We are pleased that you are visiting our website and appreciate your interest. This privacy policy explains how we handle your personal data when you use our website. Generally, you can use the Matsushima GmbH website without providing any personal data. However, if you wish to use certain services offered by our company through our website, the processing of personal data may be required.

The processing of personal data, such as your name, address, telephone number, or email address, is carried out in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection laws applicable to Matsushima GmbH. This privacy policy aims to inform you about the nature, scope, and purpose of the personal data we collect, use, and process, as well as your rights as a data subject.

1. Name and Address of the Data Controller

The data controller, as defined by the General Data Protection Regulation (GDPR), for this website is:

Matsushima GmbH

Fumihiro Morita

Colonnaden 96

20354 Hamburg, Germany

Telephone: +49 40 343125

Email: restaurant.matsumi@yahoo.com

Website: www.matsumi.de

2. Data Collection When Visiting Our Website

For security reasons and to protect the transmission of personal data, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the “https://” prefix and the lock symbol in your browser’s address bar.

When you visit our website for informational purposes only, we collect only the data that your browser automatically transmits to our server (so-called “server log files”). The following data, which is technically necessary to display the website, is collected:

  • The website visited 
  • Date and time of access 
  • Volume of data sent in bytes 
  • Source/referral link from which you accessed the page 
  • Browser used 
  • Operating system used 
  • IP address (in anonymized form, where applicable)

This data is processed pursuant to Art. 6(1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website. The data is deleted as soon as it is no longer needed for the purpose for which it was collected. For data collected to provide the website, this occurs when the respective session ends. 

The data is not shared or used for other purposes. However, we reserve the right to retroactively review server log files if there are specific indications of unlawful use. The collection and storage of data in log files are essential for the operation of the website, and users cannot object to this process.

3. Cookies

The Matsushima GmbH website uses cookies. Cookies are text files stored on a computer system via an internet browser. Many websites and servers use cookies, which often contain a unique identifier (cookie ID). This identifier allows visited websites and servers to distinguish your browser from others containing different cookies, enabling recognition and identification of your browser.

Cookies allow Matsushima GmbH to provide user-friendly services that would not be possible without them. They help optimize the information and offers on our website for your benefit and make it easier for you to use our website by recognizing returning users.

You can prevent cookies from being set by adjusting your browser settings to block them permanently. Additionally, you can delete existing cookies at any time using your browser or other software programs. This is possible in all common browsers. Note that disabling cookies may limit the full functionality of our website.

4. Contacting Us

When you contact us (e.g., via telephone or email), we collect personal data. This data is stored and used solely to respond to your inquiry, establish contact, or perform related technical administration.

The legal basis for processing this data is our legitimate interest in responding to your request, pursuant to Art. 6(1)(f) GDPR. If we obtain your consent for processing personal data, Art. 6(1)(a) GDPR serves as the legal basis. For processing necessary to fulfill a contract to which you are a party or to carry out pre-contractual measures, Art. 6(1)(b) GDPR applies. If processing is required to comply with a legal obligation, Art. 6(1)(c) GDPR serves as the legal basis. In cases where processing is necessary to protect vital interests of you or another person, Art. 6(1)(d) GDPR applies.

Your personal data will be deleted or blocked as soon as the purpose of storage no longer applies, unless further storage is required by European or national laws, regulations, or other provisions to which we are subject. Data will also be blocked or deleted when a legally prescribed storage period expires, unless further storage is necessary for concluding or fulfilling a contract.

5. Use of Social Media: Social Plugins

Facebook as a Standard Plugin

Our website uses social plugins (“plugins”) from the social network Facebook, operated by Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). These plugins are identified by a Facebook logo or the text “Social Plugin from Facebook” or “Facebook Social Plugin.” For an overview of Facebook plugins and their appearance, visit: https://developers.facebook.com/docs/plugins.

When you visit a page on our website containing such a plugin, your browser establishes a direct connection to Facebook’s servers. The plugin’s content is transmitted directly from Facebook to your browser and integrated into the page. As a result, Facebook receives information that your browser has accessed our website, even if you do not have a Facebook account or are not logged in. This information (including your IP address) is sent from your browser to a Facebook server in the USA and stored there.

If you are logged into Facebook, it can directly associate your visit to our website with your Facebook profile. Interacting with plugins (e.g., clicking the “Like” button or posting a comment) also sends this information to a Facebook server, where it is stored and may be published on your Facebook profile or displayed to your Facebook friends.

This data processing is carried out pursuant to Art. 6(1)(f) GDPR based on Facebook’s legitimate interests in displaying personalized advertising and informing other users about your activities on our website. To prevent Facebook from linking data to your profile, log out of Facebook before visiting our website. You can also block Facebook plugins using browser add-ons like “NoScript” (http://noscript.net/).

Meta Platforms, Inc. is certified under the EU-US Data Privacy Framework, ensuring compliance with EU data protection standards. For more details on Facebook’s data collection, processing, and your rights, refer to Facebook’s privacy policy: http://www.facebook.com/policy.php.

6. Tools and Other Items

6.1 Google Maps

This website uses Google Maps (API), provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Maps is a web service for displaying interactive maps to represent geographical information, making it easier for you to find our location and plan your journey.

When you visit a page containing Google Maps, information about your website usage (e.g., your IP address) is transmitted to Google servers in the USA and stored there. This occurs regardless of whether you are logged into a Google account. If logged in, your data may be directly associated with your account. To avoid this, log out of Google before accessing the map. Google stores and evaluates your data (even for non-logged-in users) as usage profiles, pursuant to Art. 6(1)(f) GDPR, based on Google’s legitimate interests in personalized advertising, market research, and website optimization.

You have the right to object to the creation of these user profiles by contacting Google. Google LLC is certified under the EU-US Data Privacy Framework, ensuring compliance with EU data protection standards. To prevent data transmission to Google, disable JavaScript in your browser, though this will prevent Google Maps from functioning on our website.

Google’s terms of use are available at: http://www.google.de/intl/de/policies/terms/regional.html. Additional terms for Google Maps can be found at: https://www.google.com/intl/de_US/help/terms_maps.html. For detailed information on data protection, see Google’s privacy policy: http://www.google.de/intl/de/policies/privacy/.

6.2 Google Web Fonts

This website uses Google Web Fonts, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. These fonts ensure consistent presentation of our website, regardless of locally available fonts. When you visit our website, Google Web Fonts are retrieved from a Google server in the USA, transmitting your IP address and the page visited.

This processing is based on Art. 6(1)(f) GDPR, reflecting our legitimate interest in the optimal display and transmission of our website. Google LLC is certified under the EU-US Data Privacy Framework, ensuring compliance with EU data protection standards. For more information, visit: https://www.google.com/fonts#AboutPlace:about and Google’s privacy policy: https://policies.google.com/privacy.

7. Rights of the Data Subject

If your personal data is processed, you are a data subject under the GDPR and have the following rights vis-à-vis the controller:

7.1 Right to Information

You may request confirmation from the controller as to whether your personal data is being processed. If so, you may request information about:

  1. The purposes of processing;
  2. The categories of personal data processed;
  3. The recipients or categories of recipients to whom your personal data has been or will be disclosed;
  4. The planned duration of storage or criteria for determining it;
  5. The existence of rights to rectification, erasure, restriction, or objection to processing;
  6. The right to lodge a complaint with a supervisory authority;
  7. The source of the data if not collected from you;
  8. The existence of automated decision-making, including profiling, pursuant to Art. 22(1) and (4) GDPR, including details about the logic involved and its consequences.

You may also request information about whether your personal data is transferred to a third country or international organization, including details about appropriate safeguards under Art. 46 GDPR.

7.2 Right to Rectification

You have the right to request the correction or completion of inaccurate or incomplete personal data. The controller must make these corrections promptly.

7.3 Right to Restriction of Processing

You may request restriction of processing under the following conditions:

  1. If you contest the accuracy of your personal data, for a period allowing the controller to verify its accuracy;
  2. If the processing is unlawful, and you oppose erasure, requesting restriction instead;
  3. If the controller no longer needs the data, but you require it for legal claims;
  4. If you have objected to processing under Art. 21(1) GDPR, pending verification of whether the controller’s legitimate grounds override yours.

Restricted data may only be processed with your consent or for specific purposes (e.g., legal claims or public interest). You will be informed before any restriction is lifted.

7.4 Right to Erasure

You may request the erasure of your personal data if:

  1. The data is no longer necessary for its original purpose;
  2. You withdraw consent, and no other legal basis applies;
  3. You object to processing under Art. 21(1) or (2) GDPR, and no overriding legitimate grounds exist;
  4. The data was processed unlawfully;
  5. Erasure is required to comply with a legal obligation;
  6. The data was collected in relation to information society services under Art. 8(1) GDPR.

If the controller has made your data public, it must take reasonable steps to inform other controllers to delete links, copies, or replications of the data. Exceptions apply if processing is necessary for freedom of expression, legal obligations, public health, archiving, or legal claims.

7.5 Right to Be Informed

If you request rectification, erasure, or restriction, the controller must notify all recipients of your data about these actions, unless this is impossible or involves disproportionate effort. You may request information about these recipients.

7.6 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller, provided:

  1. The processing is based on consent (Art. 6(1)(a) or Art. 9(2)(a) GDPR) or a contract (Art. 6(1)(b) GDPR);
  2. The processing is carried out by automated means.

You may also request direct transfer to another controller where technically feasible, without affecting others’ rights. This right does not apply to processing for public interest or official authority tasks.

7.7 Right to Object

You may object to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR, including profiling, for reasons related to your particular situation. The controller will cease processing unless it demonstrates compelling legitimate grounds that override your interests or are necessary for legal claims. If your data is used for direct marketing, you may object at any time, and processing for this purpose will stop.

7.8 Right to Revoke Consent

You may revoke your consent to data processing at any time. This does not affect the lawfulness of processing carried out before revocation.

7.9 Automated Decision-Making, Including Profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or significant effects, unless:

  1. It is necessary for a contract;
  2. It is authorized by law with appropriate safeguards;
  3. It is based on your explicit consent.

In such cases, the controller must implement safeguards, including the right to human intervention, to express your viewpoint, or to contest the decision.

7.10 Right to Lodge a Complaint

You may lodge a complaint with a supervisory authority in the Member State of your residence, workplace, or the place of the alleged GDPR infringement. The supervisory authority will inform you of the complaint’s status and outcome, including judicial remedies under Art. 78 GDPR.