Android Dreams

Film

Privacy policy

I. Name and address of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States, as well as other data protection regulations, is:

Alexandra Georgi
12045 Berlin

Tel.: +49.030.24378485
Mail: info@android-dreams.de


II. Allgemeines zur Datenverarbeitung

1. Scope of the processing of personal data The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.


We do not use either:
Google Analytics, cookies, or Facebook – and other links.
We do not pass on any customer data to third parties.

2. Legal basis for the processing of personal data
Where we obtain the data subject’s consent for the processing of personal data, Article 6(1) 1 lit. a The EU General Data Protection Regulation (GDPR) as the legal basis.
In the case of the processing of personal data which is used for the performance of a contract, of which the data subject is a party, is necessary for, serves Art. 6(1) 1 lit. b GDPR as the legal basis. This applies also to processing operations that are necessary for the implementation of pre-contractual measures .
Insofar as the processing of personal data is necessary < a16> fulfilment of a legal obligation is required, to which our company is subject, serves Article 6(1) 1 lit. c The GDPR as the legal basis.
Where the processing of personal data is necessary to protect the vital interests of the data subject or of another natural person, Article 6(1) 1 lit. d GDPR as legal basis.
Is the processing necessary to safeguard a legitimate interest of our company or a third party necessary and do the interests fundamental rights and fundamental freedoms of the data subject the former interest not, then serves Art. 6(1) 1 lit. f GDPR as the legal basis for processing.

3. Data erasure and retention period
The personal data of the data subject shall be erased or restricted, as soon as the purpose of storage ceases to apply. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract. III. Provision of the website and creation of log files

1. Description and scope of data processing
Each time you visit our website is recorded on our website

  • Information about the browser type and version used
  • The user’s operating system
  • The user’s internet service provider
  • The IP address of the user
  • Date and time of visit
  • Websites from which the user’s system accesses our website
  • Websites that are accessed by the user’s system via our website

The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Legal basis for the processing of data
Legal basis for the temporary storage of data and the log files is Art. 6(1) 1 lit. f GDPR.

3. Purpose of data processing
The temporary storage of IP address by the system is necessary to ensure delivery of the website to the computer of the user to enable. For this purpose, the IP address of the user for the duration of the session stored remain.
The storage in log files takes place in order to ensure the functionality of the website is maintained. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. The data is not analysed for marketing purposes in this context.
These purposes also constitute our legitimate interest in data processing pursuant to Article 6(1) 1 lit. f GDPR.

4. Duration of storage
The data will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected. In the case of data collected for the purpose of providing the website, this is the case once the respective session has ended.
In the case of data stored in log files, this is the case after seven days at the latest. Storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated so that it is no longer possible to assign the calling client.

5. Right to object – and right to erasure
The collection of data for the provision of the website and the storage of the data in log files is for the operation of the website absolutely essential. Consequently, there is no possibility for the user to object.

IV. Use of cookies Not applicable
We do not use any a9> our website do not use cookies. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your device and do not contain any viruses, Trojans or other malware.
The cookie stores information relating to the specific device being used. However, this does not mean that we thereby gain direct knowledge of your identity.
The use of cookies serves, on the one hand, to make your experience of our website more pleasant. We use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted when you leave our site.
In addition, we also use temporary cookies to improve user-friendliness; these are stored on your device for a specific, predefined period. If you visit our site again to use our services, the system will automatically recognise that you have previously visited us and recall the entries and settings you have made, so that you do not have to re-enter them.
The data processed by cookies is used for the aforementioned purposes to safeguard our legitimate interests and those of third parties in accordance with Article 6(1) 1 S. 1 lit. Required under the GDPR.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.
V. SSL or TLS encryption

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses an SSL or SSL-encrypted connection. TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and the lock symbol in the browser line.
VI. E-Mail Contact

When contacting us (e.g. by e-mail, telephone or via social media), the user’s details are used to process the contact request and its handling in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 Abs. 1 lit. b) GDPR processed. User data may be stored in a customer relationship management system or a similar enquiry management system.
We delete enquiries once they are no longer required. We review the necessity of retaining this data every two years; furthermore, statutory retention obligations apply.
VII. Online Presence in Social Media

Where we maintain an online presence on social networks and platforms in order to communicate with customers, prospective customers and users active on those platforms and to inform them about our services, the following applies: When accessing the respective networks and platforms, the terms and conditions and data processing policies of their respective operators apply.
Unless otherwise stated in our privacy policy, we process users’ data where they communicate with us on social media networks and platforms, e.g. by posting on our online presence or sending us messages.
VIII. Services

We process the data of our customers as part of our contractual services, which include the delivery of scientifically based relaxation music.

Here, we process inventory data (e.g., customer master data such as names or addresses), contact data (e.g., email, telephone numbers), content data (e.g., text entries, photographs, videos), contract data (e.g., contract object, duration), and payment data (e.g., bank details, payment history). We generally do not process special categories of personal data unless they are part of a commissioned processing. The data subjects include our customers, prospective customers, as well as their customers, users, website visitors, or employees, and third parties. The purpose of the processing is to provide contract services, billing, and customer service. The legal basis for the processing is derived from Article 6 1 lit. b GDPR (contractual services), Article 6(1) lit. b 1 lit. f GDPR (analysis, statistics, optimization, security measures). We process data that is necessary for the establishment and fulfillment of contractual services and emphasize the necessity of providing this information. Disclosure to external parties only occurs if it is necessary within the scope of a contract. When processing data entrusted to us within the scope of a contract, we act in accordance with the instructions of the client and the legal requirements of order processing according to Article 28 of the GDPR, and we process the data for no other purposes than those stipulated in the contract.

We delete the data upon expiration of legal warranty and similar obligations. The necessity of retaining the data is reviewed every three years; in the case of legal archiving obligations, deletion occurs after their expiration (6 years, in accordance with § 257 (1) HGB, 10 years, in accordance with § 147 (1) AO). IX. Administration, Financial Accounting, Office Organization, Contact Management

We process data as part of administrative tasks and the organization of our business, financial accounting, and compliance with legal obligations, such as archiving. Here, we process the same data that we process in the provision of our contractual services. The legal bases for processing are Article 6, 1 lit. c. GDPR, Art. 6 Abs. 1 lit. f. GDPR. The processing concerns customers, prospective customers, business partners, and website visitors. The purpose and our interest in the processing lie in the administration, financial accounting, office organization, and archiving of data, which are tasks that serve the maintenance of our business activities, the fulfillment of our duties, and the provision of our services. The erasure of data relating to contractual services and contractual communications is carried out in accordance with the information provided in relation to these processing activities.
In this context, we disclose or transfer data to the tax authorities, advisers such as tax consultants or auditors, as well as other fee-charging bodies and payment service providers.
Furthermore, based on our business interests, we store information on suppliers, event organisers and other business partners, e.g. for the purpose of contacting them at a later date. We generally store these predominantly company-related data permanently.
X. Rights of the data subject
If your personal data is being processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

1. Right of access
You may request from the controller a a10> confirmation regarding whether personal data relating to you is being by us processed are.
If such processing takes place, you may request from the data controller regarding the following information information:

  • the purposes for which the personal data are processed;
  • the categories of personal data being processed;
  • the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
  • the planned duration of the storage of personal data concerning you, or if specific information on this is not possible, the criteria used to determine the storage period;
  • the existence of the right to rectification or erasure of personal data concerning you, the right to restriction of processing by the controller, or the right to object to such processing;
  • the existence of the right to lodge a complaint with a supervisory authority;
  • all available information about the origin of the data if the personal data was not collected from the data subject;
  • the existence of automated decision-making, including profiling, pursuant to Article 22 1) and (4) of the GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
  • You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you can demand to be informed about the appropriate safeguards according to. Article 46 of the GDPR in connection with the transmission.

2. Right to rectification
You have the right to request that the controller rectify and/or complete your personal data if the personal data processed concerning you is inaccurate or incomplete. The controller shall make the correction without undue delay.

3. Right to restriction of processing
Subject to the following conditions you may request the restriction of the processing of the personal data relating to you:

  • if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
  • if the processing is unlawful, and you oppose the erasure of the personal data and request the restriction of their use;
  • if the controller no longer needs the personal data for the purposes of processing, but you require them for the establishment, exercise, or defense of legal claims; or
  • if you have objected to processing pursuant to Article 21(1) of the GDPR, pending the verification whether the legitimate grounds of the controller override your grounds. 1 GDPR and it has not yet been determined whether the controller’s legitimate grounds override your interests.
  • Where the processing of your personal data has been restricted, such data may – apart from storage – only be processed with your consent, or for the establishment, exercise or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of an important public interest of the Union or of a Member State.

If the restriction on processing has been imposed in accordance with the above conditions, the controller will inform you before the restriction is lifted.

4. Right to erasure

a) Obligation to erase data
You may request that the controller erase your personal data without delay, and the controller is obliged to erase this data without delay if any of the following grounds apply:

  • The personal data concerning you is collected for the purposes, for which it was collected or in any other manner processed is no longer are no longer necessary.
  • You are withdrawing your consent on which the processing is based in accordance with Art. 6 Abs. 1 lit. was based on Article 9(2)(a) of the GDPR, and there is no other legal basis for the processing.
  • You may lodge an objection to the processing of your personal data and there are no overriding legitimate reasons for the processing to prevail, or you object pursuant to Article 21(2) of the GDPR to the processing of your data.
  • The personal data relating to you has been unlawfully processed.
  • The deletion of the personal data relating to you is required fulfilment of a legal obligation under Union law or the law of the Member States is required, to which the controller is subject.
  • The personal data concerning you has been collected in connection with the information society services offered, in accordance with Article 8(1) of the GDPR.
  • Information to third parties

Where the controller has made personal data concerning you public and is obliged to erase such data in accordance with Article 17(1) of the GDPR, the controller shall, taking into account the available technology and the cost of implementation, take reasonable steps, including technical measures, to inform controllers who process the personal data that you, as the data subject, have requested the erasure of all links to that personal data or of copies or replicas of that personal data.

b) Exceptions
The right to erasure does not apply where processing is necessary

  • to exercise the right to freedom of expression and information;
  • for the fulfilment of a legal obligation which requires the processing under the law of the Union or of the Member States, to which the controller is subject, requires, or for the performance of a task which is in the public interest lies or is carried out in the exercise of public authority, which has been a30> person responsible has been entrusted;
  • on grounds of public interest in the area of public health pursuant to Article 9(2)(h) and (i) and Article 9(3) of the GDPR;
  • for archiving purposes in the public interest, scientific or historical research purposes, or for statistical purposes in accordance with Article 89(1) of the GDPR, in so far as the right referred to in point (a) is likely to render impossible or seriously impair the achievement of the objectives of such processing, or
  • for the purpose of asserting, exercising or defending legal claims.

5. Right to be informed
Do you have right to rectification, erasure or restriction of the processing against the controller asserted by, is the latter obliged, to all recipients, to whom the personal data relating to you have been disclosed, such rectification or erasure of the data or restriction of the processing notified, unless it is impossible to do so or a47> impossible or is associated with a disproportionate burden .
you have a right against the controller to right to, be informed about these recipients receive.

6. Right to data portability
You have the right to have the personal data relating to you provided by you to the a16> controller have provided, in a structured, commonly used and machine-readable format to receive. Furthermore you have the right to have this data transferred to another controller without hindrance. a34> other controller without hindrance from the controller, to whom the personal data was provided by, to transfer, provided that

  • the processing based on a consent in accordance with Article 6 1 lit. a GDPR or Art. 9 Abs. 2 lit. a GDPR oder auf einem Vertrag gem. Art. 6 Abs. 1 lit. b GDPR is based on and
  • the processing is carried out using automated means.
  • In exercising this right, you also have the right to have your personal data transferred directly from one controller to another, provided this is technically feasible. This must not infringe upon the rights and freedoms of others.

The right to data portability does not apply the processing of personal data which is necessary the performance of a task is necessary is, which is in the public interest or is carried out in the exercise of public authority which has been entrusted to the a25> person responsible has been entrusted.

7. Right to object
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1) 1 lit. to object to processing carried out pursuant to Article 18(e) or (f) of the GDPR; this also applies to profiling based on these provisions.
The data controller no longer processes your personal data unless …, since a9> as, he can demonstrate compelling legitimate reasons for the processing demonstrate, which your interests, rights and freedoms take precedence, or the processing serves the assertion, exercise or defence of legal claims.
If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purposes of such marketing; this also applies to profiling insofar as it is related to such direct marketing.
If you object to the processing of your personal data for direct marketing purposes, your personal data will no longer be processed for those purposes.
You have the right to object to the use of information society services – notwithstanding Directive 2002/58/EC – by means of automated procedures that utilise technical specifications.

8. Right to withdraw consent under data protection law
You have the right to withdraw your consent under data protection law at any time. Withdrawing your consent does not affect the lawfulness of any processing carried out on the basis of that consent prior to its withdrawal.

9. Automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

  • for the conclusion or performance of a contract between you and the controller is required to,
  • is permitted under Union or Member State law to which the controller is subject, and that law provides for appropriate safeguards to protect your rights and freedoms and your legitimate interests; or
  • with your express consent.

However, these decisions must not be based on special categories of personal data as referred to in Article 9(1) of the GDPR, unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to safeguard your rights and freedoms as well as your legitimate interests.
With regard to the cases referred to in points (1) and (3), the controller shall take appropriate measures to safeguard your rights and freedoms and legitimate interests, including at least the right to request the intervention of a person on the part of the controller, to state your own point of view and to challenge the decision.

10. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or the place where the alleged infringement occurred, if you consider that the processing of personal data relating to you infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the progress and outcome of the complaint, including the possibility of a judicial remedy under Article 78 of the GDPR.