top of page

Privacy Policy 




 

 

 

 

 

 

Privacy Policy in accordance with Article 12 GDPR

Purpose of Data Collection, Processing, and Usage / Business Purpose
 

In this privacy policy, we explain how we collect your personal data, what we do with it, for what purposes and on what legal grounds this happens, and what rights and claims you have in this regard.

 

Collection, Storage, and Processing of Personal Data
 

The personal data we collect, store, and process mainly include:

  • Personal details of employees at Point of Balance, owned by Ahmad Khalafalla (e.g., name, address, date of birth, marital status, profession/industry, payroll data such as salary, wages, and other income).

  • Contract data (customer contracts).

  • Personal details of customers, including appointed representatives and contact persons (name, first name, telephone, and email addresses).

  • Personal details of suppliers and their representatives, including contact details (name, first name, telephone, and email addresses) and relevant billing information.

  • Contract data of suppliers.

Categories of Data Subjects and Data Types

The following groups of individuals may be affected by data collection, processing, and usage, as long as they are natural persons and their data is required for the fulfillment of the mentioned purposes:

  • Customers (address data, identification data, contract data, transaction control data, and other necessary data for the proper execution of the business relationship).

  • Employees, trainees, interns, job applicants, dependents, and relatives (e.g., career details, education and qualifications, tax and social security data, private and business addresses, bank details, emergency contacts, and health data if required for social benefits).

  • Former employees and retirees, as per legal retention periods.

  • Agents, brokers, agencies (data for communication, management, and transaction control).

  • Tenants (address and contract data).

  • Business partners, agencies, intermediaries, and brokers (address, billing, and performance data).

  • Suppliers and their representatives (contact details, billing data).

Recipients / Categories of Recipients of Personal Data

  • Public authorities (e.g., social security institutions, tax authorities, health insurance companies).

  • Internal departments involved in business processes (e.g., HR, accounting, marketing, sales, IT).

  • External contractors (service providers) who process data on our behalf under Article 28 GDPR.

  • Other external entities (e.g., banks for salary payments, affiliated companies, or other external entities required for contract fulfillment).

Data Transfer Outside the EU

No data is transferred to third countries outside the European Union.

Data Retention and Deletion

Personal data will be deleted immediately once it is no longer required for the specified purposes. If legal retention periods apply, the data will be deleted after these periods expire.

Your Rights as a Data Subject

  • You have the right to access your stored personal data (Article 15 GDPR).

  • If you have given consent for data storage, you have the right to withdraw your consent at any time (Article 7(3) GDPR).

  • If incorrect personal data is stored, you have the right to rectification (Article 16 GDPR).

  • If you believe your data is misused, you have the right to lodge a complaint with the relevant data protection authority (Email: presse@datenschutz-berlin.de).

  • You have the right to object to data processing based on Article 6(1)(e) or Article 6(1)(f) GDPR.

Anonymous Data Collection

You can visit our website without providing personal information. Only technical details such as your ISP name, referring website, and visited pages are recorded for statistical analysis.

Collection and Processing of Personal Data

When visiting our website, we store browser and operating system details, visit date and time, access status, search terms, page visit frequency, file names, data transfer volume, referring websites, and IP addresses for security reasons (e.g., fraud prevention) for seven days.

Personal data is only collected if you voluntarily provide it (e.g., registration, surveys, or newsletters). These data are encrypted to prevent misuse by third parties.

We remind users that data transmission over the Internet (e.g., email communication) may have security vulnerabilities.

Usage and Disclosure of Personal Data

Your data will only be used for processing your inquiries and improving our website. We do not share data with third parties unless required by law or contract.

External Links

Our website may contain links to third-party websites. We have no control over their content and privacy policies.

Legal Basis for Data Processing

  • If you consent to data processing → Article 6(1)(a) GDPR.

  • If data processing is necessary for contract fulfillment → Article 6(1)(b) GDPR.

  • If processing is required for legal obligations → Article 6(1)(c) GDPR.

  • If processing serves legitimate interests → Article 6(1)(f) GDPR.

Contact for Data Protection Inquiries

For questions about data protection at Point of Balance, owned by Ahmad Khalafalla, please contact:

📧 Email: info@pointofbalance.com
📍 Address: Point of Balance, Ahmad Khalafalla, Giesebrechtstraße 16, D – 10629 Berlin

bottom of page