1. Controller
The controller within the meaning of the General Data Protection Regulation (GDPR) for data processing on this website is:
HeiMed®
Owner: Dr. Gabriele Heitner
Schweizer Straße 12A
47533 Kleve
Germany
Phone: +49 (0)2821 7156 191
Email: info@heimed.de
2. General information on data processing
The protection of your personal data is important to us. Your personal data is processed exclusively in accordance with the statutory provisions of the General Data Protection Regulation (GDPR) and other applicable data protection regulations.
Personal data is any data that can be used to personally identify you. This privacy policy explains what data we collect and what we use it for.
3. Access data (server log files)
When you visit our website, information is automatically collected by the hosting provider and stored in so-called server log files. This includes in particular:
- Page/file accessed
- Date and time of access
- Volume of data transferred
- Referrer URL (previously visited page)
- Browser used and browser version
- Operating system used
- Device type
- Anonymised IP address
This data is used exclusively to ensure trouble-free operation of the website and to improve our offering.
The legal basis for processing is Art. 6(1)(f) GDPR (legitimate interest in the secure and stable operation of the website).
This data is not merged with other data sources.
4. Hosting
This website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. The personal data collected on this website is stored on the servers of the hosting provider. This may include IP addresses, access data, and communication data.
The hosting provider is used for the purpose of providing our online offering in a secure, fast, and efficient manner.
The legal basis is Art. 6(1)(f) GDPR.
A data processing agreement pursuant to Art. 28 GDPR is in place with the hosting provider.
5. Contact
When you contact us by email or via a contact form, the personal data you provide (e.g. name, email address, message) will be stored and processed to handle your enquiry.
This data is used exclusively to process your enquiry.
The legal basis is:
- Art. 6(1)(b) GDPR (performance of pre-contractual measures) or
- Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries).
The data will be deleted as soon as it is no longer required for the purpose of its processing and no statutory retention obligations apply.
6. Cookies and tracking
This website does not use any tracking tools or cookies for analytics or marketing purposes.
7. Data security
For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the fact that the browser address bar begins with “https://” and a lock icon is displayed.
We also take appropriate technical and organisational security measures in accordance with Art. 32 GDPR to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorised access.
8. Data retention
Personal data is only stored for as long as is necessary to achieve the respective processing purposes or statutory retention obligations exist. Once the respective purpose ceases to apply or the statutory retention periods expire, the data will be deleted.
9. Your rights
Within the framework of the applicable statutory provisions, you have the right at any time to:
- Access your stored personal data (Art. 15 GDPR)
- Rectification of inaccurate data (Art. 16 GDPR)
- Erasure of your data (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Object to processing (Art. 21 GDPR)
If you have given consent to data processing, you may revoke it at any time with effect for the future.
10. Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data infringes the GDPR.
The competent supervisory authority is generally the data protection authority of the German federal state in which you reside.
11. Currency and amendments to this privacy policy
This privacy policy is current as of 2026. We reserve the right to amend it so that it always complies with current legal requirements or to implement changes to our services in the privacy policy.