Privacy Policy
1. Data Protection at a Glance
General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally.

This website is operated commercially for the presentation of and business initiation for the sale of works of art.

Data Collection on this Website

Data processing on this website is carried out by the website operator. Their contact details can be found in the legal notice (Impressum) of this website. The controller within the meaning of the GDPR is Arne Seib; for contact details, see the legal notice.

A data protection officer has not been appointed as there is no legal obligation to do so.

Storage Duration

We delete personal data as soon as the purpose for storage no longer applies (e.g., after your email inquiry has been processed). Statutory retention periods (e.g., 6 or 10 years according to HGB/AO for business correspondence) remain unaffected. Server log files are deleted or anonymized after 14 days at the latest.

2. Hosting and Server Log Files

We host our website with our processor, Host Europe GmbH. We have concluded a data processing agreement (DPA) with the provider in accordance with Art. 28 GDPR.

The provider of the pages (Nginx web server) automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources. The collection is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in the technically error-free presentation and optimization of our website.

3. Web Analysis (Umami)

For the statistical evaluation of website usage, we use the open-source analysis tool “Umami”.

Umami is configured to be privacy-friendly: no cookies are stored on your device. Usage data (e.g., pages accessed, duration of stay, browser type) is collected anonymously. Identification of your person is not possible.

Data processing takes place exclusively on our server; no data is transferred to third parties. The use of Umami is based on our legitimate interest (Art. 6 (1) (f) GDPR) in the anonymous analysis of user behavior to optimize our web presence.

4. Contact via Email

If you contact us by email, your email including all resulting personal data (name, email address, content of the inquiry) will be stored on our own, self-administered email server for the purpose of processing your request. We do not share this data without your consent.

The processing of this data is based on Art. 6 (1) (b) GDPR, provided your inquiry is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures (e.g., interest in a work of art). In all other cases, processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 (1) (f) GDPR).

5. Cookies

This website uses exclusively technically necessary storage technologies to provide the core functions of the website. These include:

  • Session Cookies: To maintain the session.
  • Preference Cookies / Local Storage: To store your chosen language settings and UI preferences (e.g., Dark Mode).

We do not use tracking or advertising cookies. The storage of this functional data in your terminal device is based on § 25 (2) TDDDG. Subsequent data processing is based on our legitimate interest (Art. 6 (1) (f) GDPR) in providing a user-friendly website.

No cross-user analysis or profiling takes place; all stored information serves exclusively for technical provision or convenience functions for you.

6. Data Security (SSL/TLS Encryption)

For security reasons and to protect the transmission of confidential content, such as inquiries you send to me as the site operator, this site uses SSL or TLS encryption.

This also applies to communication via email, which is handled via our server using encrypted transport protocols.

7. Your Rights as a Data Subject

Within the framework of the applicable legal provisions, you have the right at any time to:

  • Access (Art. 15 GDPR): Information about your stored personal data.
  • Rectification (Art. 16 GDPR): Correction of incorrect data.
  • Erasure (Art. 17 GDPR): Deletion of your data, provided no statutory retention obligations conflict with this.
  • Restriction of processing (Art. 18 GDPR): Limitation of the processing of your data in certain cases.
  • Data portability (Art. 20 GDPR): Provision of your data in a structured, commonly used, and machine-readable format.
  • Objection (Art. 21 GDPR): If the data processing is based on Art. 6 (1) (f) GDPR.

You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) (f) GDPR (data processing to protect a legitimate interest).

If you object, your personal data will no longer be processed unless compelling legitimate grounds for the processing can be demonstrated which override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

To exercise these rights, please contact kontakt@mathiasjseib.de. Furthermore, you have the right to lodge a complaint with the competent data protection supervisory authority. In particular, you can contact the supervisory authority of your usual place of residence, your place of work, or the place of the alleged infringement.

The lead supervisory authority responsible for me is:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
represented by Prof. Dr. Alexander Roßnagel

Wilhelmstraße 7
65185 Wiesbaden

Phone: +49 611-1408 0
Email: poststelle@datenschutz.hessen.de
Website: https://datenschutz.hessen.de

As of: May 2026