The miz

Privacy

Automated mass downloading or any other form of mass copying of the data in the databases provided by miz is expressly prohibited.

Privacy policy


Thank you for your interest in our Internet presentation. We regard the protection of your personal data (hereinafter referred to as “data”) as a very serious and important matter. We therefore wish to inform you below in detail about the data that is collected when you access our website and use its services and how we process and use the data. We also wish to inform about the relevant security measures of a technical and organisational nature that we have put in place.

Please note that this privacy policy may be updated occasionally due to the implementation of new technologies and/or legal amendments. We shall draw your attention to this in the appropriate manner. We shall, of course, always duly take into account your interests in any changes that are made.

N.B.
Irrespective of the legal rights and law requirements on which they are based, we shall, of course, always respect your right as data subject to require the rectification or erasure of personal data concerning you published in our databases.

General information

Data Controller, Point of Contact, Data Protection Officer
Pursuant to Article. 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) the data controller is the

Deutscher Musikrat gGmbH
Deutsches Musikinformationszentrum (miz)
Weberstraße 59
53113 Bonn
Germany

Telephone: +49 (0)228 2091-180
Fax: +49 (0)228 2091-280
Email: info@miz.org

The latter shall be represented by its Managing Director Stefan Piendl.
miz is a facility of the German Music Council.
Our (external) company data protection officer, lawyer Prof. Clemens Pustejovsky, is always available to answer questions and provide information on data protection by email at datenschutz@musikrat.de. Please also refer to our contact details in the site notice.

Legal bases for the processing of your data
Should the legal basis not be specified in the privacy policy the following shall apply:

  • Should we seek the consent of the data subject to process their personal data, Article 6, Paragraph 1, Sentence 1, Letter a of the EU General Data Protection Regulation (GDPR) will serve as legal basis.
  • Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR will serve as legal basis for the processing of personal data that are required to fulfil a contract against payment or free of charge. This will also apply to processing activities that are necessary to carry out pre-contractual steps.
  • If processing personal data is required to fulfil a legal obligation to which our company is bound Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR will serve as legal basis.
  • Should processing be required to protect a legitimate interest of our company or a third party and should this interest not be overridden by the interests or fundamental rights and freedoms of the data subject, Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR will serve as legal basis.

Your rights
Irrespective of the legal rights and law requirements on which they are based, we shall, of course, always respect your right as data subject to require the rectification or erasure of the personal data concerning you that we hold or that are contained in our databases.

Your legal rights pursuant to the General Data Protection Regulation are:

  • right to information (Article 15 of the GDPR);
  • right to rectification and erasure (Articles 16 and 17 of the GDPR);
  • right to restriction of processing (Article 18 of the GDPR);
  • right to data portability (Article 20 of the GDPR);
  • right to object to processing (Article 21 of the GDPR).

You are also entitled to lodge a complaint with a data protection supervisory authority about the processing of your personal data by the controller on the basis of Article 77 of the GDPR. The supervisory authority responsible for us is the North Rhine Westphalia State Commissioner for Data Protection and Freedom of Information (LDI NRW), P.O. Box 20 04 44, 40102 Düsseldorf, Germany, poststelle@ldi.nrw.de.

In this connection we wish to emphasise the following rights:

a) Right to information

You can demand a confirmation from the controller as to whether personal data concerning you are being processed by us. If processing of this nature is going on, you shall receive information from the controller about our processing of your personal data.
Unless you request specific information, we shall deem your inquiry to be a request for exhaustive information.

b) Right to rectification

Sie haben ein Recht auf Berichtigung und/oder Vervollständigung gegenüber dem Verantwortlichen, sofern die verarbeiteten personenbezogenen Daten, die Sie betreffen, unrichtig oder unvollständig sind. Der Verantwortliche hat die Berichtigung unverzüglich vorzunehmen.

c) Right to erasure

You can demand that the controller erase the personal data concerning you without undue delay and the controller will be obliged to erase said data without undue delay, provided that there are no legal reasons to the contrary.

d) Right to object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you, in line with Article 6, Paragraph 1. Letter e or f of the GDPR.

The controller will no longer process your personal data unless they demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

e) Right to withdraw your consent

You have the right to withdraw your consent at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

f) Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.


Retention periods
In line with statutory provisions, in particular Articles 17 and 18 of the GDPR, the data processed by us will be erased or our processing of them restricted. Unless expressly stated in this privacy policy, we will erase the data stored by us as soon as it is no longer required for the intended purpose. Data will be retained beyond the time at which the intended purpose ends only if such data is necessary for other, legally permissible purposes or if the data must continue to be retained due to statutory retention periods. Statutory retention obligations arise, for example, from section 257 (1) of the German Commercial Code (HGB) (six years for business books, inventories, opening balance sheets, annual financial statements, business correspondence, accounting documents, etc.) as well as from section 147 (1) of the German Fiscal Code (AO) (10 years for books, records, management reports, accounting documents, trading and business correspondence, documents relevant to taxation, etc.). In these cases, processing is restricted, that is blocked, and will not be processed for other purposes. Please observe our policies relating to the public directories we provide.

Contacting
The processing of your data in cases where you get in touch by email or telephone takes place on the basis of your (presumed) consent in accordance with Article 6, Paragraph 1, Letter a) of the GDPR or Article 6, Paragraph 1, Letter b) of the GDPR depending on whether the content of the enquiry is related to purely information-related queries or the contact is connected to pre-contractual fulfilment obligations.

You can withdraw your consent to the processing of your personal data at any time without the legitimacy of the preceding processing conducted on the basis of your consent until it was withdrawn being affected. If you contact us via email to request information you can object to the storage of your personal data at any time. In said case, it will not be possible to continue the conversation.

After processing all contact requests we erase them from our active systems unless there are legal grounds or retention obligations that permit or require their continued storage.

Commissioned processing and data recipients, linked third-party websites
Below, we wish to inform you about the third parties and data processors to whom we transfer personal data. On our website we use various third-party services  for different purposes, to which we shall refer in depth in the individual descriptions. In principle however, these services are used to make our Internet presentation functional, secure and attractive in terms of appearance and content and to continuously optimise it. We generally transfer personal data to the following categories of third parties:

billing service providers, print and postal service providers, insurance companies, telecommunication service providers, insurance brokers and loss adjusters; authorities, in instances in which a legitimate request has been lodged, banks and payment service providers for the handling of payments, external (chartered) accountants, hosting service providers and providers of other services relating to our website, legal advisors and auditors.

If personal data is transferred to a third country or an international organisation, we shall notify you separately of said transmission and the underpinning justification norm. The transfer is covered by standard contractual clauses in accordance with Article 46 of the GDPR or other suitable transfer safeguards in accordance with Article 44 et seq. of the GDPR.

In some cases we use external service providers to process your data in accordance with our instructions. We carefully select and commission these service providers and perform regular checks. Commissioning is based on the agreements relating to commissioned processing in line with Article 28 of the GDPR. No processing for their own purposes is conducted by commissioned processors.

Commissioned processors include in particular IT service providers (maintenance and support), telemedia service providers for operating IT systems (web hosting providers for online platforms, providers of cloud software and backup services), service providers for the proper disposal of waste data.

Our website may contain links to third-party websites. We should like to point out that we are not responsible for the processing of your personal data on these websites in accordance with Article 4 (7) of the GDPR. Please consult the privacy policies of the relevant websites before disclosing personal data.

Children
Our website is not intended for children under the age of 16.

Data security
We also use technical and organisational security measures to protect personal data, accrued or collected, in particular from accidental or intentional manipulation, loss, destruction or from attack by unauthorised persons. Our security measures are continuously improved in line with technological developments.

For this purpose, this site uses, among other things, TLS/SSL encryption for secure data transmission. The common TLS (Transport Layer Security) procedure / SSL (Secure Socket Layer) procedure is used in connection with the highest encryption level supported by your browser. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the locked key or lock symbol in the lower or upper status bar of your browser.

Automated decision making including profiling
Automated decision making including profiling does not take place.

Published institutions related to music life
Als zentrale Informations- und Dokumentationseinrichtung des As the central information and documentation institution of the German Music Council the German Music Information Centre (Deutsches Musikinformationszentrum (miz)) records structures and developments on the musical scene in Germany. Aimed at achieving as full a documentation as possible of the individual areas, this serves as information about musical life in Germany for many stakeholder groups. With the exception of the names of (legal) representatives, no personal data is published under the “Institutions” category. Should we nevertheless publish personal data, such as that of contact persons, as in the case of the names of representatives, this will be conducted either on the basis of the data subject’s consent in line with Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR or on the basis of our and the general public’s legitimate interest in maintaining and publishing a full and current account of musical life in Germany, Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. The latter applies, for instance, should we not have directly sourced the data from the data subject. However, on no condition will your data be passed on to third parties or processed beyond the description here for the pursuit of commercial or marketing purposes. As a non-profit-making institution we do not primarily pursue our own economic purposes.

Should you not wish your personal data to be published or should you have information on the source or relevant legal basis for your particular circumstances, please do not hesitate to contact us. We also draw your attention to the section on your rights.

Data processing when using the website

Technical provision of the website - server log data, hosting
When you access website content, data that may enable identification are temporarily stored in log files on the server used by us. The following data is collected: date and time of access; IP address of the calling computer; host name of the accessing computer; website from which the website was called; websites called via the website; sub-pages accessed on our website; amount of data transferred; notification of whether the call was successful; information about the browser type and version used; operating system. This information is required for technical purposes so that we can supply you with the website content you requested; its collection is compulsory when you use the Internet. It is processed for the following purposes in particular:

  • to ensure problem-free access to the website,
  • to ensure efficient use of our website,
  • to evaluate system security and stability and
  • for further administrative purposes.

The legal basis for temporary storage to enable access to and reliable use of the website is Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. The legal basis for ensuring system security and stability as well as for other administrative purposes is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. Our legitimate interest is the protection of our information technology systems (especially in the case of fraudulent attacks known as DDoS attacks. A personal evaluation of data, in particular for marketing purposes, does not take place without your prior consent.

Subject to your express consent, we may evaluate the above-mentioned information statistically in an anonymous form in order to optimise our website and the technology on which it is based (see Matomo, web analysis).

We use a hosting provider based in Germany (Host Europe GmbH, Hansestr. 111, 51149 Cologne, Germany) to operate this web service. They process the master, contact, content, contract, usage, meta and communication data of visitors who access this website on our behalf and on the basis of our legitimate interests in the efficient and reliable provision of this online service in line with Article 6, Paragraph 1, Sentence 1, Letter f and Article 28 of the GDPR.

Login areas

Courses offered at miz.org/kurse
You can view available courses without having to log in. If you wish to offer courses on our platform, you must first complete registration. To do so, you must enter your email address, a password, and user name of your choice. We also require the name of the organiser and their postal address. The legal basis for this is Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. Other details are optional and can be withdrawn at any time. We use a so-called double opt-in procedure for registration, which means that your registration is only complete once you click on and confirm the link in the confirmation email sent to you for the purpose of confirming your registration.

If you wish to offer courses on our platform, you must log into the platform first. Aside from saving your login data, we also save your IP address and other metadata in log files in order to ensure the security and stability of our systems. The legal basis for this is Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR. Aside from published content, we also save other usage and communication data. This is necessary in order to operate the service. The legal basis for saving your communication and usage data is Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. The entering of optional data is based on Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR. You can withdraw your consent to the processing of this data at any time.

Please note that courses published by us can also be published at InfoWeb Weiterbildung if you so wish. The legal basis for this is Article 6, Paragraph 1, Sentence 1, Letter a, Article 7 of the GDPR. You can withdraw your consent to this at any time. The body responsible for the iwwb.de portal is: Deutsches Institut für Internationale Pädagogische Forschung (DIPF), Schloßstr. 29, D-60486 Frankfurt am Main. You can find further information at https://www.iwwb.de//weiterbildung.html?seite=53.

In addition, we want to inform you of relevant miz news from time to time using the email address you entered. The processing required for this purpose is to protect our and third-party legitimate interests in achieving as wide a circulation as possible of information relevant for all those involved, Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. You can object to the sending of emails at any time.

If you delete your account, your public statements, in particular the published courses you offered, will continue to be visible to all readers unless you already erased them via your account management. Courses already held are not erased. Users will be able to locate them by using a targeted search for past dates. However, they are no longer displayed prominently.

If you wish your public contributions to be erased at a later date as well, please contact the controller using the contact details above. We will in any case ensure that the entries are also removed from the database maintained on www.iwwb.de.

My miz
In our login area, you can create an account in order to make best use of our My miz services.

To do so, you must register by entering your email address and a password of your choice. Other details are optional and can be withdrawn at any time. We use a double opt-in procedure for registration, which means that your registration is only complete once you click on and confirm the link in the confirmation email sent to you for the purpose of confirming your registration.

Processing of the data entered in the compulsory boxes for registration is performed in line with Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. Processing of data entered voluntarily is based on Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR. Compulsory boxes are denoted as such. Please contact the persons in our contact area if you wish to delete your account. Data that we are obliged by law to store or which are essential for contract fulfilment will not be erased, providing a contractual relationship continues to exist irrespective of the running of the account. Please note that for security reasons we create log data on logins and login attempts. The legal basis for this is Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR.

Statistics, analysis, optimisation, social media incorporation – use of
cookies

We use cookie technology for our Internet presentation. Cookies are small text files sent from web server to your browser when you access our websites and which are stored by it on your computer for subsequent retrieval. The files contain information (usually identifiers, identification numbers), which our website can retrieve from your device and assign to a database stored by us. You can configure the settings in your browser to define whether and to what extent cookies can be stored and retrieved.

Types of cookies and legal basis
Strictly necessary cookies

Without strictly necessary cookies, our website does not function properly. They are required to save your cookie settings and for you to log in, to remain logged into our login areas and to store your language settings. We do not require any consent for strictly necessary cookies. You can set your browser to block strictly necessary cookies. However, this will affect the functions on this website. As a rule, the legal basis for the use of strictly necessary cookies is our legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR. These cookies cannot be disabled via the cookie settings. However, you can delete these cookies via your browser settings.

Functional cookies

Functional cookies are used in connection with the incorporation of services that are not absolutely necessary for the operation of the website or use thereof is subject to consent for other reasons. Functional cookies may, for instance, be used to display social media content or incorporated videos.

Performance cookies (statistics, analysis)

Performance cookies are used to collect information about the use of the website. Visitors may be counted and access sources as well as the duration of visits analysed. This is aimed at detecting errors, identifying popular or overlooked services and, based on these findings, at improving the user friendliness of the website. In addition to the pages accessed, information may be collected about the type of browser you are using, your operating system, times of day, domain names of the previously visited website and times of access. Data collected via performance cookies are anonymised immediately. Evaluations are conducted solely on the basis of aggregated data.

Cookie function duration

A distinction must be made between session cookies and persistent cookies.
Session cookies are deleted when you close your browser.
Persistent cookies remain on your computer until you delete them or the expiry time set by the publisher is reached. The function duration of the individual cookies is set out in the following sections.

How can cookies be deleted? How can I withdraw my consent?
You can withdraw any consents you have granted for web analysis with effect for the future via the Privacy settings button at the bottom of this page. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Information on deleting other cookies can be found below.

In your browser settings, you can also select whether cookies may be stored. In the settings, you can also block “strictly necessary cookies”. Please note that in this case the website may no longer function properly.

In the browser settings, you can delete cookies already stored on your device. If all cookies are deleted it may be that this website will no longer function as usual. For instance, you may need to log in again.

For further information on how to delete cookies in your browser, please refer to:

Performance Cookies: Statistics, web analysis, optimisation
Unless otherwise stated, the processing operations described in this section (statistics, analysis, optimisation, social media integration – use of cookies) is based on your consent in accordance with Article 6, Paragraph 1, Sentence 1, Letter a and Article 7 of the GDPR.

VG Wort tracking pixel

On our website we use tracking pixels from the copyright collective Verwertungsgesellschaft Wort (“VG WORT”), Goethestrasse 49, 80336 Munich, Germany. These are invisible image files embedded into the copyright-protected works of our authors downloaded from the VG Wort tracking servers. Cookies are not used.

Listed in categories, the data are transferred to VG Wort under “Log data”, where they are encrypted immediately. The process enables VG Wort to establish the number of accesses to specific works. Based on the number of accesses thus established, VG Wort checks whether and how much you must pay in royalties to their members, our authors. Neither VG Wort nor we evaluate the collected data for further analysis purposes. In particular, no tracking of how you use the Internet is carried out.

The legal basis for processing is constituted by the overriding interests of our authors in the payment of royalties for works protected by copyright in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.

Web analysis, behavioural advertising using ADITION adserving

We use the ADITION adserving service to help us in ascertaining the effectiveness of the online advertising we run, in improving advertising activities and in better tailoring them to match user interests. For this purpose, the categories of data listed under “Technical provision of the website - server log data, hosting” are processed with your truncated IP address and stored under a randomly generated ID in pseudonymised user profiles. The ID is also stored on your device using a cookie and can be read by ADITION to recognise your device and associate it with a user profile. This enables tracking of whether certain online ads have already been displayed on your device. It is also possible to analyse whether a viewed online ad was clicked on immediately or whether the advertiser’s website was only accessed later on. Data collected in this way are statistically evaluated in order to better tailor current or future online advertising campaigns to match user interests.

Your data processed by ADITION shall not be combined with other personal data or used in any other way to identify you personally.

The ADITION service is provided to us by our processor QWERTZ Media GmbH, Rungestr. 18, 10179 Berlin, Germany, which processes personal data on our behalf and according to our instructions. In this context, our processor commissions the sub-processor ADITION Technologies AG, Oststrasse 55, 40211 Düsseldorf, Germany to carry out the described processing of personal data. This sub-processor was also obliged by our order processor by means of a data processing agreement to process personal data exclusively on instruction. Further information on the sub-processor ADITION is available at: https://www.adition.com/datenschutz/.

The legal basis for processing is your consent, which can be withdrawn at any time with effect for the future in accordance with Article 6, Paragraph 1, Sentence 1, Letter a and Article 7 of the GDPR. You may withdraw your consent via our cookie settings or by clicking here to set an opt-out cookie via the provider’s website: https://adfarm1.adition.com/opt?n=all&m=optout&cbu=http%3A%2F%2Fwww.adition.com%2Fdatenschutz-opted-out%2F

Matomo (web analysis)

On our website we use the open-source software tool Matomo (formerly PIWIK) to analyse the surfing behaviour of our users. This is used to analyse visitor flows on our website and enables us to identify which sub-pages are most frequently accessed. By analysing these data, we can compile information about the use of our website, which helps us to continuously improve our website and its user-friendliness.

This process involves the creation of pseudonym user profiles that can be assigned to the browser you use via cookies stored on your computer. Within this context, Matomo uses cookies to assign a unique ID number to your device in order to ease identification. The resulting information relating to the use of this website is transmitted to our server and stored there for the evaluation of usage behaviour. When individual pages of our website are called up, the following data is stored:

 

  • the website accessed
  • the website from which the user has accessed the website (referrer)
  • your approximate location (country and city)
  • the sub-pages called up from the website accessed
  • the time spent on the website
  • the frequency of website accessing

The software runs exclusively on the servers of our website. This is the only place where users’ personal data are stored. The data is not passed on to third parties. When using Matomo, we intentionally refrain from processing your full IP address.

The legal basis for the processing of user data is your consent, which you may withdraw any time in accordance with Article 6, Paragraph 1, Letter a and Article 7, Paragraph 3 of the GDPR. To withdraw your consent, please use the setting banner at the end of this privacy policy. When you do so, a cookie is set on your system, which signals our system not to store the user’s data.

If you use the “Do Not Track” setting in your browser, we will not process your data with Matomo.

Personal data (your IP address as identifier) are deleted immediately after collection. The statistics generated, which no longer include any personal references, are not deleted. For further information please refer to https://matomo.org/privacy/.


Strictly necessary miz Cookies
The legal basis for strictly necessary cookies is our legitimate interests in providing a user-friendly website in line with Article 6, Paragraph 1, Sentence 1, Letter F of the GDPR.

We use the following cookie for language settings:

 

Language
Purpose: storage of the user’s preferred language
Category: strictly necessary
Storage period: 30 days

PHPSESSID
Purpose: the cookie is native to PHP applications. It is used to store and identify the user’s unique session ID in order to manage the user’s session on the website.
Category: strictly necessary
Storage period: end of the session; the cookie is deleted on exiting the browser

Functional Cookies
Social media incorporation

With regard to the following services, we intentionally refrain from using social media plugins, which transmit information to social media service providers for analysis purposes when our website is called up. In the case of the functions we use, information is not transmitted to social media service providers until the user clicks onto the relevant links. If you have logged in via your account with social networks, they may be able to assign and store your access to our websites to your account. Even if your are not a member of social networks, they may still be able to retrieve and store your IP address. As a network member you can log out of your accounts before accessing our website in order to prevent the above processing.

Facebook and WhatsApp

We have integrated share buttons for the Facebook social network and WhatsApp messenger service on our website. . By clicking on these buttons you will be redirected to the services operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Parent company: Meta platforms Inc, 1601 Willow Road Menlo Park, CA 04025 USA. No personal data will be transmitted to Facebook before you click on the share buttons. Providing share buttons is in our legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR in order to increase the user-friendliness of our service and to expand its reach through voluntary sharing by the user. For further information please refer to https://www.facebook.com/about/privacy/.

Twitter

We have incorporated a Twitter share button on our website. By clicking on the share button for Twitter you will be redirected to the service operated by the Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Ireland. Parent company: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. No personal data will be transmitted to Twitter before you click on the share button. Providing share buttons is in our legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR in order to increase the user-friendliness of our service and to expand its reach through voluntary sharing by the user. The Twitter privacy policy is available at https://twitter.com/de/privacy, setting options at https://twitter.com/personalization.

You can perform settings via the following websites regardless of the platform used: http://www.aboutads.info/choices/ (USA) or http://www.youronlinechoices.com/ (EU).

Incorporation of videos and maps
YouTube

On occasion, we incorporate videos from the “YouTube” platform of the provider Google. The videos themselves are stored by YouTube. If you access one of our websites with a YouTube plugin, a connection will be established to the YouTube servers, notifying them about which of our websites you have accessed.

If you are logged into your YouTube and/or Google account, you enable Google to directly associate your surfing behaviour with your personal profile. You may prevent this by logging out of your YouTube and/or Google account.

Even without a YouTube/Google account, certain data is transmitted to Google when sub-pages containing videos are called up: IP address and cookie, the address of the website on which you are viewing the video, date and time of download as well as the browser ID.

Incorporating YouTube videos is in our legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR in order to increase the user-friendliness and attractiveness of our services.

Google stores these data as user profiles and may use them for the purposes of advertising, market research and/or the adequate design of their websites. Such an evaluation (also for non-registered users) is carried out in particular to provide tailored advertising and to inform other users about your activities on our website. You have the right to object to the creation of these user profiles. To exercise this right, you must contact Google, the operator of YouTube.

The privacy policy is available at https://www.google.com/policies/privacy/. The opt-out option can be selected at https://adssettings.google.com/authenticated.

Vimeo

We embed videos from the “Vimeo” platform of the provider Vimeo Inc, 555 West 18th Street New York, New York 10011, USA.

When you access a sub-page on our website with an embedded Vimeo, a connection will be established to the Vimeo servers and the plugin executed in your browser.

The Vimeo server receives information about which of our websites you have accessed. If you are logged into your Vimeo account, Vimeo will associate the information with your user account. If you activate a plugin on our website by clicking on the start button of a video, for instance, or by leaving a comment, this information will be transmitted to Vimeo. Vimeo uses cookies or similar recognition technologies (such as device fingerprinting). The privacy policy is available at https://vimeo.com/privacy.

Incorporating YouTube videos is in our legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR in order to increase the user-friendliness and attractiveness of our services.

Google Maps

We incorporate maps from the Google Maps service of the provider Google (service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) for the purpose of optimising and increasing the customer-friendliness of our service with interactive maps (legitimate interest in accordance with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR). Your IP address in particular and also your location data and device information may be processed in this connection. You can deactivate processing of location data in your browser and/or operating system settings (generally in the case of mobile devices). If you are logged into Google, your data will be directly assigned to your account, otherwise Google will assign the data to an advertising ID separate from your account.

For further information, please refer to the privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Printed products

Processing of personal data for ordering printed products

1. Description and scope of data processing

The German Music Information Centre offers printed products. Users can place chargeable orders online for them via an order form. The following data are sent via order forms:

(1) Title
(2) Name (first and last name)
(3) Company/institution (optional)
(4) Address (street, street number, postcode, town, country)
(5) Email address
The order confirmation is sent to the email address specified here.
(6) Telephone number (optional)

The customer details are required for processing and carrying out the order.

The customer data are forwarded to ConBrio Verlagsgesellschaft mbH, Brunnstr. 23, 93053 Regensburg, Germany, www.conbrio.de for processing. They are responsible for order processing, dispatch of the ordered goods, invoicing and collection. We have concluded an agreement with ConBrio Verlagsgesellschaft mbH relating to the commissioned processing of personal data, Article 28 of the GDPR.

2. Legal basis for data processing

The legal basis for the processing of the customer details collected for the fulfilment of the contract is Article 6, Paragraph 1, Letter b of the GDPR.

3. Purpose of data processing

The customer details are collected, sent, processed and stored for the purpose of carrying out the order and fulfilling the contractually agreed services (administration, planning and carrying out of business relations, drawing up offers, processing complaints, communication and for the identification of customers).

4. Storage period

In the case of chargeable orders, on account of retention periods under commercial and tax law all data are stored for up to ten years (section 147 of the AO, section 257 of the HGB).

Last updated: 12 May 2023