Privacy Policy

We are very pleased that you are interested in our company.Use of the Moodstories website.is basically possible without any indication of personal data.However, if a data subject wants to use special company services via our website, processing of personal data could become necessary.If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject is always in accordance with the General Data Protection Regulation and in accordance with the Moodstories.applicable country-specific data protection regulations.By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process.Furthermore, data subjects are informed of the rights to which they are entitled by means of this data protection declaration.

Moodstories, as the controller responsible for processing, has implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via this website.Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed.For this reason, every person concerned is free to transmit personal data to us in alternative ways, for example by telephone.

1.Definitions

The Moodstories data protection declaration is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR).Our data protection declaration should be legible and understandable for the general public as well as for our customers and business partners.To ensure this, we would like to explain the terms used in advance.

In this data protection declaration, we use the following terms, among others:

a) personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject").A natural person is considered to be identifiable if, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.

b) data subject

Data subject is any identified or identifiable natural person whose personal data is processed by the controller.

c) Processing

Processing is any process carried out with or without the help of automated processes or any such process series in connection with personal data such as collecting, recording, organizing, organizing, storing, adapting or changing, reading out, querying, the use, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction.

d) restriction of processing

Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.

e) profiling

Profiling is any type of automated processing of personal data that consists of using this personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze aspects relating to work performance, economic situation, analyze or predict that natural person's health, personal preferences, interests, reliability, conduct, whereabouts or relocation.

f) Pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is stored separately and is subject to technical and organizational measures that ensure that the personal data are not assigned to an identified or identifiable natural person.

g) Responsible or responsible for processing

Responsible or responsible for processing is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data.If the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States.

h) processor

Processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the person responsible.

i) Receiver

Recipient is a natural or legal person, public authority, agency or other body to which personal data is disclosed, regardless of whether it is a third party or not.However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.

j) third party

Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct responsibility of the controller or processor, are authorized to process the personal data.

k) Consent

Consent is any expression of will voluntarily given by the data subject in an informed manner and unequivocally for the specific case in the form of a declaration or other clear confirmatory action, with which the data subject indicates that they are processing the data concerning them agrees to personal data.

2.Name and address of the person responsible for processing

Responsible within the meaning of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions of a data protection nature is:

3.Cookies

The Moodstories website uses cookies.Cookies are text files that are filed and saved on a computer system via an Internet browser.

Numerous websites and servers use cookies.Many cookies contain a so-called cookie ID.A cookie ID is a unique identifier of the cookie.It consists of a character string through which websites and servers can be assigned to the specific internet browser in which the cookie was stored.This enables the visited websites and servers to distinguish the individual browser of the person concerned from other internet browsers that contain other cookies.A specific internet browser can be recognized and identified via the unique cookie ID.

Through the use of cookies, Moodstories can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

By means of a cookie, the information and offers on our website can be optimized for the user.As already mentioned, cookies enable us to recognize the users of our website.The purpose of this recognition is to make it easier for users to use our website.For example, the user of a website that uses cookies does not have to re-enter their access data each time they visit the website because this is done by the website and the cookie stored on the user's computer system.Another example is the cookie of a shopping cart in the online shop.The online shop uses a cookie to remember the items that a customer has placed in the virtual shopping cart.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies.Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs.This is possible in all common Internet browsers.If the person concerned deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

4.Collection of general data and information

The Moodstories website collects a series of general data and information each time the website is accessed by an affected person or an automated system.This general data and information is stored in the log files of the server.The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites, which are accessed via an accessing system on our website can be controlled, (5) the date and time of access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information used to avert threats in the event of attacks on our information technology systems.

When using these general data and information, the PB 0110 e.Kno conclusions about the data subject.Rather, this information is required to (1) deliver the content of our website correctly, (2) optimize the content of our website and the advertising for it, (3) ensure the long-term functionality of our information technology systems and the technology of our website and ( 4) to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack.This anonymously collected data and information is therefore evaluated by Moodstories statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data we process.The anonymous data of the server log files are stored separately from all personal data provided by an affected person.

5.Legal basis of processing

Art.6 I lit.a DS-GVO serves our company as the legal basis for processing operations in which we obtain consent for a specific processing purpose.If the processing of personal data is necessary to fulfill a contract to which the data subject is party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of another service or consideration, the processing is based on kind6 I lit.b GDPR.The same applies to such processing operations that are necessary to carry out pre-contractual measures, for example in the case of inquiries about our products or services.Is our company subject to a legal obligation which requires the processing of personal data, such as the fulfillment of tax obligations, the processing is based on Art.6 I lit.c GDPR.In rare cases, the processing of personal data could become necessary to protect the vital interests of the data subject or another natural person.This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party.Then the processing would be based on Art.6 I lit.d DS-GVO.Ultimately, processing operations could be based on Art.6 I lit.f DS-GVO.Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that the interests, fundamental rights and fundamental freedoms of the person concerned do not prevail.Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator.In this respect, he took the view that a legitimate interest could be assumed if the data subject is a customer of the person responsible (recital 47 sentence 2 DS-GVO).

6.Legitimate interests in processing pursued by the controller or a third party

Is the processing of personal data based on Article 6 I lit.f DS-GVO is our legitimate interest in conducting our business for the benefit of all our employees and our shareholders.

7.Duration for which the personal data is stored

The criterion for the duration of the storage of personal data is the respective statutory retention period.After the deadline has expired, the corresponding data will be routinely deleted, provided that they are no longer required to fulfill the contract or to initiate a contract.

8.Statutory or contractual requirements for providing the personal data; Necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

We clarify that the provision of personal data is partly required by law (e.g.Btax regulations) or from contractual regulations (e.g.Binformation on the contractual partner).Sometimes it may be necessary for a contract to be concluded that a person concerned makes personal data available to us, which must then be processed by us.For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them.Failure to provide the personal data would mean that the contract with the data subject could not be concluded.Before personal data is provided by the data subject, the data subject must contact one of our employees.Our employee clarifies to the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences would be if the personal data were not provided.