1. Subject of this Data Protection Statement
In the following, we would like to inform you in detail about which data are collected from us and how they are processed or used by us in the following as well as which accompanying protective measures we have also taken in technical and organizational terms.
2. Name and Address of the controller
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
ACCENTA Music & P.O.S. GmbH
Tel: +49 (0) 40 – 800 400 8-00
3. Name and Address of the Data Protection Officer
The Data Protection Officer of the controller is:
Dr. Stefanie Kühn
Trittauer Str. 2a
4. Scope and purpose of the processing of personal data
a) Visiting the website
When you visit this website, www.accenta-music.com/en, the internet browser used by the visitor automatically sends data to the website server, where they are stored in a time limited (seven days) protocol file (logfile). The following data are stored until automatic deletion occurs without further input by the visitor:
The processing expressly does not attempt to gain knowledge about the website visitor’s identity.
b) Contact by e-mail or phone
When you contact us via email or telephone, the data you have provided to us (your email address and, where applicable, your name and telephone number) will be processed by us so we can process your contact request, in accordance with Article 6, para. 1 (b) of the GDPR.
The data will be processed for the purpose of making contact with us in accordance with Art. 6, para. 1, sentence 1 (a) of the GDPR on the basis of your voluntary consent.
We will delete the data that we receive in this way when their storage is no longer required, because your request has been settled for example, or restrict their processing if there is a legal period of storage.
c) Contact by contact form
Our website contains a contact form which can be used to establish contact electronically. If a user chooses this option, the data entered in the input screen will be sent to us and stored.
This data includes the following:
When the message is sent, the following data are also stored:
Alternatively, you can contact us via the e-mail address provided (also see 4.b). In this case, the user’s personal data transmitted with the e-mail will be stored.
Data will not be passed on to third parties in this regard. These data will be used exclusively for processing the conversation.
If the consent of the user has been provided, the legal basis for the processing of the data is Article 6, para. 1 (a) of the GDPR.
The legal basis for the processing of the data transmitted in the course of sending an e-mail is Article 6, para. 1 (f) of the GDPR. If the e-mail contact is aimed at forming a contract, an additional legal basis for the processing is Article 6, para. 1 (b) of the GDPR.
The purpose of processing the personal data from the input screen is solely to enable us to process the establishment of contact. In the case of contact via e-mail, this is also the basis of the required legitimate interest in the processing of the data.
The other personal data processed during the dispatching process serves to prevent misuse of the contact form and to ensure the security of our IT systems.
The data will be deleted as soon as they are no longer necessary for the purpose of their collection. For the personal data from the input screen of the contact form and the personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation has ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.
The personal data also collected during the dispatching process are deleted no later than after a period of seven days.
5. Disclosure of Data
Your personal data are not disclosed to third parties for any purposes other than those listed below.
We only disclose your personal data to third parties, if:
Information, which arises in each case in connection with the specific terminal device that is being used is stored in the cookie. This does not, however, mean that we automatically receive information on your identity.
We also use temporary cookies, which are stored on your end device for a specific determined period of time to optimise the user-friendliness. If you revisit our website to use our services, it will automatically be recognised that you have already visited us, what entries you have made and what settings you have selected, so you are not required to enter these again.
The data processed by means of cookies are required for the specified purposes for the protection of our legitimate interests as well as of those of third parties, in accordance with Art. 6, para. 1, sentence 1 (f) of the GDPR.
Most browsers automatically accept cookies. You can, however, configure your browser in such a way that cookies are not stored on your computer or that a notice will appear each time before a new cookie is set. The complete deactivation of cookies can, however, result in a reduced functionality of our website, and you may not be able to use all the features of our website.
The following cookies are used:
7. Data protection provisions about the application and use of Google Analytics (with anonymization function)
On this website, the controller has integrated the component of Google Analytics (with the anonymizer function). Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in order to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
For the web analytics through Google Analytics the controller uses the application “_gat. _anonymizeIp”. By means of this application the IP address of the Internet connection of the data subject is abridged by Google and anonymised when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to evaluate the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
Google Analytics places a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, Google is enabled to analyze the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by the controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject will automatically submit data through the Google Analytics component for the purpose of online advertising and the settlement of commissions to Google. During the course of this technical procedure, the enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which the access was made, and the frequency of visits of our website by the data subject. With each visit to our Internet site, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google Analytics may be deleted at any time via a web browser or other software programs.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/.
8. MY FONTS COUNTER
To display the fonts on our website, we use web fonts from “myfonts.com”, a fonts type service of MyFonts lnc. (“myfonts.com”), 600 Unicorn Park Drive, Woburn, MA 01801, USA. MyFonts make licensed fonts available that can be integrated on internet sites. A so-called tracking pixel/web beacon from MyFonts remains on our website for invoicing and licence control. This allows, for example, the IP address or technical data of the website user’s end device to be conveyed to MyFonts.
9. Your rights as a data subject
Insofar that your personal data are processed due to your visit to our website, you have the following rights as a “data subject” within the meaning of GDPR:
You can request information from us as to whether we are processing your personal data. There is no right to information if the providing the requested information would violate the duty of confidentiality pursuant to Article 57 , para. 1 StBerG, or the information needs to remain confidential for various reasons, in particular due to predominant justified interests of third parties. Deviating from this, an obligation to provide information can exist if, particularly in consideration of impending damages, your interests prevail over the interest in confidentiality. Moreover, the right to information is also excluded if the data are only stored because they may not be deleted due to legal or statutory retention periods or if they exclusively serve purposes of data security or data protection monitoring, if the provision of such information would require disproportionate expense and the processing for other purposes is excluded through suitable technical and organisational measures. Insofar that your right to information is not excluded and your personal data are processed by us, then you can obtain the following information from us:
b) Correction and completion
If you notice that we have incorrect personal data about you, then you can demand immediate correction of these incorrect data. In the event of incomplete personal data about you, you can demand to have these completed.
You have the right to deletion (“right to be forgotten”) as long as the processing is not required for exercising the right to free expression, right to information or to fulfil legal obligations or to carry out a task that is in the public interest and one of the following grounds applies:
There is no right to deletion if the deletion is not possible or only possible at disproportionate expense within the context of authorised non-automatic data processing due to the special type of processing or if you have insufficient interest in the deletion. In this case, instead of deletion, limited processing shall be implemented.
d) Limitation of processing
You can demand the limitation of processing if one of the following grounds apply:
The limitation of processing means that your personal data may only be processed with your permission or for the establishment, exercise or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of a significant public interest. We have the obligation to notify you before we lift a limitation.
e) Data transferability
You have the right to data transferability if the processing is based on your consent (Article 6, para. 1, sentence 1 (a) or Article 9, para 2 (a), GDPR, or on a contract to which you are a contractual party and the processing thereof is implemented using an automated procedure. In this case, the right to transferability contains the following rights, as long as these do not infringe on the rights and freedoms of another person: You can demand to receive the personal data relating to you, which you have provided to us, in a structured, standard and machine-readable format. You have the right to transmit such data to another responsible party without any obstacles from us. As long as this is technically feasible, you can demand that we convey your personal data directly to another data controller.
If the processing is based on Art. 6, Sec. 1, Para. 1e) of the GDPR (performance of a task in the public interest or in the exercising of public administration) or Art. 6, Sec. 1, Para. 1f) of the GDPR (legitimate interest of the data controller or of a third party), you have the right, for reasons associated with your situation, to object to the processing of your personal data at any time. This also applies to profiling based on Art. 6, Sec. 1, Para. 1 e) or f) of the GDPR. Once you have exercised your right to object, we will not process your personal data any longer, unless we are able to demonstrate compelling legitimate grounds for the processing that take your interests, rights and freedoms into account, or the processing serves to assert, exercise or defend legal claims.
You may raise an objection at any time to the processing of your personal data for direct marketing purposes. This also applies to profiling that is associated with such direct marketing. Once this right to object is exercised, we will no longer use the personal data concerned for direct marketing purposes.
10. Right to revoke the declaration of consent
You have the right to revoke your consent at any time with effect for the future. The revocation of the consent can be communicated by phone, by e-mail or to our postal address informal. The revocation does not affect the lawfulness of the data processing which has taken place on the basis of the consent until receipt of the revocation. Upon receipt of the revocation, the data processing, which was based solely on your consent, is set.
11. Right to lodge a complaint with a supervisory authority
In the event of breaches of data protection law, the person concerned has the right to lodge a complaint with the competent supervisory authority. The responsible supervisory authority for data protection issues is the data protection officer of the federal state in which our company is based. A list of Data Protection Officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html .
12. Data securtiy
We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.