DE
DE

Privacy policy

Our company attaches great importance to the protection of personal data and respects your wish for privacy. In the following, we inform you about the collection of personal data when using our websites. If you have any further questions regarding the handling of your personal data, please do not hesitate to contact our data protection officer.

Name and address of the controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

Medienboard Berlin-Brandenburg GmbH
August-Bebel-Strasse 28
14482 Potsdam
Germany

Tel: +49 (0)331 74387 0
E-mail: info@medienboard.de

Websites: www.medienboard.de www.bbfc.de

Our data protection officer

Our data protection officer will be happy to answer any questions you may have:

Personal / Confidential
– The Data Protection Officer –

Medienboard Berlin-Brandenburg GmbH
August-Bebel-Strasse 28
14482 Potsdam
Germany

dsb@medienboard.de

Definitions

The privacy policy of Medienboard Berlin-Brandenburg GmbH is based on the terms defined by the European Directives and Regulations Maker when issuing the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

We use the following terms, among others, in this privacy policy:

a)    Personal data

Personal data means any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

b)     Data subject

Data subject means any identified or identifiable natural person whose personal data are processed by the controller.

c)      Processing

Processing means any operation or set of operations which is performed on Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

d)     Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

e)     Profiling

Profiling is any form of automated processing of personal data which consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location.

f)     Pseudonymisation

Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

g)     Controller or party responsible for processing

The controller or person responsible for processing is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are governed by Union or Member State law, the controller or the specific criteria for its designation may be provided for by Union or Member State law.

h)     Processor

Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

i)     Recipient

Recipient means a natural or legal person, public authority, agency or other body to whom personal data is disclosed, whether or not a third party. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law shall not be considered as recipients.

j)     Third party

Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.

k)     Consent

Consent shall mean any freely given specific and informed indication of the data subject's wishes in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.

Your rights

We will be happy to provide you with information on whether personal data relating to you is being processed; if this is the case, you have a right to information on this personal data and to the information listed in detail in Art. 15 GDPR. In addition, you have the right to rectification (Art. 16 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to erasure (Art. 17 GDPR) and the right to data portability (Art. 20 GDPR) under the respective legal conditions.

You have the right to object to the processing under the legal conditions (Art. 21 GDPR).

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6 para. 1 sentence 1 lit. e or f; this also applies to profiling based on these provisions. We no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or defending legal claims.

If personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is associated with such direct marketing.

To exercise your above rights, please contact Medienboard Berlin-Brandenburg GmbH, August-Bebel-Straße 28, 14482 Potsdam, Germany, by e-mail at dsb@medienboard.de or by postal mail. The exercising of your aforementioned rights is free of charge to you.

Without prejudice to these rights and the possibility of seeking any other administrative or judicial remedy, you may at any time exercise your right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged infringement, if you believe that the processing of personal data relating to you infringes data protection rules (Article 77 of the GDPR).

The supervisory authority responsible for us is:

The State Commissioner for Data Protection and for the Right to Inspect Files (Brandenburg)
Stahnsdorfer Damm 77
14532 Kleinmachnow
Germany

Legal basis of our data processing

The processing of personal data can be based on various legal grounds. If we need your data to fulfil a contract with you or to respond to enquiries from you regarding a contract, the legal basis for this data processing is Art. 6 para. 1 sentence 1 lit. b GDPR. If we obtain your consent for certain data processing, the legal basis is Art. 6 para. 1. sentence 1 lit. a GDPR. We carry out some data processing on the basis of our legitimate interest, always balancing your interests worthy of protection against our legitimate interests. The legal basis for this is Art. 6 para. 1 lit. f GDPR. Insofar as processing is necessary for the fulfilment of a legal obligation to which we are subject, the legal basis is Art. 6 para. 1 sentence 1 lit. c GDPR.

Below we explain how we process personal data via our websites.

Contact

When you contact us by e-mail or via a contact form, the data you provide (your e-mail address and your first and last name) will be stored by us in order to answer your questions and process your requests. The legal basis in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR.

Insofar as we request information via our contact form that is not required for contacting us, we have always marked this as optional. We use this information to clarify your request and to improve the processing of your request. Any communication of this information is expressly on a voluntary basis and with your consent, Art. 6 para. 1 sentence 1 lit. a GDPR. Insofar as this involves information on communication channels (e.g. e-mail address, telephone number), you also consent to us contacting you via this communication channel, if necessary, in order to respond to your request. Of course, you can withdraw this consent at any time for the future.

Your data, which we have received in the course of establishing contact, will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, your request has been fully processed and no further communication with you is necessary or desired by you.

As the controller, our company has implemented numerous technical and organisational measures to ensure the most complete protection of personal data processed through this website. Nevertheless, internet-based data transmissions can always have security gaps. Absolute protection cannot be guaranteed; in any case, sending unencrypted e-mails is not secure. We therefore ask you not to send sensitive data by unencrypted e-mail, but to use either encrypted communication channels (e.g. our contact form) or the postal service.

Data processing during website access

During the mere informational use of the website, i.e., if you do not otherwise transmit information to us (e.g. via a contact form), we collect the following technical information (log file data):

  • operating system of the end device with which you visit our website
  • browser (type, version & language settings)
  • the amount of data retrieved
  • the current IP address of the end device with which you visit our website
  • Date and time of access
  • the URL of the previously visited website (referrer)
  • the URL of the (sub)page you are accessing on the website
  • the Internet service provider of the accessing system
  • other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

The collection of this data is technically necessary to display our website to you and to ensure stability and security. We regularly do not know who is behind an IP address. We do not merge the data listed above with other data.

The legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. Since the collection of data for the provision of the website and the storage in log files are absolutely necessary for the operation of the website and for protection against misuse, our legitimate interest in data processing prevails at this point.

Data security

We have taken extensive technical and operational precautions to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security procedures are regularly reviewed and adapted to technological progress.

Data transmission

As a matter of principle, your personal data will not be transferred to third parties unless we are legally obliged to do so, or the transfer of data is necessary for the performance of the contractual relationship, or you have previously given your express consent to the transfer of your data.

External service providers and partner companies, such as IT service providers, only receive your data insofar as this is necessary to provide our services to you. In these cases, however, the scope of the transmitted data is limited to the necessary minimum. Insofar as our service providers process your personal data on our behalf, we ensure within the framework of commissioned processing in accordance with Art. 28 GDPR that they comply with the provisions of the data protection laws in the same manner. Please also take note of the data protection information of the respective providers. The respective service provider is responsible for the content of third-party services, although we check the services for compliance with the legal requirements within the scope of what is reasonable.

We make a point of processing your data within the EU / EEA. However, we may use service providers who process data outside the EU / EEA. In these cases, we will ensure that an adequate level of data protection comparable to the standards within the EU is established at the recipient before transferring your personal data. This can be achieved, for example, through EU standard contracts or Binding Corporate Rules or special agreements to whose regulations the company can submit.

Applications

You can apply to our company electronically via e-mail. Please note that unencrypted e-mails are not transmitted with access protection.

Your information will be used for processing your application and deciding on the establishment of an employment relationship. The legal basis is Section 26 para. 1 BDSG (German Federal Data Protection Act) in conjunction with Section 26 para. 8 sentence 2 BDSG. Furthermore, your personal data may be processed insofar as this should be necessary for the defence of asserted legal claims against us arising from the application process. The legal basis for this is Art. 6 para. 1 sentence 1 lit. f GDPR. The stated purposes also constitute the legitimate interest in the processing.

Insofar as an employment relationship arises between you and us, we may further process the personal data already received from you for the purposes of the employment relationship in accordance with Section 26 para. 1 BDSG if this is necessary for the performance or termination of the employment relationship or for the exercise or fulfilment of the rights and obligations of the employee representation resulting from a law or a collective bargaining agreement, a works agreement or a service agreement (collective agreement).

Your application data will not be processed beyond the described use.

Your personal data will be deleted after completion of the application process after 6 months at the latest, unless there are other legitimate interests on our part that prevent deletion or you have given us permission to store it for longer. Other legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz – AGG).

Sweepstakes

When you participate in sweepstakes, we collect data that is necessary to carry out the sweepstakes. This is usually an individual sweepstakes entry (e.g. a comment or a photo), as well as name and contact details. We may pass on your details to our sweepstakes partners, e.g. in order to send you the prize. Data processing and data transfer may vary depending on the sweepstakes and is therefore specifically described in the respective conditions of participation. Participation in the sweepstakes and the associated data collection is, of course, voluntary. The legal basis for data processing is your voluntary consent, which can be withdrwan at any time, in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. Your data will be deleted after the end of the sweepstakes.

What are cookies and which ones do we use?

Cookies are data that are stored on your computer by a website you visit and enable your browser to be recognised again. Cookies transmit information to the entity that sets the cookie. Cookies can store various information, such as your language setting, the duration of your visit to our website or the entries you have made there. This avoids, for example, that you have to re-enter required form data every time you use the site. The information stored in cookies can also be used to recognise preferences and to target content according to areas of interest.

There are different types of cookies: Session cookies are sets of data that are only temporarily held in the working memory and deleted when you close your browser. Permanent or persistent cookies are automatically deleted after a predefined period of time, which may differ depending on the cookie. With this type of cookie, the information can also be stored in text files on your computer. However, you can also delete these cookies at any time via your browser settings.

First-party cookies are set by the website you are currently visiting. Only this website is allowed to read information from these cookies. Third-party cookies are set by organisations that do not operate the website you are visiting. These cookies are used by marketing companies, for example.

The legal basis for possible processing of personal data by means of cookies and their storage period may vary. Should we set cookies, the following applies: If you have given us your consent, the legal basis is Art. 6 para. 1 sentence 1 lit. a GDPR. Insofar as the data processing is based on our overriding legitimate interests, the legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. The stated purpose then corresponds to our legitimate interest.

We use cookies to ensure the proper operation of the website, to provide basic functionality, to measure reach and - with your consent - to tailor our services to preferred areas of interest.

The cookies used on this website are:

[Name]: [Persistent/Session] [First Party Provider/Third Party Provider] [Purpose] [Storage Duration]

Example: _ga: Persistent third-party cookie for the purpose of distinguishing users in the context of tracking by Google Analytics. The storage period is X months.

OR

Table:  Name   Provider   Purpose   will be deleted after

You can delete cookies already stored on your end device at any time. If you want to prevent cookies from being saved, you can do this via the settings in your internet browser. Alternatively, you can also install so-called ad blockers. Please note that individual functions of the visited website may not work if you have deactivated the use of cookies.

When accessing our website, all users of our website are also informed by an information banner about our use of cookies and referred to this privacy policy. In doing so, you as a user will also be asked for your consent to the use of certain cookies, in particular those relevant for the personalisation of services and for marketing measures. Once you have given your consent, you can withdraw it at any time with future effect by clicking on "Cookie settings" at the bottom of our website and unchecking the box next to the processing to which you have consented.

Newsletter and press mailing list

General information

You can subscribe to our newsletter on some of our websites, which we use to inform you about our company's activities, current information about our services, special offers, promotions, events and sweepstakes, as well as register for our press mailing list (for press releases). The content of the individual newsletter is briefly described within the scope of the registration. The legal basis for sending the respective newsletter is your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR in conjunction with. Section 7 para. 2 no. 3 UWG (German Unfair Competition Act) or the legal permission according to Section 7 para. 3 UWG.

We use the so-called double-opt-in procedure to register for our newsletters. This means that after your registration, we will send you an e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration, your information will be automatically deleted after 3 days.

The only mandatory information for sending the newsletter is your e-mail address. If we request further data, the provision of this further data is voluntary: This data will then only be used to address you personally. After your confirmation, we will store your e-mail address and any additional data provided for the purpose of sending you the newsletter and until revocation. We also store your current IP address at the time of registration, the time of registration and the confirmation for up to three years after registration (limitation period). The purpose of this procedure is to be able to prove your registration in case of doubt and, if necessary, to clarify any misuse of your personal data. The legal basis for logging the registration is our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR in proving that consent was previously given, see also Art. 7 para. 1 GDPR.

You can withdraw your consent to receive the newsletter and unsubscribe at any time. You can withdraw your consent by clicking on the link provided in every newsletter e-mail or by sending an e-mail to presse@medienboard.de.

Brevo newsletter distribution

We use the service provider Brevo, Köpenicker Straße 126, 10179 Berlin, Germany, to send the newsletter. A processing agreement has been concluded with Brevo in accordance with Art. 28 GDPR; data transmission only takes place within Germany.

Data for the purpose of receiving the newsletter, such as your email address, is stored on Sendinblue's servers for this purpose.

The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of Brevo after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

For more details, please refer to Brevo's privacy policy at https://www.brevo.com/de/legal/privacypolicy/.

Newsletter tracking

Brevo enables us to analyse our newsletter campaigns. We would therefore like to point out that we evaluate your user behaviour when sending the newsletter in order to determine whether and when the newsletter was opened.

For this analysis, the emails sent contain so-called web beacons or tracking pixels that are stored on our server and loaded when the newsletter is opened. For example, if you open an email sent with Brevo, a file contained in the email (known as a web beacon) connects to Brevo's servers to determine whether a newsletter message has been opened and which links, if any, have been clicked on.

In addition, end device-specific information such as the time of retrieval, IP address, browser type and the operating system used is recorded. For the analyses, we link the above-mentioned data and the web beacons with your e-mail address and an individual ID. OPTIONALLY: Links received in the newsletter also contain this ID and allow us to analyse your click behaviour.

[EITHER:] The data is processed pseudonymously, i.e., the IDs are not directly linked to your other personal data, a direct personal referability is precluded. The legal basis for this data processing is your consent, Art. 6 para. 1 lit. a GDPR.

The information is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

[OR:] With the data obtained in this way, we create a user profile in order to tailor the newsletter to your individual interests. In doing so, we record when you read our newsletters, which links you click on in them, and infer your personal interests from this. We link this data to actions you have taken on our website. The legal basis for this data processing is your consent, Art. 6 para. 1 sentence 1 lit. a GDPR.

[EITHER:] You can withdraw your consent to tracking at any time with effect for the future by clicking on the separate link provided in each email.

[OR:] You can withdraw your consent at any time with effect for the future. In this case, the withdrawal includes the entire newsletter, as a separate withdrawal of the tracking is unfortunately not technically possible. To do so, simply click the unsubscribe link provided in each email.

Moreover, such tracking is not possible if you have deactivated the display of images by default in your e-mail programme. In this case, the newsletter will not be displayed in full and you may not be able to use all the functions. If you display the images manually, the tracking mentioned above takes place.

The tracking information is stored for as long as you are subscribed to the newsletter. After unsubscribing, the data is anonymised and used for purely statistical purposes.

The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

YouTube

On our website, we use services from YouTube, LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, a subsidiary of Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA. For users who are habitually resident in the European Economic Area or Switzerland, Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland is the data controller for your data.

We use a two-click solution to protect your personal data. If you call up a page in which a YouTube video is embedded, a connection to the YouTube servers is only established when you click on the "Load content" button. In this case, YouTube will set cookies and use your visit data for its own purposes. If you are logged in to YouTube at this time, the information about the videos you have viewed will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website. Insofar as data is processed outside the European Economic Area / the EU, where there is no level of data protection corresponding to the European standard, Google states that it uses standard contractual clauses.

The legal basis is your voluntary consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, which you can withdraw at any time with effect for the future.

Further information on YouTube privacy is provided by Google at the following link https://www.google.de/intl/de/policies/privacy

Vimeo

We use services from Vimeo.com Inc., 555 West 18th Street, New York, New York 10011, USA, on our website.

We use a two-click solution to protect your personal data. If you call up a page in which a Vimeo video is embedded, a connection to the Vimeo servers is only established when you click on the "Load content" button. In this case, Vimeo will set cookies and use your visit data for its own purposes. If you are logged in to Vimeo at this time, the information about the videos you have viewed will be assigned to your member account with Vimeo. You can prevent this by logging out of your member account before visiting our website. Insofar as data is processed outside the European Economic Area / the EU, where there is no level of data protection corresponding to the European standard, Vimeo states that it uses standard contractual clauses.

The legal basis is your voluntary consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, which you can withdraw at any time with effect for the future.

Further information on Vimeo's privacy policy is provided at the following link https://vimeo.com/privacy

Is there an obligation to provide the data?

We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). Sometimes, in order to conclude a contract, it may be necessary for a data subject to provide us with personal data which must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with him or her. Failure to provide the personal data would mean that the contract with the data subject could not be concluded. Before any provision of personal data by the data subject, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

Does automated decision-making take place?

As a responsible company, we do not use automatic decision-making or profiling.

Facebook Fan Page

1. General information
Social media have become an integral part of the internet and modern communication. In order to stay in contact with our customers and interested parties, we have also set up our own fan page on Facebook. Facebook is a service of Meta Platforms Inc, 1601 Willow Road, Menlo Park CA 94025, USA, for users in the EU, EEA and Switzerland of Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, D 2 Dublin, Ireland.

We expressly draw your attention to the fact that Facebook stores the data (e.g. IP address, preferences and personal interests, behaviour on Facebook pages, any personal information stored on Facebook, etc.) of users and uses it for business purposes.
We have no influence on the processing and further use of this data, as Facebook alone determines the processing. To what extent, where and for how long the data is stored, to what extent the data is linked and analysed and to whom the data is passed on is currently not comprehensible to us. We also have no insight or influence with regard to deletion periods, i.e., whether and to what extent deletion periods are adhered to.
Details from Facebook itself about what information is collected can be found in Facebook's privacy policy, which can be viewed here: https://www.facebook.com/about/privacy/
If you are a Facebook member and logged into your Facebook user account, Facebook can associate your visit to our site with your user account. If you would like to prevent Facebook from linking data about your visit to our fan page with your membership data stored on Facebook, you must

  • log out of Facebook before each visit to our fan page
  • delete the cookies present on the device
  • and close and restart your browser.

In this way, according to Facebook, all information through which you can be identified by Facebook is deleted.

2. Scope of data collection and storage
You do not need to be a Facebook member to view the content on our Facebook fan page. However, data is collected, stored and used by Facebook every time you visit our page. ln the moment you call up our fan page, your browser establishes a connection with a Facebook server. In the process, data may be transferred to countries outside the European Union. In any case, regardless of whether you are registered with Facebook or not, your IP address will be transmitted and cookies will be set. If you are a Facebook member and logged into your Facebook user account, Facebook can assign your visit to our site to your user account.

The cookies used include session cookies, which are deleted when the browser is closed, and persistent cookies, which remain on the end device until they expire or are deleted by the user. A cookie is a tiny text file that enables a website to recognise a browser. Cookies are stored on the computer when a website is called up and are retrieved and read the next time the web server is called up.  You can decide for yourself via your browser settings whether and which cookies you want to allow, block or delete. Alternatively, you can also install so-called ad blockers, such as Ghostery.

Facebook states that the cookies it uses are for authentication, security, website and product integrity, advertising and measurement, website features and services, performance, and analytics and research. Details of the cookies used by Facebook (e.g. cookie names, duration of operation, content collected and purpose) can be viewed here: https://www.facebook.com/policies/cookies/ by following the links there. You can make settings about which advertisements Facebook should show you or no longer show you at https://www.facebook.com/about/basics/advertising and at http://www.youronlinechoices.com.
You can manage your preferences regarding usage-based online advertising under the aforementioned link. If you object to usage-based online advertising with a particular provider using the preference manager, this only applies to the particular business data collection via the web browser you are currently using. Preference management is cookie-based. Deleting all browser cookies will also remove the preferences you have set with the preference manager.

Submitted data such as comments, videos, pictures, likes, public messages that you leave on our Facebook fan page may be published by Facebook. These will only be used or processed by us for the following purposes.

Personal data transmitted to us via social media, such as documents or communication data, will not be published by us, but it cannot be ruled out that the social media operator may process or publish this data.

We would like to point out that we do not wish to receive applications via messengers, such as Facebook Messenger, as these cannot guarantee the protection of your personal data in the way that is required and desired on our part.

We also reserve the right to delete content should this be necessary. We may share your content on our Facebook fan page if this is permitted and communicate with you via Facebook.

Automated decision-making including profiling in accordance with Art. 22 GDPR does not take place.

As a matter of principle, we only store personal data until the respective purpose for which the data was collected has been achieved. In the context of a business relationship with you, we store your personal data for as long as the business relationship lasts; this also includes the initiation and the processing of a contract as well as the regular period of limitation. In addition, we store the data if and insofar as we are subject to statutory retention obligations. These can result, for example, from the German Commercial Code (HGB) or the German Fiscal Code (AO).
If you have given us consent for a processing operation, the data related to the granting of consent will be stored until withdrawn or at the longest for the duration of the processing operation and after its termination within the scope of the statute of limitations.

3. Facebook Insights
We can access statistical data of different categories via the so-called "Insights" of the Facebook page. These statistics are generated and provided by Facebook. As the operator of the page, we have no influence on the generation and presentation. We cannot turn off this function or prevent the generation and processing of the data.

For a selectable period of time and for the categories fans, subscribers, reached persons and interacting persons, Facebook provides us with the following data relating to our Facebook page:

Total number of page views, "likes", page activity, post interactions, reach, video views, post reach, comments, shared content, replies, proportion of men and women, country and city origin, language, shop views and clicks, route planner clicks, phone number clicks. Data regarding Facebook groups linked to our Facebook page are also provided in this way.

Due to the constant development of Facebook, the availability and processing of the data changes, so that we refer to the aforementioned Facebook privacy policy for further details.

We use this data, which is available in aggregated form, to make our posts and activities on our Facebook page more attractive to users. In this context, we receive anonymised data on the users of our Facebook fan page. This does not allow us to draw any conclusions about your person. For example, we use the distribution by age and gender for an adapted addressing and the preferred visiting times of the users for a time-optimised planning of our posts. Information about the type of end devices used by visitors helps us to adapt the visual design of the posts accordingly. In accordance with the Facebook Terms of Use, which each user has agreed to as part of creating a Facebook profile, we can identify subscribers and fans of the Page and view their profiles and other shared information from them.

4. Disclosure and use of personal data

Insofar as you interact within the framework of Facebook, Facebook naturally also has access to your data. Facebook is located in an insecure third country where the level of data protection is lower. The data transfer is based on the so-called standard data protection clauses. You can find more information on this HERE.

HIER.

5. Rechtsgrundlagen
Ist die Verarbeitung zur Wahrung eines berechtigten Interesses unseres Unternehmens oder eines Dritten erforderlich und überwiegen die Interessen, Grundrechte und Grundfreiheiten der betroffenen Person das erstgenannte Interesse nicht, ist Art. 6 Abs. 1 S. 1 lit. f DSGVO die Rechtsgrundlage für die Verarbeitung. Unser berechtigtes Interesse für die Datenverarbeitung sehen wir in der Darstellung unseres Unternehmens und unserer Produkte sowie Dienstleistungen zu Ihrer Information und insbesondere in der Bereitstellung zeitgemäßer Kommunikationsmöglichkeiten für und mit Ihnen.

6. Gemeinsam für die Verarbeitung Verantwortliche

Medienboard Berlin-Brandenburg GmbH
August-Bebel-Straße 28
14482 Potsdam
Deutschland

und

Meta Platforms Ireland Ltd.
4 Grand Canal Square, Grand Canal Harbour,
D2 Dublin
Ireland

Für die Verarbeitung Ihrer personenbezogenen Daten sind wir nach Ansicht des Europäischen Gerichtshofs (EuGH) gemeinsam mit Facebook bzw. Meta verantwortlich. Die Entscheidung des EuGH vom 05.06.2018 finden Sie hier.

Durch die gemeinsame Verantwortlichkeit informieren wir Sie mit Blick auf Art. 26 DS-GVO im Folgenden über das Wesentliche der zwischen uns und Facebook bestehenden Vereinbarung zur gemeinsamen Verantwortlichkeit: https://www.facebook.com/legal/terms/page_controller_addendum

Donations at events

You have the opportunity to donate for charitable purposes at our events and gatherings. We provide instructions for making donations at our events, and in some cases, we also inform you about the possibility of making a donation in our event invitations. To do so, you can use the PayPal button on the registration page or our donation page. This button directs you to the website of the payment service provider PayPal, through which the donation can be made.

The personal data collected during the donation process will be stored for the duration of the donation agreement and in accordance with legal obligations.

For payment processing, we use PayPal, which becomes the recipient of the personal data collected during the payment process. Your data will be forwarded to the financial service provider:

Payments via PayPal to Paypal, PayPal (Europe) S.à r.l. et Cie, S.C.A 22-24 Boulevard Royal, L-2449 Luxembourg; PayPal's privacy policy:

https://www.paypal.com/webapps/mpp/ua/privacy-full

Please note that with providers outside the EU and the EEA, it cannot be ruled out that your personal data may be transferred to a third country that does not have a level of data protection comparable to the EU and the EEA. If data is processed outside the EEA, where there is no data protection level corresponding to the European standard or no adequacy decision by the European Commission, we have entered into EU standard contractual clauses with the service provider to ensure a secure level of data protection.

The legal basis for the described data processing in the context of donations and for the transmission of data to payment service providers is the necessity of data processing for the conclusion and performance of a contract under Art. 6(1) sentence 1 lit. b GDPR.