Privacy Policy

We are pleased about your interest in our website. The protection of your personal data is very important to us. Below we inform you in detail about how we handle your data.

Controller and Data Protection Officer

Apotheke zum weißen Schwan - Katerina Petrovska e.K.

Springeberger Weg 16 12589 Berlin

Email: katerina@aposchwan.de

Phone: 030 641 69 313

Data Protection Officer

Ch. Bals

Email: kontakt@apotheken-datenschutzbeauftragter.de

Your Rights as a Data Subject

According to the General Data Protection Regulation (GDPR), you have the following rights:

  • Right to Access (Art. 15 GDPR): You have the right to request information about your personal data processed by us.
  • Right to Rectification (Art. 16 GDPR): You have the right to request the immediate correction of inaccurate or completion of incomplete data.
  • Right to Erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data if the legal requirements are met.
  • Right to Restriction of Processing (Art. 18 GDPR): You have the right to request restriction of the processing of your personal data.
  • Right to Data Portability (Art. 20 GDPR): You have the right to receive your data in a structured, commonly used and machine-readable format.
  • Right to Object (Art. 21 GDPR): You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you.
  • Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR): You have the right to lodge a complaint with the competent data protection supervisory authority regarding the processing of your personal data. For Berlin, this is the Berlin Commissioner for Data Protection and Freedom of Information.

SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the address bar of the browser changing from "http://" to "https://" and by the lock symbol in your browser line.

Hosting

Our website is hosted externally. The personal data collected on this website is stored on the servers of the hoster.

Hoster: Amazon Web Services (AWS)

Server Location: Frankfurt am Main, Germany (EU region: eu-central-1)

Legal Basis: Art. 6 (1) lit. f GDPR (legitimate interest in the secure and reliable provision of our website)

Google Tag Manager

We use Google Tag Manager, a tag management system for managing website tags through an interface.

Purpose: Management and integration of analytics and marketing tools

Legal Basis: Art. 6 (1) lit. a GDPR (consent via our consent management system)

Data Transfer: USA (EU Commission adequacy decision)

Storage Period: 180 days (according to your cookie settings)

Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited. Google Analytics uses cookies and similar technologies to analyze the use of the website.

Purpose: Analysis of user behavior, improvement of our offering and optimization of the website

Legal Basis: Art. 6 (1) lit. a GDPR (consent via our consent management system)

Cookies Used: _ga, _gid, _gat, _gcl_au, _dc_gtm_*

Storage Period: 14 months (default GA4 setting)

Data Transfer: USA (Google Ireland Limited with data forwarding to Google LLC, USA)

We use Google Consent Mode v2 to respect your consent choices.

Meta Pixel (Facebook Pixel)

We use the Meta Pixel (formerly Facebook Pixel) from Meta Platforms Ireland Limited. The pixel enables us to measure the effectiveness of our advertisements and build audiences for our advertising campaigns.

Purpose: Conversion tracking, remarketing and audience building for Facebook and Instagram advertising

Legal Basis: Art. 6 (1) lit. a GDPR (consent via our consent management system)

Cookies Used: _fbp, _fbc, fr

Storage Period: 90 days

Data Transfer: Ireland and USA (Meta Platforms Ireland Limited and Meta Platforms Inc.)

You can withdraw your consent at any time through the cookie settings:

YouTube (Embedded Videos)

We embed videos from YouTube on our website. YouTube is a service of Google Ireland Limited.

Purpose: Display of video content for information and entertainment

Legal Basis: Art. 6 (1) lit. a GDPR (consent) or Art. 6 (1) lit. f GDPR (legitimate interest)

We use the extended privacy mode (youtube-nocookie.com), so YouTube only sets cookies when you play the video.

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

For more information on privacy at YouTube: https://policies.google.com/privacy

cal.eu Booking Platform

For appointment booking (e.g. for orientation calls), we use the platform cal.eu from Cal.com, Inc.

Purpose: Appointment booking and management for consultation sessions

Legal Basis: Art. 6 (1) lit. b GDPR (contract performance or pre-contractual measures)

Data Processed: Name, email address, phone number (optional), appointment details

Storage Period: Until completion of the appointment plus legal retention periods

Server Location: EU (cal.eu is the EU version of the platform)

Contact Forms and Email Communication

If you contact us by email or contact form, your information will be stored for the purpose of processing your inquiry and in case of follow-up questions.

Legal Basis: Art. 6 (1) lit. b GDPR (contract initiation) or Art. 6 (1) lit. f GDPR (legitimate interest in answering your inquiry)

Storage Period: Until processing of your inquiry plus any tax retention periods

Data Security

We implement technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. These include SSL/TLS encryption, access restrictions, firewalls and regular security updates. Our security measures are continuously improved in line with technological developments. Please note, however, that complete security cannot be guaranteed when transmitting data over the internet.

Currency and Changes to this Privacy Policy

This privacy policy is currently valid and dated December 2025. Due to the further development of our website and offers or due to changed legal or regulatory requirements, it may become necessary to change this privacy policy. The current privacy policy can be accessed and printed from the website at any time.

Last Updated: December 2025