Privacy policy
We, the INNENHOFSTUDIOS GmbH, Schwarzspanierstraße 15/5/2, 1090 Vienna, e-mail: office@www.innenhofstudios.at (hereinafter “TONSTUDIO”), inform you here about the processing of personal data carried out by us.
Questions about data protection can be sent to us at any time by email to office@www.innenhofstudios.at.
The address of our website is: https://www.innenhofstudios.at.
Below we have compiled the most important information about the typical data processing separately by affected group for you. For certain data processing operations which only concern specific groups, the information requirements are fulfilled separately.
If the term “data” is used in the text, personal data alone within the meaning of the GDPR are meant.
I. DATA PROCESSING
1. Visitors to the websites
1.1 Our web server processes a series of data for each request, which your browser automatically transmits to our web server. This is the IP address currently assigned to your device, the date and time of the request, the time zone, the page or file that is specifically accessed, the http status code, and the amount of data transferred; in addition, the website from which your request came, the browser used, the operating system of your device and the language set. The web server uses this data to display the contents of this website in the best possible way on your device.
1.2 We use Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to and stored by Google on servers in the United States. IP anonymisation is activated for this website, ie your IP address is shortened beforehand by Google within the European Union or in another state party to the agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
Google will use this information as a processor under Art. 28 GDPR in order to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator. The IP address provided by Google Analytics within the framework of Google Analytics will not be merged with other data provided by Google.
You can prevent the storage of cookies by setting your browser software accordingly. You can prevent Google’s collection of data generated by the cookie and your use of the website (including your IP address) and the processing of this data by Google by downloading and installing the available browser plug-in. Alternatively, you can set a so-called opt-out cookie, which in the future prevents the collection of your data when visiting this website.
1.3 Purpose of the data processing is the representation of TONSTUDIO in the Internet, the information about activities and offers, the mediation of speakers as well as the communication with prospective customers. The purpose of the evaluation of the user behavior on the website is the needs-based design of the website.
1.4 The legal basis for processing is Article 6(4) 1 lit. f) GDPR, namely our legitimate interest in the presentation of TONSTUDIO, the provision of audio services, the information of visitors to the website, communication with interested parties as well as our interest in the needs-based design of the website and maintaining IT security.
1.5 Protocol and communication data will not be passed on to third parties without special circumstances. In the event of suspicion of a criminal offence or in investigations, data may be transmitted to the police and the public prosecutor’s office. We use service providers through order processing in the provision of services, in particular for the provision, maintenance and maintenance of IT systems and the hosting of our websites.
1.6 When visitors post comments on the site, we collect the data displayed in the comment form, as well as the visitor’s IP address and the user-agent string (which the browser) to detect spam support.
Comments including metadata are stored indefinitely. That way, we can automatically detect and approve episode comments instead of keeping them in a moderation queue.
From your email address, you can create an anonymous string (called a hash) and submit it to the Gravatar service to see if you’re using it. The privacy policy of the Gravatar service can be found here: https://automattic.com/privacy/. Once your comment is approved, your profile picture will be publicly visible in the context of your comment.
1.7 If you write a comment on our website, this may be a consent to store your name, email address and website in cookies. This is a convenience feature so that when you write another comment, you don’t have to re-enter all this data. These cookies are stored for one year.
If you have an account and log on to this website, we will set a temporary cookie to determine whether your browser accepts cookies. This cookie does not contain any personal data and is discarded when you close your browser.
When you sign in, we will set up some cookies to store your credentials and display options. Login cookies expire after two days and cookies for display options expire after one year. If you select “Stay logged in” when you sign up, your registration will be maintained for two weeks. By logging out of your account, the login cookies will be deleted.
When you edit or publish an article, an additional cookie is stored in your browser. This cookie does not contain any personal data and only refers to the post ID of the item you have just edited. The cookie expires after one day.
1.8 Posts on this site may contain embedded content (eg videos, pictures, posts, etc.). Embedded content from other websites behave just as if the visitor had visited the other website.
These websites may collect information about you, use cookies, embed additional third-party tracking services, and record your interaction with this embedded content, including your interaction with the embedded content if you have an account and are logged in to this site.
1.9 For users who register on our website, we also store the personal information they provide in their user profiles. All users can view, modify or delete their personal information at any time (the username can not be changed). Site administrators can also view and change this information.
1.10 Visitor comments could be investigated by an automated spam detection service.
1.11 In order to facilitate contact for potential interested parties, we provide a contact, feedback and a callback form on our site. It stores your first name, last name, e-mail address and telephone number. This data will be deleted after processing the request and will not be used for marketing purposes, unless a business, prospect or supplier relationship is derived from the request.
2. Customers, contact persons with customers, prospects
2.1 We process your data for the purpose of establishing and implementing the contractual relationship as well as for the administration of your licenses and for the fulfilment of legal requirements. Immediately before the conclusion of the contract, we carry out a credit check. There are no plans to change these purposes.
2.2 Legal bases for processing are the case in the case of contracts with natural persons, Article 6(4) of the Treaty. 1 lit. (b) GDPR (preparation and implementation of the Contract), in the case of contracts with legal entities, Article 6(4) 1 lit. (f) GDPR (legitimate interest, namely communication with contractually relevant contact persons) and always Article 6(6) 1 lit. (c) GDPR (legal obligations, in particular tax and commercial regulations). In the examination, enforcement or rejection of claims, the legal basis is Article 6(4) of the 1 lit. (f) GDPR (legitimate interest, namely enforcement of claims or defence against claims). Insofar as data is processed during the use of an online system, the legal basis is additionally Article 6(3). 1 lit. (f) GDPR (legitimate interest, namely respect for IT security). The credit assessment shall be carried out on the basis of Article 6(6) of the 1 lit. (f) GDPR (legitimate interest, namely verification of the creditworthiness of contractors).
2.3 Recipients of data may be banks for the processing of payments. Authorities and offices may be recipients within the scope of their tasks, insofar as we are obliged or entitled to transmit data. In addition, data may be transmitted to debt collection service providers, lawyers and courts on a case-by-case basis. In the event of suspicion of a criminal offence or in investigations, data may be transmitted to the police and the public prosecutor’s office. In the case of a credit check, KSV1870 Information GmbH receives identification data from you (name, date of birth and current address). We also use service providers through order processing in the provision of services, in particular for the provision, maintenance and maintenance of IT systems.
2.4 All data relevant to contracts and bookings shall be stored for a period of ten calendar years after the end of the contract in accordance with retention periods for tax and commercial law. Judicial titles are kept for 30 calendar years, unless the claim is repaid in advance.
2.5 The provision of data is legally and contractually binding for customers. Without providing data, the contractual relationship cannot be established and carried out.
3. Newsletter recipients, invitees and participants in events
3.1 We process your data for the purpose of sending the newsletter, inviting you to events and organizing the event.
3.2 The legal basis for the processing of data for newsletters and invitations is Article 6 (1) lit. f) GDPRs (legitimate interest, namely communication with customers) if you are customer or contact person with a customer, otherwise your consent (Article 6 paragraph 1 letter a) DS-GMO). If you have registered for an event, the legal basis is Article 6 (1) lit. (b) GDPR (contract to carry out the event) and Article 6 para. 1 lit. (c) GDPR (statutory duties, in particular tax and commercial regulations).
3.3 We use service providers through order processing to provide services, in particular for the provision, maintenance and maintenance of IT systems.
3.4 All data relevant to contracts and bookings shall be stored for a period of seven calendar years after the end of the contract in accordance with retention periods for tax and commercial law. Data on newsletters will be deleted from the newsletter when you unsubscribe.
3.5 The provision of data is contractually binding for the receipt of newsletters and invitations as well as for participation in events. Without providing data, newsletters and invitations cannot be sent and it is not possible to participate in events.
4. Candidates for employment
4.1 The purpose of data processing is to select candidates for an employment relationship. There are no plans to change these purposes.
4.2 The legal basis is Section 26 of the German German And The German Civil Code (BDSG) in conjunction with Art. 1 lit. (b) (initiation of the employment contract) and Article 88 GDPR.
4.3 Applicant data will be passed on internally to the responsible and decision-making staff. We also use service providers through order processing in the provision of services, in particular for the provision, maintenance and maintenance of IT systems.
4.4 The data will be deleted three months after the end of the application process. If an applicant is also interested in other positions, the data will be stored for up to 12 months. In the case of unsolicited applications, the deadline begins to run when an appropriate body is vacated.
4.5 The provision of personal data is necessary for the examination of the application and, if necessary, the subsequent conclusion of an employment contract. Without personal data, an application cannot be considered.
5. Service providers, suppliers and their employees
5.1 The purpose of the processing is the preparation and execution of the respective contracts with the service providers or suppliers. There are no plans to change these purposes.
5.2 Legal bases for processing are the case in the case of contracts with natural persons, Article 6(4) of the Treaty. 1 lit. (b) GDPR (preparation and implementation of the Contract), in the case of contracts with legal entities, Article 6(4) 1 lit. (f) GDPR (legitimate interest, namely communication with contractually relevant contact persons) and always Article 6(6) 1 lit. (c) GDPR (legal obligations, in particular tax and commercial regulations). In the examination, enforcement or rejection of claims, the legal basis is Article 6(4) of the 1 lit. (f) GDPR (legitimate interest, namely enforcement of claims or defence against claims).
5.3 Contact and contract data may be transmitted to other service providers and suppliers as well as offices and authorities, if this is necessary for the execution of the contract or order. We also use service providers through order processing in the provision of services, in particular for the provision, maintenance and maintenance of IT systems.
5.4 Data of contractors, service providers and customers are deleted seven calendar years after contract or order termination.
5.5 The processing of contact data at service providers, business partners and customers is necessary in order to carry out the contract or order. If the data is not provided, communication in the execution can be significantly disrupted.
II. GENERAL INFORMATION AND RIGHTS OF THE DATA SUBJECTS
1. There is no transmission of data to third countries.
2. We do not use procedures of automated individual decisions.
3. You have the right to request information about all personal data that we process from you at any time. You can also request an export of your personal data from us, including any data you have provided to us.
4. If your personal data is incorrect or incomplete, you have the right to rectification and supplementation.
5. You can request the deletion of your personal data at any time, unless we are legally obliged or entitled to further processing your data.
6. If the legal requirements are met, you may request a restriction on the processing of your personal data.
7. You have the right to object to the processing, as far as the data processing for the purpose of direct advertising or profiling takes place. If processing takes place on the basis of a balance of interests, you may object to the processing by stating reasons that arise from your particular situation.
8. If the data processing takes place on the basis of your consent or under a contract, you have the right to transfer the data provided by you, as long as this does not affect the rights and freedoms of other persons.
9. If we process your data on the basis of a declaration of consent, you have the right at any time to revoke this consent with effect for the future. The processing carried out before a revocation remains unaffected by the revocation.
10. You also have the right at any time to lodge a complaint with a data protection supervisory authority if you believe that data has been processed in breach of applicable law.
As of May 25, 2018
