Privacy Policy

Privacy Policy - www.performingarts-festival.de

Hereinafter we inform you about the nature, scope and purpose of the processing of your personal data when using our website. Personal data is any information that relates to an identified or identifiable natural person.

The person responsible (“controller”) within the meaning of the EU General Data Protection Regulation (GDPR) is the natural or legal person which, alone or jointly with others, determines the purposes and means of the processing of personal data. The controller within the meaning of the GDPR for the personal data processed by the provider of this website is:

LAFT – Landesverband freie darstellende Künste Berlin e.V.
Im Ballhaus Ost, Pappelallee 15 10437 Berlin, Deutschland/Germany
Telefon/Phone: 0049-(0)30-33 84 54 52
E-Mail: info [at] laft-berlin.de
Board: Chang Nai Wen, Florian Bücking, Dagmar Domrös, Caroline Gutheil, Reto Kamberger, Marianne Ramsay-Sonneck, Daniel Schrader.

We have designated as our Data Protection Officer: Florian Hohnhorst

If you visit our website
When you visit our website, our server collects the following information from you: browser type and version, operating system used, the previously visited web page, IP address and time of the page view.
We collect and process this data in order to ensure the trouble-free operation of our website and to detect, fend off and prosecute a misuse of our services. Furthermore, we use the collected data for statistical purposes to evaluate, for example, with which terminals and browsers our platform is accessed in order to adapt our offer on the basis of the needs of users on an ongoing basis and to improve.
This data processing is based on Article 6 par. 1 f GDPR. We will delete the aforementioned data no later than twelve months after it has been collected.

Hosting service provider
As a technical service provider for the operation of our website on the Internet, we use the services of ALL-INKL.COM - Neue Medien Münnich (Inhaber: René Münnich Hauptstraße 68, 02742 Friedersdorf) as a processor in accordance with Article 28 GDPR.

Contact
If you send us a message by e-mail, we will save your message along with the sender details (your name, e-mail address, and any additional information added by your e-mail program) in order to be able to answer it and also to respond to possible subsequent questions (legal basis: Article 6 par. 1 f GDPR). For the reception, storage and sending of e-mails, we use an e-mail provider who acts for us as a processor in accordance with Article 28 GDPR.
We will erase the information collected from your message no later than six months after the last communication with you on your request, subject to the provision in the following paragraph.
If you send us a message with information legally relevant for the contractual relationship (e.g. a withdrawal or a complaint), the legal basis for the processing is Article 6 par. 1 b GDPR, regardless of how you transmitted your message to us. In such a case, we will erase the data related to your message as soon as all mutual claims arising from the contractual relationship have been completely settled and the commercial and fiscal retention periods have expired.

Job-applications
We process the data sent to us in connection with an (job) application in order to check the personal suitability of the sender for the position (or, if applicable, other open positions with us) and to carry out the application process. The legal basis for the processing of personal data in the application process is primarily § 26 German Federal Data Protection Act.
Upon completion of the application process, we may save this data to exercise our legitimate interests, e.g. assertion or defense against claims (legal basis: Article 6 par. 1 f GDPR). Data of applicants will be deleted in case of a rejection after expiry of the deadlines set by the funding bodies. In the case of employment with us, the data necessary for the employment relationship will be transferred from the successful application to our personnel information system. Only those persons have access to the applicant data, who need this for the proper execution of our application process.

Application for and participation in events
We process the data that is sent to us in connection with participation in events offered and/or carried out by us (e.g. open submissions, Berlin Diagonale Show Camp, Introducing) in order to check the suitability of the applicant for the event as well as to be able to respond to the submission and respond to any follow-up questions. For this purpose, we store your message with the sender data transmitted with it (name, e-mail address and any other information added by your e-mail program) as well as all other data that you have entered in the forms and questionnaires provided by us. (Legal basis: Article 6 par. 1 f GDPR).

After completion of the respective application procedure, we may further store this data to safeguard our legitimate interests, e.g. asserting or defending claims (legal basis: Article 6 par. 1 f GDPR ) and on the basis of the respective consent (legal basis: Article 6 par. 1 a GDPR ). In the event of a rejection, the data of applicants will become your concern at the latest six months after the last communication with you, subject to the provisions in the following paragraphs. In the event of participation in the respective event, the data necessary for the execution and settlement of the event will be transferred from the successful application to our participant database. In our case, only those persons have access to the applicant data who need it for the proper course of our application procedure.

Optionally, applicants can create access to an applicant account for our respective online application database on our website via our website. The data required for this and processed by us are derived from the input mask for opening the applicant account. The applicant account will only be set up at your request. The legal basis is therefore your consent pursuant to Article 6 par. 1 a GDPR.
If you send us a legally relevant declaration regarding a contractual relationship in connection with the respective event (e.g. granting of a power of attorney or termination), the legal basis for the processing, irrespective of the means of transmission, is also Article 6 par. 1 b GDPR. In such a case, we will delete the data associated with your declaration as soon as all mutual claims arising from the contractual relationship have been finally settled and the storage periods under commercial and tax law as well as the periods of the funding bodies* have expired.

Insofar as the respective applicant has given his consent, e.g. within the framework of the forms and questionnaires offered by us, we pass on the respective data (e.g. trade press and curators).

Participation in online/video conferences and webinars
Different data types are processed by us when you are participating in online/video conferences and webinars. The scope of the data depends on the information you provide before or during participation. For example, we will collect and store the following personal data during participation: first name, last name, e-mail address. In addition, the following meeting metadata will be stored: topic, description (optional), participant IP addresses, device/hardware information.
We also use the tools listed in the following sections for planning, preparation and execution.
If we record the respective online/video conference and/or webinars, we store files of all video, audio and presentation recordings and, if necessary, text file of an online meeting chat. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device are processed accordingly during the duration of the meeting. You can switch off or mute the camera or microphone at any time yourself using the respective applications.

If we want to record online/video conferences and webinars, we will inform you transparently in advance and - if necessary - ask for your consent. You will also be informed in the respective application whether a recording is taking place. Recorded online/video conferences and webinars will be integrated as video, audio and presentation recordings as live stream and as video on demand during the entire Performing Arts Festival Berlin 2020@home (PAF@home) on our festival website.
Insofar as personal data of participants are processed, Art. 6 par. 1 a DSGVO is the legal basis for data processing. If, in connection with participation in the respective online/video conference and/or webinar, personal data are not required for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject, but are nevertheless an elementary part of the participation, Art. 6 par. 1 f DSGVO is the legal basis for data processing. In these cases, we are interested in the effective implementation of the respective online/video conference and/or webinar and its documentation for the funding bodies. Otherwise, the legal basis for data processing in the implementation of the respective online/video conference and/or webinar is Article 6 par. b GDPR, insofar as these are carried out within the framework of contractual relationships.

Idloom

For the organisation of registrations for the PAF@home online events and meetings we will use the event management tool "idloom" of idloom s.a., Tervuren avenue 216, 1150 Brussels, Belgium (hereinafter referred to as "idloom"). For the use of this service the following data of the respective user is collected: Browser type and version, operating system, IP address and time of use of the tool, the given first and last name and the email address of the user.
We have agreed with idloom on the use of idloom to process orders in accordance with Article 28 GDPR. Further information about idloom's privacy policy can be found at: https://www.idloom.com/de/events/personal-data
We process this data electronically for the proper performance of the contract, in particular for the provision of our services. This data processing is based on Article 6 par. b GDPR.
We keep this data stored until all mutual claims arising from the respective contractual relationship with you have been settled in full.

Ecosero

For holding PAF@home online events and meetings, we use the web conference tool "ecosero" from Bilduin GmbH, Wilhelmstr. 92, 13593 Berlin (hereinafter referred to as "ecosero"). For the use of this service the following data of the respective user is collected: Browser type and version, operating system, IP address and time of entry and exit from the online event, the given first and last name and the email address of the user. If you provide further data during use (e.g. your telephone number, your organization company), we also process this data.
We have agreed with ecosero on order processing in accordance with Article 28 GDPR for the use of ecosero. Further information on ecosero's data protection declaration can be found at: https://www.ecosero.de/privacy
We process this data electronically for the proper performance of the contract, in particular for the provision of our services. This data processing is based on Article 6 par. b GDPR.
We keep this data stored until all mutual claims arising from the respective contractual relationship with you have been settled in full.

Whereby

For holding PAF@home online events and meetings we use the web conference tool "whereby" from Video Communication Services AS, Gate 1 no. 101, 6700 Måløy, Norway (hereinafter: "whereby"). For the use of this service the following data of the respective user is collected: Browser type and version, operating system, IP address and time of entry and exit from the online event, the given first and last name and the email address of the user. If you provide further data during use (e.g. your telephone number, your organization company), we also process this data.
We have agreed with whereby on the use of whereby to process orders in accordance with Article 28 GDPR. Further information on whereby's privacy policy can be found at: https://whereby.com/information/tos/privacy-policy/
We process this data electronically for the proper performance of the contract, in particular for the provision of our services. This data processing is based on Article 6 par. b GDPR.
We keep this data stored until all mutual claims arising from the respective contractual relationship with you have been settled in full.

Edudip

For holding webinars during PAF@home, we use the webinar tool "edudip" from edudip GmbH, Jülicher Straße 306, 52070 Aachen (hereinafter referred to as "edudip"). For the use of this service the following data of the respective user is collected: Browser type and version, operating system, IP address and time of entry and exit from the online event, the given first and last name and the email address of the user. If you provide further data during use (e.g. your telephone number, your organization company), we also process this data.
We have agreed with edudip on the use of edudip an order processing in accordance with Article 28 GDPR. Further information on edudip's privacy policy can be found at: https://www.edudip.com/de/datenschutz
We process this data electronically for the proper performance of the contract, in particular for the provision of our services. This data processing is based on Article 6 par. b GDPR.
We keep this data stored until all mutual claims arising from the respective contractual relationship with you have been settled in full.

Newsletter

If you have subscribed to our newsletter, we will inform you by e-mail about new offers and functions of our web site. You will not receive more than one newsletter a week. You can informally object to the use of your e-mail address for advertising purposes at any time, without incurring any costs other than the transmission costs according to the basic rates.
This data processing is based on your consent in accordance with Article 6 par. 1 a GDPR. If you revoke your consent to the use of your e-mail address for advertising purposes, we will delete your e-mail address from our newsletter mailing list.
As a technical service provider for the dispatch of our newsletter we use the service of the company Newsletter2Go GmbH (Köpenicker Str. 126, 10179 Berlin) (processor according to article 28 DSGVO).

Use of cookies

When you visit our web site, we place one or more “cookies” on your device. A cookie is a small text file that we use to recognize your device when you return to our web site for a later visit. With the help of cookies we can also analyze certain user behavior, for example, which content you are looking at, how long you stay on our site and when and how often you return to our web site. Cookies placed by us will be deleted no later than twelve months after your last visit to our shop.
This data processing is carried out on the basis of our legitimate interest to better tailor our product range to the wishes of our shop visitors and to optimise the shop functions and the efficiency of advertising measures (legal basis: Article 6 par. 1 f GDPR).
You can prevent the placing of cookies by going to the cookie settings of your Internet browser and switching off the use of cookies for our site or for all websites. In your browser settings, you can also delete cookies already stored.

Matomo

We use Matomo, a web analytics tool of InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand (hereafter "Matomo"). Matomo places a cookie on your device. With this cookie, Matomo can collect information about how you use our website. The data collected with Matomo will be stored on our own servers. A passing on to third does not take place. The legal basis is Article 6 par. 1 f GDPR, namely our legitimate interest in the evaluation and optimization of our internet site.
We use Matomo with activated IP anonymization. This means that your IP address will usually be shortened within the scope of the GDPR so that the IP can no longer be traced back to you. The IP address provided by your browser will not be merged with other data provided by you. You may prevent the use of cookies by selecting the appropriate settings on your browser.

Integration of services and contents of third parties

On our website we make use of third-party offerings (e.g. include videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites (collectively referred to as "content")). For this we rely on our legitimate interests in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 par. 1 f. GDPR. In doing so, the third-party provider will in each case perceive the IP address of the users, since they can not transmit the content to your browser without the IP address. We only use content whose providers only use the IP address to deliver the content.

Google Services

We use certain Google service for our online shop. If you visit our shop from a location within the European Union, Norway, Iceland, Liechtenstein or Switzerland “Google“ means Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, otherwise Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. As far as Google LLC provides services in the United States of America, Google has committed itself under the EU-US Privacy Shield Agreement to comply with the European Union’s data protection laws. General information on the use of data by Google may be found on the Google website at https://policies.google.com/technologies/partner-sites (“How Google uses information from sites or apps that use our services“).

Google Maps

Our web site uses “Google Maps“, a Google function for displaying road maps and aerial views. The “Google Maps” graphics will be transmitted from Google directly to your device when accessing a page on our site that contains such a “Google Map”. Google hereby receives your IP address, your operating system, your browser type, its version and possibly your geographic location and evaluates this information for their own business purposes.

Google Fonts

Our web site uses fonts provided by Google as “Google Fonts”. Google Fonts are downloaded directly from Google when you access our website from your device. Google hereby receives your IP address, your operating system, your browser type and its version and evaluates this information for their own business purposes.

YouTube-Videos

We include on our web site videos provided by “Youtube“, a Google service. The “Youtube” videos will be transmitted from Google directly to your device when accessing a page on our site that contains such a Video. For the associated use of data from your browser or terminal device, we refer you to Google's data protection information, because Google is responsible for the corresponding data processing.

Social Media

You may find Social Media buttons on your website; they can be recognized by the logos of the social media platforms (hereinafter “Platforms”) (Facebook: „f“ logo, Instagram: square camera logo). Clicking on such a button calls the respective Platform’s website; at the same time, the IP address of your device and the address of the page where the link is placed (“Referrer”) will be transmitted to the Platform. However, we neither collect nor otherwise process any data related to the use of these social media buttons.

Vimeo

On our website we integrate videos from the video portal "Vimeo". The provider is Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA (hereinafter referred to as "Vimeo").
When you access one of our pages on which a Vimeo video is embedded, a connection to the Vimeo servers is not yet established. This only happens when you actively click on the video. Vimeo then records which of our pages you have visited and your IP address. This also applies if you are not logged in to Vimeo or do not have a Vimeo account. If you are logged in to your Vimeo account, you allow Vimeo to directly assign your surfing behavior to your personal profile. You can prevent this by logging out of your Vimeo account.
We process this data electronically for the proper fulfillment of the contract, especially for the provision of our services. This data processing is based on article Article 6 par. 1 b GDPR. For more information on how we handle user data, please refer to the Vimeo privacy policy at: https://vimeo.com/privacy.
Within the framework of the EU-US Privacy Shield Agreement, Vimeo Inc. has undertaken to comply with the data protection laws of the European Union.

Yumpu

On our website we integrate graphic and PDF files via the "Yumpu" embedding tool. The issuu provider is i-magazine AG, Gewerbestrasse 3, 9444 Diepoldsau (hereinafter referred to as "i-magazine").
If you call up one of our pages on which such a graphic and/or PDF file is embedded, a connection to the i-magazine servers is not yet established. This only happens when you actively click on the respective graphic. I-magazine then stores which of our pages you have visited and your IP address. This also applies if you are not logged in to Yumpu or do not have an account with i-magazine.
We process this data electronically for the proper fulfilment of the contract, in particular for the provision of our services. This data processing is based on Article 6 par. 1 b GDPR. Further information on the handling of user data can be found in the i-magazine data protection declaration at: https://www.yumpu.com/en/info/privacy_policy.

Your Rights

With regard to your personal data we process, you have the following rights:
a) You have the right to obtain a confirmation from us as to whether we process personal data concerning you. If this is the case, we will inform you about the personal data stored about you and the further information in accordance with Article 15 par. 1 and 2 GDPR. b) You have the right to have your inaccurate personal data rectified without undue delay. Taking into account the purposes of processing, you also have the right to request the completion of incomplete personal data, including by means of providing a supplementary statement. c) You can demand the erasure of your personal data concerning you under the conditions of Article 17 par. 1 GDPR without undue delay, as far as their processing is not necessary according to Article 17 par. 3 GDPR.
d) You may demand that we restrict the processing of your data if one of the requirements of Article 18 par. 1 GDPR applies. In particular, you can request the restriction instead of an erasure.
e) We will communicate any rectification or erasure of your personal data and a restriction of processing to all recipients to whom we have disclosed your personal data, unless this proves impossible or involves a disproportionate effort. We will also inform you about these recipients if you request it.
f) You have the right to receive the personal data which you provide to us in a structured, commonly used and machine-readable format. You may also request that we transmit the data to another controller without hindrance, where technically feasible. g) As far as a data processing is based on your given consent, you have the right to, withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of the data processing based on consent before its withdrawal.

RIGHT TO OBJECT: ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, YOU MAY, AT ANY TIME, OBJECT TO PROCESSING OF YOUR PERSONAL DATA; this right applies to a processing, according to Article 6 par. 1 f DPRG, necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
If you exercise your right to object, we will no longer process the personal data in question unless we can demonstrate compelling legitimate grounds for processing that override the interests, rights and freedoms of you, or for the establishment, exercise or defense of legal claims.
IN CASE WE PROCESS PERSONAL DATA FOR DIRECT MARKETING PURPOSES (E.G. NEWSLETTER), YOU MAY, AT ANY TIME, OBJECT TO PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING, WITH THE RESULT THAT WE WILL NO LONGER PROCESS YOUR DATA FOR THESE PURPOSES.


If you believe that the processing of your personal data is in breach of the GDPR, you may lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement. This does not exclude other administrative or judicial remedies.