Data protection

Introduction

With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for what purposes and to what extent. The data protection declaration applies to all processing of personal data carried out by us, both within the framework of this website, the "Songs of Cultures" app and within external online presences, such as our social media profiles (hereinafter collectively referred to as "Online Offer").

The terms used are not gender-specific.

Status: May 12, 2023

Responsible

A.MUSE - Interactive Design Studio
Autumn Marczinzik GbR
Design House Halle
Ersnt-King-Str. 1
06108 Halle (Saale)

E-mail: hello@amuse.vision

Represented by the Managing Partners: Binh Minh Herbst Christin Marczinzik

Imprint: songsofcultures.com/imprint

Overview of the processing

The following overview summarises the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

Inventory data (e.g. names, addresses).
Content data (e.g. text input).
Contact details (e.g. e-mail, telephone numbers).
Meta/communication data (e.g. device information, IP addresses).
Usage data (e.g. websites visited, access times).

Categories of persons concerned

Communication partner.
Customers.
Users (e.g. website visitors, users of online services).

Purposes of the processing

Provision of our online offer and user-friendliness.
Visit action evaluation.
Reach measurement (e.g. access statistics, recognition of returning visitors).
Safety measures.
Contractual benefits and service.
Managing and responding to enquiries (contact forms).

Relevant legal bases

In the following, we inform you about the legal basis of the General Data Protection Regulation (GDPR) on the basis of which we process personal data. Please note that, in addition to the provisions of the GDPR, the national data protection regulations in your or our country of residence and domicile may apply. Should more specific legal bases be relevant in individual cases, we will inform you of these in the data protection declaration.

Consent (Art. 6 para. 1 sent. 1 lit. a DSGVO) - The data subject has given his/her consent to the processing of personal data relating to him/her for a specific purpose or purposes.
Contract performance and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO) - Processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the data subject's request.
Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO) - Processing is necessary to protect the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

National Privacy policy regulations in Germany: In addition to the data protection regulations of the General Data Protection Regulation, national regulations on data protection apply in Germany. These include, in particular, the Act on Protection against Misuse of Personal Data in Data Processing (Bundesdatenschutzgesetz - BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, the processing for other purposes and the transmission and automated decision-making in individual cases, including profiling. Furthermore, it regulates data processing for purposes of the employment relationship (Section 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships as well as the consent of employees. Furthermore, data protection laws of the individual federal states may apply.

Special notes for the "Songs of Cultures" app

When you use our app, we process your data to the extent necessary to provide you with the app and its functionalities, to monitor its security and to further develop it. We may contact you in compliance with the legal requirements if the communication is necessary for the purposes of administration or use of the app. Otherwise, we refer to the data protection information in this privacy policy with regard to the processing of your data.

App permissions

In order for you to be able to use all the functions and services of the app, the app must be able to access some of the functions and data of your device. To do this, it is technically necessary for you to grant the app certain access rights. If you do not want to grant certain access rights, you will not be able to use some functionalities and services of the app. The legal basis for the processing of your data is Article 6(1)(b) DSGVO. In the following, we inform you about which permissions the app requires:

Access to the device camera: Required for augmented reality.
Access the device memory: To save the photos you have taken on your device.

Download the app for Android and iOS in the Appstore

The app can be downloaded via the Apple Appstore and the Google Play Store. In this context, the privacy policies of Apple: https://www.apple.com/de/legal/privacy/ and Google: https://policies.google.com/privacy apply in addition to our privacy policy.
Your data used when using the app will not be forwarded and stored outside the app.

Types of data processed: inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact data (e.g. e-mail, telephone numbers), contract data (e.g. subject matter of contract, term, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Affected persons: Customers.
Purposes of processing: Contractual performance and service.
Legal basis: Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

Provision of the online offer and web hosting

In order to provide our online offer securely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online offer can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services as well as security services and technical maintenance services.

The data processed as part of the provision of the hosting offer may include all information relating to the users of our online offer that is generated as part of the use and communication. This regularly includes the IP address, which is necessary to be able to deliver the contents of online offers to browsers, and all entries made within our online offer or from websites.

Types of data processed: Content data (e.g. text input, photographs, videos), usage data (e.g. web pages visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Data subjects: Users (e.g. website visitors, users of online services).
Purposes of processing: Contractual performance and service.
Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

Services used and service providers:

1&1 IONOS: Hosting platform for e-commerce / websites; Service provider: 1&1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany; Website: https://www.ionos.de; Privacy policy: https: //www.ionos.de/terms-gtc/terms-privacy.

Presence in social networks (social media)

We maintain online presences within social networks and process your data in this context in order to communicate with you there, if you are active there, or to offer information about us.

We would like to point out that data may be processed outside the European Union. This may result in risks for you because, for example, the enforcement of your rights could be made more difficult.

For a detailed presentation of the respective forms of processing and the options to object (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks.

In the case of information requests and the assertion of data subject rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to your data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

Services used and service providers:

Instagram: Social network; service provider: Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA, parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA; website: https://www.instagram.com; privacy policy: https: //instagram.com/about/legal/privacy.
Facebook: Social network; service provider: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA; Website: https://www.facebook.com; Privacy policy: https: //www.facebook.com/about/privacy; Opt-out: Adverts settings: https: //www.facebook.com/settings?tab=ads.
Twitter: Social network; service provider: Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA; Privacy policy: https: //twitter.com/de/privacy,(settings) https://twitter.com/personalization.

Plugins and embedded functions and content

We integrate functional and content elements into our online offer that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These can be, for example, graphics, videos or social media buttons and posts (hereinafter uniformly referred to as "content").

The integration always requires that the third-party providers of this content process your IP address, as without the IP address they could not send the content to your browser. The IP address is therefore required for the display of this content or function. We endeavour to only use content whose respective providers only use the IP address to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to analyse information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on your device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our website, as well as being linked to such information from other sources.

Notes on legal basis: If we ask for your consent to use the third-party providers, the legal basis for processing data is consent. Otherwise, your data is processed on the basis of our legitimate interests (i.e. interest in efficient, economic and recipient-friendly services). In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.

Types of data processed: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text entries, photographs, videos).
Data subjects: Users (e.g. website visitors, users of online services), communication partners.
Purposes of processing: Provision of our online offer and user-friendliness, contractual performance and service, security measures, administration and response to enquiries, contact requests and communication, direct marketing (e.g. by e-mail or post), tracking (e.g. interest/behavioural profiling, use of cookies), interest-based and behavioural marketing, profiling (creation of user profiles).
Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO), consent (Art. 6 para. 1 p. 1 lit. a DSGVO), contract performance and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO).

Services used and service providers:

Google Fonts: We integrate the fonts ("Google Fonts") of the provider Google, whereby your data is used solely for the purpose of displaying the fonts in your browser. The integration is based on our legitimate interests in a technically secure, maintenance-free and efficient use of fonts, their uniform presentation and taking into account possible licensing restrictions for their integration. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; website: https://fonts.google.com/; privacy policy: https: //policies.google.com/privacy.
YouTube videos: Video content; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://www.youtube.com; Privacy policy: https: //policies.google.com/privacy; Opt-out: Opt-Out-Plugin: https://tools.google.com/dlpage/gaoptout?hl=de, Settings for the display of advertisements: https://adssettings.google.com/authenticated.
Vimeo videos: Video content; Service provider: Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA; Website: https: //vimeo.com; Privacy Policy: https: //vimeo.com/privacy; Opt-Out: We point out that Vimeo may use Google Analytics and refer to the data protection declaration (https://policies.google.com/privacy) as well as the opt-out options for Google Analytics(https://tools.google.com/dlpage/gaoptout?hl=de) or Google's settings for data use for marketing purposes(https://adssettings.google.com/).
Cookies: To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool "Real Cookie Banner". Details on how "Real Cookie Banner" works can be found at https://devowl.io/de/rcb/datenverarbeitung .
The legal bases for the processing of personal data in this context are Art. 6 para. 1 lit. c DS-GVO and Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the management of the cookies and similar technologies used and the related consents. The provision of the personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

Amendment and update of the privacy policy

We ask you to regularly inform yourself about the content of our privacy policy. We adapt the data protection declaration as soon as changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

Where we provide addresses and contact details of companies and organisations in this privacy statement, please note that the addresses may change over time and please check the details before contacting us.

Made with by

Signatories of

Our partners

Funded by