Privacy Policy
Privacy Policy according to EU General Data Protection Regulation (GDPR)
1. Name and Address of the Controller
StageField Management & Productions GmbH (hereinafter “website owner/controller”)
Legal domicile: Munich | District Court of Munich HRB 179637
CEO: Dr. Marc Heinkelein
Maximilianstraße 2 | 80539 Munich | Germany
Phone +49 89 20500-8715
Fax +49 89 20500-8716
2. Collection, Processing and Erasure of Personal Data
The use of this website is basically possible without any indication of personal data. Should a processing of personal data, e.g. name, address, e-mail address or telephone number of the user, nevertheless become necessary in the context of the use of the website, the processing takes place according to the regulations of the valid data protection law (GDPR).
The website owner/controller processes and stores the personal data provided by the user only for the period of the usage relationship. After expiration of that period, the corresponding personal data is routinely deleted unless there is a longer period of storage for personal data, which must be observed by law or regulation (statutory retention period) to which the website owner/controller is subject.
3. Legal Basis for the Collection and Processing of Personal Data
4. Rights of the User
The user can contact the website owner/controller directly regarding the following rights:
a) Right of Information
The user has the right to request confirmation from the website owner/controller as to whether the personal data provided will be processed. In addition, the user has the right of information about the following information:
- the purposes of the processing;
- the categories of personal data concerned;
- the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
- where appropriate, the website owner´s/controller´s intention to transfer the personal data to a third country or international organisation and the existence or absence of a Commission adequacy decision or, in the case of transfers pursuant to Art. 46, 47 or 49 (1) and (2) GDPR, a reference to the appropriate or appropriate safeguards and means of obtaining a copy of them or where available
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
- the existence of the right to request from the website owner/controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
- the right to lodge a complaint with a supervisory authority;
- where the personal data are not collected from the data subject, any available information as to their source;
- the existence of automated decision-making, including profiling, referred to in Art. 22 (1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
If the user makes use of his right to information, a copy of the personal data which is the subject of the processing will be made available to the user. The website owner/controller can charge a reasonable fee based on administrative costs for any further copies requested by the user. If the user submits the application electronically, the information will be made available in a commonly used electronic form. The right to obtain a copy shall not adversely affect the rights and freedoms of others.
b) Right of Rectification
The user has the right to obtain from the website owner/controller without undue delay the rectification of inaccurate personal data concerning the user. Taking into account the purposes of the processing, the user shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
c) Right of Restriction of Processing
The user has the right to obtain from the website owner/controller restriction of processing where one of the following applies:
- the accuracy of the personal data is contested by the user, for a period enabling the website owner/controller to verify the accuracy of the personal data.
- the processing is unlawful and the user opposes the erasure of the personal data and requests instead the restriction of their use instead.
- the website owner/controller no longer needs the personal data for the purposes of the processing, but they are required by the user for the establishment, exercise or defence of legal claims.
- the user has objected to processing pursuant to Art. 21 (1) GDPR pending the verification whether the legitimate grounds of the website owner/controller override those of the user.
Where processing has been restricted, such personal data may be processed only with the consent of the user or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
The user who has obtained a restriction of processing pursuant will be informed by the website owner/controller before the restriction of processing is lifted again.
d) Right to Data Portability
The user has the right to receive the personal data provided in a structured, commonly used and machine-readable format in order to transmit this data to another controller, provided that the processing is based on a consent pursuant to Art. 6 (1a) or Art. 9 (2a) GDPR or on a contract pursuant to Art. 6 (1b) GDPR and the processing is carried out by automated means. The rights and freedoms of other persons may not be impaired by the data transmission.
The user has the right to demand from the website owner/controller that the personal data be transmitted directly to another controller, as far as this is technically feasible.
e) Automated Individual Decision-Making, including Profiling
The user has the right not to be subject to a decision based exclusively on automated processing, including profiling, which has legal effect on the user or significantly impairs it in a similar manner, provided that the decision is not necessary for entering into, or performance of, a contract between the user and a the website owner/controller or is authorised by Union or Member State law to which the website owner/controller is subject and which also lays down suitable measures to safeguard the user’s rights and freedoms and legitimate interests or is based on the user’s explicit consent.
If the decision to conclude or fulfil a contract between the user and the website owner/controller is necessary or if the decision was made with the express consent of the user, the website owner/controller shall implement suitable measures to protect the rights and freedoms as well as the legitimate interests of the user, including at least the right to obtain human intervention on the part of the website owner/controller, to express his or her point of view and to contest the decision.
The website owner/controller does not use automatic decision-making or profiling on this website.
f) Right to Erasure (“Right to be Forgotten”)
The user has the right to obtain from the website owner/controller the erasure of personal data concerning him or her without undue delay and the website owner/controller has the obligation to erase personal data without undue delay where one of the following grounds applies and processing is not necessary (e.g. to exercise the right to freedom of expression and information; for reasons of public interest):
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
- the user withdraws his consent, on which the processing was based according to Art. 6 (1a) or Art. 9 (2a) GDPR, and there is no other legal basis for the processing
- the user files an objection against the processing in accordance with Art. 21 (1) and (2) GDPR and there are no overriding legitimate reasons for the processing
- the personal data have been processed unlawfully
- the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the website owner/controller is subject
- the personal data have been collected in relation to the offer of information society services in accordance with Art. 8 (1) GDPR.
If the website owner/controller has made the personal data public and if the website owner/controller is obliged to erase them in accordance with the above-mentioned reasons, the website owner/controller takes appropriate measures, including technical measures, taking account of available technology and the costs of implementation, to inform other controllers which are processing the personal data that the user has requested the erasure of all links to this personal data or of copies or replications of this personal data, insofar as the processing is not necessary.
g) Right to Object
The user has the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on Art. 6 (1e) and (1f) GDPR, including profiling based on those provisions.
Where personal data are processed for direct marketing purposes, the user has the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where the user objects to processing for direct marketing purposes, the personal data will no longer be processed for such purposes.
In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, the user may exercise his or her right to object by automated means using technical specifications.
Where personal data are processed for scientific or historical research purposes or statistical purposes pursuant to Art. 89 (1) GDPR, the user, on grounds relating to his or her particular situation, has the right to object to processing of personal data concerning him or her, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
h) Right to Withdraw Data Protection Consent
Should the user have given consent to the website owner/controller to process the personal data provided, he can withdraw this consent at any time. The user can send the withdrawal informally by post, telephone, fax or e-mail directly to the website owner/controller without giving reasons.
5. Anonymised Data Collection and Data Processing
6. Cookies
As far as the website owner/controller uses cookies (small text files) for this website that are stored on the user’s computer and saved by the user’s browser, the web server of the website owner/controller can, if cookies are set, identify the user’s browser and the individual settings of the users in the websites of the website owner/controller and if applicable parts of the registration data in encrypted form so that the use of this website is made easier for the user and automatic log-in is made possible. Users can apply their browser settings to reject cookies, delete cookies from their computer, block cookies or receive a request before a cookie is set. If the user deactivates the setting of cookies in the Internet browser used, not all functions of this website may be entirely usable. The cookies set by the website owner/controller are deleted from the user’s computer after each session.
7. Mobile Devices
As a precaution, the website owner/controller points out that when using this website by means of so-called mobile devices (smartphones, mobile phones, tablets, etc.) precise location data may be collected, used and forwarded, including the geographical location of the user’s mobile device. In addition, further data may be collected, processed and used within the framework of the usage conditions of the user’s respective telecommunications provider.
8. Technical Gaps in Security
The website owner/controller has implemented comprehensive technical and organisational measures to ensure the safest possible protection of personal data processed through this website.
The website owner/controller explicitly points out that security gaps can occur with regard to data transmission on the Internet, e.g. during e-mail correspondence, and that there is no complete protection against access by third parties. For this reason, every user is free to transmit personal data to the website owner/controller by telephone, fax or mail.
9. Use of the Contact Data of the Company Details & Imprint
The website owner/controller and all persons named on this website hereby object to any commercial use and forwarding of their data, in particular the contact data stated in the privacy policy and imprint may not be used for commercial advertising without the written consent of the website owner/controller or without the existence of a business relationship.
10. Instagram
To advertise services as well as to communicate with interested parties or customers, the website owner/controller has a presence on the Instagram platform.
On this social media platform, the website owner/controller is jointly responsible with Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
The data protection officer of Instagram can be reached via this contact form:
https://www.facebook.com/help/contact/540977946302970
The website owner/controller has defined the joint responsibility in an agreement regarding the respective obligations within the meaning of the GDPR. This agreement, which sets out the reciprocal obligations, is available at the following link:
https://www.facebook.com/legal/terms/page_controller_addendum
The legal basis for the processing of the resulting and subsequently disclosed personal data is Art. 6 para. 1 lit. f GDPR. The website owner’s/controller’s legitimate interest lies in the analysis, communication, sales, and promotion of his services.
The legal basis may also be your consent per Art. 6 para. 1 lit. a GDPR granted to the platform operator. Per Art. 7 para. 3 GDPR, you may revoke this consent with the platform operator at any time with future effect.
When accessing the website owner’s/controller’s online presence on the Instagram platform, Facebook Ireland Ltd. as the operator of the platform in the EU will process your data (e.g. personal information, IP address, etc.).
This data of the user is used for statistical information on the use of the website owner’s/controller’s company presence on Instagram. Facebook Ireland Ltd. uses this data for market research and advertising purposes as well as for the creation of user profiles. Based on these profiles, Facebook Ireland Ltd. can provide advertising both within and outside of Instagram based on your interests. If you are logged into Instagram at the time you access our site, Facebook Ireland Ltd. will also link this data to your user account.
If you contact the website owner/controller via Instagram, the personal data your provide at that time will be used to process the request. The website owner/controller will delete this data once we have completely responded to your query, unless there are legal obligations to retain the data, such as for subsequent fulfillment of contracts.
Facebook Ireland Ltd. might also set cookies when processing your data.
If you do not agree to this processing, you have the option of preventing the installation of cookies by making the appropriate settings in your browser. Cookies that have already been saved can be deleted at any time. The instructions to do this depend on the browser and system being used. For Flash cookies, the processing cannot be prevented by the settings in your browser, but instead by making the appropriate settings in your Flash player. If you prevent or restrict the installation of cookies, not all of the functions of Instagram may be fully usable.
Details on the processing activities, their suppression, and the deletion of the data processed by Instagram can be found in its privacy policy:
https://help.instagram.com/519522125107875
It cannot be excluded that the processing by Facebook Ireland Ltd. will also take place in the United States by Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025.
Service Provider: Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Privacy Policy: https://help.instagram.com/519522125107875