Privacy statement under the terms of the General Data Protection Regulation (GDPR) / Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG)

1. Name and contact details of the controller and the data protection officer

This privacy statement applies to data processing by:

Controller: Nestor Bildungsinstitut GmbH, Alt-Blankenburg 1a, 13129 Berlin, Fax: +49 30 474096898, Email:

The data protection officer of Nestor Bildungsinstitut GmbH can be reached under the address mentioned above (for the attention of Mr Arndt Klink) or under


2. Collection and storage of personal data, way and purpose of use of personal data

a) When you visit our website

When you visit our website the browser used on your terminal automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. In this process, the following information is, without any action on your part, collected and stored until automatically deleted:


The aforementioned data are processed by us for the following purposes:

The legal basis for data processing is Article 6(1)(f) of the General Data Protection Regulation (GDPR). Our legitimate interest follows from the data collection purposes listed above. In no case do we use the collected data for the purpose of drawing conclusions about you.

In addition, we use cookies when you visit our website. Further details can be found under no. 3 of this privacy statement.


b) When you use our contact form

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who the inquiry comes from and to enable us to answer it. Further information may be provided voluntarily.

The data processing for the purpose of contacting us is conducted in accordance with Article 6(1)(a) GDPR based on your freely given consent.

The personal data collected by us for the use of the contact form will be deleted automatically after processing the inquiry made by you.


3. Disclosure of data

Your personal data will not be passed on to third parties for purposes other than those listed below.

We only share your personal information with third parties if:


Depending on which payment method you choose in the course of the ordering process, for the processing of payments we pass on the data collected for this purpose to the payment service provider, where applicable engaged by us. Partly, the selected payment service providers collect these data themselves provided that you create an account there. In this case, you must log in to the payment service provider’s website with your access data in the course of the ordering process. The privacy statement of the respective payment service provider shall apply in this respect.


4. Cookies

We use cookies on our site. These are small files that your browser automatically creates and that are stored on your terminal (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your terminal, do not contain viruses, Trojans or other malicious software.

In the cookie information is stored which arises in connection with the specific terminal used. However, this does not mean that we immediately become aware of your identity this way.

On the one hand, the application of cookies serves to make the use of the services offered on our website more convenient for you. Thus, we use so-called session cookies to recognize that you have already visited individual pages on our website. These session cookies are automatically deleted after you leave our website.

In addition, likewise to optimize usability, we use temporary cookies that are stored on your terminal for a specified period of time. If you visit our website again to use our services, it will be automatically recognized that you have already been with us and which entries and settings you have made, so you do not need to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing the services offered by us. These cookies allow us to automatically recognize when you visit our website again that you have already been with us. These cookies are automatically deleted after a period of time defined in each case.

The data processed by cookies are necessary for the purposes mentioned in order to safeguard our legitimate interests as well as those of third parties within the meaning of Article 6(1)(f) GDPR.

Most browsers accept cookies automatically. However, you can configure your browser in such a way that no cookies are stored on your computer or that a notice always appears before a new cookie is created. However, disabling cookies completely may prevent you from using all features of our website.


5. Your legal rights


You have the right:


6. Right to object

If your personal data are processed on the basis of legitimate interests within the meaning of Article 6(1)(f) GDPR, you have the right to object to processing of your personal data pursuant to Article 21 GDPR to the extent that there are grounds for doing so relating to your particular situation or that the objection addresses direct marketing. In the latter case, you have a general right of objection which will be implemented by us without a need for specifying any particular situation.

If you want to exercise your right of withdrawal or objection, please send an e-mail to


7. Data security

When you visit our website we use the widely used SSL (Secure Socket Layer) method along with the highest level of encryption supported by your browser. In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. If a single page of our website is transmitted in encrypted form an icon showing a closed lock will be displayed in the lower status bar of your browser.

We take appropriate technical and organizational security measures to protect your data against incidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.


8. Updates and changes to this privacy statement

This privacy statement is currently valid and is valid as of May 2018.

As a result of the further development of our website and services offered thereon or of changes in statutory or official requirements it may become necessary to change this privacy statement. You can retrieve and print out the current privacy statement at any time on the website at