Privacy Policy

We operate our website based on the below principles:

We undertake to comply with statutory privacy laws and make every effort to follow the principles of data avoidance and minimization.


1.     Name and Address of the Controller

The Controller within the meaning of the General Data Protection Regulation and other national data protection laws of the European Union Member States as well as other legal data protection provisions is:

DDC Entertainment GmbH & Co KG
represented by the personally liable shareholder, DDC Management GmbH,
represented by Marcel Geißler and Alexander Pollner, the managing directors,

Wilhelmstraße 17,
97421 Schweinfurt
Germany
Email: info(at)ddc-breakdance.de 
Phone: +49 (0)9721 2905498
Website: www.ddc-entertainment.de

 

2.     Definitions

Our Privacy Policy is structured based on the principles of clarity and transparency; if, nonetheless, the use of different terms needs be clarified, please click here [https://dsgvo-gesetz.de/art-4-dsgvo/] for the relevant definitions.

 

3.     Legal Basis for Personal Data Processing

We process your personal data, such as your given/family name, email address, and IP address, only if a legal basis for this exists.  In this case, three provisions in terms of the General Data Protection Regulation must be considered:

a) You have granted us your consent for the processing of personal data for one or more purposes (Art. 6(1) sent. 1 point (a) of the GDPR. In this regard, we will comprehensively inform you about the data processing purpose(s) and document your express consent.

b) The processing of your personal data is required for fulfilling a contract or for performing precontractual measures with you (Art. 6(1) sent. 1 point (b) of the GDPR. 

c) The processing of your personal data is required for protecting our legitimate interests, unless your interests, basic rights, and basic freedoms override those (Art. 6(1) sent. 1 point (f) of the GDPR).

We will always inform you once again in the relevant situations of the legal basis on which your personal data are processed.

 

4.     Transfer of Personal Data

Your personal data are not disclosed to third parties for any purposes other than the purposes listed below. We will only pass on your personal data to third parties if:

a) you have given your express consent in accordance with Art. 6(1) sent. 1 point (a) of the GDPR;

b) disclosure is necessary pursuant to Art. 6 (1) sent. 1 point (f) of the GDPR in order to assert, exercise, or defend legal claims and if there is no reason to assume that you have an outweighing legitimate interest in the nondisclosure of your data;

c) a legal obligation to disclosure in accordance with Art. 6 (1) sent. 1 point (c) of the GDPR exists;

d) doing so is legally permissible and, pursuant to Art. 6(1) sent. 1 point (b) of the GDPR, necessary for the execution of contractual relationship with you.

  

5.     Storage Period and Erasure

We will store the personal data that you provide to us only for as long as required to fulfill the purposes for which they were provided or for as long as the law requires us to do so. Upon purpose fulfillment and/or statutory storage period termination, we will erase or block your data.

 

6.     SSL Encryption

For security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the website operator, this website uses SSL encryption. You can recognize an encrypted connection by the address line in the browser changing from “http://” to “https://” and by the lock symbol in the browser line.

If SSL encryption is activated, the data you transmit to us cannot be accessed by third parties.

 

7.     Collection and Storage of Personal Data; Type and Purpose of Use
a) When visiting our website

When accessing our website, the browser used on your device will automatically send information to the server hosting our website. This information is stored temporarily in a so-called “log file”. The following information is collected in this process without any manual input from you and will be stored until automatic erasure:

  • IP address of the accessing computer;
  • Date and time of access;
  • Name and URL of the file accessed;
  • Website the access request originates from (referrer URL);
  • The browser used and, as the case may be, the operating system of your computer, and the name of your access provider.

We will process the stated data for the following purposes:

  • guaranteeing smooth connection to the website;
  • guaranteeing comfortable use of our website;
  • evaluating system security and stability;
  • error analyses;
  • for other administrative purposes.

Data identifying you, such as your IP address, will be erased after seven days at the latest. If we store them for longer periods, they will be pseudonymized so that identification is no longer possible.

The legal basis of data processing is Art. 6(1) sent. 1 point (f) of the GDPR. Our legitimate interest follows from the purposes of data processing that are listed above. Under no circumstances will we use collected data to draw conclusions regarding your person.

b) Newsletter

Newsletter contents and subscription data:

Only if you subscribed to it and gave your express consent in accordance with Art. 6(1) sent. 1 point (a) of the GDPR will we send you our newsletter. The newsletter contents are described in detail at the time of subscription. We only need your email address for newsletter subscription; if you provide additional data, such as your name and/or your gender, these data are only used for newsletter personalization.

Double opt-in and logging:

For subscribing to our newsletter, we use the “double opt-in procedure” for security reasons so that no third-party email addresses can be used for subscription. After newsletter subscription, you will receive an email in which you are requested to confirm your subscription. The subscription is valid only after you confirmed it.

Also, your newsletter subscription will be logged, whereby logging includes a registration of subscription and confirmation time, data provided, and your IP address. If you change your data, these changes will also be logged.

Withdrawal

If you no longer want to receive our newsletter, you may revoke your consent at any time with future effect. For this purpose, you can click on the “Unsubscribe” link at the end of every newsletter or send us an email to the following email address:  info(at)ddc-breakdance.de.

The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Use of myweb2mail

We use the “myweb2mail” email tool to send our newsletter (netlands edv consulting GmbH, Londonstraße 15, 97424 Schweinfurt, Germany).

Therefore, data provided by you will be transferred to netlands edv consulting GmbH who process them. This tool enables us to evaluate how the newsletter is opened and used.

We concluded a commissioned processing contract with netlands edv consulting GmbH, whereby they acquire no right to transfer your data.

For more information on privacy with netlands edv consulting GmbH, please refer to https://netlands.de/datenschutz/.

The employment of netlands edv consulting GmbH, our delivery service provider, is based on our legitimate interests in terms of Art. 6 (1) sent. 1 point (f) of the GDPR. Our interest is the employment of user-friendly and secure newsletter systems that serve our business interests and fulfill the users’ expectations.

c) Google Fonts

Our website makes use of Google Fonts which enable the display of fonts. Google Fonts is a service offered by Google, Inc. (1600 Amphitheatre Parkway, Mountain View, California, 94043, United States). The inclusion of this web font occurs via a server call up, generally a Google server in the US. This way, the below data may be transferred and stored by Google:

  • browser name/version;
  • website from which the access request originates (referrer URL);
  • operating system;
  •  computer screen resolution;
  • the IP address of the accessing computer;
  • the user’s browser/operating system language settings.

For more information, please refer to the Google privacy policy at: 

www.google.com/fonts#AboutPlace:about

www.google.com/policies/privacy/

The use of Google Fonts makes it easier for you to read the contents of our website and to make its design more pleasant for you; this is based on our legitimate interests in terms of Art. 6(1) sent. 1 point (f) of the GDPR.

 

8.     Cookies

We use cookies on our website. Cookies are small data packages that are automatically created by your browser and that are saved on your device when you visit our website. Their purpose is to store information on the relevant device; identifying you personally by using cookies is not possible.

The data processed by cookies are necessary for the above purposes to safeguard our and third parties’ legitimate interests in accordance with Art. 6 (1) sent. 1 point (f) of the GDPR.

Most browsers automatically accept cookies due to browser default settings. However, you can change your browser settings so that no cookies will be saved on your device or that you at least receive a notification before a new cookie is saved. If you completely deactivate cookies on your browser, you may not be able to use all of the website functions.

Below, we explain which cookie types we use:

a) Session cookies

To make the use of our website more pleasant, we use “session cookies” to determine if you have already visited individual pages of our website.

Session cookies are automatically erased after you leave our website.

b) Temporary cookies

We also use cookies enabling us to recognize you if you visit our website again or use our services. This way, you do not need not make entries and change settings which you have already made and changed again.

These temporary cookies are stored on your device for a fixed time period.

c) Cookies for marketing/optimization purposes

Finally, we use cookies for marketing/optimization purposes. They statistically document the use of our website, evaluate it in order to optimize the services we offer to you and enable browser recognition if you visit our website again.

These cookies are automatically erased after expiry of a defined time period.

 

9.     Hotjar Analysis and Tracking Tool

On our website, we use the below analysis and tracking tools to continuously optimize our website and adjust it to your needs.

This constitutes a legitimate interest in the sense of Art. 6(1) sent. 1 point (f) of the GDPR. The relevant data processing purposes and data categories are set forth in the corresponding tools description.

a) Matomo (formerly “Piwik”)

We use “Matomo”, an analysis service (InnoCraft Ltd, 150 Willis St., 6011 Wellington, New Zealand) which uses cookies that are stored on your computer enabling us to analyze the use of our website.

These cookies contain usage information and are transferred to our servers where they are stored for usage analysis purposes and help us with website optimization. Usage information includes your IP address, but in abbreviated form so that this is anonymous and you cannot be personally identified.

Information generated by the cookie will not be transferred to third parties. Also, you can prevent cookie usage by setting your browser accordingly. However, this may have the effect that you will not be able to fully use the functions on our website.

You can also object to data storage and usage at a later time by clicking on the relevant button. In this case, an “opt-out cookie” is placed on your browser preventing Matomo from collecting session data.

Please note: If you delete your cookies, the opt-out cookie will be deleted as well, and you may need to reactivate it, as the case may be. 

 

 10.  Social Media

Our website uses the below social media plug-ins to raise awareness for our website. The legal basis of social media plug-in usage is Art. 6(1) sent. 1 point (f) of the GDPR. The underlying advertising purpose is to be considered a legitimate interest in terms of the GDPR.The responsibility for the operation in compliance with the data protection regulations is to be ensured by the respective providers. For using these plug-ins, we employ “Shariff”, a software program to protect website users in the best way possible.

a) “Like” Facebook Plug-In

This website includes the “ Like” Facebook plug-in Recognizable by the blue Facebook logo and the “Like” button next to it. This plug-in is operated by Facebook Ireland Limited (Hanover Reach, 5-7 Hanover Quay, Dublin 2, Ireland) and directly connected to Facebook’s servers. The data will not be transferred to the website operator.
Once you activate this plug-in, it will collect, use, and transfer data to Facebook – independent of this website – to the extent and for the purposes indicated in the Facebook privacy policy at http://www.facebook.com/policy.php (including, without limitation, information that and when you visited the website). Should you actively use the plug-in (by clicking on the “Like” button), this information will also be transferred to and used by Facebook.
The type, scope, and purpose of collected data depends on whether you are registered and/or logged on to Facebook. Allocation of data to your Facebook account is possible only if you are logged on to Facebook at the relevant time. This means that you should log off from Facebook prior to visiting the website if you want to prevent allocation to your Facebook profile. Facebook may process collected data in third countries pursuant to the Facebook privacy policy.
For comprehensive answers to the most frequently asked questions concerning plug-in data protection, please refer to http://www.facebook.com/help.php?page=1068.

b) Use of Twitter

Functions of the Twitter service are embedded in our websites. These functions are provided by Twitter, Inc. (1355 Market Street, Suite 900, San Francisco, CA 94103, USA). By using Twitter and the “Re-Tweet” function, the websites you visit will be linked to your Twitter account and made available to other users. Data will also be transferred to Twitter. Please note that, as the provider of the websites, we have no knowledge of the content of the transferred data or its use by Twitter. For more information, please refer to the Twitter privacy policy at: http://twitter.com/privacy.
You can change your data privacy settings in your account settings at http://twitter.com/account/settings.

c) XING 

Our website makes use of features of the XING service operated by XING SE
(Dammtorstraße 30, 20354 Hamburg, Germany).
If you click on the XING button on our website, the website contents will be linked to your XING profile. However, this is possible only if you are logged on to your XING account.
Please note that, as the website provider, we have no knowledge of the content of the transferred data or its use by XING.
For further information, please refer to the XING privacy policy at: 
https://privacy.xing.com/de/datenschutzerklaerung

g) LinkedIn

Our website makes use of LinkedIn service functions provided by LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland).If you click on the LinkedIn button on our website, the website contents will be linked to your LinkedIn profile. However, this is possible only if you are logged on to your LinkedIn account.Please note that, as the website provider, we have no knowledge of the content of the transferred data or its use by LinkedIn.For further information, please refer to the LinkedIn privacy policy at: https://www.linkedin.com/legal/privacy-policy?_l=de_DE Embedded Videos

 

11. Embedded Videos
a) YouTube

This website uses the YouTube plug-in operated by YouTube, LLC (901 Cherry Ave., San Bruno, CA 94066 USA).
If you activate the YouTube plug-in while visiting our website, a link to YouTube’s servers is established and YouTube is informed about which of our web pages you visited. This way, YouTube can allocate your surfing habits directly to your personal profile. You can prevent this by logging off from your YouTube account before visiting our websites.
For more information on the handling of user data, please refer to the YouTube privacy policy at: https://www.google.de/intl/de/policies/privacy
The legal basis is Art. 6(1) sent. 1 point (f) of the GDPR. The underlying advertising purpose is to be considered a legitimate interest in terms of the GDPR.

b) Vimeo

Our website uses Vimeo, a plug-in operated by Vimeo, LLC (555 West 18th Street, New York, New York, 10011, USA).Once you accessed our website on which the plug-in is embedded, your computer is automatically linked to Vimeo’s servers. This connection transmits information on which of our web pages you have visited. If you are logged on to Vimeo when visiting our website, your usage behavior, visits to the relevant pages, and watching of the videos will be allocated to your personal user account.If you want to prevent this, you should log off from your user account before visiting our websites and erase the relevant Vimeo cookies.For more information on the data processing and on the data privacy policy of Vimeo, please refer to vimeo.com/privacy.The legal basis is Art. 6(1) sent. 1 point (f) of the GDPR. The underlying advertising purpose is to be considered a legitimate interest in terms of the GDPR.

 

12. Data Subjects Rights:

You have the following rights:

a) Access

Pursuant to Art. 15 of the GDPR, you have a right to request access to information about your personal data that we process; this right of access refers to information on

  • the purposes of the processing;
  • personal data categories;
  • recipients or categories of recipients to whom your data were/are disclosed;
  • planned storage period or at least the criteria for determining this period;
  • existence of a right to rectification, erasure, restriction of processing, or objection;
  • the right to lodge a complaint with a supervisory authority;
  • personal data origins, unless we collected them;
  • the existence of automated decision-making, including profiling and, if applicable, useful details.
b) Rectification

Pursuant to Art. 16 of the GDPR, you have a right to immediate rectification of inaccurate or incomplete personal data that we stored.

c) Erasure

You have the right, under Art. 17 of the GDPR, to request immediate erasure of your personal data, unless processing is required for any of the following reasons:

  • for exercising the right of freedom of expression and information;
  • for compliance with a legal obligation which requires processing by European Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • for reasons of public interest in the area of public health acc. to Art. 9(2) points (h) and (i) as well as Art. 9(3) of the GDPR;
  • for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes acc. to Art. 89(1) of the GDPR in so far as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing;
  • for the establishment, exercise, or defense of legal claims.
d) Restriction of processing

Pursuant to Art. 18 of the GDPR, you may request a restriction of the processing of your personal data if one of the conditions applies:

  • you contest the accuracy of your personal data; 
  • processing is unlawful and you refuse erasure of your personal data;
  • we no longer require the personal data for processing, but you require them for asserting, exercising, or defending legal claims;
  • you object to processing in terms of Art. 21(1) of the GDPR.
e) Information

If you have requested personal data rectification, erasure, or restriction of processing in terms of Art. 16, Art. 17 (1), and Art. 18 of the GDPR, we will inform all the recipients to whom your personal data had been disclosed, unless this is impossible or requires unreasonable efforts; you may request us to indicate these recipients. 

f) Portability

You have the right to receive your personal data you have provided to us in a structured, commonly used, and machine-readable format.
You also have the right to request these data to be transferred to third parties if processing is based on automated processes, a consent in terms of Art. 6 (1) sent. 1 point (a) or Art. 9 (2) point (a), or on a contract in terms of Art. 6 (1) sent. 1 point (b) of the GDPR.

g) Withdrawal

Pursuant to Art. 7(3) of the GDPR, you may revoke, at any time, a consent you have given. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. We are not allowed to continue data processing activities based on your withdrawn consent in the future.

h) Complaint

According to Art. 77 of the GDPR, you may lodge a complaint with a supervisory authority if you believe that personal data processing violates GDPR provisions.

i) Objection

Insofar as your personal data are processed pursuant to Art. 6(1) sent. 1 point (f) of the GDPR on the basis of legitimate interests, you have the right, pursuant to Art. 21 of the GDPR, to object to the processing of your personal data if appropriate reasons exist that arise from your particular situation or if objection is aimed at direct advertisement. In the latter case, you have a general right to object that we will implement without indication of the relevant situation. If you wish to exercise your right of withdrawal or objection, simply send an email to info(at)ddc-breakdance.de.

j) Automated Individual Decision-Making, Including Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, that produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

i. is required for contract conclusion or fulfillment between you and us;
ii. is authorized by European Union or Member State law to which we are subject and that also lays down suitable measures to safeguard your rights, freedoms, and legitimate interests;
iii. is made with your explicit consent.

Nevertheless, such decisions must not be based on special categories of personal data referred to in Art. 9(1) of the GDPR, unless Art. 9(2) point (a) or (g) of the GDPR applies and suitable measures to safeguard your rights, freedoms, and legitimate interests are in place.
In the cases referred to under i) and iii), we implement suitable measures to safeguard your rights, freedoms, and legitimate interests, at least the right to obtain human intervention on our part, to express your own point of view and to contest the decision.

 

13. Privacy Policy Amendments

If we amend our Privacy Policy, we will publish this on our website.
Dated: 13/06/2018