Techno Artisan + Warehouse - HardGroove, Acid, Schranz, Hard_Techno

Data Privacy

Data Privacy

Preamble

With the following privacy policy, we would like to inform you which types of your personal data (hereinafter also referred to briefly as “data”) we process, for which purposes, and to what extent.

The terms used are not gender‑specific.

Controller

Björn Ellebrecht

E-mail: imprint (punkt) nospam ]at[ technoartisan [dOt] de

Overview of processing activities

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data

  • Contact data
  • Content data
  • Usage data
  • Meta, communication and process data
  • Log data

Data subjects

  • Communication partners
  • Users

Purposes

  • Communication
  • Security measures
  • Reach measurement
  • Tracking
  • Audience building
  • Marketing
  • Provision of the online offering
  • IT infrastructure
  • Public relations

Relevant legal bases

Below you will find an overview of the legal bases under the GDPR on which we process personal data. In addition to the provisions of the GDPR, national data protection provisions may apply in your or our country of residence or registered office.

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
The data subject has given their consent to the processing of personal data concerning them for one or more specific purposes.
Performance of a contract and pre‑contractual inquiries (Art. 6 para. 1 sentence 1 lit. b GDPR)
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided that the interests or fundamental rights and freedoms of the data subject do not override those interests.

National regulations (BDSG)

In addition to the data protection regulations of the GDPR, national regulations apply in Germany, in particular the Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG). The BDSG contains specific provisions on the right of access, erasure, objection, the processing of special categories of data, and automated decision‑making including profiling.

Security measures

We take appropriate technical and organizational measures in accordance with the statutory requirements, taking into account the state of the art, implementation costs and the nature, scope and purposes of processing, in order to ensure a level of protection appropriate to the risk.

These measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data. We also take into account the protection of personal data in the development or selection of hardware, software and procedures in accordance with the principle of data protection by design and by default.

TLS/SSL encryption (HTTPS)

To protect users’ data from unauthorized access, we use TLS/SSL encryption technology. If a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL.

Transfer of personal data

In the course of our processing of personal data, it may happen that such data is transferred to other entities, companies, legally independent organizational units or persons. Recipients may include, for example, service providers commissioned with IT tasks or providers of services integrated into a website. In such cases, we comply with the statutory requirements and conclude appropriate contracts that serve to protect your data.

Data storage and deletion

We delete personal data in accordance with the statutory provisions as soon as the underlying consents are revoked or there is no further legal basis for processing.

Exceptions apply where statutory obligations or specific interests require longer retention or archiving of the data. If several retention periods are indicated, the longest period is always decisive.

General retention periods (German law)

Period Applies to
10 years Books, records, annual financial statements, inventories, management reports, opening balance sheet (§ 147 AO, § 14b UStG, § 257 HGB)
8 years Accounting records such as invoices and cost receipts (§ 147 AO, § 257 HGB)
6 years Other business documents, received/sent commercial letters, tax‑relevant documents (§ 147 AO, § 257 HGB)
3 years Data for asserting warranty and damage claims (§§ 195, 199 BGB)

Start of the period: If a period does not explicitly begin on a specific date and is at least one year, it automatically starts at the end of the calendar year in which the event triggering the period occurred.

Rights of data subjects

As a data subject, you are entitled to various rights under the GDPR (Art. 15–21 GDPR):

Right to object
You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6 para. 1 lit. e or f GDPR, including profiling and direct marketing.
Right to withdraw consent
You have the right to withdraw consent you have given at any time.
Right of access
You have the right to obtain confirmation as to whether data concerning you is being processed and, where that is the case, access to and a copy of the data in accordance with the statutory provisions.
Right to rectification
You have the right to request the completion or rectification of inaccurate data concerning you.
Right to erasure and restriction of processing
You have the right to request that data concerning you be erased without undue delay, or, alternatively, to request restriction of processing.
Right to data portability
You have the right to receive data concerning you in a structured, commonly used and machine‑readable format or to have it transmitted to another controller.
Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.

Provision of the online offering and web hosting

We process users’ data in order to provide them with our online services. For this purpose, we process the user’s IP address, which is necessary to transmit the content and functions to the user’s browser or device.

Types of data processed
Usage data; meta, communication and process data; log data.
Data subjects
Users (e.g. website visitors, users of online services).
Purposes
Provision of the online offering; IT infrastructure; security measures.
Legal basis
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Further details

Provision on rented storage space

To provide our online offering, we use storage space, computing capacity and software of a server provider (web host). Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Collection of access data and log files

Access to our online offering is logged in the form of “server log files” (requested URL, date/time, amount of data transferred, browser type, operating system, IP address, etc.). Log file information is stored for a maximum of 30 days and then deleted or anonymized. Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Use of cookies

The term “cookies” is used for functions that store information on users’ devices and read it from them. We use cookies in accordance with statutory requirements and obtain users’ prior consent where required.

Storage period

Temporary cookies (session cookies)

Are deleted at the latest after the user has left the online offering and closed their device (e.g. browser).

Permanent cookies

Remain stored even after the device has been closed. The storage period can be up to two years.

Users can withdraw the consents they have given at any time and may also declare an objection by using the privacy settings of their browser.

Types of data processed
Meta, communication and process data.
Data subjects
Users.
Legal bases
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR); consent (Art. 6 para. 1 sentence 1 lit. a GDPR).

Consent management

We use a consent management solution. The duration of storage of the consent is up to two years. A pseudonymous user identifier is created and stored together with the time of consent and further technical information. Legal basis: consent (Art. 6 para. 1 sentence 1 lit. a GDPR).

Contact and request management

When contacting us (e.g. via contact form, e‑mail, telephone or social media), the information provided by the inquiring persons is processed insofar as this is necessary to respond to contact requests and any requested measures.

Types of data processed
Contact data; content data; meta, communication and process data.
Data subjects
Communication partners.
Purposes
Communication; organizational and administrative procedures; feedback; provision of the online offering.
Legal bases
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR); performance of a contract and pre‑contractual inquiries (Art. 6 para. 1 sentence 1 lit. b GDPR).

Presence on social networks

We maintain online presences within social networks and process user data in order to communicate with users active there or to provide information.

We would like to point out that user data may be processed outside the territory of the European Union. User data is generally processed for market research and advertising purposes within social networks.

Services used

Instagram

Social network for photos and videos.

  • Service provider: Meta Platforms Ireland Limited, Dublin 4, Ireland
  • Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
  • Third‑country transfer: Data Privacy Framework (DPF)
  • Privacy policy →

Facebook pages

The controller is jointly responsible with Meta Platforms Ireland Limited for the collection and transmission of data of visitors to our Facebook page. Users may address requests for access or deletion directly to Facebook.

  • Service provider: Meta Platforms Ireland Limited, Dublin 4, Ireland
  • Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
  • Third‑country transfer: Data Privacy Framework (DPF), standard contractual clauses
  • Privacy policy →

X (formerly Twitter)

  • Service provider: X Internet Unlimited Company, Dublin 2, Ireland
  • Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
  • Privacy policy →

Plug‑ins and embedded functions and content

We integrate functional and content elements into our online offering that are obtained from the servers of their respective providers (third‑party providers). Integration always requires that the third‑party providers process the users’ IP address.

Types of data processed
Usage data; meta, communication and process data.
Purposes
Provision of the online offering; reach measurement; tracking; audience building; marketing.
Cookie storage period
Up to 2 years (unless otherwise stated).
Legal bases
Consent (Art. 6 para. 1 sentence 1 lit. a GDPR); legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Services used

Google Fonts (from the Google server)

Retrieval of fonts for technically secure, low‑maintenance and efficient use. The provider is informed of the user’s IP address so that the fonts can be provided in the browser. According to its own statements, Google does not use the information collected to create profiles of end users or to display targeted advertisements.

  • Service provider: Google Ireland Limited, Dublin 4, Ireland
  • Legal basis: legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
  • Third‑country transfer: Data Privacy Framework (DPF)
  • Privacy policy →

YouTube videos

  • Service provider: Google Ireland Limited, Dublin 4, Ireland
  • Legal basis: consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
  • Third‑country transfer: Data Privacy Framework (DPF)
  • Opt‑out plugin →  |  Ad settings →

Amendments and updates

Please check the content of our privacy policy on a regular basis. We will adapt the privacy policy as soon as changes in our data processing activities make this necessary. We will inform you when such changes require your cooperation (e.g. consent) or another individual notification.

Where we provide addresses and contact information of companies and organizations in this privacy policy, please note that such addresses may change over time and check the information before contacting them.

Definitions

Insofar as terms are defined by law, their statutory definitions apply. The following explanations are primarily for understanding.

Content data
Information generated in the course of creating, editing and publishing content of any kind (texts, images, videos, audio files as well as metadata such as tags, descriptions, author information).
Contact data
Essential information that enables communication with persons or organizations (telephone numbers, addresses, e‑mail addresses, social media handles).
Meta, communication and process data
Information on the way in which data is processed, transmitted and managed. Includes metadata (file size, creation date, author), communication data (e‑mail traffic, call logs, chat histories) and process data (workflow documentation, logs, audit trails).
Usage data
Information that records how users interact with digital products, services or platforms (page views, time spent, click paths, device information, IP addresses, location data).
Personal data
Any information relating to an identified or identifiable natural person (directly or indirectly, e.g. by reference to a name, identification number, location data, online identifier or one or more specific characteristics).
Log data
Information on events or activities that have been logged in a system or network (timestamps, IP addresses, user actions, error messages).
Reach measurement (web analytics)
Evaluation of visitor flows to an online offering. Enables analysis of when users visit websites and which content they are interested in.
Tracking
Monitoring user behavior across multiple online offerings. Behavioral and interest information is stored in cookies or on servers (profiling) and may be used for targeted advertising, for example.
Controller
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Processing
Any operation performed on personal data, from collection and storage to transmission and deletion.
Audience building (custom audiences)
Definition of target groups for advertising purposes based on interests or usage behavior. “Lookalike audiences” are similar target groups formed on the basis of existing profiles.
Imprint


Quelle: https://www.e-recht24.de
Quelle: https://datenschutz-generator.de