Privacy - Orkus1.com

This data protection declaration informs you about the nature, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offer and the websites, functions and content associated with it, as well as external online presences, such as our social media profiles (hereinafter collectively referred to as “online offer”). With regard to the terms used, such as “processing” or “controller”, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Person responsible:

Zoomia Media

Orkus! Magazine

Claus Müller

Johann-Marx-Str. 8

61479 Glashütten/Taunus

Germany

Types of data processed:

– Inventory data (e.g., names, addresses).

– Contact information (e.g., email, phone numbers).

– Content data (e.g., text input, photographs, videos).

– Usage data (e.g., web pages visited, interest in content, access times).

– Meta/communication data (e.g., device information, IP addresses).

Categories of persons concerned

Visitors and users of the online offer (hereinafter we also refer to the data subjects collectively as “users”).

Purpose of processing

– Provision of the online offer, its functions and contents.

– Respond to contact requests and communicate with users.

– Safety measures.

– Reach measurement/marketing

Terminology used

“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” means any operation or set of operations which is performed upon Personal Data, whether or not by automatic means. The term is broad and encompasses virtually any handling of data.

“pseudonymization” means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

“profiling” means any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.

Controller” means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.

Relevant legal bases

In accordance with Art. 13 DSGVO, we inform you about the legal basis of our data processing. If the legal basis is not stated in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 DSGVO, the legal basis for processing for the fulfillment of our services and implementation of contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b DSGVO, the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c DSGVO, and the legal basis for processing to protect our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d DSGVO as the legal basis.

Security measures

We take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons.

The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access to, entry into, disclosure of, assurance of availability of and separation of the data. Furthermore, we have established procedures to ensure the exercise of data subject rights, deletion of data, and response to data compromise. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings (Article 25 of the GDPR).

Cooperation with processors and third parties

If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g. if a transmission of the data to third parties, such as to payment service providers, is required for the performance of the contract pursuant to Art. 6 (1) lit. b DSGVO), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

If we commission third parties with the processing of data on the basis of a so-called “order processing agreement”, this is done on the basis of Art. 28 DSGVO.

Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this is done in the context of using third-party services or disclosing or transferring data to third parties, this will only be done if it is done to fulfill our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or allow the processing of data in a third country only if the special requirements of Art. 44 et seq. DSGVO are met. This means, for example, that processing takes place on the basis of special guarantees, such as the officially recognized determination of a level of data protection that corresponds to that of the EU (e.g., for the USA through the “Privacy Shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Rights of the data subjects

You have the right to request confirmation as to whether data in question is being processed and to information about this data, as well as further information and a copy of the data in accordance with Art. 15 DSGVO.

You have accordingly. Art. 16 DSGVO the right to request the completion of the data concerning you or the correction of incorrect data concerning you.

In accordance with Article 17 of the GDPR, you have the right to demand that the data in question be deleted without delay or, alternatively, to demand restriction of the processing of the data in accordance with Article 18 of the GDPR.

You have the right to request to receive the data concerning you that you have provided to us in accordance with Article 20 of the GDPR and to request its transfer to other data controllers.

Furthermore, they have pursuant to Article 77 DSGVO the right to lodge a complaint with the competent supervisory authority.

Right of withdrawal

You have the right to withdraw consent granted pursuant to. Art. 7 par. 3 DSGVO with effect for the future

Right of objection

You may object to the future processing of data concerning you in accordance with Art. 21 DSGVO at any time. The objection can be made in particular against the processing for purposes of direct advertising.

Cookies and right to object to direct advertising

Cookies” are small files that are stored on users’ computers. Different information can be stored within the cookies. The primary purpose of a cookie is to store information about a user (or the device on which the cookie is stored) during or after his visit within an online offer. Temporary cookies, or “session cookies” or “transient cookies”, are cookies that are deleted after a user leaves an online offer and closes his browser. In such a cookie, for example, the contents of a shopping cart in an online store or a login status can be stored. Permanent” or “persistent” cookies are those that remain stored even after the browser is closed. For example, the login status can be saved when users visit them after several days. Likewise, such a cookie may store the interests of users, which are used for reach measurement or marketing purposes. Third-party cookies” are cookies that are offered by providers other than the responsible party that operates the online offer (otherwise, if they are only its cookies, they are referred to as “first-party cookies”).

We may use temporary and permanent cookies and explain this in our privacy policy.

If users do not want cookies to be stored on their computer, they are asked to disable the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of the services, especially in the case of tracking, via the U.S. site http://www.aboutads.info/choices/ or the EU site http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by means of their deactivation in the browser settings. Please note that then not all functions of this online offer can be used.

Data deletion

The data processed by us will be deleted or restricted in its processing in accordance with Articles 17 and 18 DSGVO. Unless expressly stated within the scope of this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory retention obligations. If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. I.e. the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law.

According to legal requirements in Germany, the storage takes place in particular for 10 years according to §§ 147 Abs. 1 AO, 257 para. 1 No. 1 and 4, para. 4 HGB (books, records, management reports, accounting vouchers, commercial books, documents relevant for taxation, etc.) and 6 years according to § 257 para. 1 No. 2 and 3, para. 4 HGB (Commercial Letters).

According to legal requirements in Austria, the storage is carried out in particular for 7 years in accordance with § 132 para. 1 BAO (accounting records, vouchers/invoices, accounts, receipts, business papers, statement of income and expenses, etc.), for 22 years in connection with real property, and for 10 years for records in connection with electronically provided services, telecommunications, radio and television services provided to non-entrepreneurs in EU member states and for which the Mini-One-Stop-Shop (MOSS) is used.

Business processing

In addition we process

– Contract data (e.g., subject matter of the contract, term, customer category).

– Payment data (e.g., bank details, payment history)

of our customers, prospective customers and business partners for the purpose of providing contractual services, service and customer care, marketing, advertising and market research.

Order processing in the online store and customer account

We process the data of our customers in the context of the order processes in our online store to enable them to select and order the selected products and services, as well as their payment and delivery, or execution.

The data processed includes inventory data, communication data, contract data, payment data and the data subjects of the processing include our customers, prospective customers and other business partners. The processing is carried out for the purpose of providing contractual services within the framework of the operation of an online store, billing, delivery and customer services. We use session cookies to store the contents of the shopping cart and permanent cookies to store the login status.

The processing is carried out on the basis of Art. 6 para. 1 lit. b (Execution of order processes) and c (Legally required archiving) DSGVO. In this context, the information marked as required is necessary for the justification and fulfillment of the contract. We disclose the data to third parties only within the scope of delivery, payment or within the scope of legal permissions and obligations to legal advisors and authorities. The data is only processed in third countries if this is necessary for the fulfillment of the contract (e.g. at the customer’s request for delivery or payment).

Users can optionally create a user account, in which they can view their orders in particular. During the registration process, the required mandatory information is provided to the users. The user accounts are not public and cannot be indexed by search engines. If users have terminated their user account, their data with regard to the user account will be deleted, subject to their retention for reasons of commercial or tax law. Art. 6 par. 1 lit. c GDPR necessary. Information in the customer account remains until its deletion with subsequent archiving in the event of a legal obligation. It is the responsibility of the users to back up their data prior to the end of the contract in the event of termination.

Within the scope of registration and renewed logins as well as the use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as those of users in protection against misuse and other unauthorized use. As a matter of principle, this data will not be passed on to third parties unless it is necessary for the prosecution of our claims or there is a legal obligation to do so in accordance with the German Data Protection Act. Art. 6 par. 1 lit. c GDPR.

The deletion takes place after the expiry of legal warranty and comparable obligations, the necessity of keeping the data is reviewed every three years; in the case of legal archiving obligations, the deletion takes place after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligation).

External payment service providers

We use external payment service providers through whose platforms the users and we can make payment transactions (e.g., each with a link to the privacy policy, Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full), Klarna (https://www.klarna.com/de/datenschutz/), Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/), Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/), Visa (https://www.visa.de/datenschutz), Mastercard (https://www.mastercard.de/de-de/datenschutz.html), American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)

In the context of the fulfillment of contracts, we use the payment service providers on the basis of Art. 6 para. 1 lit. b. GDPR on. In addition, we use external payment service providers on the basis of our legitimate interests pursuant to Art. Art. 6 par. 1 lit. b. DSGVO in order to provide our users with effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related data. The information is necessary to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. I.e. we do not receive any account or credit card related information, but only information with confirmation or negative information of the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. In this regard, we refer to the terms and conditions and data protection information of the payment service providers.

The terms and conditions and the data protection information of the respective payment service providers apply to the payment transactions, which can be accessed within the respective websites or transaction applications. We also refer to these for further information and assertion of revocation, information and other data subject rights.

Administration, financial accounting, office organization, contact management

We process data within the framework of administrative tasks as well as organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the course of providing our contractual services. The processing bases are Art. 6 para. 1 lit. c. DSGVO, Art. 6 para. 1 lit. f. GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve the maintenance of our business activities, performance of our tasks and provision of our services. The cancellation of the data with regard to contractual services and contractual communication corresponds to the data mentioned in these processing activities.

We disclose or transfer data to the tax authorities, consultants, such as tax advisors or auditors, as well as other fee offices and payment service providers.

Furthermore, we store information on suppliers, event organizers and other business partners on the basis of our business interests, e.g. for the purpose of contacting them at a later date. We store this data, which is mostly company-related, permanently.

Business analyses and market research

In order to operate our business economically, to be able to recognize market trends, wishes of contractual partners and users, we analyze the data we have on business transactions, contracts, inquiries, etc.. We process inventory data, communication data, contract data, payment data, usage data, metadata on the basis of Art. 6 para. 1 lit. f. DSGVO, whereby the data subjects include contractual partners, interested parties, customers, visitors and users of our online offer.

The analyses are carried out for the purpose of business evaluations, marketing and market research. In doing so, we may take into account the profiles of registered users with details, for example, of the services they have used. The analyses serve us to increase the user-friendliness, the optimization of our offer and the operational economy. The analyses serve us alone and are not disclosed externally, unless they are anonymous analyses with summarized values.

If these analyses or profiles are personal, they are deleted or anonymized upon termination by the user, otherwise after two years from the conclusion of the contract. In other respects, the macroeconomic analyses and general trend determinations are prepared anonymously wherever possible.

Participation in affiliate partner programs

Within our online offer, we use on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer) in accordance with. Art. 6 par. 1 lit. f DSGVO, as far as they are necessary for the operation of the affiliate system. In the following, we clarify the technical background for the users.

The services offered by our contractual partners may also be advertised and linked on other websites (so-called affiliate links or after-buy systems, if, for example, links or third-party services are offered after a contract has been concluded). The operators of the respective websites receive a commission when users follow the affiliate links and subsequently take advantage of the offers.

In summary, it is necessary for our online offering that we can track whether users who are interested in affiliate links and/or the offers available from us subsequently take up the offers at the instigation of the affiliate links or our online platform. For this purpose, the affiliate links and our offers are supplemented with certain values, which may be a part of the link or otherwise set, e.g. in a cookie. The values include in particular the source website (referrer), time, an online identifier of the operator of the website on which the affiliate link was located, an online identifier of the respective offer, an online identifier of the user, as well as tracking-specific values such as e.g. ad media ID, affiliate ID and categorizations.

The online identifiers of the users that we use are pseudonymous values. I.e. the online identifiers do not themselves contain any personal data such as names or e-mail addresses. They only help us to determine whether the same user who clicked on an affiliate link or became interested in an offer via our online offer has taken advantage of the offer, i.e. has concluded a contract with the provider, for example. However, the online ID is personal to the extent that the partner company and also we have the online ID together with other user data. Only in this way can the partner company tell us whether the user has taken advantage of the offer and we can pay out the bonus, for example.

Affiliate programs on this website
We participate in affiliate partner programs. In affiliate partner programs, advertisements of a company (advertiser) are placed on websites of other companies in the affiliate partner network (publisher). When you click on one of these affiliate ads, you will be redirected to the advertised offer. If you subsequently make a certain transaction (conversion), the publisher receives remuneration for this. In order to calculate this remuneration, it is necessary for the affiliate network operator to be able to track through which ad you came to the respective offer and made the predefined transaction. Cookies or comparable recognition technologies (e.g. device fingerprinting) are used for this purpose.

The storage and analysis of the data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the correct calculation of its affiliate remuneration. If a corresponding consent has been requested, the processing is based exclusively on Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

We participate in the following affiliate programs: EMP, Eventim, Impericon.

Amazon Affiliate Program

Based on our legitimate interests (i.e. interest in the economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO), we are participants in the affiliate program of Amazon EU. DSGVO), we are a participant in the Amazon EU affiliate program, which is designed to provide a means for websites to earn advertising fees by placing advertisements and links to Amazon.de (so-called affiliate system). I.e. as an Amazon partner we earn on qualified purchases.

Amazon uses cookies to track the origin of orders. Among other things, Amazon can recognize that you have clicked the affiliate link on this website and subsequently purchased a product from Amazon.

For more information about Amazon’s use of data and to opt out, please see the company’s privacy policy: https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010.

Note: Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or one of its affiliated companies.

AWIN Partner Program

On the basis of our legitimate interests (i.e. interest in the economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO), we are a participant in the affiliate program of AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany, which is designed to provide a means for websites to earn advertising fees by placing advertisements and links to AWIN (so-called affiliate system). AWIN uses cookies to be able to trace the origin of the conclusion of the contract. Among other things, AWIN can recognize that you have clicked on the partner link on this website and subsequently concluded a contract with or through AWIN.

For more information about Awin’s use of data and ways to object, please see the company’s privacy policy: https://www.awin.com/de/rechtliches.

Affilinet affiliate program

Based on our legitimate interests (i.e. interest in the economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO), we are participants in the affiliate program of affilinet GmbH, Sapporobogen 6-8, 80637 Munich, Germany, which is designed to provide a means for websites to earn advertising fees by placing advertisements and links to Affilinet (so-called affiliate system). Affilinet uses cookies to be able to trace the origin of the conclusion of the contract. Among other things, Affilinet can recognize that you have clicked on the affiliate link on this website and subsequently concluded a contract with or through Affilinet.

For more information about Affilinet’s use of data and ways to object, please see the company’s privacy policy: https://www.affili.net/de/footeritem/datenschutz.

Data protection information in the application process

We process applicant data only for the purpose of and within the scope of the application process in accordance with legal requirements. The processing of the applicant data is carried out for the fulfillment of our (pre)contractual obligations in the context of the application procedure within the meaning of Art. 6 para. 1 lit. b. DSGVO Art. 6 para. 1 lit. f. DSGVO if the data processing becomes necessary for us, e.g. within the scope of legal procedures (in Germany, § 26 BDSG also applies).

The application process requires applicants to provide us with applicant information. The necessary applicant data are marked, if we offer an online form, otherwise result from the job descriptions and basically include the personal information, postal and contact addresses and the documents belonging to the application, such as cover letter, resume and the certificates. In addition, applicants may voluntarily provide us with additional information.

By submitting the application to us, applicants consent to the processing of their data for the purposes of the application process in accordance with the nature and scope set out in this privacy policy.

Insofar as special categories of personal data within the meaning of Art. 9 para. 1 DSGVO are communicated, their processing is additionally carried out in accordance with Art. 9 para. 2 lit. b DSGVO (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 para. 1 DSGVO are requested from applicants, their processing is additionally carried out in accordance with Art. 9 para. 2 lit. a DSGVO (e.g. health data if this is necessary for the exercise of the profession).

If provided, applicants may submit their applications to us using an online form on our website. The data is transmitted to us encrypted according to the state of the art.

Furthermore, applicants can send us their applications via e-mail. Please note, however, that e-mails are generally not encrypted and applicants must ensure that they are encrypted themselves. Therefore, we cannot take any responsibility for the transmission path of the application between the sender and the reception on our server and therefore rather recommend to use an online form or postal delivery. Because instead of applying via the online form and e-mail, applicants still have the option of sending us their application by mail.

The data provided by applicants, may be further processed by us for the purposes of the employment relationship in the event of a successful application. Otherwise, if the application for a job offer is not successful, the applicants’ data will be deleted. Applicants’ data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time.

Subject to a justified revocation by the applicant, the data will be deleted after the expiration of a period of six months so that we can answer any follow-up questions about the application and satisfy our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

Privacy notice for raffles

We process the data only for the purpose and within the framework of the raffle in accordance with the legal requirements. The processing of data for a raffle is carried out for the fulfillment of our (pre)contractual obligations similar to these in the context of an application procedure within the meaning of Art. 6 para. 1 lit. b. DSGVO Art. 6 para. 1 lit. f. DSGVO if the data processing becomes necessary for us, e.g. within the scope of legal procedures (in Germany, § 26 BDSG also applies).

By submitting the data (such as name, address, date of birth, email address or other data relevant to the raffle) to us, you as a participant agree to the processing of your data for purposes in accordance with the nature and scope set out in this privacy policy.

If provided, you may submit your information to us using an online form on our website. The data is transmitted to us encrypted according to the state of the art.

For data transmission via e-mail, however, please note that e-mails are generally not sent encrypted and you must ensure the encryption yourself. Therefore, we cannot take any responsibility for the transmission path between the sender and the reception on our server and therefore recommend rather to use the postal dispatch. Because instead of participating in the raffle via the online form and e-mail, you still have the option of sending us your answers and raffle-relevant data by mail.

In the event of a successful draw, the data provided by the participants may be processed by us for the purpose of sending tickets, CDs or similar prizes and may also be made available to raffle partners. (e.g. guest list at concerts, etc.) Otherwise, if the participation is not successful / you were not drawn, the data of the participants will be deleted. Participants’ data will also be deleted if participation in the raffle is withdrawn, which participants are entitled to do at any time.

Subject to a justified revocation by the participants, the data will be deleted after the expiry of a period of six months so that we can answer any follow-up questions and satisfy our obligations to provide evidence under the Equal Treatment Act. Invoices for any postal mailing receipts are archived in accordance with tax law requirements.

Soundcloud

Our podcasts are stored on the platform “Soundcloud”, offered by SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany and are played from this platform.

For this purpose, we integrate so-called Soundcloud widgets into our website. This is playback software that allows users to play the podcasts. In doing so, Soundcloud can measure which podcasts are listened to and to what extent and process this information pseudonymously for statistical and business management purposes. For this purpose, cookies may be stored in the browsers of the nuzer and processed for the purpose of forming user profiles, e.g. for the purpose of issuing advertisements that correspond to the potential interests of the users. In the case of users who are registered with Soundcloud, Soundcloud may associate the listening information with their profiles.

The use is based on our legitimate interests, i.e. interest in a secure and efficient provision, analysis and optimization of our audio offer in accordance with. Art. 6 par. 1 lit. f. GDPR.

Further information and objection options can be found in Soundcloud’s privacy policy: https://soundcloud.com/pages/privacy.

Contact

When contacting us (e.g. by contact form, e-mail, telephone or via social media), the user’s details will be used to process the contact request and its handling in accordance with the German Data Protection Act. Art. 6 par. 1 lit. b) DSGVO processed. User information may be stored in a customer relationship management system (“CRM System”) or similar inquiry organization.

We delete the requests if they are no longer necessary. We review the necessity every two years; Furthermore, the legal archiving obligations apply.

With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to receive it and to the procedures described.

Newsletter content: We send newsletters, e-mails and other electronic notifications with promotional information (hereinafter “newsletter”) only with the consent of the recipients or a legal permission. Insofar as the contents of the newsletter are specifically described in the course of registration, they are decisive for the user’s consent. For the rest, our newsletters contain information about our services and us.

Double-Opt-In and logging: The registration for our newsletter takes place in a so-called double-opt-in process. I.e. after registration you will receive an email asking you to confirm your registration. This confirmation is necessary so that no one can log in with foreign e-mail addresses. Subscriptions to the newsletter are logged in order to be able to prove the subscription process in accordance with legal requirements. This includes the storage of the login and confirmation time, as well as the IP address. Likewise, changes to your data stored with the shipping service provider are logged.

Registration data: To register for the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to enter a name for the purpose of personal address in the newsletter.

The dispatch of the newsletter and the associated performance measurement are based on the consent of the recipients in accordance with. Art. 6 par. 1 lit. a, Art. 7 DSGVO in conjunction with § 7 para. 2 No. 3 UWG or, if consent is not required, on the basis of our legitimate interests in direct marketing pursuant to. Art. 6 par. 1 lt. f. DSGVO in conjunction with. § 7 para. 3 UWG.

The logging of the registration process takes place on the basis of our legitimate interests in accordance with. Art. 6 par. 1 lit. f GDPR. We are interested in using a user-friendly and secure newsletter system that serves our business interests, meets the expectations of users, and allows us to prove consent.

Cancellation/Revocation – You can cancel the receipt of our newsletter at any time, i.e. revoke your consents. You will find a link to cancel the newsletter at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them to be able to prove consent formerly given. The processing of this data is limited to the purpose of a possible defense against claims. An individual deletion request is possible at any time, provided that the former existence of consent is confirmed at the same time.

Newsletter – Success measurement

The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened, or if we use a shipping service provider, from their server. Within the scope of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of the retrieval are initially collected.

This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times. Statistical surveys also include determining whether newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our intention nor, if used, that of the shipping service provider to monitor individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

A separate revocation of the performance measurement is unfortunately not possible, in this case the entire newsletter subscription must be cancelled.

Sendinblue

This website uses Sendinblue for sending newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Sendinblue is a service that can be used, among other things, to organize and analyze the sending of newsletters. The data you enter for the purpose of receiving the newsletter will be stored on Sendinblue’s servers in Germany.

Data analysis by Sendinblue

With the help of Sendinblue, we are able to analyze our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links, if any, have been clicked. In this way, we can determine, among other things, which links have been clicked on particularly often.

In addition, we can see whether certain predefined actions were performed after opening/clicking (conversion rate). This allows us to see, for example, whether you have made a purchase after clicking on the newsletter.

Sendinblue also allows us to divide (“cluster”) newsletter recipients based on different categories. The newsletter recipients can be subdivided according to age, gender or place of residence, for example. In this way, newsletters can be better adapted to the respective target groups.

If you do not want Sendinblue to analyze your data, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message.

For detailed information about the Sendinblue features, please refer to the following link: https://de.sendinblue.com/newsletter-software/.

Legal basis

The data processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

Storage duration

The data you provide for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

After you have unsubscribed from the newsletter distribution list, your e-mail address will be stored by us or the newsletter service provider in a blacklist, if necessary, to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.

For more details, please see Sendinblue’s privacy policy at: https://de.sendinblue.com/datenschutz-uebersicht/.

Hosting and emailing

The hosting services used by us serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail dispatch, security services and technical maintenance services, which we use for the purpose of operating this online offering.

In doing so, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of this online offer in accordance with the German Data Protection Act. Art. 6 par. 1 lit. f DSGVO in conjunction with. Art. 28 DSGVO (conclusion of order processing contract).

Collection of access data and log files

We, or rather our hosting provider, collects data on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. DSGVO data about each access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Log file information is stored for security reasons (e.g. for the clarification of abuse or fraud) for a maximum of 7 days and then deleted. Data whose further retention is required for evidentiary purposes is exempt from deletion until final clarification of the respective incident.

Google Adsense with personalized ads

We use the services of Google LLC, 1600 Amphitheatre Park Park Mountain View CA 9. DSGVO) the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (“Google”).

Google is certified under the Privacy Shield agreement and thereby offers a guarantee of compliance with European data protection law(https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

We use the service AdSense, with the help of which ads are displayed on our website and we receive payment for their display or other use. For these purposes, usage data, such as the click on an advertisement and the IP address of the users are processed, whereby the IP address is shortened by the last two digits. Therefore, the processing of the users’ data is pseudonymized.

We use Adsense with personalized ads. In doing so, Google draws conclusions about users’ interests based on the websites they visit or apps they use and the user profiles created in this way. Advertisers use this information to tailor their campaigns to these interests, which benefits users and advertisers alike. For Google, ads are personalized when collected or known data determines or influences ad selection. This includes previous searches, activities, website visits, app usage, demographic and location information. Specifically, this includes: demographic targeting, targeting on interest categories, remarketing, and targeting on customer match lists and audience lists uploaded to DoubleClick Bid Manager or Campaign Manager.

For more information about Google’s use of data, settings and opt-out options, please refer to Google’s privacy policy(https://policies.google.com/technologies/ads) and the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

Google Adsense with non-personalized ads

We use the services of Google LLC, 1600 Amphitheatre Park Park Mountain View CA 9. DSGVO) the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (“Google”).

Google is certified under the Privacy Shield agreement and thereby offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

We use the service AdSense, with the help of which ads are displayed on our website and we receive payment for their display or other use. For these purposes, usage data, such as the click on an advertisement and the IP address of the users are processed, whereby the IP address is shortened by the last two digits. Therefore, the processing of the users’ data is pseudonymized.

We use Adsense with non-personalized ads. The ads are not displayed on the basis of user profiles. Non-personalized ads are not based on previous user behavior. Targeting uses contextual information, including coarse (e.g., location-level) geographic targeting based on current location, content on the current website or app, and current search terms. Google prohibits any personalized targeting, including demographic targeting and targeting based on user lists.

For more information about Google’s use of data, settings and opt-out options, please refer to Google’s privacy policy(https://policies.google.com/technologies/ads) and the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

Online marketing and partner programs

We participate in the following affiliate programs:

Eventim
EMP
Impericon

Online presence in social media

We maintain online presences within social networks and platforms in order to be able to communicate with the customers, interested parties and users active there and to inform them about our services there. When calling up the respective networks and platforms, the terms and conditions and data processing policies of their respective operators apply.

Unless otherwise stated in our privacy policy, we process the data of users if they communicate with us within the social networks and platforms, e.g. write posts on our online presences or send us messages.

Integration of third-party services and content

Within our online offer, we use content or service offers of third-party providers on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO) content or service offers from third-party providers in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as “content”).

This always assumes that the third-party providers of this content are aware of the IP address of the user, since without the IP address they would not be able to send the content to their browser. The IP address is thus required for the display of this content. We endeavor to use only such content whose respective providers use the IP address only for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer, as well as be combined with such information from other sources.

Vimeo

We can embed the videos of the platform “Vimeo” of the provider Vimeo Inc, Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA. Privacy policy: https://vimeo.com/privacy. We point out that Vimeo may use Google Analytics and refer to the privacy policy(https://www.google.com/policies/privacy) as well as opt-out options for Google Analytics(http://tools.google.com/dlpage/gaoptout?hl=de) or Google’s settings for data use for marketing purposes(https://adssettings.google.com/.).

Youtube

We integrate the videos of the platform “YouTube” of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Spotify

We link to “Spotify”, offered by Spotify AB, Regeringsgatan 19, SE-11153 Stockholm, Sweden. From this platform data is stored and replayed.

Further information and objection options can be found in Spotify’s privacy policy:
https://www.spotify.com/de/legal/privacy-policy/

Created with Datenschutz-Generator.de by RA Dr. Thomas Schwenke

Last updated: 23.02.2023