The person responsible within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
HALLMANN
Horst & Klaus Hallmann
Nordwall 106, D-47798 Krefeld
Phone.: +49 (0) 162 3557209, E-Mail: info@ping-pong-records.eu
Responsible for content: Horst & Klaus Hallmann
Hosting
We host our website with the provider Strato AG. Registered office of the stock corporation Strato AG: Otto-Ostrowski-Straße 7, 10249 Berlin. When you visit our website, Strato AG collects various log files including your IP addresses. Strato AG is obliged to comply with applicable data protection laws.
For further information, please refer to Strato AG's data protection declaration at the following link: Source: https://www.strato-hosting.co.uk/privacy-policy/
The use of Strato AG is based on Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is presented as reliably as possible. If appropriate consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and Para. 25 Art. 1 TTDSG, as far as consent the storage of cookies or access to information on the user's device (e. g. Device-Fingerprinting) is within the meaning of the TTDSG. Consent can be revoked at any time.
Order processing
We have concluded an order processing contract (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that we only process the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
Source: Here you can find out more about the order processing agreement (AVV) and the new EU General Data Protection Regulation (GDPR).
What data does STRATO AG process when someone visits our website?
You can also visit this website without providing any personal information. However, in order to improve our online offering, we store your access data to this website (without personal reference). When you access our website, the IP addresses of visitors are recorded and stored in log files. STRATO AG stores the IP addresses of visitors to our website for a maximum of seven days to detect and defend against attacks.
Source: Here you can find out more about which data STRATO AG processes?
GDPR and LOG files, what data is collected by STRATO AG?
Log data are data that STARTO AG automatically collects and stores when you visit our website. For example, STRATO AG logs access to image, sound or HTML files. All this data is recorded in a so-called log file. Based on the log data, STRATO AG creates statistics and uses the evaluation of the data to optimize the services and tries to detect and ward off attacks and optimize the services accordingly.
What data does STRATO AG collect?
Customer domain: We record which domain log data is stored for.
Anonymized client IP: In order to identify where our servers may be attacked from, we collect IP addresses. As is standard practice in the industry, we store these for a maximum of seven days. They are then anonymized.
Timestamp: This indicates on which day and at what time the visitor accessed a website.
Request line: This is the path of the destination address without the domain.
Status Code: You've probably seen a 404 page before. This is always displayed when a page or file that is being accessed cannot be found. 404 is the status code that tells us that the visitor wanted to access a non-existent page.
Response body size: When the visitor goes to our website, they download temporary data. These are, for example, the images and texts that the visitor sees in their browser. The log file indicates how large this data is.
Referrer sent by client: This field shows which page the website visitor came from.
User agent sent by the client: This includes, for example, information about the type and version of the browser and operating system that the visitor is using.
Remote User, normally this field remains empty. We only store data about this if there is a login process on the website that is based on http-Basicauth. This is a now outdated procedure that allows visitors to authenticate themselves to your website, for example by logging into a customer area. However, the vast majority of websites now use a different method that works with Javascript. In this case, no remote user is saved.
Source: Find out more about GDPR, log data and what data is collected?
How does STRATO AG ensure that the data processed by STRATO AG is protected from unauthorized access by third parties?
The STRATO AG data centers are also checked and certified for data security by TÜV Süd according to ISO 27001. The data is protected against unauthorized access by various security mechanisms. They are located in a data pool that is logically separated from the data of other customers (e.g. pool zones, login delimitation, etc.)
Source: https://www.strato-hosting.co.uk/faq/product/questions-about-contract-data-processing-cdp-and-the-new-eu-general-data-protection-regulation-gdpr/#adv_neu
Collection of general information
Type and purpose of processing
When you access our website, i.e. if you do not register or otherwise submit information, information of a general nature is automatically collected. This information (server log files) includes the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and similar.
They are processed in particular for the following purposes
Ensuring problem-free connection to the website,
Ensuring smooth use of our website,
Evaluation of system security and system stability, as well as to optimize our website. We do not use your data to draw conclusions about you personally. Information of this type may be statistically evaluated by us anonymously in order to optimize our website and the technology behind it.
Legal basis and legitimate interest
Processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on our legitimate interest in improving the stability and functionality of our website.
Recipient
Recipients of the data may be technical service providers who act as contract processors for the operation and maintenance of our website.
Third country transfer
The data collected may be transferred via the hosting provider to the third countries Singapore and the USA. The standard contractual clauses are available as data protection guarantees.
Storage period
The data will be deleted as soon as it is no longer required for the purpose of collection. This is generally the case for the data used to provide the website when the respective session has ended. If the data is stored in log files, this is the case after 14 days at the latest. Storage beyond this is possible. In this case, the users' IP addresses are anonymized so that it is no longer possible to assign the calling client.
Provision required or necessary
The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website cannot be guaranteed. In addition, individual services may be unavailable or restricted. For this reason, an objection is excluded.
Cookies
Like many other websites, our website uses “cookies”.
Cookies are small text files that are transferred to your hard drive by a website server. This automatically saves certain data such as: e.g. IP address, used browser, operating system of your computer and your connection to the Internet.
Cookies cannot be used to start programs or transmit viruses to a computer. Using the information contained in cookies, we can make navigation easier for you and enable our websites to be displayed correctly.
Under no circumstances will the data we collect be passed on to third parties or linked to personal data without your consent.
Of course, you can generally view our website without cookies. Internet browsers are regularly set to accept cookies. You can deactivate the use of cookies at any time via your browser settings. Please use the help functions of your internet browser to learn how to change these settings. Please note that individual functions of our website may not work if you have deactivated the use of cookies.
Use of script libraries (Google Webfonts)
In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries on our website such as: e. g. Google Webfonts (https://www.google.com/webfonts/). Google web fonts are transferred to your browser's cache to avoid multiple loading. If the browser does not support Google Web Fonts or prevents access, content will be displayed in a standard font.
Calling script libraries or font libraries automatically triggers a connection to the library operator. It is theoretically possible - although it is currently unclear whether and, if so, for what purposes - that operators of corresponding libraries collect data.
The privacy policy of the library operator Google can be found here:
https://policies.google.com/privacy?hl=en-US
SSL encryption
In order to protect the security of your data during transmission, the current state of the art encryption method (e.g. SSL) is used via HTTPS.
Email/contact form
If you contact us via email or contact form, the information you provide will be stored for the purpose of processing the request and for possible follow-up questions.
Your data subject rights
You can exercise the following rights at any time using the contact details provided by our data protection officer:
Information about your data stored by us and its processing (Article 15 GDPR),
Correction of incorrect personal data (Article 16 GDPR),
Deletion of your data stored by us (Article 17 GDPR),
Restriction of data processing if we are not yet allowed to delete your data due to legal obligations (Art. 18 GDPR),
Objection to the processing of your data by us (Art. 21 GDPR) and
Data portability, provided you have consented to data processing or have concluded a contract with us (Article 20 GDPR).
If you have given us your consent, you can revoke it at any time with future effect. You can contact a supervisory authority at any time with a complaint, e.g. to the responsible supervisory authority in the federal state of your place of residence or to the authority responsible for us.
You can find a list of supervisory authorities (for non-public areas) with addresses a: https://www.bfdi.bund.de/EN/Service/Anschriften/Laender/Laender-node.html
Information about your right to object according to Art. 21 GDPR
Right to object on a case-by-case basis
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you, which is carried out on the basis of Article 6 Paragraph 1 Letter f of the GDPR (data processing based on a balance of interests); This also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Recipient of an objection
HALLMANN
Horst & Klaus Hallmann
D-47798 Krefeld, Nordwall 106
Phone: +49 (0) 162 3557209, E-Mail: info@ping-pong-records.eu
Changes to our privacy policy
We reserve the right to adapt this data protection declaration so that it always complies with current legal requirements or to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.
Questions for the data protection officer
If you have any questions about data protection, please write us an email or contact the person responsible for data protection in our organization directly.
Klaus Hallmann
D-47798 Krefeld, Nordwall 106
Phone: +49 (0) 162 3557209, E-Mail: info@ping-pong-records.eu
The data protection declaration was created with the help of activeMind AG, the experts for external data protection officers (Version #2020-09-30).