Privacy Notice

Last updated: December 29, 2025

For the website and social media presence of Legal Living Hub (hereinafter “LLH”), we, Olga Weidenkeller and Lea Imschweiler, are responsible. We take the protection of your personal data very seriously. We handle your data confidentially and in accordance with applicable data protection laws as well as this privacy policy.
Below you will find an overview of how we process your personal data when you visit our website or social media pages or contact us via contact form or email.

1. Who is responsible for data processing on this website?

The controller for data processing is:

Legal Living Hub UG

Olga Weidenkeller / Lea Imschweiler
c/o Zum Scheider Feld 12
51467 Bergisch Gladbach, Germany

If you have any questions regarding the processing of your personal data by LLH, please contact us at [email protected]

Personal data means any information relating to an identified or identifiable natural person. This includes, in particular, details that allow conclusions to be drawn about your identity, e.g., your name, telephone number, address, or email address. Certain identifiers such as your IP address or the device ID of your end device are also personal data.

2. Collection and Processing of Personal Data

2.1 Provision of the Website and Creation of Log Files

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device. The following data are temporarily stored:

Information about the browser type and version used
Operating system and internet service provider
IP address
Date and time of access
Referrer URL and pages visited on our website

Processing these connection data is necessary to technically enable your visit to our website, to ensure the permanent functionality and security of our systems, and to administer the website. For this purpose, the connection data is stored in internal log files for a limited time and reduced to what is necessary. This serves, in particular, to trace the cause of repeated or abusive accesses that could impair the stability or security of our website and to take appropriate countermeasures.

The legal basis is Art. 6(1)(b) GDPR where the page visit occurs in connection with initiating or performing a contract, and otherwise Art. 6(1)(f) GDPR based on our legitimate interest in enabling website access and ensuring the permanent functionality and security of our systems. The automatic transmission of connection data and the resulting log files do not constitute access to information stored on the end device within the meaning of the EU Member States’ ePrivacy implementation laws (in Germany, Sec. 25 TDDDG). In any case, such access would be strictly necessary. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure website operation). Data in log files are stored for up to 7 days and then deleted, unless further statutory retention obligations apply.

2.2 Contacting Us

If you contact us by email or via our website, we process the personal data you provide (e.g., name, email address, company name, content of your message). Processing takes place solely to handle your inquiry and communicate with you.

To schedule an appointment, we use the software “Calendly” from Calendly, LLC, 3423 Piedmont Road NE, Atlanta, GA 30305-1754. Since Calendly, LLC is a company based in the United States, a transfer of data to a third country cannot be excluded. To ensure protection, we have concluded the Standard Contractual Clauses (SCC) approved by the European Commission with Calendly. Further information on data processing by Calendly can be found in the provider’s privacy notice: https://calendly.com/legal/privacy-notice

If you schedule an appointment for a consultation, an invitation to a virtual meeting will automatically be sent to you. For this purpose, we use the services of Google Workspace, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
You can find Google’s privacy notice here: https://support.google.com/meet/answer/10382037?hl=en.

The legal basis for this data processing is Article 6(1)(b) and (f) GDPR (pre-contractual measures, performance of a contract, or legitimate interest based on LLH’s need to respond to inquiries from clients and other individuals).

2.3 Use of Cookies and Similar Technologies

We use cookies and similar technologies on our website to recognize visitors’ preferences and optimally tailor the website. This facilitates navigation and enhances user-friendliness. Cookies and other technologies also help us identify particularly popular areas of our online offering.

Cookies are small text files stored on your device’s hard drive. They enable us to store information over a certain period and recognize your device. For improved user guidance and individualized performance, we use persistent cookies. We also use so-called session cookies, which are deleted automatically when you close your browser. You can set your browser to inform you when cookies are set, making the use of cookies transparent. Important: If you completely block cookies, some website functions may not be available.

Two types of cookies are used on our website:

Essential Cookies:

These cookies are necessary for the functioning of the website and cannot be disabled in our systems. They are usually set only in response to actions you take that constitute a request for services, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or alert you about these cookies, but some parts of the website may then not function properly. These cookies do not store any personally identifiable information.

Statistical Cookies:

These cookies allow us to count visits and traffic sources so that we can measure and improve the performance of our website. They help us understand which pages are the most and least popular and how visitors navigate through the site. All information collected by these cookies is aggregated and therefore anonymous.

Statistical cookies are set with the help of Google Analytics, a third-party service operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For more information on how Google Analytics handles user data, please see Google’s Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en

IP Anonymization: We have activated the IP anonymization feature on this website. This means that your IP address is shortened by Google within the European Union or other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.

You can prevent the storage of these cookies by adjusting your browser settings accordingly. However, please note that this may limit the full functionality of our website.

The legal basis for the described data processing is Article 6(1)(a) GDPR (consent to data processing).

You can manage and change your cookie preferences for statistical cookies when starting a new session on our website or via the settings link in the footer.

2.4. Social Media

We maintain fan pages on the social networks Facebook and Instagram (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland), as well as a LinkedIn company page (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) and a YouTube channel (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). On our fan pages, we publish content and interact with users.

When you use our fan pages, Meta also processes personal data of visitors (e.g., through cookies and similar technologies) for its own purposes. We have no influence over this data processing; the privacy policies of Facebook (https://www.facebook.com/privacy/policy) and Instagram (https://www.facebook.com/privacy/policy) apply. We receive so-called Page Insights from Meta, which are statistical, anonymized analyses of user behavior (e.g., demographic information, interests, interactions). These help us optimize our content and offerings. For this processing, we and Meta are jointly responsible in accordance with Article 26 GDPR. The corresponding agreement can be found here: https://www.facebook.com/legal/terms/page_controller_addendum.

If you contact us directly on one of our fan pages or share content with us, we process your data as an independent controller in order to handle your request (Article 6(1)(b), (f) GDPR).

Further information about the respective data processing activities and your rights can be found in the privacy policies of the providers:

Facebook (Fan Page):
Privacy Policy: https://www.facebook.com/privacy/policy
Page Insights Agreement: https://www.facebook.com/legal/terms/page_controller_addendum

Instagram (Fan Page):
Privacy Policy: https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect
Page Insights Agreement: https://www.facebook.com/legal/terms/page_controller_addendum

LinkedIn (Company Page):
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
Page Insights Joint Controller Addendum: https://legal.linkedin.com/pages-joint-controller-addendum

YouTube (Channel):
Privacy Policy: https://www.youtube.com/howyoutubeworks/privacy/
Joint Controller Agreement: https://business.safety.google/controllerterms/

2.5 Organization of Events

2.5.1 Event registration

We occasionally offer event registration. Processed personal data includes: name, email (private or business), phone number.

Data is used for:

Sending confirmations and attendance notifications
Creating name tags (for in-person events)
Event support before, during, and after
Creating a participant list

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in optimal event preparation).

For webinars, registration is via Eventbrite, Inc., 155 5th Street, San Francisco, CA 94103, USA. Data (name, email, possibly company) is processed solely to handle registration and conduct the webinar. The privacy policy of Eventbrite applieshttps://www.eventbrite.com/privacy . Legal basis: Art. 6(1)(b) GDPR.

2.5.2 Participation via online meeting software

After registration, you receive an invitation via Google Meet, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. You can find Google’s privacy information here:https://policies.google.com/privacy. Google acts as a processor, processing data on our behalf.

Data may include:

Your details: first name, last name, phone, email
Meeting info: topic, description, participant IPs, device info
Recordings: video/audio (MP4/M4A) and chat logs
Phone participation: phone number, country code, start/end time, possibly IP
Interactions: chat, polls, or questions

Providing your data is voluntary, but some are mandatory for participation. Microphone and camera data are processed for live audio/video, which you can disable at any time.

Since Eventbrite and Google LLC are in the USA, data transfers to third countries cannot be excluded. Standard Contractual Clauses (SCC) approved by the European Commission are in place.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in running efficient online meetings) and Art. 6(1)(b) GDPR (webinar execution).

2.5.3 Photo/video during events

Some events are photographed or recorded for marketing purposes. You will be informed at the start. Typically, recordings focus on speakers or participant groups.

Used on:

Our website
Social media (LinkedIn, Instagram)

Legal basis: Art. 6(1)(f) GDPR – in this case, the interest in documenting events for publicity and informational purposes. You have the right to object to this processing at any time.

3. Disclosure to Third Parties and Processors

Your personal data will only be disclosed to third parties if this is necessary to fulfill our contractual or legal obligations, a legal permission exists, or you have given consent. We conclude processing agreements under Art. 28 GDPR with all service providers we use.

Recipients of personal data:

Within the company: Access is granted only to those persons who need it to perform their tasks.
Processors: Certain processing may be carried out by our service providers. In addition to the providers mentioned in this Privacy Policy, this may include, in particular, data centers that host our website and databases, software providers, IT service providers who maintain our systems, agencies, market research companies, group companies, and consulting firms. Where we transfer data to our service providers, they may use the data solely to fulfill their tasks. The service providers are carefully selected and commissioned, contractually bound to our instructions, have appropriate technical and organizational measures to protect data subjects’ rights, and are regularly monitored by us.
Public authorities: Authorities and courts where we are legally obliged or to protect legitimate interests.
Private entities: Business partners, cooperation partners, or non-instructed service providers where necessary for contract performance.

4. Is Data Processed Outside the European Union?

For certain processing operations, we use service providers based in so-called third countries outside the European Union. In these cases, we ensure an adequate level of data protection. To this end, we conclude the Standard Contractual Clauses provided by the European Commission for processing personal data in third countries with the respective service providers.

5. How Long Is Data Stored?

We store personal data only for as long as necessary for the respective processing purposes. For example, your contact details are generally retained only for the duration of our active communication. If you have consented to the use of statistical cookies, these remain stored until you withdraw your consent.

6. Your Rights

Right to lodge a complaint with a supervisory authority: You may also lodge a complaint with the competent supervisory authority if you believe that the processing of your data violates applicable law. You may contact the authority at your place of residence or country, or the authority competent for us: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen

Right of access: You have the right to obtain information about the personal data we store about you.

Right to rectification and erasure: You can request the correction of inaccurate data and—where the legal requirements are met—the deletion of your data.

Restriction of processing: You can request that we restrict the processing of your data where the legal requirements are met.

Data portability: If we process your data based on a contract or consent, you may—where the legal requirements are met—request to receive the data you have provided in a structured, commonly used, and machine-readable format, or that we transmit it to another controller.

Objection: You have the right to object at any time, on grounds relating to your particular situation, to processing of your data based on our legitimate interests. If you exercise your right to object, we will stop processing unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms.

Objection to direct marketing: Where we process your personal data for direct marketing purposes, you have the right to object at any time to such processing. If you exercise this right, we will stop processing your data for this purpose.

Withdrawal of consent: If you have given us consent to process your personal data, you may withdraw it at any time with effect for the future. The lawfulness of processing based on consent before its withdrawal remains unaffected.