Privacy Policy

Privacy Policy (Datenschutzerklärung)

Last Updated: 20.10.2025

We, Apka German School, located at 36275 Kirchheim, Germany, respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use our website www.apkagermanschool.com (the “Website”) and related services, including course bookings and app links.

1. Controller (Responsible Entity)

Apka German School

If you have any questions regarding this Privacy Policy, please contact us using the information above.

2. Scope of Application

This Privacy Policy applies to:

All visitors and users of our website,
Individuals booking courses or submitting contact forms,
Users accessing links to our mobile app on Google Play or the App Store.

3. Data We Collect

We only collect personal data that you voluntarily provide or that is technically necessary to operate this website.

a. Personal Data You Provide
We collect data when you:

Register for a course or create an account,
Fill out our contact form or send us an email,
Subscribe to newsletters (if offered),
Make a payment or booking.

Examples of collected data:

Name and surname
Email address
Phone number
Billing address (if applicable)
Payment and booking details

b. Automatically Collected Data
When you visit our website, the server automatically saves information such as:

IP address
Browser type and version
Operating system
Referrer URL (previously visited page)
Date and time of access

This data is processed for technical reasons and to ensure security and proper functioning of the website. It cannot be used to personally identify you.

c. Cookies and Analytics
We use cookies and possibly analytics tools (like Google Analytics or Matomo) to improve website performance and understand user behavior.

Cookies are small text files stored on your device. You can disable cookies in your browser settings, but this may affect website functionality.

If Google Analytics or similar tools are used, IP anonymization will be activated to ensure your data cannot be directly linked to you.

4. Purpose and Legal Basis of Processing

We process personal data only when legally permitted under Article 6 GDPR. This includes:

Purpose

Providing online services, courses, and customer accounts

Processing payments and invoices

Sending service-related communications

Website analytics and security

Marketing communications (with consent)

Legal Basis

Art. 6(1)(b) GDPR – Contract performance

Art. 6(1)(c) GDPR – Legal obligation

Art. 6(1)(b) GDPR – Contract necessity

Art. 6(1)(f) GDPR – Legitimate interest

Art. 6(1)(a) GDPR – Consent

You can withdraw your consent at any time by contacting us.

5. Payment Processing

Payments for courses may be handled via secure third-party payment providers (e.g., PayPal, Stripe, or direct bank transfer).

We do not store your credit card or payment information. These providers process data under their own privacy policies and in compliance with GDPR.

6. Data Sharing and Third Parties

We only share your personal data with trusted service providers when necessary, for example:

Payment processors
Hosting providers
Email or newsletter services
Analytics or technical support services

All third-party partners are bound by data processing agreements (Art. 28 GDPR) to ensure GDPR compliance.
We do not sell or rent personal data to third parties.

7. International Data Transfers

Your data is generally processed within the European Union (EU).
If we use service providers outside the EU/EEA, we ensure appropriate safeguards such as EU Standard Contractual Clauses under Art. 46 GDPR.

8. Data Retention

We retain personal data only for as long as necessary for the purposes stated in this policy, orvas required by law (e.g., tax or accounting obligations).

Course and invoice data → retained for up to 10 years (per § 257 HGB).
Contact inquiries → deleted after processing.
Account data → deleted upon user request or account closure.

9. Your Rights Under GDPR

As a user within the EU, you have the following rights:

Access (Art. 15 GDPR): Request a copy of your personal data.
Rectification (Art. 16 GDPR): Correct inaccurate or incomplete data.
Erasure (Art. 17 GDPR): Request deletion of your personal data.
Restriction (Art. 18 GDPR): Limit processing under certain conditions.
Data Portability (Art. 20 GDPR): Receive your data in a structured format.
Objection (Art. 21 GDPR): Object to processing based on legitimate interests.
Withdraw Consent (Art. 7(3) GDPR): Withdraw consent at any time.

To exercise any of these rights, please contact us at:

You also have the right to lodge a complaint with your local supervisory authority: Der Hessische Beauftragte für Datenschutz und Informationsfreiheit (HBDI) Website: https://datenschutz.hessen.de

10. Data Security

We use appropriate technical and organizational security measures to protect your personal data from unauthorized access, loss, or misuse, including encryption and access control.

11. Links to Third-Party Websites and Apps

Our website may include links to external websites or to our mobile app on Google Play and the Apple App Store.
We are not responsible for the content or privacy practices of third-party websites or app stores.
Please review their privacy policies separately.

12. Children’s Data

Our website and services are intended for individuals aged 16 and older.
If you are under 16, you must have parental consent to use our services.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to comply with new legal requirements or improve transparency.
The latest version will always be published on www.apkagermanschool.com.

14. Contact Information

If you have any questions about this Privacy Policy or how your data is processed, contact us at: