Thank you for visiting our website. This document informs you about how we use your personal data in connection with your use of our website.
BRAINSTORM MUSIC MARKETING AG
Vorstand: Michael Schober
87541 Bad Hindelang
Tel.: 0 83 24/5139991
Questions regarding data protection and the exercise of your rightsTS
If you have any questions regarding data protection or if you wish to exercise your rights under data protection law, please contact us using the contact data given above.
When do we process personal data?
We process the personal data which you actively transmit to us by online submission. Furthermore, we automatically process personal data based on your use of our website. Your data may therefore be processed, in particular, in the following cases:
Visit of our website;
Subscription to the email newsletter;
Analysis of which visitors access our website and how they use it;
Analysis of the success of our advertising measures;
Defence against attacks on our technical infrastructure;
For details, please read the following explanations.
Visit of our website
When you access our website, the company commissioned by us to operate the website processes and stores technical information about the terminal you use (operating system, screen resolution and other, non-personal features) and the browser (version, language settings), and particularly also the public IP address of the computer you use to access our website, as well as the date and time of access. The IP address is a distinct, numerical address under which your terminal sends and/or requests data to or from the internet. We and our service provider do not normally know the identity of the person behind the IP address, unless you disclose data to us during your use of the website which enable us to identify you. Users may also be identified if legal proceedings have to be taken against them (e.g. where our website is attacked) and we learn of their identity in the context of the investigations. You therefore do not normally need to worry about us being able to allocate your IP address to you personally.
Our service provider uses the processed data in non-personal form for statistical purposes, in order to enable us to understand which terminals and which settings are used to visit our website and to optimise the website where necessary. The statistics do not contain personal data. The legal basis for the production of statistics is Article 6 (1) f) GDPR.
Your IP address is also used to enable you technically to access and use our website and for the detection and defence against attacks on our service provider or our website. Unfortunately, attacks with the aim of causing damage to website operators or their users do occur (e.g. denial of access, spying on data, disseminating malware (e.g. viruses) or other illicit purposes). Such attacks would compromise the proper functioning of the data centre of the company commissioned by us, the use of our website and/or its functionalities, and the security of visitors to our website. IP addresses and the time of access are processed for the purpose of defending against such attacks. Via our service provider, we use this processing to pursue our legitimate interest to secure the functioning of our website and defend against illegal attacks against us and the visitors to our website. The legal basis for processing is Article 6 (1) f) GDPR.
The stored IP data are deleted (by way of anonymisation) when they are no longer needed for the detection or defence against an attack.
When you send us a message through one of the contacting options offered we use the data you submit to us to process your enquiry. The legal basis for this is our legitimate interest to respond to your enquiry pursuant to Article 6 (1) f) GDPR. If your enquiry relates to the conclusion of a contract with us, a further legal basis for the processing is Article 6 (1) b) GDPR. The data are deleted once your enquiry has been dealt with. Where we are under a statutory obligation to retain the data for longer, they will be deleted following expiry of the applicable retention period.
If you register for our email newsletter, your data will be used for the purpose of creating and sending the newsletter and for verifying the registration for our newsletter until you revoke your consent. The legal basis for processing is Article 6 (1) a) GDPR. We use the platform of an external service provider for our newsletter, to which we disclose your personal data to the necessary extent within the scope of a third-party data processing agreement.
In order for newsletters to be sent to you, you must click on the confirmation link in the verification email which we will send you following registration, in order to verify your consent. When you click on the appropriate link, we process the public ID of the computer from which the link is accessed, together with the date and time of the click. We process these data to be able to prove that you have confirmed your request to receive the newsletter.
The legal basis for processing is Article 6 (1) f) GDPR. Our legitimate interest in this case lies in the compliance with our obligation to produce proof of the subscription you have taken out.
You may revoke your consent at any time by unsubscribing from the newsletter. A link for this purpose can be found at the bottom of each newsletter.
We will delete your data once you unsubscribe from the newsletter. The data which we require to prove that you consented to the sending of the newsletter will be deleted following expiry of the limitation period applicable to such obligations for produce proof.
A cookie is a small text file which is stored on your terminal by your browser when you access our website. If you visit our website again at a later time we are able to read these cookies again. Cookies are stored for varying lengths of time. You have the option at any time to configure in your browser which cookies you would like your browser to accept; however, this may result in our website malfunctioning. You may also delete cookies yourself at any time. If you do not do this we may specify when the cookie is set how long we wish the cookie to remain on your computer. Here we distinguish between so-called session cookies and persistent cookies. Session cookies are deleted by your browser when you leave our website or close the browser. Persistent cookies are stored for the period of time specified by us when the cookie is set.
Technically required cookies, which are strictly necessary to use the functions of our website. Without these cookies, certain functions cannot be provided.
Functional cookies, which are used to enable the technical implementation of certain functions you wish to use.
Analysis cookies, which serve the purpose of analysing use of our website.
Most browsers used by our users allow you to configure which type of cookie should be saved and enable the deletion of (specific) cookies. If you limit the setting of cookies on particular websites or reject any cookies from third-party websites you may not be able to use our website to the full extent. Information about cookie settings in the most common browsers can be found here:
Google Chrome (support.google.com/chrome/answer/95647?hl=de)
Advertising for us
You can also prevent the collection of data generated by cookies and related to your use of the websites and the processing of this data by Google by installing the extension offered under the following link https://support.google.com/ads/answer/7395996?hl=de. Alternatively, you can disable the Doubleclick cookie on the Digital Advertising Alliance website at the following link: https://youradchoices.com/control
The legal basis for the corresponding processing of your personal data is Art. 6 Para. 1 f) DSGVO. We hereby pursue the legitimate interest to win new customers. In this respect, we are of the opinion that our advertising measures have a better effect and are therefore more successful if we display them if they are in the presumed interest of the user of the respective website. According to market knowledge, advertising which corresponds to the presumed interests of the users of a website is more effective and is clicked on more frequently.
We use Google Web Fonts to display our website. It is a collection of fonts from Google LLC ("Google"), Amphitheatre Parkway, Mountain View, CA 94043, USA, which can be used especially for websites. When your browser calls up the font used by our website, the public IP address of the computer you are using is transmitted to Google. The IP address is a unique numeric address at which this computer sends or retrieves data from the Internet.
When you visit our website, your browser loads the fonts needed to view it correctly and displays them as we intended. If your browser does not support web fonts, a standard font of your terminal device will be used to display our website. Further information about Google Web Fonts can be found at https://developers.google.com/fonts/faq. The general data protection declaration of Google, which is available at https://www.google.com/policies/privacy/, applies here. Our legitimate interest in using Google Web Fonts is to ensure a consistent look and feel of the website and therefore functionality on all devices. The legal basis for the processing is therefore Art. 6 Para. 1 f. DSGVO.
Adobe Typekit Webfonts
Our website uses so-called web fonts from Adobe Typekit to uniformly display certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe).
When you access our pages, your browser loads the fonts you need directly from Adobe so that it can display them correctly on your device. Your browser connects to Adobe's servers in the USA. This will allow Adobe to know that your IP address has been used to access our website. According to Adobe, no cookies are stored when the fonts are provided.
Adobe is certified under the EU-US Privacy Shield. The Privacy Shield is an agreement between the United States of America and the European Union to ensure compliance with European data protection standards. For more information, please visit: https://www.adobe.com/de/privacy/eudatatransfers.html.
The use of Adobe Typekit Web Fonts is necessary to ensure a consistent typeface on our website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
Further information on Adobe Typekit Web Fonts is available at: https://www.adobe.com/de/privacy/policies/typekit.html.
We have included YouTube videos on our website. YouTube is a service of YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.
YouTube videos are embedded in our portal exclusively on the basis of YouTube's "Extended Privacy Mode" (please check that this is the case!). According to YouTube, YouTube only stores information about visitors to a website when they click on the video and play it. You can find further information on this at https://support.google.com/youtube/answer/171780?hl=en in the section "Activate extended data protection mode".
The playback of videos involves considerable amounts of data, especially when different visitors to the website are watching videos in parallel. Furthermore, the playback of videos is accelerated and thus their playback quality is improved if the videos are played from a server that is as close as possible to the visitor of the website. Due to the considerable technical effort involved, we cannot guarantee this ourselves. We have therefore integrated the videos via Youtube. The legal basis for this is Art. 6 Para. 1 f)DSGVO.
Right to information
According to Article 15 GDPR, you have the right to request that we confirm whether any personal data concerning your person is being processed by us. If this is the case, you have the right to be informed about this personal data and to further information specified in Article 15 GDPR.
Right to correction
According to Article 16 GDPR, you have the right to demand the immediate correction of incorrect personal data concerning your person. Taking into consideration the purpose of processing, you also have the right to demand the completion of incomplete personal data, including by way of a supplementary explanatory note.
Right to erasure
You have the right to demand that we immediately delete any personal data concerning your person. We must delete personal data without undue delay, provided the corresponding conditions of Article 17 GDPR apply. For details, please refer to Article 17 GDPR.
Right to restrict processing
According to Article 18 GDPR, you have, under certain conditions, the right to demand a restriction of our processing of your personal data.
Right to data portability
According to Article 20 GDPR, you have the right to obtain, in a structured, commonly used and machine-readable format, the personal data concerning your person which you have provided, and you have the right to transmit these data to another controller without hindrance by us, provided the processing is based on consent pursuant to Article 6 (1) a) GDPR or Article 9 (2) a) GDPR or on a contract pursuant to Article 6 (1) b) GDPR and the processing is performed by automated processes.
Right to object
According to Article 21 GDPR, you have the right to object to the processing of personal data concerning your person which takes place on the basis of Article 6 (1) e) or f) GDPR; this also applies to any profiling based on these provisions.
Where we process your personal data to perform direct advertising, you have the right at any time to object to the processing of personal data concerning your person for the purposes of such advertising; this also applies to profiling in connection with such direct advertising.
If you wish to exercise one of your rights, please contact us as the controller using the above contact details or use another contact option offered by us to notify us accordingly. If you have any questions, please do not hesitate to contact us.
Right to complain to a supervisory authority
According to Article 77 GDPR, you have the right, without prejudice to any other administrative or judicial legal remedy, to complain to the supervisory authority. This right may particularly be exercised in the member state of your place of residence, your place of work or the place of the alleged breach, if you believe that the processing of the personal data concerning your person breaches the GDPR.