Privacy policy.

1. Controller
The controller responsible for the processing of personal data on this website within the meaning of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) is:

Fatima Sami
Email: hello@fatimasami.com
Website: www.fatimasami.com

2. Collection and Storage of Personal Data

a) When visiting the website
When you access our website, the browser used on your device automatically sends information to our server. This information is temporarily stored in a log file. The following information may be collected without your intervention:

  • IP address of the requesting computer

  • Date and time of access

  • Name and URL of the file accessed

  • Website from which access is made (referrer URL)

  • Browser type and version as well as other information sent by the browser (e.g., operating system)

These data are processed for the following purposes:

  • Ensuring a smooth connection to the website

  • Ensuring convenient use of our website

  • Evaluating system security and stability

  • Other administrative purposes

The legal basis is Art. 6 (1) (f) GDPR (legitimate interest).

b) When contacting us
When you contact us via contact form, email, or booking system, we collect the data you provide (e.g., name, email, message). Processing is carried out for the purpose of handling your inquiry.

Legal basis: Art. 6 (1) (b) GDPR (performance of a contract or pre-contractual measures).

c) For newsletters and email marketing
If you subscribe to our newsletter, we collect your email address. This data is used exclusively for sending newsletters. You can unsubscribe at any time.

Legal basis: Art. 6 (1) (a) GDPR (consent).

d) For purchases and bookings
When you book or purchase services, we may collect your name, email address, billing information, and payment details. Payments are processed by third-party providers (e.g., Stripe, PayPal). We do not store payment information ourselves.

Legal basis: Art. 6 (1) (b) GDPR.

3. Use of Cookies and Tracking Tools
This website may use cookies and tracking tools (e.g., Google Analytics, Plausible). These help us understand visitor behavior and improve our services.

  • Essential cookies are necessary for the function of the site and cannot be disabled.

  • Non-essential cookies require your prior consent (Art. 6 (1) (a) GDPR).

You can adjust your browser settings to reject cookies.

4. Disclosure of Data to Third Parties
Your personal data will not be transferred to third parties for purposes other than those listed below. Data may be shared if:

  • You have given consent (Art. 6 (1) (a) GDPR),

  • Processing is necessary for performance of a contract (Art. 6 (1) (b) GDPR),

  • There is a legal obligation (Art. 6 (1) (c) GDPR),

  • It is necessary to enforce rights or defend against legal claims (Art. 6 (1) (f) GDPR).

5. Data Security
We use technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access.

6. Data Retention
We store personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law.

7. Your Rights
You have the following rights under GDPR:

  • Right of access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to withdraw consent at any time (Art. 7 (3) GDPR)

  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

8. Changes to this Privacy Policy
We reserve the right to update this Privacy Policy to comply with legal requirements or to reflect changes in our services. The latest version will always be available on this website.

Effective Date: 24 September 2025