Privacy policy
1. Data controller
The controller responsible for data processing on this website is:
Marius Heins, Physiotherapy H1, Am Gexberg 9a, 31028 Gronau (Leine), Germany
Email: H1-therapie@web.de
Phone: +49 159 06381232
2. General information
Protecting your personal data is important to us. This privacy policy explains how we process personal data on our website in accordance with the GDPR and applicable German data protection law.
3. Collection and processing of personal data
When you merely browse our website, we collect only the data your browser transmits to our server, e.g. IP address, date and time of request, page accessed, status code, data volume, referrer, browser, operating system, and language.
This data is stored temporarily in log files and deleted automatically after 7 days.
4. Contact and appointments via Cal.com
If you contact us by email, phone, or contact form, we process the data you provide solely to handle your request.
Legal basis: Art. 6(1)(b) GDPR (contract/pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries).
For online booking we use Cal.com (Cal.com, Inc., San Francisco, USA). When you book, your details (e.g. name, email, appointment choice) are transmitted to Cal.com. Legal basis: Art. 6(1)(b) and (f) GDPR.
Data may be transferred to the USA. Cal.com typically relies on EU Standard Contractual Clauses. More information: https://cal.com/privacy
5. Storage period
We store personal data only as long as necessary:
- Contact enquiries: 1 year after communication ends
- Appointments: 10 years (statutory retention for treatment records)
6. Your rights
You have the following rights, among others:
- Access (Art. 15 GDPR)
- Rectification (Art. 16 GDPR)
- Erasure (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Objection (Art. 21 GDPR)
- Complaint to a supervisory authority
7. Cookies
We use only technically necessary cookies (Art. 6(1)(f) GDPR). No third-party tracking or analytics services are used.
8. Recipients of your data
Data may be shared with:
- Hosting providers (processors)
- IT support providers (processors)
9. Data security
We implement technical and organisational measures to protect your data. The website uses SSL/TLS encryption.
10. Updates
This privacy policy is current as of May 2026 and may be updated when required.
