This privacy statement aims to inform users of this internet site (hereinafter also referred to as website) of the type, scope and the purpose of the collection and use of personal data by the website operator in accordance with the General Data Protection Regulation (GDPR).
The website operator takes the protection of your data very seriously and treats your personal data confidentially and in line with legal regulations.
Please note that the transmission of data via the internet can in principle be associated with gaps in security. Full protection against access by external parties therefore cannot be provided.
The responsible party in the sense of the GDPR, the Federal Data Protection Act and other provisions of data protection law is:
Studio Babelsberg AG
Tel.: 0331-712 10000
Name and address of the data protection officer
The data protection officer for the responsible party is:
Studio Babelsberg AG
Tel.: 0331 – 721 2462
In principle we process our users’ personal data to the extent that this is necessary to provide a functional website and our content and services. Our users’ personal data are only processed after users have granted their consent. An exception to this rule applies in cases in which obtaining consent in advance is not possible for factual reasons and the processing of the data is permitted by legal regulations.
Where we obtain consent from the data subject for the personal data processing processes, the legal basis for this is Article 6 paragraph 1A GDPR.
If the processing is necessary to protect the legitimate interests of our company and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the former interests, Article 6 paragraph 1F GDPR is the legal basis of the processing.
The personal data of the data subject will be deleted or blocks as soon as the purpose of the storage no longer applies. The data can also be stored if this is provided for under European or national legislation in directives, laws or other provisions under European Union law to which the responsible party is subject. The data are also blocked or deleted if a storage period set out by the above-mentioned standards expires unless there is a need for further storage of the data for the conclusion of a contract or the performance of a contract.
Each time our website is accessed, our system automatically stores data and information from the computer system accessing the website.
The access logs for the web server record which pages were accessed at what time. They include the following data:
The IP addresses are stored anonymised using technical precautionary measures. In other to do this, the last three characters are removed, in other words 127.0.0.1 becomes 127.0.0.*. IPv6 addresses are also anonymised.
As a result, the data can no longer be allocated to the user accessing the site. The data are not stored together with users’ other personal data.
The legal basis for the temporary storage of the data and the log files is Article 6 paragraph 1F GDPR.
The temporary storage of the IP address by the system is needed to deliver the website to the user’s computer. In order to do this, the user’s IP address must remain stored for the duration of the session.
Log files are stored to ensure the functionality of the website. We also use the data to optimise the website and ensure the security of our information technology systems. There is no evaluation of the data for marketing purposes in this context.
These purposes represent a legitimate interest in data processing on our part in accordance with Article 6 paragraph 1F GDPR.
The anonymised IP addresses are stored for 60 days. Information on the directory protection users are anonymised after one day.
Error logs, which record erroneous attempts to access pages, are deleted after seven days. In addition to the error messages, these also include the IP address accessing the website and, depending on the error, the website accessed.
Access attempts made via FTP are recorded in an anonymous manner and stored for 60 days.
An individual determination of the duration of storage is not possible.
Data must be recorded on the provision of the website and the storage of the data in log files in order for the website to be operated. The user therefore has no right of appeal.
We only use the cookies that are technically necessary to make our website more user-friendly. Some elements of our website require the browser accessing the site to be able to be identified after the webpage has been changed.
The cookies only store and send the session information.
The legal basis for the processing of personal cookies using cookies that are technically necessary is Article 6 paragraph 1F GDPR.
The purpose of the use of technically necessary cookies is to simplify the use of websites for users. You can also, however, block cookies. In this case, some functions of our website (e.g. videos embedded via YouTube) will not be available.
The user data collected by means of technically necessary cookies are not used to create user profiles.
The analysis cookies are used to improve the quality of our website and the content. Through the analysis cookies, we find out how the website is used and can therefore optimise our online presence.
These purposes represent a legitimate interest in processing personal data in accordance with Article 6 paragraph 1F GDPR.
Our website includes the option to subscribe to a free newsletter provided by a third party provider via a link. The data from the entry form will only be sent to this third party provider on registration for the newsletter. Your consent will be obtained by the third party provider as party of this registration process. The third party provider’s privacy statement applies here.
Contact can be made via the email address provided. In this case, the user’s personal data sent with the email are stored.
These data are not passed on to third parties. The data are used exclusively for the processing of the conversation.
The legal basis for the processing of the data sent via email is Article 6 paragraph 1F GDPR. If the email contact seeks to conclude a contract, an additional legal basis for the processing is Article 6 paragraph 1B GDPR.
In the event that contact is made by email, this represents the necessary legitimate interest in the processing of the data.
The data are deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of personal data sent via email, this is the case once the respective conversation with the user is over. The conversation is over when the circumstances dictate that the content in question has been finally clarified.
The personal data also collected during the sending process are deleted after a period of no more than seven days.
The user can revoke his or her consent for the processing of his/her personal data at any time. If the user contacts us via email, he/she can revoke his/her consent for the storage of his/her personal data at any time. In this case, the conversation cannot be continued.
All personal data stored when contact is made are deleted in this case.