We, Eventim Marketing & Sponsoring GmbH (hereinafter “EMS”), as operator of this website are also its controller within the meaning of EU Regulation No. 2016/679, the General Data Protection Regulation (GDPR) and its service provider within the meaning of the German Telemedia Act (Telemediengesetz TMG). In the following, we would like to inform you on the collection of personal data when using this website. Personal data are individual details about your personal or factual circumstances.
In the following provisions, we would like to inform you about the type, scope and purposes of the collection and use of your personal data when using this website.
In accordance with the following provisions, we only process your personal data if you have given your consent or if the processing is necessary for the provision of the requested services and is justified by other provisions of the GDPR.
1.Data processing for the informational use of our website
Every time you access the contents of our website, your browser automatically transfers connection data to our web server. These connection data include
•the IP address of the respective users,
•the visited page/name of the accessed file,
•date and time of access,
•the amount of data transferred,
•a message if the access was successful,
•browser type, browser version, operating system and its interface,
•the referring page if the access took place via external link,
•host name of the accessing computer.
These connection data are neither used to draw any conclusions about the user’s identity nor combined with data from other data sources; they serve only the purpose of making this website available to you. They are erased after the contents have been transferred. Art. 6 Para. 1 lit. f GDPR constitutes the legal basis for this type of data processing.
In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk in the browser you use and through which certain information flows to the place that sets the cookie (in this case, to us). Cookies cannot run programs or transmit viruses to your computer.
This website uses the following types of cookies, the scope and function of which are explained below: transient cookies and persistent cookies.
Transient cookies are automatically erased when you close your browser. This includes, in particular, the session cookies. These store a so-called session ID, with which different requests by your browser can be assigned to the common session. This allows your computer to be recognised when you return to our website. The session cookies are erased when you close your browser.
Persistent cookies are automatically erased after a specified period, which, depending on the cookie, may vary. You can erase cookies at any time in the security settings of your browser.
You can configure your browser settings according to your wishes and refuse the acceptance of third-party cookies or all cookies, for example. Please note that you may then not be able to use all functions of this website.
The IP address transferred by your browser within the scope of Google Analytics is not merged with other Google data. EMS has also added the code “anonymizeIP” to Google Analytics on this website. This ensures that the user’s IP address is masked so that all data are collected anonymously. The full IP address will be transferred to a Google server in the US and shortened there only in exceptional cases.
You can also prevent Google from recording the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available at the following link:
http://tools.google.com/dlpage/gaoptout?hl=de. As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link Execute objection (Opt-Out). An opt-out cookie is set to prevent the user’s data from being recorded in future when using this website. The opt-out cookie is only valid in this browser and only for this website; it is stored on the user’s device. If you erase the cookies in this browser, the opt-out cookie must be set again.
EMS also uses Google Analytics to evaluate data from double-click cookies and AdWords for statistical purposes. If this does not suit you, this function can be deactivated via the Ads Preferences Manager (https://www.google.de/settings/ads/).
EMS uses Google Analytics, including the functions of Universal Analytics. Universal Analytics enables the activities on our pages from various devices (e.g. access via laptop and later via a tablet) to be analysed. This is made possible by pseudonymously assigning a user ID to a user. Such assignment occurs, for example, when you register for a customer account or log into your customer account. However, no personal data are forwarded to Google. Even if Universal Analytics adds additional features to Google Analytics, this does not mean that it restricts data protection measures, such as IP masking or the browser add-on.
4.Integration of Vimeo
4.1. We integrate videos into the website which are stored on the platform https://vimeo.com/ and can be played directly from our website. The Vimeo platform is offered by Vimeo, LLC, headquartered at 555 West 18th Street, New York, New York 10011, USA.
4.2. By visiting the page on which the video is embedded, Vimeo will be informed that you have visited the corresponding subpage on our website. The data mentioned under Paragraph 1 of this declaration will be transferred. This occurs independently of whether Vimeo provides a user account through which you are logged in or whether no user account exists. Once you are logged in to Vimeo, your information will be directly associated with your account. If you do not wish to be associated with your profile on Vimeo, you must log out before activating the button and erase the corresponding Vimeo cookies.
If you send us an e-mail, we process the personal data transferred by the e-mail to process your request and to contact you.
Art. 6 Para. 1 lit. f GDPR constitutes the legal basis for processing the data transferred in the course of sending an e-mail, whereby our legitimate interest in processing lies in dealing with your request.
If the e-mail contact aims at the conclusion of a contract, then Art. 6 Para. 1 lit. b GDPR constitutes an additional legal basis for the processing.
We erase the data processed in connection with e-mail contact as soon as the purpose of its collection has ceased, i.e. when the respective conversation has ended. The conversation is ended when it can be inferred from the circumstances that the facts in question have finally been clarified. Beyond that, storage may take place if we are obliged to do so according to compelling legal regulations or if the storage is necessary to assert, exercise or defend any legal claims.
6.No obligation to provide certain personal data
The processing of personal data by us is – in part – necessary for enabling you to visit our website and to use it free of error.
You are not obliged to transfer any further personal data to us – e.g. by agreeing to the setting of a cookie. However, not transferring any personal data may result in the website being displayed incorrectly or incompletely.
We are committed to the security of your data. We have taken appropriate physical, electronic and organisational measures to protect and secure your personal data from unauthorised or unlawful processing by third parties in order to prevent unauthorised access, use, amendment, destruction or disclosure. Nevertheless, EMS cannot guarantee that your information and/or data are safeguarded against any illegal actions of third parties.
8.Transfer of personal data to third parties
8.1.Data transfer to recipients within the EU
In some cases, EMS uses external service providers to provide the website. These are carefully selected by EMS and are committed to the instructions given by EMS.
It may happen that your personal data are disclosed to service providers for e.g. IT services, customer service, banking services or communication services.
In such a case, EMS shall ensure by contractual arrangements that the third party
•does not use your personal data for purposes other than those specified by us, and in accordance with the purposes set out in this data protection declaration, and
•has implemented appropriate security measures to protect your personal data against unauthorised or unlawful processing and against accidental loss, destruction or damage.
8.2.Data transfer to a third country
It is possible that employees of a service provider in a country outside the European Union may become aware of your personal data as a result of cooperation based on the division of labour, e.g. in the area of IT service providers, in particular with regard to services in the area of maintenance, repair and security of IT systems.
If there is no level of data protection in this country which is comparable to that of the European Union, and accordingly no so-called adequacy decision of the European Commission with regard to this country exists, we will protect your interests in data protection by concluding so-called EU standard data protection clauses issued by the European Commission and agreed with the recipient or in other appropriate ways. You can request a copy of the EU standard data protection clauses and any other guarantees from us at the contact details provided in Section 9.4.
It is not intended to transfer any of your personal data to other countries outside the European Union, but – if this is legal – it also cannot be excluded.
9.Use of font libraries
To be able to present the contents of our internet offer uniformly across all browsers, we use the font library of Typography.com (offered by Hoefler & Co., 611 Broadway, Room 725, New York, NY 10012-2608, USA). When you visit the website, a connection to the library operator is automatically established and the number of page views is statistically recorded for 30 days. Personal data are neither transferred nor stored. Further information can be found in Hoefler’s data protection declaration: https://www.typography.com/home/privacy.php.
The content provided is stored in your browser’s cache and can be erased via your personal cache settings.
10.Your rights and contact
If the legal requirements according to Arts. 15 – 22 GDPR are met, you have the right of access, rectification, erasure, restriction of processing as well as the right to data portability. Upon request, we will be pleased to inform you if and which personal data we have stored on you. Furthermore, we will rectify incorrect data or erase them if the storage is not permissible or no longer necessary within the meaning of the GDPR.
If we use Art. 6 Para. 1 lit. f GDPR as the basis for processing your personal data, you may object to the processing. If you wish to make such an objection, we ask you to provide us with a reason why we should not process your personal data. We will weigh your reasons against our interest in continuing data processing and subsequently either stop or adapt the data processing or point out to you our compelling reasons worthy of protection on the basis of which we shall continue the processing. Please note that we also process your data if this is necessary for asserting, exercising or defending any legal claims.
10.2.Competent supervisory authority
If you are of the opinion that the processing of the personal data relating to you is in breach of the GDPR, you have the right to lodge a complaint to the supervisory authority. The address of the supervisory authority responsible for us is: Der Hamburgische Beauftragte für Datenschutz (Hamburg Commissioner for Data Protection), Prof. Dr. Johannes Caspar, Kurt-Schumacher-Allee 4, D-20097 Hamburg, Germany.
In the meaning of the GDPR, controller and service provider in the sense of the German Telemedia Act is
Eventim Marketing und Sponsoring GmbH
Hohe Bleichen 11, D-20345 Hamburg, Germany
+49 40 380 788 3090
10.4.Data Protection Officer
You can contact our Data Protection Officer at:
Eventim Marketing und Sponsoring GmbH
Data Protection Officer
Hohe Bleichen 11, D-20345 Hamburg, Germany
11.Subject to alterations
We reserve the right to amend, modify and adapt the contents of this data protection declaration at any time. The updated Data Protection Declaration is valid from the time at which it is published on our website.
As at September 2018