- Name and address of the Controller
- Name and address of the Data Protection Officer
- What data do we collect?
- What do we use your data for?
- How do we protect your data?
- Will your data be shared with third parties?
- Transfers to third countries
- What are your rights?
- When will your data be deleted?
- Collection of access data and log files
- Use of Matomo
- Protection of minors
Name and address of the Controller
The Controller within the meaning of the GDPR and other national data protection laws of the member states as well as other data protection regulations is the:
GameDuell GmbH, Taubenstr. 24-25, 10117 Berlin, Germany
phone: +49 (0) 30 288 768 661, mail: firstname.lastname@example.org
Name and address of the Data Protection Officer
The Data Protection Officer of the Controller is: Berit Schubert, DataSolution LUD GmbH, Isarstr. 13, D-14974 Ludwigsfelde, Germany, phone: +49 (0) 3378 205729, mail: email@example.com
General information about data processing
What information do we collect?
- Meta/communication data (e.g. IP address)
No special categories of data are processed (Article 9 (1) GDPR).
Categories of data subjects involved in the processing:
- website visitors
- In the following, we refer to the data subjects as "users"
What do we use your data for?
- Providing the website, its contents and functions
- Responding to inquiries and communicating with users
- Security measures
How do we protect your data?
We take appropriate technical measures in accordance with Article 32 GDPR, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different likelihood and severity of the risk to the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk. Measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as its access, input, disclosure, the securing of availability and its separation. We have also set up procedures to ensure data subject rights, data deletion and data vulnerability. Furthermore, we consider the protection of personal data already in the development, or selection of hardware, software and procedures, according to the principle of data protection through privacy by design and privacy by default settings (Article 25 GDPR).
Your data is protected against abusive access and loss through versatile measures electronically, technically, contractually and administratively. We use security techniques (such as SSL encryption, cryptographic techniques) to protect your data against unauthorized access.
Will your data be shared with third parties?
If, in the course of our processing, we disclose data to other persons and companies (contract processors or third parties), transmit it to them, or otherwise grant them access to the data, this is done only on the basis of a legal permission, e.g. on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
In order to be able to offer you our service optimally, we use, among other things, service providers who work on our behalf. If this is the case, corresponding order agreements have been concluded with the service providers acc. to Article 28 GDPR.
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)), or this happens in the context of the use of services of third parties, or procurement or transmission of data to third parties, this will only be done on the basis of your consent, due to a legal obligation or based on our legitimate interests. Subject to legal or contractual permissions we only process the data in a third country if the special conditions of the Articles 44 et seq. GDPR are fulfilled. That means the processing will be done e.g. on the basis of special guarantees, such as the officially recognized statement of an EU level of data protection (e.g. the Privacy Shield for the USA) or observance of officially recognized special contractual obligations (so-called "standard contractual clauses").
What are your rights?
We would like to inform you that you have a right to free information about your stored data as well as a right to correction, deletion, or blocking of data and objection and data transferability at any time. Please contact us for this as well as for further information or for the assertion of revocation rights: firstname.lastname@example.org. You also have the right of appeal to a supervisory authority.
When will your data be deleted?
When contacting us (for example by e-mail), we use the information provided by the user to process the request and its processing acc. to Article 6 (1) lit. b) GDPR.
The information of the users can be stored in our systems.
We delete the data if it is no longer required. We check the necessity every two years. In the case of legal archiving obligations, the deletion takes place after expiration of the respective legally prescribed periods (in case of commercial law retention obligation: after 6 years and in case of tax law retention obligation: after 10 years)
Collection of access data and log files
On the basis of our legitimate interests within the meaning of Article 6 (1) lit. f. GDPR, we collect data on each access to the server on which this service is located (so-called server log files). The access data includes the date and time of the retrieval, transferred data volume, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Log file information is stored for a maximum of seven days for security reasons (e.g. to clarify misuse) and then deleted. Data, of which further storage is necessary for evidence purposes, is excluded from deletion until the respective incident has been finally clarified.
Use of Matomo
We use the open-source web analytics service “Matomo” to analyse how visitors use the website in order to optimise our website. If you have consented, cookies have been enabled for this purpose and contain usage information and your anonymised IP address. This information is not passed on to third parties.
Cookies are small text files that are transferred from our web server or third-party web servers to a user’s web browser and are stored there for subsequent retrieval.
In our case these cookies are persistent cookies which remain on your device for a set period of time, even after you close your browser. Persistent cookies remember your data and your usage behaviour on our website and helps us to provide you with information which may be relevant or important to you. The information gathered can be used to track your usage behaviour over multiple browser sessions.
We use the following types of cookies:
Necessary cookies enable basic website functions, such as website navigation and saving your cookie preferences. They are required for the website’s operation and cannot be disabled.
The legal basis for the processing of personal data using necessary cookies is the fulfillment of our contract made with you pursuant to Art. 6 Para. 1 lit. b. GDPR.
Tracking cookies are used for to analyse how the website is used. This allows us to continuously optimise our offer for you. These cookies are only enabled if you allow them. Alternatively, you can select to “Accept all cookies”.
The processing of personal data using tracking and marketing cookies takes place only if there is corresponding consent pursuant to art. 6 para. 1 lit. a. GDPR as a legal basis.
You can change your cookie banner preferences at any time by clicking here.
Protection of minors
GameDuell’s service is exclusively intended for adult users. We do not knowingly collect age information, nor do we knowingly collect any personal data from children under the age of 16.
We advise all visitors to our website under the age of 16 not to disclose or provide any personal data to our service.
If you have any further questions, please do not hesitate to contact us. Please send an e-mail to email@example.com. You can also contact our external data protection officer.