Multiplatform Data Protection
We take the protection of your data very seriously. We want you to feel confident when using our app. Here you can find out what data we collect and how we use it. The relevant legal basis is the EU General Data Protection Regulation (GDPR) and other state and federal laws on data protection.
NAME AND ADDRESS OF THE DATA CONTROLLER
Name and address of the Data Controller
ZDF Digital Media Production GmbH
Tel.: +49 (0)6131 5533 300
Fax: +49 (0)6131 5533 533
Managing Director: Micheal Kollatschny
Mainz 90 District Court, Commercial Register (Part B) 7384
VAT ID No.: DE211473939
is the Data Controller within the meaning of the EU General Data Protection Regulation (GDPR) and other national data protection laws.
The Data Protection Officer of the Data Controller
Mr. Klaus Pawlitschko, LL.M.
c/o ZDF Enterprises GmbH
GENERAL INFORMATION ON DATA PROCESSING
We collect and use personal data from the users of our application only to the extent necessary to provide a functional application and our contents and services.
We do not collect any personal data from our users or use this data without their consent. An exception is made in those cases where the processing of the data is permitted by law or where prior consent cannot be obtained for factual reasons.
LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
The legal basis for the processing of personal data is derived from:
- Art. 6 (1) (a) of the GDPR, in cases where consent is obtained from the data subject
- Art. 6 (1) (b) of the GDPR, in cases where processing personal data is necessary for the performance of a contract to which the data subject is party, including in cases where processing is necessary in order to take steps prior to entering into a contract
- Art. 6 (1) (f) of the GDRP, if processing personal data is necessary to safeguard a legitimate interest of our company or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject
GENERAL INFORMATION ON THE USE OF THE MULTIPLATFORM APPLICATION
Provision and use of the application
In order to be able to use our service and the application, and furthermore in order to fulfil our legal obligations and supervisory duties, we use personal data pursuant to Art. 6 (1) (f) of the GDPR.
Description and scope of data processing
Each time our application is opened, our system automatically collects data and information from the user’s operating system. The following information is collected:
(1) Technical information about your device, the operating system and the version used
(2) When logging in, login data (e-mail address and password)
(3) Date and time of access
(4) System language
Purpose of and legal basis for data processing
The temporary storage of technical information by our system is necessary to enable the application to be accessed on the user’s device.
The log files contain IP addresses or other data that allow the data to be assigned to a user. This data is stored in our system log files. It is not stored together with other personal data of the user.
In addition, this data serves to help us optimize the application and ensure our information technology systems are secure. It is not used in this context for marketing purposes.
The legal basis for the temporary storage of data and log files is Art. 6 (1) (f) of the GDPR.
The collection of your personal data for the provision of our application and the storage of this data in log files is mandatory for the operation of the application. There is, therefore, no possibility of an objection on the part of the user.
Device permissions for access to functions and data
We process the personal data of the users of our application to the extent necessary to provide them with the application and its functionalities, to monitor the security of the application, and to further develop it. This information includes access to:
- Local storage (file systems)
- Network and Bluetooth
Device permissions for access to functions and data
The use of our application or its functionalities may require user permissions to access certain functions on the devices used or to access data stored on or accessible through these devices. These permissions generally need to be approved by the users and can be revoked at any time in the settings for the respective devices. The exact method for managing app permissions may vary depending on the users’ individual device and software. Users can contact us if they require further explanation. Please note that denying or revoking the respective permissions may affect the functionality of our application.
Access to the camera and stored images/recordings
Within the scope of using our application, images and/or video recordings (including audio recordings) of the users (and of any other persons captured in the images/recordings) will be processed by means of accessing the camera functions or stored images/recordings. Access to the camera functions or stored images/recordings requires the users’ permission, which may be revoked at any time. The processing of images and/or video recordings serves exclusively to provide the respective functionality of our application, as described to the users, or its typical and expected functionality. Beyond this no further processing, analysis or face recognition takes place.
Use of microphone functions
Within the scope of using our application, the microphone functions and audio recordings made with the microphone will be processed. Use of the microphone functions requires the users’ permission, which may be revoked at any time. The use of the microphone functions and audio data serves exclusively to provide the respective functionality of our application, as described to the users, or its typical and expected functionality.
Use of network and Bluetooth
Within the scope of using our application, our app will have access to the relevant network to download graphic elements and verify the license. Bluetooth will also be used to transmit audio wirelessly to headphones or to receive audio from a microphone.
Duration of storage
Your data will be deleted as soon as it is no longer needed for the original purpose for which it was collected, or after 60 days at the latest.
REGISTRATION, LOGIN AND USER ACCOUNT
When registering, the contractual partner and its users will be provided with the necessary mandatory data, which will be processed for the purpose of providing the user account in order to fulfil our contractual obligations. The data processed will in particular include the relevant login details (e-mail address and password). The data entered during registration will be used for the purpose of using the user account and its purpose.
Users can choose to be informed by e-mail about any processes relevant to their user account, such as any technical changes. If a contractual relationship is terminated, the data relating to the user account will be deleted, subject to any legal obligation to retain data. If the contract is terminated, it is the responsibility of the users in question to back up their data before the end of the contract. We are entitled to irretrievably erase all user data stored during the term of the contract.
In the context of the use of our registration and login functions, as well as the use of the user account, we will store the IP address and the time of the respective user action. The storage of this data is based on our legitimate interests as well as those of the users with respect to preventing misuse and other unauthorized use. This data will not be passed on to any third parties, unless this is necessary to assert, exercise or defend our claims or there is a legal obligation to do so.
Your login data will not be stored in the app. Your e-mail address will be deleted as soon as it has been removed by you.
You may revoke your consent to the processing of your personal data at any time. If you contact us by e-mail, you can also object to the storage of your personal data at any time. However, please note that in such a case, the respective conversation will be not be able to be continued.
To revoke your consent and object to the storage of your data, please e-mail us at firstname.lastname@example.org.
All personal data stored during the course of this correspondence will be deleted in this case.
Purchase of applications via app stores
Services and service providers used:
When contacting us (e.g. via our contact form, e-mail, telephone or social media), the data of the persons submitting the inquiries will be processed to the extent necessary to respond to the contact inquiries and any requested measures.
Contact inquiries within the scope of contractual or precontractual relations will be answered in order to fulfil our contractual obligations or to respond to (pre)contractual inquiries and otherwise on the basis of the legitimate interest in answering the inquiries.
RIGHTS OF THE DATA SUBJECT
You have the right to obtain confirmation as to whether or not your personal data is being processed and the right to access to this data and to receive further information and a copy of the data in accordance with Art. 15 of the GDPR.
Pursuant to Art. 16 of the GDPR, you have the right to have incomplete personal data concerning you completed or to obtain the rectification of inaccurate data concerning you.
In accordance with Art. 17 of the GDPR, you have the right to obtain the erasure of personal data concerning you without undue delay, or alternatively, in accordance with Art. 18 of the GDPR, the right to obtain restriction of processing of your personal data.
In accordance with Art. 20 of the GDPR, you have the right to receive the personal data concerning you, which you have provided us with, and the right to demand transmission of this data to other controllers.
Please use our mailing address (see address above) or e-mail us at email@example.com.
Note: Please note that for such requests, ZDF Digital Medienproduktion GmbH must ensure that the personal data stored is actually the data of the person making the request.
The Data Protection Officer at ZDF Digital Medienproduktion GmbH (see above) is also available to answer any further questions you may have about data protection in the field of broadcasting.
Under Art. 77 of the GDPR, you also have the right to lodge a complaint with the competent supervisory authority.
The responsible supervisory body for ZDF Digital Medienproduktion GmbH is the Broadcasting Data Protection Officer of BR, SR, WDR, DRadio and ZDF:
Dr. Reinhart Binder
Tel.: +49 (0)331 70989 85500
All further information on the supervision of data protection is available at www.rundfunkdatenschutz.de