Privacy policy
Below you will find our privacy policy as a user of our website by Ludus Deorum Events on the nature, scope and purpose of the processing of your personal information on.
1. Responsible
Person responsible within the meaning of Art. 4 No. 7 GDPR, the other data protection laws applicable in the member states of the European Union and other provisions with provisions of data protection character is:
LUDUS DEORUM EVENTS & PRODUCT PLACEMENT
Andreas Bach
managing Director
Haarbergstrasse 47
99097 Erfurt
Fon: +49 361 3461400
Fax: +49 361 3461402
Mobile: +49 172 7916484
Email: info @ ludus-deorum-events.com
2. The types of processed data
- Inventory data (e.g., names, addresses)
- contact details (e.g., e-mail, phone numbers)
- content data (for example, input of texts, retrieval of photos, videos, etc.)
- usage data (e.g., visited web pages, retrieved content)
- metadata (e.g., device information, IP address)
3. Legal basis
According to article 13 GDPR we inform you about the legal basis of our data processing. Unless the legal basis in the privacy policy statement is stated: The legal basis for obtaining consent is set out in Article 6 (1) and Article 7 GDPR, which is the legal basis for processing to perform our services and carry out contractual actions and respond to requests in Article 6 paragraph 1 GDPR, the legal basis for processing to fulfill our legal obligations is in Article 6 paragraph 1 GDPR, and the legal basis for processing to safeguard our legitimate interests is in Article 6 paragraph 1 GDPR. In the event that important interests of the data subject or any other natural person require the processing of personal data, Article 6 (1) GDPR serves as the legal basis.
4. Reasons for data processing
- Providing the online offer, including its functions and content
- Responding to requests of any kind and general communication with users
- for safety measures to be taken
- sale and dispatch of products
5. The rights as affected person
- You have the right to ask for confirmation as to whether the data in question is processed, for information about this data, as well as for further information and for a copy of this data, in accordance with Article 15 of the GDPR.
- You have the right under Article 16 GDPR to ask for the completion of the data concerning you and the correction of the wrong data concerning you.
- In accordance with Article 77 of the GDPR, they have the right to lodge a complaint with the competent supervisory authority.
- In accordance with Article 17 of the GDPR, you have the right to request that data relating to you be deleted directly, or to require a restriction of the processing of your data in accordance with Article 18 of the GDPR.
- You also have the right to request that the data relating to you, which you have sent to us, be obtained pursuant to Article 20 of the GDPR and request that it be forwarded to other persons responsible.
- Right of objection
You can object to the future processing of your data under Article 21 GDPR at any time. The objection may in particular be made against processing for direct marketing purposes. Please address your objection in writing to us.
- Withdrawal
They have the right to revoke granted consent in accordance with Article 7 (3) GDPR with future effect.
6. Safety measures
We shall take appropriate technical and organizational measures to ensure an adequate level of protection, taking into account the state of the art and in accordance with Article 32 of the GDPR, the costs of implementation and the nature, scope, circumstances and purposes of the processing. This includes, in particular, ensuring the confidentiality, integrity and availability of your data by controlling physical access to the data, as well as their access, input, disclosure, availability and separation. In addition, we have established procedures to ensure the enjoyment of data subject rights, the erasure of data, and the response to data compromise.
7. Data transfer to third countries
If we have data in a third country, i. outside of the European Union or the European Economic Area, or in the context of the use of third party services or disclosure or transmission of data to third parties, this will only be done if it is necessary to fulfill our pre-contractual or contractual obligations, based on your consent a legal obligation or based on our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only in the presence of the special conditions of Article 44 et seq. DSGVO. That the processing is e.g. on the basis of specific guarantees, such as the officially recognized statement of a data protection level corresponding to the EU, e.g. for the US by the "Privacy Shield" or observance of officially recognized special contractual obligations, the so-called standard contractual clauses.
8. Cooperation with contract processors
If, as part of our processing, we reveal, transmit to, or otherwise grant access to the data to other persons and companies, we do so only on the basis of a legal permission, e.g. if a transmission of the data to third parties, such as to payment service providers, in accordance with Article 6 (1) GDPR is necessary for the fulfillment of the contract and if you have consented thereto or a legal obligation to do so or based on our legitimate interests, e.g. at the commissioner of third parties, webhosters, and others. Insofar as we commission third parties to process data on the basis of a so-called contract processing contract, this is done on the basis of Article 28 GDPR.
9. Cookies
Cookies are files that are stored on users' computers. Different information can be stored within the cookies. A cookie is primarily used to store information about a user during or after his visit to an online offer. Temporary cookies, or "session cookies" or "transient cookies", are cookies that are deleted after a user leaves an online service and closes his browser. In such a cookie, e.g. the contents of a shopping cart in an online shop or a login status are saved. The term "permanent" or "persistent" refers to cookies that remain stored even after the browser has been closed. Thus, e.g. the login status will be saved if users visit it after several days. Likewise, in such a cookie the interests of the users can be stored (eg the recently viewed products), which are used for range measurement or marketing purposes. A "third-party cookie" refers to cookies that are offered by providers other than the person who manages the online offer (otherwise, if it is only their cookies, this is called "first-party cookies").
We can use temporary and permanent cookies and clarify this in the context of our privacy policy.
If you as a user do not wish to have cookies stored on your computer, you will be asked to disable the corresponding option in the system settings of your browser. Saved cookies can be deleted in the system settings of the browser. However, the exclusion of cookies can lead to functional limitations of this website.
Instructions on how to delete and manage cookies in your browser
Mozilla Firefox:
• https://support.mozilla.org/en/kb/cookies-allow-and-dispose
Google Chrome:
• https://support.google.com/chrome/answer/95647
Internet Explorer:
• https://windows.microsoft.com/en-us/internet-explorer/delete-manage-cookies#ie=ie-11-win-7
Safari:
• https://help.apple.com/safari/mac/8.0/#/sfri11471
Alternatively, you can also block or allow using a browser plugin such as Ghostery Cookies & Tracker. You can find Ghostery at https://www.ghostery.com
10. Data deletion
The data processed by us will be deleted or restricted in accordance with Articles 17 and 18 GDPR. Unless explicitly stated in this privacy policy, the data stored by us will be deleted as soon as they are no longer required for their purpose and the deletion does not conflict with any statutory storage requirements. Unless the data is deleted because it is e.g. are required for other and legally permitted purposes, their processing is restricted. The data is then locked and not processed for other purposes. This applies, for example for data that must be kept for commercial or tax reasons.
According to legal regulations in Germany, the storage takes place in particular for 10 years according to §§ 147 paragraph 1 AO, 257 paragraph 1 No. 1 and 4, paragraph 4 HGB (books, records, situation reports, accounting documents, trading books, documents relevant for taxation, etc .) and 6 years in accordance with § 257 paragraph 1 nos. 2 and 3, paragraph 4 HGB (commercial letters).
11. Business-related processing
In addition we process
- Contract data (for example, subject matter, term, customer category).
- Payment data (e.g., bank details, payment history)
from our customers, prospects and business partners for the purpose of providing contractual services, service, customer care, marketing, advertising and market research.
12. Orders - Processing in the webshop
We process the data as part of the ordering process in our online shop to allow them to select and order the selected products and services, as well as their payment and delivery, or execution. For example, for the storage of your articles in the shopping cart and for the registration. The processed data includes inventory data, communication data, contract data and payment data. The processing takes place for the purpose of providing contractual services in the context of the operation of our online shop, billing and delivery, as well as the customer service.
Processing is based on Article 6 (2). 1 (execution of order transactions) and c (legally required archiving) DSGVO. The information marked as required for the establishment and fulfillment of the contract is required. We disclose the data to third parties (such as DHL) only in the context of extradition, payment or in the context of legal permissions and obligations to legal advisors and authorities. The data will only be processed in third countries if this is necessary for the fulfillment of the contract (for example on request by the customer when delivering abroad or by Payapl).
Users can create a user account by viewing their orders. As part of the registration, the required mandatory information will be communicated to the users. The user accounts are not public. If users have terminated their user account, their data will be deleted with respect to the user account, subject to their retention is necessary for commercial or tax reasons in accordance with Article 6 paragraph 1 GDPR. Information in the customer account remains until its deletion with subsequent archiving in case of a legal obligation.
As part of the registration and re-registration and use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the user's protection against misuse and other unauthorized use. A transfer of these data to third parties does not take place, unless it is necessary for the prosecution of our claims or there is a legal obligation in accordance with. Article 6 (1) GDPR.
The deletion takes place after expiration of the legal warranty obligations, the necessity of keeping the data is checked every three years; in the case of legal archiving obligations, the deletion takes place after its expiration. Commercial retention periods are 6 years and tax 10 years.
13. Possibility of registration
Visitors can create a user account on the website. As part of the registration, the required mandatory information will be communicated to the users and based on the article. 6 (1) for the purpose of providing the user account. The processed data include in particular the credentials (name, password and e-mail address). The data entered during registration will be used for the purpose of using the user account and its purpose.
Users can be informed by e-mail about information relevant to their user account. When users cancel their user account, their data will be deleted with respect to the user's account, subject to a statutory retention requirement. It remains for users to secure their own data on termination. We are entitled to irretrievably delete all user data stored during the term of the contract.
In the context of the use of our registration functions as well as the use of the user account, the IP address and the time of the respective user action will be saved. The storage is based on our legitimate interests, as well as the user for protection against misuse and other unauthorized use. A transfer of these data to third parties is not in principle, unless it is necessary for the prosecution of our claims or there is a legal obligation under Article 6 paragraph 1 GDPR. The IP addresses will be anonymized or deleted after 7 days at the latest.
14. Use of various external payment service providers
We use external payment service providers through whose platforms payment transactions can be made. The Paypal Privacy Policy can be found here: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
In the context of the fulfillment of contracts, we use these payment service providers on the basis of Article 6 (1) GDPR. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with Article 6 (1) GDPR in order to offer our users a fast, effective and secure payment option.
The data processed by the payment service providers includes inventory data, such as the name and the address, the bank data, such as Account numbers or credit card numbers, passwords, TANs and checksums as well as the contract, totals and recipient details. This information is required to complete the transactions. However, the data entered will only be processed and stored by the payment service providers. That We do not receive any account or credit card information, but only information with confirmation or refusal of payment. The data may be transmitted by the payment service providers to credit reporting agencies. This transmission aims at the identity and credit check. For this we refer to the terms and privacy policy of payment service providers.
For the payment transactions, the terms and conditions and the privacy notices of the respective payment service providers, which are available on their websites. We refer to these also for the purpose of further information and assertion of revocation, information and other rights affected.
15. Administration, accounting, administration
We process data in the context of administrative tasks and organization of our business, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the course of rendering our contractual services. The processing bases are Article 6 (1) GDPR, Article 6 (1) GDPR. The processing affects customers, prospects, business partners and website visitors. The purpose and interest in processing lies in administration, financial accounting, office organization, data archiving, that is, tasks that serve to maintain our business, perform our duties and provide our services. The deletion of the data in terms of contractual performance and contractual communication is the same as that used in these processing activities. We disclose or transmit data to the tax authorities, consultants, tax consultants or auditors, as well as other fee agents and external payment service providers.
16. Contact
When contacting us (for example by contact form, e-mail, telephone, fax or social media), the information provided by the user for processing the contact request and processing it is processed in accordance with Article 6 (1) GDPR. The information of the users can be saved. We delete requests, if they are no longer required. We check the necessity every two years, in addition, the legal archiving obligations apply.
17. Comments and opinions
If users leave comments or other contributions, their IP addresses may be stored for 7 days based on our legitimate interests within the meaning of Article 6 (1) GDPR. This is for our own safety, if someone leaves illegal content in comments and contributions (insults, prohibited political propaganda, etc.). Comments and contributions are stored by us until the opposition of the users.
18. Server Hosting and Mailing
The hoster's services we use are to provide the following services: infrastructure and platform services, storage and database services, e-mailing, and the technical maintenance services we use to operate this website. In doing so, we or our hosting service provider processes inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this website on the basis of our legitimate interests in an efficient and secure provision of this website in accordance with Article 6 (1) GDPR and Art 28 DSGVO.
19. Accesses and logs
The hosting provider, Stand aktuell All-Inkl, collects data on every access to the server on which this website is based on our legitimate interests within the meaning of Art. 6 para. 1 DSGVO. The access data includes name of the retrieved web page, retrieved files, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type, version of the operating system, the previously visited page and the IP address.
Log files are stored for security reasons for a maximum of 7 days and then deleted. However, data whose further retention is required for evidential purposes are excluded from the deletion until final clarification of the incident.
20. SSL or TLS encryption
This site uses to protect the transmission of confidential content, such as your orders or request by contact form that you send to us as a site operator, an SSL or. TLS encryption. You can recognize this connection by the fact that the address line of the browser changes from "http: //" to "https: //" and a lock symbol appears in your address bar in the browser. If this encryption is activated, the data can not be read by third parties.
21. Social media
We operate an online presence within social networks in order to communicate with the active customers, prospects and users and to inform them about our services. When calling the respective networks and platforms, the terms and conditions and the data processing guidelines apply to their respective operators.
22. Various services and content from third parties
We use various third-party content and service offerings within our website based on our legitimate interests to provide services such as: Integrate videos or maps.
These third-party content providers receive the IP address of the users, as they would not be able to submit the content to their browser without the IP address. The IP address is therefore required for the presentation of this content. Third parties may use so-called pixel tags for statistical or marketing purposes. The pixel tags can be used to evaluate information such as visitor traffic on the pages of these providers. The information may also be stored in cookies on the users' device and may include, but is not limited to, technical information about the browser and operating system, referring web pages, visit time, and other information regarding the use of our online offer.
- Vimeo
We use the video platform provided by Vimeo Inc., Legal Department, 555 West 18th Street New York, New York 10011, USA. The privacy policy of Vimeo can be found here: https://vimeo.com/privacy. We note that Vimeo may use Google Analytics and refer to the Google Privacy Policy (https://www.google.com/policies/privacy) and opt-out option for Google Analytics (http://tools.google. com/dlpage/gaoptout?hl=DE) or Google's data usage settings for marketing purposes (https://adssettings.google.com/).
- Youtube
We may embed the YouTube platform's videos from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Google's Privacy Policy: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.
- Google Maps
We use maps from the Google Maps service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The processed data may include, in particular, users' IP addresses and location data, but these are not collected without their consent (usually as part of the settings of their mobile devices). The data can be processed in the USA. Privacy Policy: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.
- Shariff sharing feature
Basically we use the "Shariff" buttons. Shariff ensures more privacy in the network. Unlike the usual social network share buttons, Shariff does not connect to the social media platforms when the website is accessed. The user remains anonymous until it actively uses the share buttons.
- Facebook social plugins
We use Social Plugins of the social network Facebook, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland, within the meaning of Article 6 paragraph 1 GDPR. These plugins may represent interactions or content (e.g., videos, graphics or text contributions) and are recognizable by various Facebook logos. Facebook is certified under the Privacy Shield Agreement, providing a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
When a user calls a feature on this page that contains such a plugin, their device connects to the Facebook servers. The content of the plugin is transmitted by Facebook directly to the device of the user and incorporated by him into the online offer. In the process, user profiles can be created from the processed data. We have no control over the amount of data Facebook collects using this plugin.
By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offer. If the user is logged in to Facebook, Facebook can also assign the visit to his Facebook account. If users click on buttons, for example, press the Like button or leave a comment via Facebook plug-in, the corresponding information is transmitted directly to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook stores its IP address. You can see Facebook privacy notices here: https://www.facebook.com/about/privacy/.
If a user is logged into Facebook and does not want Facebook to collect information about him through this online offering and link it to his on Facebook profile, he must log out of Facebook and delete his cookies before using our website. Other settings and inconsistencies regarding the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US-American site http://www.aboutads.info/ choices / or the EU page http://www.youronlinechoices.com/. These settings are independent of the device used and are adopted for both computers and mobile devices.
- Twitter
Within our online offering, features and content of the Twitter service offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, may be incorporated. For this, e.g. Content such as images, videos, or text and buttons that users use to promote their content. If the users are members of the platform Twitter, Twitter can assign the call to the profiles of the users. Twitter is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). The privacy policy of Twitter can be found here: https://twitter.com/privacy, opt-out option: https://twitter.com/personalization.
- VK
Within our online offering may be functions and contents of the service V Contacts LLC offered by the V Contacts LLC, 1-N, bld. 12-14, ref. A, Khersonskaya St., St. Petersburg, Russia, 191024. For this, e.g. Content such as images, videos, or text and buttons that users use to promote their content, subscribe to the content creators, or subscribe to our posts. If the users are members of the platform VK, VK can call the o.g. Assign contents and functions to the profiles of the users there. The privacy policy of VK can be found here: https://vk.com/privacy/cookies.
- Pinterest
Within our online offering, features and content of the Pinterest service offered by Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA, may be incorporated. For this, e.g. Content such as images, videos, or text and buttons that users use to promote their content, subscribe to the content creators, or subscribe to our posts. If the users are members of the platform Pinterest, Pinterest can call the o.g. Assign contents and functions to the profiles of the users there. The privacy policy of Pinterest can be found here: https://about.pinterest.com/en/privacy-policy
As of 25.05.2018