1. Scope of application
2. Name and address of the controller
The controller within the meaning of the General Data Protection Regulation, other data protection laws in force in the Member States of the European Union, and other provisions of a data protection nature, is:
La Mata 25
Telephone: 0800 0000999
3. Personal data
Personal data are any information relating to an identified or identifiable natural person. An identifiable person is a natural person who can be identified directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier or to one or more specific characteristics which are expressions of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
4. Your rights
You have the right to obtain information about the personal data that has been stored about you free of charge on request (from the second provision within 12 months we may charge you a fee). In addition, you have the right to request the correction of incorrect data, the right to restrict the processing of excessively processed data and the right to delete any unlawfully processed personal data or any that has been stored too long (unless there is a statutory retention obligation and no other reasons prevent it pursuant to Article 17 para. 3 of the GDPR). Furthermore, you have the right of transfer of all data provided by you to us in a common file format (right to data portability).
Insofar as you have a right to object to the processing of individual proceedings, we inform regarding this in the description of the individual proceedings.
To exercise your rights, just send an email to firstname.lastname@example.org.
Additionally, you also have the right to complain to a data protection supervisory authority.
5. Voluntary nature of the provision of data
6. General notes about cookies
Cookies are small text files that are saved on your device by the browser used when you visit our website. In this way, individual services on a website can "recognise" you and "remember" which settings you have made. They help make websites more user friendly for the benefit of the user (e.g. storing login data). On the other hand, cookies are used to collect statistical data on website usage and to use the data obtained for analysis and advertising purposes.
Some cookies are automatically deleted from your device as soon as you leave the website (so called session cookies). Other cookies are stored for a period of time that does not exceed two years (persistent cookies). In addition, we also use so called third party cookies, which are managed by third parties to provide certain services.
7. Automatic collection of access data/server log files
With each website access we automatically collect a set of technical data that is personally identifiable. These are:
The IP address of the user
Name of the retrieved website or file
Date and time of access
The amount of data transmitted.
Message about successful request
Browser type and version;
Operating system of the user
Device used by the user, including MAC address
Referrer URL code (the website previously visited)
These data shall not be merged with any other personally identifiable information you provide via the website.
The personal data in log files are processed on the basis of Article 6 para. 1 lit. f of the GDPR. This permission allows the processing of personal data in the context of the "legitimate interest" of the controller, unless your fundamental rights, freedoms or interests prevail. Our legitimate interest concerns easier administration and the ability to detect and track hacking. You can object to this data processing at any time if there are reasons that exist in your particular situation against the processing of data. All you need to do is send an email to the address shown above.
The server log files with the above data shall be automatically deleted after 30 days. We reserve the right to store the server log files longer, if there are facts that suggest the assumption of unauthorised access (such as the attempt of hacking or a so-called DOS attack).
8. What an IP address is
Each device (e.g. smartphone, tablet, PC) connected to the Internet is assigned an IP address. The IP address depends on which internet access your device is currently connected to the internet by. It can be the IP address assigned to you by your Internet service provider, for example, if you are connected to the Internet at home via your WiFi connection. It can also be an IP address assigned to you by your mobile service provider or the IP address of a provider of a public or private wireless network or other Internet access. In its current most frequently occurring form (IPv4), the IP address consists of four blocks of numbers separated by dots. In most cases, you as a private user will not use a static IP address, since you will only be assigned this temporarily by your provider (a so called "dynamic IP address"). In the case of a permanently assigned IP address (so-called "static IP address"), in principle a clear assignment of the user data via this feature is possible. Except for the purpose of pursuing unauthorised access to our Internet offer, we generally use these data without a personal assignment, but rather evaluate only on an anonymous basis, which of our websites are favoured, how many accesses are made daily and the like.
You have the possibility of registering yourself on the website of the controller by providing personal data. The type of personal data transferred to the controller is determined by the input mask used for registration. The personal data you enter shall be collected and stored solely for internal use by the controller and for its own purposes.
The IP address, date and time of registration given by the Internet service provider (ISP) of the data subject shall also be saved by registration on the website of the controller. The storage of these data is based on the fact that this is the only way to prevent misuse of our services and these data also enable us to investigate crimes and copyright infringements if necessary. In this respect, the storage of such data is necessary in order to safeguard the controller. In principle, these data shall not be passed on to third parties unless there is a legal obligation to do so, or the passing on serves the requirements of criminal or legal proceedings.
The data provided in the context of registration are processed based on Article 6 para. 1 and lit. f of the GDPR. The registration of the data subject, with the voluntary provision of personal data, serves for the controller to offer the data subject content or services which, due to the nature of the matter, can only be offered to registered users. Registered persons are free to modify the personal data given upon registration at any time, or to delete it completely from the database of the controller.
The controller shall provide you at any time upon request with information about which personal data concerning you are stored. Furthermore, the controller shall correct or delete personal data on request or notice from you, insofar as this does not conflict with any statutory storage requirements. All you need to do is send an email to the address shown above.
On the website, users are given the opportunity to subscribe to the newsletter of our company. The type of personal data transferred to the controller when you subscribe to the newsletter is determined by the input mask used for registration.
We inform our customers and business partners at regular intervals by means of a newsletter about the offers of the company. The newsletter of our company in principle can only be received by you if (1) you have a valid email address and (2) you register for the newsletter. For legal reasons, a confirmation email shall be sent to the email address entered by you using the double-opt-in procedure. This confirmation email is used to check whether the owner of the email address as the data subject authorised the receipt of the newsletter.
When subscribing to the newsletter, we also store the IP address of the computer system used by the data subject at the time of registration, as well as the date and time of registration, as assigned by the Internet Service Provider (ISP). The collection of these data is necessary in order to investigate the (possible) misuse of the email address of a data subject at a later date and therefore serves as a legal safeguard for the controller.
The personal data collected in the context of registering for the newsletter shall be used exclusively to send our newsletter. Subscribers to the newsletter may also be notified by email if this is necessary for the operation of the newsletter service or registration, as might be the case in the event of changes to the newsletter or technical changes. There shall be no transfer of the personal data collected as part of the newsletter service to third parties. Subscription to our newsletter may be terminated by you at any time. The consent to the storage of personal data that you have given us for the sending of the newsletter may be revoked at any time. For the purpose of revoking the consent, there is a corresponding link in each newsletter. Furthermore, it is also possible to inform the controller in a different way, such as by email.
11. Contact possibilities on the website
Due to legal regulations, our website contains information that enables the establishment of rapid electronic contact with our company as well as direct communication with us, which also includes a general address for what is known as electronic mail (email address). Insofar as you contact the controller by email, the personal data you provide shall be automatically saved. Such personal data transmitted to the controller by you on a voluntary basis shall be stored for the purpose of processing or contacting you. This personal data shall not be disclosed to third parties.
The data provided in the context of making contact are processed based on Article 6 para. 1 and lit. f of the GDPR. This permission allows the processing of personal data in the context of the "legitimate interest" of the controller, unless your fundamental rights, freedoms or interests prevail. Our justified interest lies in the processing of the contact established. You can object to this data processing at any time if there are reasons that exist in your particular situation against the processing of data. All you need to do is send an email to the address shown above.
The personal data stored in the context of establishing contact shall be deleted if the concerns associated with the contact have been completely clarified and it is also unlikely that the specific contact will become relevant again in the future.
12. Google Analytics
The controller has integrated Google Analytics (with the anonymisation function) into this website. Google Analytics is a web analytics service. Web analysis is the acquisition, collection and evaluation of data concerning the behaviour of the website visitors. Among other things, a web analysis service collects data about which website a data subject has accessed the current website from (so called referrer), which sub pages of the website were accessed or how often and for which length of time a sub page was viewed. Web analysis is mainly used to optimise a website and for carrying out a cost-benefit analysis of internet advertising.
The Google Analytics component is operated by Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
For web analysis via Google Analytics, the controller uses the add-on "_gat. _anonymizeIp". By means of this add-on, the IP address of your internet connection is shortened and made anonymous by Google, if access to our websites is performed from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyse visitor flows to our website. Among other things, Google uses the data and information obtained to evaluate the use of our website in order to compile online reports for us that show activities on our website and to provide other services related to the use of our website.
Google Analytics sets a cookie on your device. What cookies are, has already been explained above.
We base the processing of personal data by Google Analytics on Article 6 para. 1 lit. f of the GDPR. This permission allows the processing of personal data in the context of the "legitimate interest" of the controller, unless your fundamental rights, freedoms or interests prevail. Our legitimate interest lies in the analysis of the use of our website. You have the possibility to prevent the mentioned cookies from being stored on your computer. To do this, you must make a corresponding setting on your Internet browser. However, the possibility exists that then our website may be only partially usable for you. You can prevent Google from collecting, sending and processing your data and IP address. You can download and install a plugin for your internet browser. This plugin is available at the following link: Browser add-on to deactivate Google Analytics
You can prevent the collection of data by Google Analytics by clicking on the following link. An opt-out cookie will be set that will prevent the future collection of your data when you visit this website: disable Google Analytics
13. Storage of personal data when registering as a webmaster, broadcaster or studio
The controller collects and processes the personal data for the purpose of completing the process when there is a registration as a webmaster, broadcaster or studio. For example, processing can be done by email or via the web form, and the data you provide shall be automatically transmitted to the controller. Such personal data transmitted to the controller by you on a voluntary basis shall be stored for the purpose of the processing. This personal data shall not be disclosed to third parties.
The processing of personal data in the context of applications is based on Article 6 para. 1 lit. b of the GDPR. Article 6 para. 1 S 1 lit. b of the GDPR allows data processing if this is necessary for the initiation and execution of a contract.
14. Duration of storage of data
We store personal information only as long as necessary to perform the services you desire or to which you have given your consent, unless otherwise required by law. Retention requirements, which obligate us to store data, result from accounting regulations (§ 257 of the German commercial code) and from tax regulations (§ 147 of the Tax code as well as § 14b of the Sales tax law). According to these regulations, business communications, closed contracts and accounting documents must be kept for up to 10 years. Insofar as we no longer need these data to carry out the services for you, the data shall be blocked. This means that the data may then only be used for accounting purposes and for tax purposes.
15. Registration and Login over Single-Sign-On- Services
Different parts of this service require you to register. For registration, we provide various options. You can either immediately create a user account with us, or you can use an existing account with another provider, e.g. Register Facebook, Google or Twitter.
If you log in as a logged in user, the following features will be saved and linked to your user account for the duration of your registration.
- Current timestamp
- Your current IP-Adress
This is for your safety, because the IP address ensures that nobody can hack into your session (so-called "session hijacking“).
You can also sign up using an existing single sign-on account ("SSO") .So SSO accounts allow you to sign up for a different service and platform with a once-created account. We offer you the opportunity to register for the use of the registered services using SSO services, which is currently available with the services of Facebook, Google and Twitter.
Facebook is a social network of Facebook Ireland Limited (Hanover Reach, 5-7 Hanover Quay, Dublin 2 Ireland). To register for and use Facebook, the privacy and use conditions of the social network apply, which you can see here and here.
Twitter is a microblogging service provided by the American company Twitter, Inc. (795 Folsom St., Suite 600, San Francisco, CA 94107). To register for and use Twitter, the privacy and usage policies of the social network apply, which you can view here and here.
The SSO-service from Google is provided by Google Inc. („Google"), Amphitheatre Parkway, Mountain View, CA 94043, USA, angeboten. To register for and use google, the privacy and usage policies of the social network apply, which you can view here.
To register via one of the SSO providers listed above requires that you already be registered with the SSO provider or create such an account as part of the registration, provided this option is offered by the respective provider. Please note that the registration and use of SSO services are subject to the privacy and usage conditions of the respective provider.
A) Login to the SSO-provider
If you decide to register with your SSO account, you will be redirected to your SSO provider in a first step. There you will be asked by the SSO provider to provide your access data and to register or register with the SSO service. If you are already logged into the SSO service at this moment, this query will be skipped for login. Your credentials to the SSO service will not be communicated to us and will remain with your SSO provider.
B) Connection to the SSO service
In a second step you connect your profile with your SSO provider with us. Which of your information from your SSO profile can be queried by us, you'll learn in this step as well. In the case of Facebook, for example, this includes your so-called "public information" and those that you make publicly available or release, such as your name, profile and cover image, gender, username and user ID (eg Facebook Finally, to register with us, we'll need the email address stored in your SSO profile, so that if you decide to break the link between your SSO profile and your profile with us in the future would like to be able to continue using your profile.
If you agree that we may use your above-mentioned data for the purposes of use, you will establish in the SSO service the connection between your SSO profile and us and will then be redirected for further registration.
We then took over the information you provided during registration from your SSO provider and used it to create a profile for us. In future, you can always log in to us via the corresponding login button for the SSO provider you use (for example, in the case of Facebook: "Login with Facebook“).
C) Data collection and storage by us
In this context, we receive access to a small amount of data from your SSO provider. However, we only use this option in relation to the email, name and profile picture we use to create your profile for you.
D) Data collection and storage by the SSO provider
If you want to register with us with your SSO credentials, the SSO provider will know that you want to register with us by clicking on the button marked with the respective SSO provider logo.
As a rule, the SSO provider also sets a cookie in your browser when you click on the button provided with the respective SSO provider logo. Using this text file, the SSO provider can collect more information about you and your browsing habits. The information generated by the cookie is transmitted to the servers of the SSO provider. It is possible that these are outside Germany, for example in the USA. There they are stored and possibly merged with other profile data that the SSO provider has stored about you. In this way, your SSO provider may create user profiles that go beyond what you yourself have disclosed to information.
E) Further information
Once you have completed this form of registration, we will store the information that you have registered with us through your SSO provider. This information is stored in the form of a key. Your access data to the respective SSO service, however, are never stored by us.
If you change your details in the SSO service profile that was sent to us in connection with the registration, you must also make these changes in your account with us. We do not automatically receive your updated data from your SSO account and will not send any information to your SSO provider unless you agree.
F) Cancellation of the connection
If you want to use us regardless of your SSO account, you can. In this case, please request a new password from us via the "Forgotten password" function.
If you would like to disconnect from us to your SSO account, please sign in to your SSO provider and make the required changes to your profile, if available from your SSO provider. That way, you can deprive us of permission to use information from your SSO profile. In this case, you can only continue to use your account with us if you request your own password via the "Forgot your password" function.
Deleting your account with us automatically removes the connection to your SSO provider. The account with your SSO provider is not affected.