The protection of your personal data is important to us. During all processing procedures, we act in compliance with the statutory provisions. In the following text, we inform you in accordance with Article 12-14 of the General Data Protection Regulation (DSGVO) on the handling of your personal data during the use of our website https://www.spielingo.com.
Personal data comprises individual information on the personal or material circumstances of a certain or an identifiable natural person. This information includes the real name, the address, the telephone number and the date of birth.
Responsible in terms of the DSGVO:
Petra Barnes & Birgit Floßdorf GbR (Spielingo)
Zur Schafstränke 27
Telephone: +49 0151 2312 4593
Contact details Corporate Data Privacy Officer: Birgit Floßdorf
Zur Schafstränke 27
Telephone: 0351 65561007
Right of information: You are authorised at any time within the scope of Art. 15 GDPR to request a confirmation as to whether we process appropriate personal data; if this is the case, you shall furthermore be authorised within the scope of Art. 15 GDPR to receive information on this personal data and certain other information (amongst other things the processing purposes, categories of personal data, categories of recipients, the planned storage duration, the origin of the data, the use of automated decision-making and, in case of the transfer of data to a non-member state, the appropriate guarantees) and a copy of your data.
Right of rectification: You are authorised to request in accordance with Article 16 GDPR a rectification of the personal data we have stored if this is incorrect or erroneous.
Right of deletion: You are authorised subject to the prerequisites laid down in Article 17 GDPR to request that we delete personal data concerning you without delay. The right of deletion shall not, amongst other things, exist if the processing of the personal data is required for (i) the exercising of the right to freedom of opinion and information, (ii) the fulfilment of a legal obligation to which we are obligated (e.g. statutory storage obligations) or (iii) the assertion or exercising of legal claims or the defence against legal claims.
Right of limitation of processing: You are authorised subject to the prerequisites laid down in Article 18 GDPR to request that we limit the processing of your personal data.
Right of data portability: You are authorised subject to the prerequisites laid down in Article 20 GDPR to request that we hand over to you the personal data concerning you and which you have provided to us, in a structured, conventional and machine-readable format.
Right of revocation: You have the right to revoke your consent to the processing of personal data at any time with effect for the future.
Right of objection: You are authorised subject to the prerequisites laid down in Article 21 GDPR to file an objection against the processing of your personal data, meaning that we must terminate the processing of your personal data. The right of objection only exists within the limits provided for in Article 21 GDPR. In addition, our interests may contradict termination of the processing, meaning that we may remain authorised to process your personal data in spite of your objection.
Right of appeal to a supervisory authority: You are authorised subject to the prerequisites laid down in Article 77 GDPR to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your workplace or the location of the suspected infringement, if you are of the opinion that the processing of the personal data concerning you violates the GDPR. The right of appeal shall exist irrespective of any other administrative or judicial rights of appeal.
The supervisory authority responsible for us is:
Der/Die Landesbeauftragte für den Datenschutz
Telefon: 0351 - 493 5401
Telefax: 0351 - 493 5490
However, we recommend that you always initially direct any complaints to our Data Protection Coordinator. Your applications for the exercising of your rights should if possible be sent in writing to the address stated above, or directly to our Corporate Data Privacy Officer.
Article 22 of the DSGVO protects you against decisions in individual cases that are only automated, including profiling.
Informational use of our Website:
If you use our Website your data will be processed. Since this is potentially done without an explicit prompt by any user, these possible processing operations are presented in context below.
The following information is provided on these processing operations within the scope of tour website in accordance with Article 12-14 DSGVO.
When you visit our website, we collect data about every access to our offer. Access data includes, where applicable: Name of the webpage accessed, file name, IP address, date and time of access, method of access (Get/Post), protocol (e.g. http), status (e.g. error messages), data quantity retrieved, referrer-URL, user's browser and operating system.
The stored data may allow identification. The access data is anonymised immediately after the collection, so that no conclusion can be drawn about you as a person.
The access data are processed by our host provider Deutsche Telekom AG on our behalf.
We use the access data for the following purposes:
- For statistical evaluations for operational purposes and to optimize our offer. This is done without IP address or shortened IP address such that we cannot identify you as a person. This processing is carried out on the basis of Article 16 (1) (f), the legitimate interest being to optimise operations and supply. We protect your fundamental rights interests by ensuring that you can no longer be identified as a person.
- Your data will be processed up to 7 days after the end of the usage process to detect and eliminate faults. The processing for this purpose is carried out with data that may allow your identification as a person. The processing is carried out on the basis of Article 6(1)(f) of the DSGVO, whereby the legitimate interest lies in the security and maintenance of our business. The processing serves the recognition of complex and longer lasting attack patterns. If, within the aforementioned 7 days, there are no concrete indications of a malfunction for which the data is required, the data will be deleted.
- If there are concrete indications of a malfunction, service sneaking or other unlawful use, the data required to eliminate the malfunction and for evidence purposes will be processed beyond the period of 7 days until they are no longer required for these purposes. The processing is carried out on the basis of Article 6 (1)(f) DSGVO, the legitimate interests being the remedying of disturbances and the provision of evidence. After the end of the requirement, the data will be deleted.