Data Transfers<\/strong><\/h2>

        Due to the international scope of our consulting, governance, and training activities, personal data may be transferred to recipients located outside the European Union or the European Economic Area (EEA), including clients, partners, or consultants operating internationally.<\/p>

        Such transfers are carried out\u00a0only where permitted under Chapter V GDPR<\/strong>\u00a0and only when appropriate safeguards are in place. These safeguards may include, in particular:<\/p>

        • Standard Contractual Clauses approved by the European Commission (Art. 46 GDPR),<\/li>
        • contractual confidentiality and data-protection obligations,<\/li>
        • internal governance, access-control, and documentation measures.<\/li><\/ul>

          Where required, transfer risk assessments are considered to evaluate the legal environment of the recipient country and the effectiveness of the implemented safeguards.<\/p>

          Path D\u00fcsseldorf GmbH does\u00a0not<\/strong>\u00a0transfer personal data to third countries for marketing, profiling, or advertising purposes.<\/p>

          \u00a0<\/p>

          11. Data Retention<\/strong><\/h2>

          Personal data is retained only for as long as necessary to fulfil the respective processing purpose or to comply with statutory retention obligations. Data is deleted or anonymised once retention is no longer required.<\/p>

          \u00a0<\/p>

          12. Data Subject Rights<\/strong><\/h2>

          Data subjects have the following rights under the GDPR:<\/p>

          • Right of access (Art. 15 GDPR)<\/li>
          • Right to rectification (Art. 16 GDPR)<\/li>
          • Right to erasure (Art. 17 GDPR)<\/li>
          • Right to restriction of processing (Art. 18 GDPR)<\/li>
          • Right to data portability (Art. 20 GDPR)<\/li>
          • Right to object (Art. 21 GDPR)<\/li><\/ul>

            Requests may be addressed to:
            \ud83d\udce7\u00a0support@pathdusseldorf.com<\/strong><\/p>

            \u00a0<\/p>

            13. Right to Lodge a Complaint<\/strong><\/h2>

            Data subjects have the right to lodge a complaint with a supervisory authority. The competent authority for Path D\u00fcsseldorf GmbH is:<\/p>

            Landesbeauftragte f\u00fcr Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)<\/strong><\/p>

            \u00a0<\/p>

            14. Data Security<\/strong><\/h2>

            Path D\u00fcsseldorf GmbH implements appropriate\u00a0technical and organisational measures (TOMs)<\/strong>\u00a0in accordance with Art. 32 GDPR to ensure a level of security appropriate to the risk.<\/p>

            These measures include, in particular:<\/p>

            • role-based access controls and authorisation concepts,<\/li>
            • confidentiality obligations for all persons involved in data processing,<\/li>
            • secure communication and data-handling practices,<\/li>
            • governance procedures for access, storage, and disclosure of personal data,<\/li>
            • regular review of organisational and procedural safeguards.<\/li><\/ul>

              Security measures are designed to protect personal data against unauthorised access, accidental loss, destruction, alteration, or unlawful disclosure, taking into account the nature, scope, context, and purposes of processing.<\/p>

              \u00a0<\/p>

              15. Changes to This Data Privacy Policy<\/strong><\/h2>

              We reserve the right to update this Data Privacy Policy where necessary to reflect legal, regulatory, or operational changes.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\n

              \n\n\t\t\n
                \n\t\t\t <\/ul>\n <\/div> \n","protected":false},"excerpt":{"rendered":"

                Data Privacy Policy\u00a0 Data Privacy Policy Last updated: 18.02.2026 Path D\u00fcsseldorf GmbH takes the protection of personal data seriously. This Data Privacy Policy explains how personal data is processed when you visit our website or interact with us in the context of our professional activities, in accordance with the General Data Protection Regulation (GDPR \/ […]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"elementor_canvas","meta":{"postBodyCss":"","postBodyMargin":[],"postBodyPadding":[],"postBodyBackground":{"backgroundType":"classic","gradient":""},"footnotes":""},"class_list":["post-755","page","type-page","status-publish","hentry"],"yoast_head":"\nGDPR - Path Dusseldorf<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/pathdusseldorf.de\/en\/gdpr\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"GDPR - Path Dusseldorf\" \/>\n<meta property=\"og:description\" content=\"Data Privacy Policy\u00a0 Data Privacy Policy Last updated: 18.02.2026 Path D\u00fcsseldorf GmbH takes the protection of personal data seriously. This Data Privacy Policy explains how personal data is processed when you visit our website or interact with us in the context of our professional activities, in accordance with the General Data Protection Regulation (GDPR \/ […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/pathdusseldorf.de\/en\/gdpr\/\" \/>\n<meta property=\"og:site_name\" content=\"Path Dusseldorf\" \/>\n<meta property=\"article:modified_time\" content=\"2026-02-18T13:50:26+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/pathdusseldorf.de\/wp-content\/uploads\/2026\/03\/Path_Dus_Logo_-e1772454326832.png\" \/>\n\t<meta property=\"og:image:width\" content=\"445\" \/>\n\t<meta property=\"og:image:height\" content=\"336\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/pathdusseldorf.de\/gdpr\",\"url\":\"https:\/\/pathdusseldorf.de\/gdpr\",\"name\":\"GDPR - Path Dusseldorf\",\"isPartOf\":{\"@id\":\"https:\/\/pathdusseldorf.de\/#website\"},\"datePublished\":\"2024-01-24T14:46:48+00:00\",\"dateModified\":\"2026-02-18T13:50:26+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/pathdusseldorf.de\/gdpr#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/pathdusseldorf.de\/gdpr\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/pathdusseldorf.de\/gdpr#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\/\/pathdusseldorf.de\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"GDPR\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/pathdusseldorf.de\/#website\",\"url\":\"https:\/\/pathdusseldorf.de\/\",\"name\":\"Path Dusseldorf\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/pathdusseldorf.de\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"GDPR - Path Dusseldorf","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/pathdusseldorf.de\/en\/gdpr\/","og_locale":"en_US","og_type":"article","og_title":"GDPR - Path Dusseldorf","og_description":"Data Privacy Policy\u00a0 Data Privacy Policy Last updated: 18.02.2026 Path D\u00fcsseldorf GmbH takes the protection of personal data seriously. This Data Privacy Policy explains how personal data is processed when you visit our website or interact with us in the context of our professional activities, in accordance with the General Data Protection Regulation (GDPR \/ […]","og_url":"https:\/\/pathdusseldorf.de\/en\/gdpr\/","og_site_name":"Path Dusseldorf","article_modified_time":"2026-02-18T13:50:26+00:00","og_image":[{"width":445,"height":336,"url":"https:\/\/pathdusseldorf.de\/wp-content\/uploads\/2026\/03\/Path_Dus_Logo_-e1772454326832.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/pathdusseldorf.de\/gdpr","url":"https:\/\/pathdusseldorf.de\/gdpr","name":"GDPR - Path Dusseldorf","isPartOf":{"@id":"https:\/\/pathdusseldorf.de\/#website"},"datePublished":"2024-01-24T14:46:48+00:00","dateModified":"2026-02-18T13:50:26+00:00","breadcrumb":{"@id":"https:\/\/pathdusseldorf.de\/gdpr#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/pathdusseldorf.de\/gdpr"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/pathdusseldorf.de\/gdpr#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/pathdusseldorf.de\/"},{"@type":"ListItem","position":2,"name":"GDPR"}]},{"@type":"WebSite","@id":"https:\/\/pathdusseldorf.de\/#website","url":"https:\/\/pathdusseldorf.de\/","name":"Path Dusseldorf","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/pathdusseldorf.de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/pages\/755","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/comments?post=755"}],"version-history":[{"count":13,"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/pages\/755\/revisions"}],"predecessor-version":[{"id":1649,"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/pages\/755\/revisions\/1649"}],"wp:attachment":[{"href":"https:\/\/pathdusseldorf.de\/en\/wp-json\/wp\/v2\/media?parent=755"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}