top of page

PRIVACY

 General 

  1. Your personal data within the meaning of Art. 4 No. 1 GDPR (e.g. IP address, name, e-mail address) will only be processed by us in accordance with the provisions of German data protection law and taking into account the European General Data Protection Regulation (GDPR). The following regulations inform you about the type, scope and purpose of the collection, processing and use of personal data.

  2. The processing of personal data within the meaning of Art. 4 No. 2 GDPR is lawful according to Art. 6 GDPR if one of the following conditions is met:

  3. a) The data subject has given their consent to the processing of their personal data for one or more specific purposes;

  4. b) the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;

  5. c) processing is necessary for compliance with a legal obligation to which the controller is subject;

  6. d) processing is necessary to protect vital interests of the data subject or another natural person;

  7. e) the processing is necessary for the performance of a task that is in the public interest or in the exercise of official authority that has been delegated to the controller;

  8. f) processing is necessary to protect the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject that require the protection of personal data prevail, in particular if the data subject is a child acts.

  9. The processing of special personal data (e.g. health data) within the meaning of Art. 9 Para. 1 GDPR is lawful in accordance with Art. 9 Para. 2 GDPR if one of the following conditions is met:

– there is an explicit consent of the person;

– the processing is necessary for the establishment, exercise or defense of legal claims or in the case of actions by the courts in the context of their judicial work.

  1. There is no automatic decision-making or profiling of personal data within the meaning of Art. 22 GDPR.

  2. The operator ensures the security of the data in accordance with Art. 32 GDPR, taking into account the principle of proportionality, by means of suitable technical measures.

  3. If, contrary to expectations, there is a breach of data protection, the competent supervisory authority in accordance with Art. 33 GDPR and the data subject in accordance with Art. 34 GDPR will be notified.

scope

This data protection declaration only applies to our websites. If you are redirected to other sites via links on our site, please inform yourself there about the respective handling of your data.

Duration of data storage

The duration of the storage of the data transmitted by you depends on the legal storage obligations. In accordance with commercial and tax laws, invoices must be retained for a period of 10 years.

Disclosure of Data to Third Parties

Data transmitted as part of the contractual relationship will only be passed on to third parties (Art. 4 No. 10 GDPR) if you have expressly given your consent (Art. 4 No. 11 GDPR) or if the transfer is necessary to fulfill the contract. Consent can be revoked informally at any time. Data collected by visiting the website is only collected by third parties who are expressly named below.

 

Responsible in the sense of the GDPR

The person responsible within the meaning of the General Data Protection Regulation (GDPR), as well as other data protection laws applicable in the European Union and other provisions of a data protection nature is:

Jens Christian Silz

Firecrest Studio (part of Firecrest Music)

Dahlhauser Str. 12

53797 Lohmar

 

Telephone: +49 (0) 163 4507526

Email: info(at)firecrest-music.com

 

cookies

We use cookies on our site. These are small files that your browser creates automatically and that are stored on your end device (PC, laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your end device and do not contain viruses, Trojans or other malware. Information is stored in the cookie that arises in connection with the specific end device used. However, this does not mean that we are immediately informed of your identity.

On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specific period of time. If you visit our site again to make use of our services, it will automatically be recognized that you have already been with us and what inputs and settings you have made so that you do not have to enter them again.

These cookies enable us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined period of time. The data processed by cookies are required for the stated purposes to protect our legitimate interests and those of third parties in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR. Most browsers accept cookies automatically. However, you can configure your browser so that no

Cookies are stored on your computer or a notice always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.

Storage of access data in log files

You can visit our website without providing any personal information.

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type/ browser version

  • Operating system used

  • Referrer URL

  • Host name of the accessing computer

  • Time of server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently check this data if we become aware of specific indications of illegal use.

The purpose of the processing results from our legitimate interest within the meaning of Article 6 (1) sentence 1 lit. f) GDPR.

A contract for order processing was concluded with our hoster.

 

Google Maps

This website uses the "Google Maps API" from Google Inc. (Google) for the visual display of map material. When using Google Maps, Google also collects, processes and uses data about the use of the Maps functions by visitors to the website. For the Google Maps Terms of Service, see Google Maps Terms of Service.

The lawfulness of the use results from Article 6 Paragraph 1 Clause 1 Letter f) GDPR

You can find more information about Google's data protection guidelines at: https://www.google.com/intl/de/policies/privacy/

 

YoastSEO

Our website uses the Yoast plugin from the provider Yoast BV, Don Emanuelstraat 3, 6602 GX Wijchen, Netherlands.

This plugin supports the technical optimization of our websites for search engines. It also supports content development. The lawfulness of using the plugin results from Article 6 Paragraph 1 Clause 1 Letter f) GDPR.

For more information, please see Yoast BV's privacy policy, which can be viewed here: https://yoast.com/privacy-policy/

You can prevent the storage of cookies by setting your browser software accordingly.

Font Awesome

This site uses so-called web fonts provided by Fonticons, Inc. for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly.

For this purpose, the browser you are using must connect to the servers of Fonticons, Inc.  or the provider Stackpath. This gives Fonticons, Inc.  knowledge that our website was accessed via your IP address. Web fonts are used in the interest of a uniform and attractive presentation of our online offers. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

For more information about Font Awesome, see https://fontawesome.com/help and Fonticons, Inc.'s privacy policy: https://fontawesome.com/privacy .

A contract for order processing has been concluded.

YouTube

Our website uses plugins from the Google-operated YouTube site. The site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers will be established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube videos serves to improve the visualization of our offer and therefore represents a legitimate interest within the meaning of Article 6 (1) sentence 1 lit. f) GDPR.

Further information on the handling of user data can be found in YouTube's data protection declaration at:

https://www.google.de/intl/de/policies/privacy

PayPal

When paying via PayPal, we pass on your payment data to PayPal (Europe) S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal") as part of payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal as well as installment payments via PayPal. PayPal uses the result of the credit check in relation to the statistical probability of non-payment for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. Address data, among other things, is included in the calculation of the score values.

The collection of the data is justified for the execution of the contract from Article 6 Paragraph 1 Sentence 1 lit. b) GDPR.

Further data protection information, including information on the credit agencies used, can be found in PayPal's data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

 

Payment via Stripe

When paying, you agree that the data you entered will be transmitted to the payment service provider Stripe Inc., 510 Townsend Street, San Francisco, CA 94103 (USA).

More information about Stripe's privacy policy can be found here:

https://stripe.com/de/privacy

 

Credit card

Processing is via Stripe (see above). Stripe may transfer your data to credit companies (Visa, Master Card, American Express). It is pointed out that the respective credit company can obtain creditworthiness information about you. We have no influence on that. The collection of the data is justified for the execution of the contract from Article 6 Paragraph 1 Sentence 1 lit. b) GDPR.

 

Registration / Login

Registration is optionally possible on our website to simplify the ordering process for future orders. The data you enter in the input mask when registering and logging in is collected and saved. It will not be passed on to third parties unless this is necessary to carry out the contractual relationship. You can change or delete the data at any time.

In addition to the data you enter, the IP address and the date and time of registration are also saved. The storage of IP data serves to prevent misuse and to investigate criminal offenses and represents a legitimate interest within the meaning of Article 6 (1) sentence 1 lit. f) GDPR.

 

forms on the website

When using the forms offered on these pages (e.g. to contact us), the information you have entered is transmitted and stored for the purpose of answering your request. The data will not be passed on to third parties. The lawfulness of using the form results from Article 6 Paragraph 1 Clause 1 Letter f) GDPR and from your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a) GDPR.

social media links

We have our own social media pages for the third-party providers that can be reached via links from this website. By using the links you get to the respective third-party websites (e.g. Facebook, Instagram) and can also share our content. No data transfer takes place when you visit our website. As soon as you have called up the third-party provider's website, you are in the area of responsibility of the respective third-party provider, so that their data protection declaration or their declarations on the use of data also apply. We have no influence on this, but to avoid unnecessary data transfer, we recommend that you log out of the respective third-party provider before using a corresponding link, so that usage profiles cannot be created by the third-party provider simply by using the link.

Security of your data / SSL encryption

In accordance with the legal regulation according to § 13 Abs. 7 TMG, this site uses SSL encryption, recognizable by a lock symbol in the address bar of your browser. Transmitted data cannot be read by third parties if SSL encryption is activated.

This is usually a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures (TOM) to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

User Rights

You can request information about the personal data stored about you at any time and free of charge. Your rights also include a confirmation, correction, restriction, blocking and deletion of such data and the provision of a copy of the data in a form suitable for transmission, as well as the revocation of a given consent and the objection. Statutory retention requirements remain unaffected.

Your rights arise in particular from the following standards of the GDPR :

  • Article 7(3) – Right to withdraw consent under data protection law

  • Article 12 - Transparent information, communication and modalities for exercising the rights of the data subject

  • Article 13 - Obligation to provide information when collecting personal data from the data subject

  • Article 14 - Information to be provided when the personal data have not been collected from the data subject

  • Article 15 - Right of access of the data subject, right to confirmation and to be provided with a copy of the personal data

  • Article 16 – Right to rectification

  • Article 17 – Right to erasure (“right to be forgotten”)

  • Article 18 – Right to restriction of processing

  • Article 19 – Obligation to notify in relation to rectification or erasure of personal data or restriction of processing

  • Article 20 – Right to data portability

  • Article 21 – Right to object

  • Article 22 - Right not to be subject to a decision based solely on automated processing, including profiling

  • Article 77 – Right to lodge a complaint with a supervisory authority

To exercise your rights (with the exception of Art. 77 GDPR), please contact the office named under “Responsible within the meaning of the GDPR” (e.g. by email).

Supervisory authority:

State Commissioner for Data Protection and Freedom of Information NRW

Kavalleriestr. 2-4

40213 Dusseldorf

Telephone: 0211/38424-0

Fax: 0211/38424-10

Email: poststelle@ldi.nrw.de

Homepage: https://www.ldi.nrw.de

(Please check on the above-mentioned website before contacting us whether the contact details are still up-to-date)

  • 12 Privacy Policy

(1) The customer agrees to the storage of personal data as part of the business relationship with FIRECREST, in compliance with data protection laws, in particular the BDSG and the DSGVO. Data will not be passed on to third parties unless this is necessary for the execution of the contract. A transfer to the selected payment provider is required.

(2) If the customer transmits personal data from third parties, he assures that the consent of the third party has been obtained. The customer exempts FIRECREST from any third-party claims in this regard.

(3) The rights of the customer or those affected by the data processing result in particular from the following standards of the GDPR:

  • Article 7(3) – Right to withdraw consent under data protection law

  • Article 15 - Right of access of the data subject, right to confirmation and to be provided with a copy of the personal data

  • Article 16 – Right to rectification

  • Article 17 – Right to erasure (“right to be forgotten”)

  • Article 18 – Right to restriction of processing

  • Article 20 – Right to data portability

  • Article 21 – Right to object

  • Article 22 - Right not to be subject to a decision based solely on automated processing, including profiling

  • Article 77 – Right to lodge a complaint with a supervisory authority

(4) In order to exercise the rights, the customer or person concerned is asked to send an email to FIRECREST or, in the event of a complaint, to the responsible supervisory authority.

(5) Reference is made to the data protection declaration on the FIRECREST website at www.firecrest-studio.de.

bottom of page