1. Who is controller of data processing and whom can I contact?
The controller of processing your personal data through this website is:
You can reach our data protection officer at the e-mail email@example.com.
2. What do we process your data for (purpose of processing) and on which legal basis?
We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) for the following purposes.
a) Providing the website
When you use our website, we process your data in the following way:
aa) Log files
When you visit our website, the browser used on your end device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion: IP address of the requesting computer, date and time of access, name and URL of the accessed file, website from which the access is made ("referrer URL"), MIME type, browser used, installed fonts, browser language and time zone, Silverlight data, installed plugins, http header and screen resolution.
The legal basis for this type of data processing is Art. 6 para. 1 s. 1 lit. f GDPR. The legitimate interests pursued by us are in particular:
bb) Cookies and similar technologies
On our website we use technically necessary cookies, functional cookies, web analytics cookies, tracking cookies for advertising purposes and social media pixels.
With the exception of technically necessary and functional cookies, data are only collected if you have consented to this data processing. The legal basis for this is Art. 6 para. 1 s.1 lit. a GDPR. You declare your consent by clicking on the respective button that appears when you visit our website for the first time. If you do not click the button, the cookies are not activated and this data are not collected.
If you want to prevent the use of these cookies after declaring your consent, you can:
2. delete existing cookies in your browser and prevent the storage of (third-party) cookies in the settings of your browser.
The legality of the processing carried out on the basis of your consent until revocation remains unaffected by this.
Please note that if you do not accept cookies, you may not be able to use all the features of our website.
We use the cookie consent technology of Usercentrics to obtain your consent to the storage of certain cookies on your device and to document this in accordance with data protection law. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, website: https://usercentrics.de (hereinafter "Usercentrics").
The following data are transmitted to Usercentrics: browser information, date and time of the visit, device information, geographical location, opt-in and opt-out data, request URL of the website, page path of the website. In addition, Usercentrics stores a cookie in your browser in order to be able to assign the consent you have given and, if applicable, your revocation to your person.
(1) Technically necessary cookies
Most cookies we use are technically necessary to enable you to use our website and the services offered on it ("session cookies"). The legal basis is Art. 6 para. 1 s. 1 lit. f GDPR. We have a legitimate interest in storing necessary cookies for the technically error-free provision of our website. The data are not merged with other personal data and not used for advertising purposes. Session cookies are deleted after the end of the respective browser session.
For these purposes, this site uses so-called web fonts provided by Adobe Fonts for the uniform presentation of fonts. The provider is Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Saggart Dublin 24th, Ireland. When you visit a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly. Adobe claims that it does not store cookies or IP addresses in this process. Nevertheless, it cannot be ruled out that the fonts are downloaded from American servers of the parent company Adobe Inc. when the website is opened. We are not able to influence this process.
The use of of Adobe Fonts is based on our legitimate interest in a uniform and cross-device presentation of our online presence as well as improved loading times of the website pursuant to Art. 6 para. 1 p. 1 lit. f GDPR.
(2) Functional cookies
In addition, we use temporary cookies to improve the user experience. These cookies are stored on your device for a certain period of time and allow, for example, that you are recognized when you call up our site again and enable that entries and settings regarding your usage preferences are made automatically. The legal basis is Art. 6 para. 1 s. 1 lit. f GDPR. We have a legitimate interest in storing functional cookies to enable a user-friendly optimized presentation of our website.
(3) Web analytics cookies
For this web analysis we use the web analysis service Google Analytics, which is operated of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").
The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://business.safety.google/adscontrollerterms/sccs/.
On our behalf, Google, as a processor within the meaning of Art. 28 GDPR, uses this information to evaluate your use of the websites, to compile reports on website activity and to provide other services related to website and internet use to the website operator.
You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link: https://www.google.com/analytics/terms/de.html.
(4) Tracking cookies/pixels for advertising purposes
Wealso use tracking cookies for the purpose of targeted and interest-based online advertising ("advertising cookies"). These cookies collect and store information about your use of our website in pseudonymous form. The legal basis for data processing is your consent according to Art. 6 para. 1 p. 1 lit. a DSGVO. Your consent can be revoked at any time. The legality of the processing based on your consent until revocation remains unaffected.
We use the information to serve ads on our website and on third-party websites (if they are part of our advertising network) that match your interests. This benefits you, too, because you are exposed to fewer ads overall that are not tailored to your interests. We also use the information to measure the success of our advertising campaigns and to optimize them.
Meta Pixel and Facebook Custom Audiences
We use a pixel (so-called "visitor action pixel") of the social network Facebook on our website ("Meta Pixel"), which is operated by Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta"). The Meta Pixel is directly integrated when you call up our website and can save a so-called cookie on your device. A connection to the Facebook servers is established via the Meta Pixel or the cookie when you visit our website. In the process, certain information about your user activities on our website are transmitted to Facebook. If you are registered with Facebook, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, it is possible that Facebook will merge your IP address and other identifiers with the data collected via the Meta Pixel (see "Custom Audiences").
We use the Meta pixel and the Facebook Conversions API for the following purposes:
Conversion: We use the Meta Pixel and the Facebook Conversions API to track the behavior of a website visitor who was redirected to our website after clicking on an ad placed on the Facebook social network. The procedure is used to evaluate the effectiveness of the ad for statistical and market research purposes and to optimize future advertising measures.
Custom Audiences: We also use the Meta Pixel and the Facebook Conversions API to present interest-based advertisements ("Facebook Ads") to visitors to our website when they visit the Facebook social network or websites of Facebook partners. For this purpose, Facebook defines visitors who have visited our website or have taken certain actions as a target group (so-called "Custom Audience") on the basis of the information transmitted via the Meta Pixel or the cookie and/or the Facebook Conversions API.
Insofar as we use the Meta Pixel for the Custom Audiences function, the processing of certain data (see the listing at https://www.facebook.com/legal/terms/businesstools_jointprocessing) takes place as a joint responsibility within the meaning of Art. 26 GDPR. This is limited exclusively to the collection of the data and its transfer to Facebook. Processing that takes place after the transfer to Facebook is not part of the Joint Controllership. The obligations incumbent on us jointly have been set out in a Joint Controller Agreement and can be viewed at the following link: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information when using the Facebook tool and for the privacy-secure implementation of the tool on our website. Facebook is responsible for the data security of the Facebook products. Data subject rights pursuant to Art. 13 et seq. GDPR (e.g. request for information) regarding the data processed by Facebook can be asserted directly with Facebook. If you assert your data protection rights with us, we will forward the request to Facebook.
For more information about Facebook's collection and processing of data, including the legal basis on which Facebook relies and the ways in which data subjects can exercise their rights against Facebook, please click here: https://www.facebook.com/about/privacy. Information about the Meta Pixel and how it works can be found here: https://www.facebook.com/business/help/742478679120153?id=1205376682832142.
You can view information about the Facebook Conversions API and how it works here: https://www.facebook.com/business/help/2041148702652965?id=818859032317965.
The legal basis for the data processing is your consent according to Art. 6 para. 1 s. 1 lit. a GDPR. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and at https://de-de.facebook.com/help/566994660333381.
IIf you want to prevent the use of the Meta Pixel, the Facebook Conversions API and/or the cookie, in addition to the above-mentioned options, you can change the advertising preferences at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. on Facebook. You must log in to Facebook to do so. The legality of the data processing on the basis of your consent remains unaffected by this until revocation.
The Meta Pixel is deleted after 3 months.
(5) Social media and other content
We integrate content like videos from platforms such as YouTube or Vimeo on our site. These services are only active with your consent and can be deactivated at any time. The legal basis for our use is your consent (Art. 6 para. 1 s. 1 lit. a GDPR), which you can revoke at any time. For example, if you view a page with an embedded YouTube video, general framework data such as your IP address may be transmitted back to the platforms through the embedding technology, regardless of whether you have a user account with the service via which you are logged in or whether no user account exists. If you are logged into your user account, your data can be directly assigned to your account.
We rely to a large extent, but not exclusively, on service providers based within the EU/EEA. However, even with service providers based within the EU/EEA, we cannot guarantee in individual cases that they will store and process your data on servers in countries outside the EU/EEA where data may not be protected in the same way as in the EU/EEA, in particular in the USA. The data transfer to the USA therefore takes place on the basis of of standard contractual clauses of the EU Commission.
We have no influence on how the platforms use the data, and if necessary also to create of user profiles. You have the right to object to the creation of these user profiles, whereby you must contact the respective platform to exercise this right. Please inform yourself directly at YouTube or Vimeo about this and adjust your privacy settings there.
If our website contains icons from social media providers like Facebook, Instagram, Twitter or TikTok, we also use these to passively link to the pages of the respective providers. If you click on these links, you will leave our website. The data processing on the websites of the social media providers is governed by the data protection provisions available there. Again, we point out that even in the case of link destinations within the EU/EEA remains a residual risk of being forwarded to a new destination in a country with a lower level of data protection or, due to the organizational structures of the service provider, a transfer to third parties in countries with a lower level of data protection cannot be completely ruled out (e.g. US Cloud Act).
In detail, we include content from the following providers (under the links you can find out about the respective privacy notices):
b) Visit our Facebook page/Instagram page
Our Facebook page, like our Instagram page, uses the services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland ("Meta"). If you are registered with one of these services, your visit to our Facebook/Instagram page may be linked to your account. Even if you are not registered there or have not logged in, it is possible that Facebook or Instagram receives and stores information such as your IP address. For more information on data processing, please visit https://de-de.facebook.com/policy.php or https://instagram.com/about/legal/privacy/.
Facebook provides the operators of fan pages with so-called Facebook Insights. These are summarized data, through which page operators can obtain information about how users interact with their page (details can be found here: https://www.facebook.com/legal/terms/information_about_page_insights_data).
Facebook and we are jointly responsible for the processing of this data pursuant to Art. 26 GDPR. We have concluded a Joint Controller Agreement with Meta.
The agreement is limited exclusively to the collection of the data and its forwarding to Facebook. Processing that takes place after the transfer by Facebook is not part of the joint responsibility. The obligations we share have been set forth therein and can be viewed at the following link: https://www.facebook.com/legal/controller_addendum.
Your rights pursuant to Art. 13 et seq. GDPR (e.g. request for information) regarding the data processed by Facebook can be asserted directly with Facebook. You can contact the data protection officer of the provider of the Facebook service at the following link: https://www.facebook.com/help/contact/540977946302970.
If you assert your data protection rights with us, we will forward the request to Facebook.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum,https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect and https://de-de.facebook.com/help/566994660333381.
We used the social media service TikTok provided by TikTok Pte. Ltd, 1 Raffles Quay, #26-10, South Tower, Singapore 048583.
On the platform TikTok we inform you with short videos and articles about current topics around events of our artists.
If you have a user account with TikTok, you can subscribe to our channel. Afterwards we will process the personal data contained in your profile name and profile picture for as long as you are subscribed to our site. If you stop subscribing to our site, we will no longer process your data. We also process the personal data of your profile name and picture when you "Like" a post of us, comment, link or share by setting hashtags. This also happens when you stop subscribing to our site.
Furthermore, we process your personal data from your profile if you send us a message via the contact function. In addition, we use the data that you voluntarily provide in your messages.
The legal basis for this processing by us is your consent pursuant to Art. 6 (1) p. 1 lit. a GDPR. The consent can be revoked at any time.
You are under no obligation to provide us with your personal data. However, the provision of your personal data goes hand in hand with the full use of the respective functions of the TikTok service and may not be possible without the provision.
In addition, we receive aggregated statistical data of all visitors to our pages through TikTok, regardless of whether they are members of TikTok or not. The legal basis for this processing by us is also your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR. It can be revoked at any time of .
TikTok processes your personal data primarily in Singapore and the USA. Data transfer outside the EU is based on the standard contractual clauses of the EU Commission. For more information about TikTok, please visit https://www.tiktok.com/legal/page/row/privacy-policy/en and https://www.tiktok.com/legal/tiktok-data-sharing-agreement.
The storage and analysis of the data are based on your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR and can be revoked by you at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.
You can change your Twitter privacy settings in your account settings at https://twitter.com/account/settings.
If you have expressly consented in accordance with Art. 6 para. 1 s. 1 lit. a GDPR, we store and use your email address to inform you in our newsletter by email about our offers, special promotions, information about artists and their releases, tours, competitions, news & updates, starts of presales and pre-sales, offers from third-party providers/partners (eventim, o2) and cooperations with charity projects & non-profit organizations. Your consent can be revoked at any time.
For the receipt of the newsletter, it is sufficient to provide an email address.
You can unsubscribe at any time, for example via the link at the end of each email. Alternatively, you can also send your unsubscribe request at any time by e-mail to firstname.lastname@example.org . In this case, your e-mail address will be deleted from our e-mail distribution list and added to our blacklist. The revocation of your consent will only be effective for the future. Processings before the revocation are not affected.
With the help of of Sendinblue, we are able to analyze and subsequently optimize our newsletter campaigns. We record, for example, the time at which the e-mail is opened and forwarded and the time at which the links contained therein are clicked, as well as the IP address (to determine the retrieval location) and the e-mail program used. This data is not linked to your e-mail address or other personal data, so that a direct personal reference is excluded for us. The evaluation is based on of aggregated usage statistics (e.g. delivery rate, open rate, click rate, number of forwards, number of clicks on the links contained in the e-mail, country of retrieval). For more information, please visit https://de.sendinblue.com/informationen-newsletter-empfaenger/.
If you do not want the pseudonymous analysis/evaluation by Sendinblue, you must unsubscribe from the newsletter.
f) Fulfillment of contractual and pre-contractual obligations (Art. 6 para. 1 s. 1 lit. b GDPR)
The processing of personal data (Art. 4 No. 2 GDPR) is carried out for the provision of this website and for the marketing of our products, in particular for signing and processing of contracts, for enabling and processing participation in competitions, for billing, for carrying out pre-contractual measures, for answering inquiries in connection with our business relationship and for all activities required with the operation and administration of our company.
The purposes of data processing depend primarily on the specific offer. Further details on the purpose of data processing in the context of of contracts or competitions can be found in the respective contract documents, terms and conditions, conditions of use or conditions of participation.
We offer you as a journalist the opportunity to submit accreditation requests for individual shows and download press material via a web form on our website. To do this, we ask for the medium/publication for which you want to attend the show, its type (e.g. print), the company, department and website, in which capacity you want to attend the show (e.g. as editor, photographer, TV team or freelancer), your first & last name, email address and phone number. In addition, you can send us further proof of your activity via a link or an upload window (e.g. preliminary reports or similar). If you meet the requirements for this accreditation, we will pass on your data to our partners (e.g. local promoter, agents, management, tour or band staff) for the purpose of approval and contacting you in the context of the accreditation on site, if this is necessary to enable you to attend the show. By submitting the accreditation request, you consent to this data processing. The basis of our data processing is your consent (Art. 6 para. 1 s. 1 lit. a GDPR). If we determine that you do not meet the requirements for accreditation according to the data you entered, we will delete your data immediately.
g) Within a balancing of interests (Art. 6 para. 1 s. 1 lit. f GDPR)
In addition, we process your data beyond the provision of the website and the actual performance of the contract for the protection of legitimate interests of us or third parties such as, in particular, in the following cases:
Our legitimate interest is to optimally market our offer and to further develop this and our company or to protect our company against impairments and dangers and to enforce its claims.
h) Based on your consent (Art. 6 para. 1 p. 1 lit. a GDPR)
Insofar as you have given us consent to process personal data for certain purposes (e.g. sending a newsletter, participation in a competition, accreditation), the lawfulness of this processing is based on your consent. Consent given can be revoked at any time. Please note that the revocation is only effective for the future. Processings before the revocation are not affected.
i) Due to legal requirements (Art. 6 para. 1 p. 1 lit. c DSGVO)
In addition, we are subject to various legal obligations, i.e. legal requirements (e.g. Money Laundering Act, tax laws), which require the processing of data.
3. Who gets my data?
Within our organization, your data will be accessed by those who need it to fulfill our contractual and legal obligations.
Furthermore, we pass it on to the following categories of recipients if it’s necessary for the fulfillment of a contractual relationship between you and us or for the implementation of pre-contractual measures (Art. 6 para. 1 s. 1 lit. b GDPR) or for the protection of legitimate interests (Art. 6 para. 1 s. 1 lit. f GDPR).
Where processing is necessary to protect legitimate interests, such as using logistics and IT services, our legitimate interest is to outsource functions.
In addition, your personal data will be disclosed or transferred if required by law (Art. 6 para. 1 s. 1 lit. c GDPR) or if you have consented (Art. 6 para. 1 s. 1 lit. a GDPR).
4. How long will my data be stored?
If required, we process and store your personal data in any case for the duration of our contractual relationship, which also includes, for example, the initiation and execution of a contract. It should be noted that, depending on the individual case, our contractual relationship may be a continuing obligation that lasts for years.
In the case of contractual relationships, but also in the case of other claims under civil law, the storage period is also governed by the statutory limitation periods, which, for example, under Para. 195 et seq. of the German Civil Code (BGB), are generally three years, but in certain cases can be up to thirty years.
In addition, we are subject to various retention and documentation obligations, which result, among other things, from the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods specified there are 6 years for correspondence in connection with the conclusion of a contract and 10 years for accounting vouchers and business letters (Para. 238, 257 (1) and (4) HGB, Para. 147 (1) and (3) AO).
Log files are deleted after 180 days. The storage period of cookies and similar technologies depends on the individual case (for more details, see section 2.).
Application data are usually deleted not later than six months after completion of the application process. Longer storage, e.g. due to inclusion in a talent pool, only takes place after we have obtained your express consent.
5. Are any data transferred to a third country or to an international organization?
For the processing of your data, we also use service providers located in third countries outside the European Union. These countries may have an inadequate level of data protection compared to EU standards. If there is no decision by the EU Commission that these third countries generally offer an adequate level of protection, we take special measures to ensure that your data are processed in the third countries as securely as within the European Union. Therefore we have taken guarantees for the protection of your data by concluding so-called standard data clauses within the meaning of Art. 46 (2) lit. c GDPR. In addition, we encrypt or pseudonymize personal data before transferring it to a service provider in a third country, if this is technically possible and appropriate.
6. Data security
Your personal data are transferred securely by us through encryption. We use the SSL (Secure Socket Layer) coding system for this purpose. We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
7. What data protection rights do I have?
You have the right to information (Art. 15 GDPR), the right to rectification (Art. 16 GDPR), the right to erasure (Art. 17 GDPR), the right to restriction of processing (Art. 18 GDPR) and the right to data portability (Art. 20 GDPR). With regard to the right to information and the right to deletion, the restrictions according to §§ 34 and 35 BDSG apply. You also have the right to object to data processing raised by us (Art. 21 GDPR). Insofar as our processing of your personal data is based on consent (Art. 6 para. 1 s. 1 lit. a GDPR), you may revoke this consent at any time; the lawfulness of the data processing raised on basis of your consent until revocation remains unaffected.
To exercise all these rights and for further questions on the subject of personal data, you can always contact our data protection officer or our postal address (see above point 1.).
Furthermore you have the right to lodge a complaint with a supervisory authority - in particular in the EU member state of your place of residence, your place of work or the place of the alleged infringement - if you believe that the processing of personal data concerning you violates the GDPR or other applicable data protection laws (Art. 77 GDPR, Section 19 BDSG).
8. To what extent is an automated decision-making in individual cases used?
For the establishment and implementation of the business relationship, we generally do not use fully automated decision-making pursuant to Art. 22 GDPR. If we use these procedures in individual cases, we will inform you separately, if required by law.
9. Connections to third-party servers
a) Amazon Cloudfront
We use the content delivery network Amazon CloudFront CDN. The provider is Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855, Luxembourg (hereinafter "Amazon"). Amazon CloudFront CDN is a globally distributed content delivery network. Technically, the information transfer between your browser and our website is routed via the Content Delivery Network. This allows us to increase the global accessibility and performance of our website. The use of Amazon CloudFront CDN is based on our legitimate interest in providing our website as error-free and secure as possible in accordance with Art. 6 para. 1 s. 1 lit. f GDPR.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://aws.amazon.com/de/blogs/security/aws-gdpr-data-processing-addendum/. For more information about Amazon CloudFront CDN, please visit: https://aws.amazon.com/privacy/?nc1=f_pr.
We have concluded the standard contractual clauses together with a Data Processing Agreement (DPA).
We host our website via Webflow. The provider is Webflow, Inc, 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA ("Webflow").
The use of Webflow is based on Art. 6 para. 1 s. 1 lit. f GDPR. We have a legitimate interest in the most reliable presentation of our website.
The data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://webflow.com/legal/eu-privacy-policy. We have concluded this together with an order processing contract with Webflow.
This privacy information is currently valid and has the status February 2023.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection information. The current data protection information can be accessed and printed out by you at any time on our website at https://en.dreamhaus.com/legal/datenschutz.