Privacy Policy
Last updated: 15.06.2026 · In accordance with the GDPR (DSGVO) & TTDSG
1. Controller
The controller within the meaning of the General Data Protection Regulation (GDPR / DSGVO) is:
Owner: Jens Nietzsch
Borlinghausener Str. 11a
D-34439 Willebadessen
Germany
Phone: +49 5646 943168
E-mail: info@marina-management.de
If you have any questions regarding data protection, please contact us directly using the contact details above.
2. Your Rights as a Data Subject
You have the following rights vis-à-vis us with regard to your personal data:
- Right of access (Art. 15 GDPR): You may request information about the personal data we process.
- Right to rectification (Art. 16 GDPR): You may request the rectification of inaccurate data.
- Right to erasure (Art. 17 GDPR): You may request the erasure of your personal data, provided that no statutory retention obligations preclude this.
- Restriction of processing (Art. 18 GDPR): You may request the restriction of processing.
- Data portability (Art. 20 GDPR): You have the right to receive your data in a machine-readable format.
- Right to object (Art. 21 GDPR): You may object to the processing of your data.
- Withdrawal of consent (Art. 7(3) GDPR): You may withdraw any consent you have given at any time with effect for the future.
Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority about the processing of your data. The competent supervisory authority is determined by the federal state of your place of residence or of the company's registered office. A list of supervisory authorities can be found at: www.bfdi.bund.de
3. Hosting & Server Logs
This website is hosted on a web server. The web host automatically collects information in so-called log files that your browser transmits when accessing the website. These server log files are:
- IP address of the requesting computer
- Date and time of access
- URL accessed (page address)
- Browser and operating system used
- Referrer URL (previously visited page)
- Amount of data transferred and HTTP status code
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the technical provision and security of the website).
Retention period: Server log files are generally deleted automatically after 7–30 days.
4. Contact Form & Getting in Touch
When you contact us via the contact form or by e-mail, the data you provide (name, e-mail address, subject, message) is processed in order to handle your enquiry.
Data processed: name, e-mail address, subject, message text, and where applicable, telephone number.
Purpose: handling and responding to your contact enquiry, carrying out pre-contractual measures.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) as well as Art. 6(1)(f) GDPR (legitimate interest).
Retention period: Contact enquiries are deleted once they have been processed, provided that no statutory retention obligations exist.
The data you submit will not be disclosed to third parties without your express consent.
5. Cookies & Consent Management
Our website uses cookies. Cookies are small text files that are stored on your device and that your browser sends back to our website on a subsequent visit.
Technically Necessary Cookies
Some cookies are technically required for the operation of the website. These are set on the basis of Art. 6(1)(f) GDPR in conjunction with § 25(2) No. 2 TTDSG and require no prior consent.
- mm_cookie_consent (local storage / localStorage, not a cookie) — stores your cookie decision until you reset it
- PHPSESSID (session cookie) — technical session and security identifier (CSRF), deleted when the browser is closed
Analytics Cookies (only with consent)
Insofar as you have consented to the use of analytics cookies, these are used for statistical purposes. Consent may be withdrawn at any time with effect for the future (Art. 7(3) GDPR).
Legal basis: Art. 6(1)(a) GDPR, § 25(1) TTDSG.
Changing Cookie Settings
You can change your cookie settings at any time using the button below or disable cookies in your browser settings. Please note that disabling necessary cookies may impair the functionality of the website.
6. Analytics & Tracking Services
Google Analytics 4
Note: Currently, no analytics service is active on this website. The use of Google Analytics 4 (GA4) is prepared and will – once activated – take place exclusively after your express consent. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter "Google"). Without consent, neither Google Analytics scripts will be loaded nor cookies set.
Google Analytics uses cookies (including _ga, _ga_<ID>, retention period of up to 2 years) as well as similar technologies to analyse the use of the website. In particular, a shortened (anonymised) IP address, device and browser information, approximate region, and usage behaviour (e.g. pages accessed, time spent) are processed. We have activated IP anonymisation; advertising/remarketing functions are disabled.
Legal basis: Art. 6(1)(a) GDPR and § 25(1) TTDSG (consent). You may withdraw your consent at any time with effect for the future – via the link "🍪 Cookie settings" in the footer or the button below.
Transfer to third countries: In this process, data may be transferred to Google LLC in the USA. Google LLC is certified under the EU-US Data Privacy Framework; in addition, standard contractual clauses are in place (Art. 46(2)(c) GDPR). A residual risk of access by US authorities cannot be entirely ruled out.
Further information: policies.google.com/privacy. You can additionally prevent data collection via a browser add-on: tools.google.com/dlpage/gaoptout.
7. Payment Service Providers
The Marina customer portal enables online payments via the following service providers. During payment transactions, your payment data is transmitted directly to the respective provider:
Stripe
Stripe Payments Europe, Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland.
Privacy policy: stripe.com/de/privacy
iDEAL
iDEAL is a Dutch online payment method operated by Currence iDEAL B.V., Amsterdam, Netherlands.
Privacy policy: ideal.nl
PayPal
PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.
Privacy policy: paypal.com
Legal basis: Art. 6(1)(b) GDPR (performance of a contract). Data is transferred to third countries on the basis of standard contractual clauses (Art. 46(2)(c) GDPR).
8. Disclosure of Data to Third Parties
Your personal data will only be disclosed to third parties if:
- you have expressly consented to this (Art. 6(1)(a) GDPR),
- this is necessary for the performance of a contract (Art. 6(1)(b) GDPR),
- there is a legal obligation to disclose the data (Art. 6(1)(c) GDPR), or
- we engage processors who act within the framework of a data processing agreement (Art. 28 GDPR).
No disclosure to third parties for advertising purposes takes place.
9. Retention Period
Personal data is only stored for as long as is necessary for the respective processing purpose:
- Contact enquiries: deletion once processing is completed, at the latest after 3 years
- Contract data: 10 years (statutory retention obligation under HGB/AO)
- Invoices & accounting data: 10 years (§ 147 AO)
- Server log files: 7–30 days
- Cookie consent: 12 months
10. Data Security
We employ technical and organisational security measures to protect your data against accidental or intentional manipulation, loss, or unauthorised access. Our security measures are continuously improved in line with technological developments.
- Transmission of all data via SSL/TLS encryption (HTTPS)
- CSRF protection on all forms
- Prepared statements to protect against SQL injection
- Access control and session management
- Regular security updates
Version date of this privacy policy: 15.06.2026
We reserve the right to update this privacy policy in the event of changes to the legal situation or to our processing operations.