Shabnam
Miller
Privacy Policy
General Information
This privacy policy provides detailed information about what happens to your personal data when you visit our website www.shabnammiller.com. Personal data refers to all data that can be used to personally identify you. We strictly comply with the legal provisions when processing your data, especially the General Data Protection Regulation ("GDPR"), and place great importance on ensuring that your visit to our website is completely secure.
Controller
The party responsible for the collection and processing of personal data on this website under data protection law is:
Shabnam Miller Fine Art
Shabnam Miller
65183 Wiesbaden
Germany
+ (0) 49 152 54220175
IdNr. 98 124 376 070
Tax number 043 846 61305
IBAN: EN08 5109 0000 0008 0855 01
Access Data (Server Log Files)
When you access our website, we automatically collect and store information in so-called server log files, which your browser automatically transmits to us. These include:
-
Browser type and browser version
-
Referrer URL (the source or link from which you reached our website)
-
Date and time of the server request
-
The IP address currently used by your PC (if applicable, in anonymized form)
As a rule, we cannot and do not intend to associate this data with any specific person. The processing of this data is carried out pursuant to Art. 6 para. 1 lit. f GDPR to safeguard our legitimate interest in improving the stability and functionality of our website.
Cookies
To make your visit to our website more attractive and to enable the use of certain functions, we use so-called cookies. These are small text files that are stored on your device. Cookies cannot execute programs or transmit viruses to your computer system.
Cookies that are required for electronic communication or for the provision of certain functions requested by you are stored based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in storing cookies to ensure the technically error-free and optimized delivery of our services. Any other cookies (e.g., for analyzing your browsing behavior) will be addressed separately in this privacy policy.
Most of the cookies we use are so-called “session cookies.” These are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser upon your next visit.
You can configure your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
§1 Web Analytics Tools and Advertising
1.1 Google Analytics
Our website uses the web analytics service Google Analytics in the version Google Analytics 4. The provider is Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
Google Analytics uses so-called "cookies." These are text files stored on your computer that enable an analysis of your use of our website. In Google Analytics, all data from devices located in the EU (based on geographic location via IP address) is collected via domains and servers in the EU before the traffic is forwarded to Analytics servers for processing.
The legal basis for processing your data is the consent you give via the cookie consent tool pursuant to Art. 6 para. 1 sentence 1 lit. a) GDPR.
IP Anonymization
IP anonymization is automatically activated on our website with Google Analytics. This means your IP address is shortened by Google within EU member states or other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. On our behalf, Google uses this information to evaluate your use of our website, compile reports on website activity, and provide other services related to website and internet usage to us. According to Google, IP addresses are not logged or stored in Google Analytics; they are only processed briefly for geolocation and then immediately deleted. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.
Data Processing Agreement
We have concluded a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Data Retention
User and event data stored by Google that is linked to cookies, user IDs (e.g., User ID), or advertising IDs (e.g., DoubleClick cookies, Android Advertising ID) will be deleted after 14 months. For more information, please refer to: Google Support on Data Retention.
Right of Withdrawal
Many data processing operations are only possible with your explicit consent. If the processing of your data is based on your consent, you have the right to revoke your consent at any time with future effect in accordance with Art. 7(3) GDPR, by adjusting your preferences in the cookie settings. The legality of the processing carried out up to the point of withdrawal remains unaffected. The storage of data for accounting and bookkeeping purposes remains unaffected by a withdrawal.
More information on how Google Analytics handles user data can be found here:
Google Analytics Privacy Overview
Google Privacy Policy
Google Tag Manager
Our website uses Google Tag Manager, provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google Tag Manager is a solution that allows marketers to manage website tags via a single interface. The tool itself (which implements the tags) is a cookie-less domain and does not collect any personal data. It may trigger other tags which may in turn collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it remains in effect for all tracking tags implemented with Google Tag Manager.
Google AdSense
Our website uses Google AdSense, a service for integrating advertisements provided by Google.
Google AdSense uses "cookies" – text files stored on your device – to display ads that are relevant to the content of our website and your interests. AdSense also uses web beacons (invisible graphics) to statistically analyze visitor traffic for online marketing purposes.
The information generated by cookies and web beacons about your use of the website (including your IP address) and ad delivery is transmitted to and stored on a Google server in the USA. This information may be passed on to third parties by Google. However, Google will not associate your IP address with any other data stored by Google.
If you have given consent, data processing is based on your consent in accordance with Art. 6(1)(a) GDPR. We also have a legitimate interest (Art. 6(1)(f) GDPR) in analyzing user behavior to improve both our website and advertising.
The aggregation of data within your Google Account is based solely on your consent given to Google (Art. 6(1)(a) GDPR).
You can prevent the installation of cookies by adjusting your browser settings. Please note that in this case you may not be able to use all website functions in full. By using this website, you consent to the processing of data by Google in the manner and for the purposes set out above.
Google Fonts
We use “Google Fonts” (formerly “Google Web Fonts”), a service by Google.
Google Fonts allows us to display external fonts on our website. When visiting our site, your browser loads the required font into its cache to correctly display text. If your browser does not support this function, a standard font will be used from your device.
The integration of Google Fonts is done via a server call – usually to a Google server in the USA – which tells Google which of our pages you visited and transmits your IP address. We have no control over the data collected and processed by Google in this context.
We use Google Fonts for the purpose of enhancing the user experience and the presentation of our website, which constitutes a legitimate interest under Art. 6(1)(f) GDPR.
Further information:
Google Fonts
Google Fonts FAQ
Contact Form
When contacting us via email or a contact form, the information you provide, including your contact details, will be stored to process your inquiry and for follow-up questions. These data will not be shared without your consent.
The processing of data entered into the contact form is based on your consent (Art. 6(1)(a) GDPR). You may revoke your consent at any time by sending us an informal email. The legality of the data processing carried out until the revocation remains unaffected.
Data submitted via contact form will remain with us until you request its deletion, revoke your consent for storage, or the purpose for data storage no longer applies. Mandatory legal provisions – especially retention periods – remain unaffected.
Data Use and Sharing
Personal data that you submit to us (e.g., name, address, or email) will not be sold or marketed to third parties. Your data will only be used to correspond with you and for the purpose for which you provided it.
To process payments, we share your payment data with the respective payment service provider.
Automatically collected data during your website visit is only used for the purposes stated above. We do not share your data with third parties unless legally required or with your explicit permission.
SSL/TLS Encryption
Our website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content (such as inquiries). You can recognize an encrypted connection by the “https://” in your browser address line and the lock symbol.
When SSL/TLS encryption is active, data you send to us cannot be read by third parties.
Hosting
Our website is hosted by Wix.com (www.wix.com).
To optimize and maintain our website, we log technical errors that may occur when accessing it. Additionally, certain data is automatically collected and transmitted to the hosting provider:
IP address and operating system of your device
-
Browser type, version, language
-
Date and time of server request
-
Accessed file
-
Referrer URL (the previously visited page)
-
Status code (e.g., 404)
-
Transmission protocol used (e.g., HTTP/2)
These data are collected to ensure security, stability, and performance.
For more information, see the Wix Privacy Policy.
If the GDPR is applicable, processing is based on Art. 6(1)(f) GDPR.
§2 Data Retention
Personal data submitted via our website is only stored as long as necessary for the intended purpose. Where commercial or tax-related retention periods apply, storage may last up to 10 years.
§3 Data Subject Rights
Under the GDPR, you have the following rights:
3.1 Right of Withdrawal
You may withdraw your consent at any time with future effect (Art. 7(3) GDPR). The legality of prior processing remains unaffected.
3.2 Right of Access (Art. 15 GDPR)
You have the right to request confirmation of whether we process your personal data. If so, you may request information regarding the processing purposes, data categories, recipients, storage periods, rights to rectification, deletion, restriction, objection, data origin, automated decision-making (including profiling), and data transfers to third countries.
3.3 Right to Rectification (Art. 16 GDPR)
You may request correction of inaccurate or incomplete personal data at any time.
3.4 Right to Erasure (Art. 17 GDPR)
You have the right to request deletion of your data if:
-
it is no longer needed for the purposes for which it was collected,
-
you withdraw your consent and no other legal basis applies,
-
you object to processing and no overriding legitimate grounds exist,
-
processing was unlawful,
-
deletion is required by law, or
-
data was collected from a child for online services (Art. 8 GDPR).
This right does not apply where processing is required:
-
for freedom of expression/information,
-
for legal obligations or public interest tasks,
-
for public health reasons,
-
for archiving, research, or statistics under Art. 89(1) GDPR.