Data protection

Privacy policy

Privacy Policy of the projects of VENTORI Europe OÜ

On this page we inform you in the most comprehensible form possible about the protection of your personal data entrusted to our online offers (websites) and online presences (e.g. social media profiles). We will let you know which personal data is collected when you use our offers and services and how we use it afterwards.
To make individual passages easier to understand, we sometimes provide examples. However, these examples do not mean that they exclusively describe processes that are not always carried out, but are examples in the sense of the common definition of „example“.

The relevant legal bases for this declaration are articles of the GDPR (EU General Data Protection Regulation), as we have a registered office and a significant proportion of visitors within the EU:
Art. 6 para. 1 lit. a and Art. 7 GDPR Obtaining consent
Art. 6 para. 1 lit. b GDPR Processing for the fulfillment of services, contractual measures and responding to inquiries
Art. 6 para. 1 lit. c GDPR Fulfillment of legal obligations
Art. 6 para. 1 lit. d GDPR Vital interests of individuals
Art. 6 para. 1 lit. f GDPR Safeguarding our legitimate interests

Purpose of the data processing

VENTORI Europe OÜ is an online company. We primarily broker services in the entertainment sector (events), as well as products via partner companies (affiliates). We also operate information portals for various areas, some of which are financed by advertising.
Insofar as VENTORI Europ OÜ collects, processes and transmits personal data, this is done for the purposes stated in this privacy policy.
Your data required for business processing will be stored and passed on to service providers commissioned by us to the extent necessary for order processing.
We have taken technical and organizational measures to ensure that the regulations on data protection are observed both by us and by external service providers.

Accessing our websites

We collect and store your IP address, which your access medium (computer, smartphone, router, VPN provider) assigns to you in order to transmit the content you have accessed on our web portals to your end device (texts, images, files for downloading, etc.) (see Art. 6 para. 1 lit. b GDPR). The transmission is a necessary procedure so that you can call up a website on your browser or app at all.
This data is also used to detect and track misuse. State bodies can use the data for criminal prosecution. In this respect, the legal basis is Art. 6 para. 1 lit. f GDPR. Our legitimate interest in data processing lies in ensuring the proper functioning of our website and the transactions conducted via it.

In addition to the IP address, other data that can be read out is generally also transmitted when websites are accessed: e.g. date, time, pages viewed, browser, operating system and regional location of the provider. However, we do not use this data for personal purposes unless this is required by law and is necessary for prosecution. However, the statistical analysis of anonymized data records is possible.
This makes it possible, for example, to determine the percentage of users who use certain browsers. We evaluate these statistics. It helps us to concentrate specifically on the browsers, operating systems etc. that are actually (still) being used in future programming.
This saves us time, which we can then use more intensively for customer service, programming better features, etc.

When using a VPN provider, you can replace your own IP address with an IP address of the VPN so that we can no longer recognize the origin.
However, we assume no liability for how the data is processed and possibly used by the VPN provider. The visitor is solely responsible for the use of the VPN and similar services to conceal their own IP address.

Storage of IP addresses

In connection with your access, data is stored on our servers for security purposes and on the basis of our legitimate interests in log files, which may allow identification (e.g. IP address).
The access data also includes the URL called up, the URL of the previously visited page, access date and time, amount of data transferred, browser version, operating system and provider.

We store IP addresses for a maximum period of seven days. Data is stored for reasons of data security in order to ensure the stability and operational security of our system. If data must be retained for evidence purposes in specific cases, it is exempt from deletion until the respective incident has been finally clarified.

Cookies and tracking

A cookie is a small text file that is stored locally on your end device (computer) as soon as you call up a website in your browser. If you visit this website again from the same device (without having deleted the cookie file in the meantime), the cookie indicates that this is a repeat visit. Cookies are also used to analyze the use of our website. Cookies do not contain any personal data. You can view their contents yourself on your computer. Cookies are not suitable for identifying you on third-party websites.
The following Wikipedia page describes in detail how cookies work, their typical properties and content, as well as the bankruptcy of the use of cookies:
https://de.wikipedia.org/wiki/HTTP-Cookie

Cookies are necessary or at least useful for some functions (functionality cookies). An example of the application is the re-use of a website with a registration requirement without having to enter your user name and password again, provided you have not logged out beforehand.
This saves the user time. However, you should make sure that the computer is not used by other unauthorized persons. Because then this person could also access the user account without logging in. This can be remedied by password-protected locking of the operating system at startup, logging out of the website after using it or regularly deleting cookies after use.
Cookies can also have a certain duration. After the end of this period, the data is no longer available.
Some functions are not possible without the use of cookies. We therefore use cookies.
This applies in particular to cookies that are essential for the functioning of our website. These assign anonymous session IDs to bundle several queries to a web server and also ensure the error-free functioning of logins and orders.
You can see for yourself which cookies are used on our pages in most common browsers. In Google Chrome, for example, click on the green symbol with the „Secure“ lock at the top left. First of all, the symbol shows you that the website is SSL-encrypted. When you click, you will see the sub-item „Cookies“. All cookies are now listed here and, for example, via which third-party providers cookies are activated. Depending on your browser, you can block and remove these cookies yourself.

You can prevent the storage of cookies yourself, but then you may not be able to register. Since we do not force anyone to use our website services, it is up to the user to decide whether or not to consent to the use of cookies.

In some cases, for example, advertisements are supplied directly by companies. Cookies may be used here without us being able to point this out to you. These are used, for example, to identify our company as an intermediary. We receive a commission from the advertising company for advertising links. These are used to finance our website. You can also delete these cookies yourself.

We also work with external companies that provide us with services such as web tracking and reach measurement in compliance with legal regulations. They are used to determine the number of visitors to individual pages, regional focuses, use of browser versions, time spent on pages, etc. for the future planning of our website activities.
These cookies also do not store any information that allows personal identification of the visitor. They are counted anonymously and thus aggregated into user statistics information. This enables us to recognize, for example, how many of our visitors use a particular browser. However, we cannot tell from the statistics generated which browser you personally use or assign your type of use in a personalized manner.
These companies have their own data protection information (privacy policy), which you can find on the websites of these service providers.
It is also possible to use our services without cookies. If you do not wish to accept cookies, you can deactivate them yourself within your browser and enable them for individual websites.

Links to other websites

Our online offer contains links to other websites. We have no influence on the extent to which their operators comply with data protection regulations.

Registration

Users can create a user account on some pages of Ventori Europe OÜ. The mandatory information is communicated to the users. This data is used for the use of the offer. Registered users can be informed of changes to the offer, technical circumstances or other details specific to the offer by e-mail.
Users can cancel their account at any time. Thereafter, existing data of the user account will be deleted, subject to their retention obligation for commercial or tax law reasons. Art. 6 para. 1 lit. c GDPR. It is your responsibility to back up your data in good time upon termination.

Upon registration and during the period of the active user account, we store (track) your IP address and the respective times of use. The data is stored for your own protection against misuse and unauthorized use, as well as on the basis of our legitimate interests. This data will not be passed on to third parties except for the pursuit of claims and legal obligations in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 para. 1 lit. c GDPR.

Comments

The posts in our discussion forums and comment fields are generally visible to everyone worldwide and can also be found via search engines. You are responsible for your own contributions. You should therefore check carefully whether you really want to publish the information provided there.
As a rule, we can only process deletion requests and corrections on our original page. If our website is copied in whole or in part by others, archived or recorded by search engines, we have no influence on this. Deletion on third-party servers can be requested by us, but rarely leads to success, especially on foreign web hosts. Therefore, there is no entitlement to the deletion of data on third-party servers for comments and data posted by yourself.

For your comments, your IP address is stored in accordance with Art. 6 Para. 1 lit. f. GDPR for 7 days. You have the option of excluding storage yourself.
We stand for freedom of expression. However, legislators or rights holders may ask us to delete illegal content (insults, hate speech, copyright infringement, etc.). For our part, we reserve the right to shorten or remove contributions in the event of misuse (spam, virus or malware distribution) (pursuant to Art. 6 para. 1 lit. f. GDPR).

Personal data

Personal data is information that can be used to identify you. Typical data are name, postal address, e-mail and telephone number, but also physical, genetic, economic, cultural and social characteristics, as well as user behavior and IP addresses.
Non-personal data is statistical anonymized data. This information is used, for example, to determine the number of visitors to a website.

You can use our online services without disclosing your identity. Only when you order a product or service, make an inquiry or register for our services do you enter your personal data in our form. Mandatory fields for processing your request or booking (e.g. e-mail address) are marked. All other details are voluntary until such time as they are required for the booking process (e.g. postal address in the case of a booking or order).
If the data is not necessary, you are free to decide whether you enter this data or send it to us by e-mail, fax or post.

When making telephone inquiries, please note that we may be able to determine your gender, age and regional origin from your voice and dialect. We will not process this information further, will not use it statistically and will not create any prejudices. Further processing will only take place if you provide us with your specific data, e.g. to make a booking request or place an order of your own volition.
We enter the information provided to us by telephone into our digital communication systems in order to process inquiries and orders and to be able to contact you again later with the result. We store your data on protected servers.

If you only wish to submit a request for information and do not wish to disclose any personal data about yourself, you should change your voice accordingly so that we cannot determine your gender, age or origin.

Processing of personal data

Personal data is processed if you provide it to us voluntarily, e.g. when making an inquiry, booking/ordering, obtaining information, registering for our services or a newsletter. The legal basis in this respect is Art. 6 para. 1 lit. b GDPR. The data processed by us includes customer data, employee data, cooperation partner data and data from suppliers and external service providers, insofar as this is necessary for the purposes specified in this privacy policy.

If, as described above, we process your data for the purpose of receiving and processing your respective inquiry, booking or order, you are obliged to provide us with this data, as otherwise we will not be able to process your requested request. For example, if you request a voucher by post, we absolutely need your postal address, which we must also print on the envelopes so that it is visible to postal delivery staff.

If you have consented to the processing of personal data (see Art. 6 para. 1 lit. a GDPR), you can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
In the case of the above-mentioned mailing, for example, it means that you cannot request the deletion of the postal address printed on the letter if the letter is already on its way.
However, we will stop further processing from the time we become aware of the revocation.

Contact us

When contacting us by contact form, e-mail, telephone, post, fax, chat or via social media, your details will be used to process the request in accordance with Art. 6 para. 1 lit. a GDPR. Art. 6 para. 1 lit. b) GDPR is processed.
Users will receive a confirmation email for requests via the form. If a third party has entered your e-mail address by mistake or intentionally, we cannot check the correctness of the e-mail address before it is automatically sent. It is the responsibility of the person who received the wrong message to inform us of the error or to ignore the message. However, if we are not notified, we cannot know that it is an incorrect e-mail, so that any digital orders (e.g. vouchers) with invoices may subsequently be sent to us. are also unintentionally sent to this e-mail. You can permanently ignore the invoices in these cases. However, unpaid vouchers that have been sent cannot be redeemed either.
If the contact details are correct, we will contact you until the desired order or request has been completed, unless you express the wish to cancel prematurely. Possible claims until the contact is broken off (e.g. payment claims) remain unaffected by this. Should it later become necessary to continue the contact, it is possible for both parties to resume contact.

Users‘ contact details and requests can be stored in a customer relationship management system, ticket system, mail system and accounting system if processing is necessary (especially for bookings and orders, but also for appointment requests to be researched).

We delete the requests if they are no longer required. We review the necessity at the end of each year. The statutory archiving obligations also apply.

Order processing: online store and user account

We usually process our customers‘ data as part of the ordering process in an individual manual process on account.
A second option is that you are taken directly to our partner’s website and online store, where you first enter your personal details for booking/ordering. In this case, VENTORI Europe OÜ does not receive any data, but only information that a booking/order has been made for a certain amount and at a certain time in order to be able to check commission credits.
The third option is an online store on our web server to help you select and order the selected products. or services, their payment with several common payment methods and their delivery or execution in a timely manner.
As a fourth option, this online store is integrated into our website by an external payment service provider.
The variant used in each case depends on the respective requirement and can be recognized by you through markings with external payment service providers and links, or through the process (invoice only after confirmed booking).

The processed data includes inventory data, communication data, contract data, payment data and the persons affected by the processing include our customers, interested parties and business partners. The processing is carried out for the purpose of providing contractual services in the context of operating an online store incl. billing, delivery and customer service. When using an online store, we use session cookies to store the contents of the shopping cart and permanent cookies to store the login status.
Their processing is carried out on the basis of Art. 6 para. 1 lit. b (execution of order processes) and c (legally required archiving) GDPR, for which this data is necessary.
This data is only passed on to personnel, companies, legal advisors and authorities if it is necessary for the processing of the order process and for legal requirements.

Users can optionally create a user account in online stores. Customer data, invoice data, shipping addresses and orders can be viewed in this account. The mandatory information can be recognized in the registration process by asterisk symbols and by warnings if it is not provided. The user accounts are only accessible and recognizable with username and password.
User accounts can be terminated by the user. The data will then be deleted – provided there are no legal grounds for doing so. Art. 6 para. 1 lit. c GDPR are against it, deleted.
It is your responsibility to back up your data in good time before terminating your contract.

Ventori Europe OÜ checks at the end of each year whether user account data must be retained or deleted due to retention obligations under commercial or tax law, warranty obligations or other legal requirements, ongoing order or subscription processes or at the request of the user. The deletable data is then deleted without the user necessarily being notified.

Intermediary activity

Within the scope of our intermediary function (e.g. mediation of interested customers to event organizers), we process data of customers who have registered via the contacts of VENTORI Europe OÜ.
We process the following data in order to be able to fulfill our contractual or pre-contractual services: Inventory data, contact data, payment data, contract data of partner companies, location and date-related data.
Due to certain requirements for booking an event, personal health and physical information (pregnancy, physical and health condition, disabilities, age, weight, height, national language skills) and other circumstances (e.g. (non-)existence of a driver’s license) may also be processed and – if necessary for the desired service – forwarded to the company responsible for the event, provided that these are voluntarily provided to us by the customer without being requested to do so. None of this data has to be given to us. If the conditions specified by us for participation in events or the purchase of products are not met, customers can cancel the booking or purchase request after making an inquiry but before placing an order, without giving us the specific reasons. This also applies in the event of cancellation, provided that such cancellation complies with the GTC (in particular the cancellation deadlines). It is therefore the customer’s responsibility to check the requirements for the order before confirming it.

Ventori Europe OÜ checks at the end of each year whether the data for services must be retained or deleted due to retention obligations under commercial or tax law, warranty obligations or other legal requirements, ongoing order or subscription processes or at the request of the user. The deletable data is then deleted without the user necessarily being notified.

Disclosure of personal information to third parties

Your personal data, which you have already provided on our website, will be passed on to partner companies in necessary cases and further processed there depending on the service you have requested. This transfer of information is usually necessary for bookings of events and orders of products and services via our portal in the role of intermediary, middleman and affiliate.
For example, an event organizer can see from your name that the person actually booked is taking part in the event and that no other person can claim to have booked the seats.
The exchange of information is also important if you wish to cancel and a reversal or refund is required.
The necessary requirements for the bookings, e.g. minimum age, possession of a driver’s license, telephone number in the event of a last-minute cancellation, must also be passed on.
We request all necessary data on our website, which we generally also pass on in full to the partner companies. The further processing of your data by these companies is governed by the data protection guidelines of the respective companies. This applies in particular to data that is communicated there for the first time and does not reach us (e.g. driving license data or order details for linked affiliate partners). During the booking process, we provide our customers with the contact details so that they can inform themselves about data protection. If you have any concerns about your privacy, you can let us know and interrupt the ordering process. We will then immediately discuss the points of criticism with our partners, continue the order process after correction (as far as possible) or cancel it on request.
In the case of linked partner programs, you will receive the information on the newly opened external website – usually under the menu item „Data protection“ or „Privacy Policy“ in the footer.

If necessary, we use service providers who process data on our behalf (e.g. software development, marketing, customer service, accounting, tax administration, payment service providers). In the cases described here, individual pieces of information may be passed on to these bodies to enable further processing. The contract administrators bound by instructions are obliged to treat your data as strictly confidential and not to use it for other purposes.

Payment transactions generate personal data and a link between you and our company. We generally offer our customers several common payment methods. It is up to you which bank, savings bank or online payment service provider you choose. We have no influence on the data protection guidelines of your chosen payment institution and on our house banks based in Germany and Estonia. We only keep account statements, which may also contain personal data, until the legally required date. In the case of bank transfers, we cannot identify the account from which the amount was received. Exceptions are the payment methods direct debit and PayPal. If you forget to write your invoice number on the remittance slip, we will check the data available to us (price, place of residence, name, time) in order to be able to assign the presumed order transaction.

The transfer of data to processors for functionally necessary reasons takes place on the basis of Art. 28 para. 1 GDPR (data processing agreement).
If we transfer data to third parties as part of our processing or grant them access to the data, this is only done on the basis of legal permission, with your consent, a legal obligation or on the basis of our legitimate interests.

We do not sell your data to third parties and do not market it in any other way.

We are legally obliged to forward your personal data without your express consent to the law enforcement authorities and, if necessary, to injured third parties if it is necessary to clarify an illegal use of our services or for legal prosecution. The authorities must provide us with an order for this.
If we ourselves have obviously been harmed or if there is concrete evidence of unlawful or abusive behavior, we will also use personal data and, if necessary, forward it to the authorities. An example of this is the persistent non-payment of an invoice.
We are also legally obliged to provide information to public authorities on request. Examples include law enforcement agencies, tax offices and regulatory authorities.

This data is passed on on the basis of our legitimate interest in combating misuse, prosecuting criminal offenses and securing, asserting and enforcing claims, provided that your rights and interests in the protection of your personal data do not outweigh this, Art. 6 para. 1 lit. f GDPR. 1 lit. f GDPR.

E-Mail – Success measurement

Important e-mails in the booking process (sending of documents for the order or booking) contain a pixel (tiny image file), which is retrieved from our server or the server of the mailing service provider MailButlerTrackingPixel when it is opened. This retrieves information about the browser used, the operating system, your IP address and the time of retrieval.
This information helps us to recognize whether an important e-mail has reached you or whether it has ended up in the spam folder, for example.
With this information we could find out your reading behavior. However, it is not our intention to observe or analyze you. It is only in the interest of both parties that you receive important documents so that we can resend an e-mail or contact you in another way if necessary.
You can object to this form of tracking (see below for contact details), but you should then also keep an eye on your spam mailbox so that you do not miss any important documents and information.

Data transmission between countries

VENTORI Europe OÜ sees itself as a global company based within the EU. It is therefore essential that we are not only able to process data within the EU, e.g. if the user or the event organizer is based outside the EU. In individual cases, we also use mostly well-known common tools for statistics, marketing or communication. The tools used and the companies involved are selected in such a way that their privacy policy complies with our data protection regulations (and thus complies with EU standards or comparable standards such as the „Privacy Shield“ required in the USA). They are listed here individually with their functions.

Security

Ventori Europe OÜ uses technical and organizational security measures to protect the data you provide to us from manipulation, loss, destruction and access by unauthorized persons.
A triple backup of the data on three different servers at different locations protects against loss and destruction. The measures are constantly being improved in line with technological developments.
When entering personal data, our website uses SSL encryption. The transmission of data for storage is also encrypted.
We protect our tools for processing websites, database queries, data transfer, etc. by using secure passwords and by restricting them to only a very small number of authorized users.
Updates to standard tools, plugins, themes, etc. are incorporated immediately via a monitoring tool. These monitoring tools are also password-protected and personalized.
At this point, we also recommend that you use „strong“ passwords that are not used elsewhere, e.g. with special characters, numbers and long passwords, if you want or need to select and use passwords on our pages.

Third-party access to our database system, the website and the servers is monitored by security tools (firewall monitoring, protection against DDOS attacks, spam filters, checking and blocking of login attempts etc.) both by VENTORI Europe OÜ and by the web host operators.

We use anti-virus software and anti-malware programs on the end devices of our employees and data processors to protect your data.

In the event of a successful intrusion despite all security precautions, VENTORI Europe will inform the affected users as soon as it becomes known whether their data has been affected. In this case, the revocation of e-mail notification does not apply, as the information obligation is legally weighted higher.

Services

In the context of orders for services (e.g. accounting, programming, marketing, strategic consulting, analyses, design, training, social measures), we process data of customers who have registered via the contacts of VENTORI Europe OÜ and those of the commissioned contractual partners.
We process inventory data, contact data, content (texts, images, etc.), payment data, contracts and usage data of customers, interested parties, website visitors, employees, partners and third parties as required for use or for internal tests, selected randomly or as required according to criteria.
The purpose of this processing is the fulfillment of contractual and service obligations, as well as billing on the basis of Art. 6 para. 1 lit. b GDPR (contractual services), Art. 6 para. 1 lit. f GDPR (analysis, statistics, optimization, security measures). We do not pass this data on to third parties unless this is required by the client’s instructions or legal conditions.
Data processing in an order case is carried out in accordance with. Art. 28 GDPR and not for other purposes.

Dropscan

We use the Dropscan scanning service. If mail is sent to us in written form, this service will scan these letters at our express request and make the content of the letter available to us in digital form as a JPG for retrieval via password-protected access on their website. This would allow Dropscan employees to gain insight into the content.
We process the scanned data as well as data that is sent to us by e-mail or fax.
If you object to this form of scanning, please use another transmission method. Alternatively, you can use another contact method to let us know that you have sent us a letter by post and do not want it to be opened by Dropscan. We will then instruct Dropscan to send the letter unopened to an address to which the authorized persons of VENTORI Europe OÜ, whom you can designate in advance, have access, using the sender’s address you have provided (also possible in encrypted form).
Dropscan GmbH, Ehrenbergstr. 16a, 10245 Berlin
Privacy policy: https://www.dropscan.de/datenschutz

Amazon affiliate program

We are authorized on the basis of our legitimate interests in the economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR participant of the Amazon EU partner program. It was designed to provide advertisements and links to Amazon.de for websites. Through these placements we earn advertising cost reimbursement.
Amazon uses cookies to determine the origin of our websites. This enables Amazon to recognize that you have clicked on the partner link on our website and subsequently purchased a product from Amazon.
You can remove these cookies yourself in your browser. Then we would not receive any advertising reimbursement from Amazon.

Information on the Amazon partner program and its data protection guidelines can be found here:
https://www.amazon.de/gp/help/customer/display.html/ref=footer_privacy?ie=UTF8&nodeId=33124

Further partner programs

We are authorized on the basis of our legitimate interests in the economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR Participants in partner programs of various companies via partner networks. These are designed to provide advertisements and links to the companies‘ websites. Through these placements we earn advertising cost reimbursement.
The networks use cookies to determine the origin of our websites. This allows the networks to recognize that you have clicked on the partner link on our website and subsequently purchased a product from a specific company. The purpose is to assign us to the advertising company in order to obtain the correct payment of the advertising cost reimbursement via the partner network.
Personal data is not inserted on our data, but only on the linked pages of the advertising companies. We are therefore unable to recognize which persons have purchased the linked products.
The cookies are only stored on your end device. You can remove them yourself in your browser. Then we would not receive any reimbursement of advertising costs.

We participate in the following partner networks:
Awin: AWIN AG, Eichhornstraße 3, 10785 Berlin
Privacy policy: https://www.awin.com/de/dsgvo

Affilinet, AFFILINET GMBH, Sapporobogen 6-8, 80637 Munich, Germany
Privacy policy: https://www.affili.net/de/footeritem/datenschutz

Tradedoubler, Tradedoubler GmbH, Herzog-Wilhelm-Straße 26, 80331 Munich, Germany
Privacy policy: https://www.tradedoubler.com/de/gdpr-compliance/

Webgains, ad pepper media GmbH, FrankenStraße 150C, FrankenCampus, 90461 Nuremberg, Germany
Privacy policy: https://www.webgains.com/public/de/datenschutzerklaerung/

Adcell, Firstlead GmbH, Rosenfelder Str. 15-16, 10315 Berlin
Privacy policy: https://www.adcell.de/news/meldungen/dsgvo/datenschutz-grundverordnung-bei-adcell

Integration of third-party services and content

We use online services for our websites on the basis of our legitimate interest in analysis, optimization and economic operation within the meaning of Art. 6 para. 1 lit. f. GDPR content and service offers from third-party providers in order to integrate their content and services.

The technical prerequisite for the use and presentation of these services is the provision of the user’s IP address. Third-party providers may also use pixel tags (small invisible graphics) for statistical or marketing purposes. This allows the number of visitors to websites to be analyzed, which is the purpose of this tracking method.
The providers can also store the anonymized data in cookies on your end device with information on the browser type, operating system, website visited and length of stay.
You can use your browser to determine which cookies are stored, read their content, delete them and block them for future storage.

We use the following external integrations on our websites:

Youtube

We integrate videos from the video platform YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). These can be accessed directly on our website, but are played on the YouTube page for performance and legal reasons. This provides Google with the IP address used. Among other things, Google uses this to block certain videos nationwide for legal or copyright reasons.
Privacy policy: https://www.google.com/policies/privacy/
Opt-out: https://adssettings.google.com/authenticated

Google Fonts

We integrate the fonts Google Fonts (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). They are used to display certain „nicer“ non-standard fonts. These fonts are loaded directly from Google servers for performance reasons, so that Google can take note of the IP address used.
Privacy policy: https://www.google.com/policies/privacy/
Opt-out: https://adssettings.google.com/authenticated

Google Maps

We integrate the maps of the Google Maps service (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) on a contractual basis.
The maps are used for the orientation of our users in order to localize locations for events.
The function enables the visual display of geographical information and interactive maps.
For legal and functional reasons, these maps are accessed directly from Google servers within our websites.
Google processes the IP address you use in order to use location data. This means that the map view can start exactly where you are. In many cases, this makes it easier to get an overview.
However, when using these maps, you yourself give Google your consent through the settings of the app on mobile devices or within your browser on computers and can also revoke this consent.
The data may be processed in the USA. The European Commission has issued an adequacy decision for data transfers to the USA.
Nevertheless, you have the right to object to or prevent the processing of your personal data based on Art. 6 (1) f GDPR at any time for reasons arising from your particular situation. To do this, you must deactivate the JavaScript application in your browser. However, we would like to point out that some functions of our websites can no longer be used if they are deactivated, e.g. interactive map displays. For economic reasons, we cannot offer an alternative.
Privacy policy: https://www.google.com/policies/privacy/
Opt-out: https://adssettings.google.com/authenticated

Google Adwords

We use the online advertising program Google AdWords incl. Conversion tracking, an analysis service of Google Inc. (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA).
When you click on an ad within the Google search results page, Google places a unique cookie for conversion tracking on your end device. These cookies do not contain any personal data and are time-limited. You can view their content yourself on your device.
The purpose of the conversion cookie is to enable Google to create conversion statistics for us. This allows us to see the total number of users who clicked on our ad and were redirected to a page with a conversion tracking tag. This allows Google to settle advertising costs with us.
The cookies do not receive any information about your personal identification.
You can object to this tracking yourself. To do this, you must deactivate cookies in general or specifically for this function.
Privacy policy: https://www.google.de/policies/privacy/
Opt-out: https://adssettings.google.com/authenticated

Google Analytics

We use cookies on the basis of our legitimate interests in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR, we use the web analysis service Google Analytics from Google LLC. Google uses cookies whose information about your use of our websites is transmitted to a Google server in the USA, stored there and processed on our behalf into reports that we can view. From this we can draw conclusions about the general use of our pages in order to be able to make optimizations. Examples of this are: which pages are viewed preferentially? Is there an increase or decrease in visitors compared to the same period last year? Which countries do most visitors come from?
The processed data is cumulated into anonymized user profiles. This does not allow us to draw any conclusions about the usage behavior of a specific individual user, which would not provide any useful information for our analyses.

Google is certified under the Privacy Shield Agreement. Google thus offers a guarantee of compliance with European data protection law. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

We use activated IP anonymization for Google Analytics. The IP address of the user is shortened by Google.

You can prevent the storage of cookies yourself in your browser. You can prevent the collection of data generated by the cookie and processed by Google by downloading and installing the following browser plugin: https://tools.google.com/dlpage/gaoptout?hl=de

General information on Google’s privacy policy with setting and objection options can be found at this link: https://policies.google.com/technologies/ads
You can change the settings for the display of advertisements by Google here:
https://adssettings.google.com/authenticated

General privacy policy of Google:
https://privacy.google.com/intl/de_ALL/businesses/controls/#?modal_active=none
You have the option of changing your data processing settings in the Google Privacy Center.

Facebook pixel, custom audiences, Facebook plugins and Facebook conversion

Within our websites, the Facebook pixel of the social network Facebook (Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland for users within the EU) is used on the basis of our legitimate interests in analysis, optimization and economic operation and for these purposes.
Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law(https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

Facebook is thus able to categorize our visitors according to certain criteria. Ads (Facebook Ads) can thus be filtered to target groups.
Accordingly, we use the Facebook pixel to display our ads only to Facebook users who are interested in the topics of our online offering based on certain characteristics (age, location, previously self-disclosed interests) or who have already visited our websites.
This means that users who are highly unlikely to be interested in our products or services do not receive annoying advertising.
Another benefit of the Facebook pixel for us is for statistical evaluations in order to optimize our services.

The processing of data by Facebook takes place within the framework of Facebook’s data usage policy: https://www.facebook.com/policy.php

Special information on the Facebook pixel and how it works: https://www.facebook.com/business/help/651294705016616

You have the right to object to or restrict the collection by the Facebook pixel. As a Facebook user, you can determine which types of ads are displayed to you within Facebook, regardless of the platform.
Please note the information on the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads

Facebook plugins are used on our websites. When you access websites with such a plugin, a connection to the Facebook servers is established and the plugin is displayed on the website by notifying your browser. Facebook can thereby recognize which website you have visited.
If you are already a Facebook member, Facebook assigns this information to your personal user account. This also applies when using the plugin functions by clicking the „Like“ button or writing a comment.
You can generally prevent this by always logging out after using Facebook before visiting other websites (including ours).
Alternatively, Facebook offers an add-on for your browser. This prevents the Facebook.
You can download the plugin here: https://webgraph.com/resources/facebookblocker/

If a user is not a member of Facebook, it is still possible for Facebook to find out and store their IP address. According to Facebook, only an anonymized IP address is stored in Germany.

General privacy policy Facebook:
https://www.facebook.com/business/gdpr#Facebook-als-Datenverantwortlicher-vs.-Auftragsverarbeiter

Payment method PayPal

We also offer our customers PayPal (PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg) as one of the common payment methods.
PayPal is an online payment service provider that offers virtual private or business accounts. Credit card payments are also possible if the user does not have a PayPal account. Instead of an account number, the PayPal account is managed via an e-mail address.
Online payments can be made and payments received via PayPal. PayPal also offers the function of trustee with buyer protection.

In the invoicing process, we provide a PayPal link within emails containing invoices and reservation confirmations. At this point you decide whether you want to pay via PayPal or another payment method. If you do not choose PayPal, PayPal will not receive any data within this form of the booking process. The link itself is not personalized, but only contains the invoice amount and information about our PayPal account address.

If we integrate an online store on our website, you can select the payment option PayPal directly in the store and pay immediately. Data of the data subject is automatically transmitted to PayPal. These are name, address, e-mail address, IP address, telephone number and data required for payment processing.
By selecting this payment option, you consent to the transfer of personal data required for payment processing.

The purpose of the transfer is payment processing and fraud prevention. PayPal may transmit the data to credit agencies for identity and credit checks on its own initiative.
In addition, PayPal may pass on personal data to affiliated companies, service providers and subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed on behalf of PayPal.

You have the option of revoking your consent to PayPal handling your personal data at any time, unless it must be processed, used or transmitted for payment processing. You can also use a different payment method (bank transfer to invoice or direct debit) and thus dispense with PayPal.

Chat system comm100

We use the chat system of comm100 (Suite 238 – 1027 Davie Street, Vancouver, BC, V6E 4L2, Canada) on our websites. Chats serve the purpose of communication between you and us for direct, simple communication. The IP address with geographical data, browser version, operating system, website accessed, previous page with search terms and data for marketing and optimization purposes are transmitted and stored.
Usage profiles can be created from this data. Cookies are used, the content of which you can view yourself. The cookies enable the browser to be recognized.
The data collected is not used to identify visitors personally.

The processing is carried out on the basis of Art. 6 (1) f) GDPR from the legitimate interest in direct customer communication and in the needs-based design of the website. You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 (1) f GDPR. To do this, you must deactivate the storage of the respective cookie in your browser. However, it is no longer possible to use the chat afterwards. Alternatively, you can contact us by e-mail, telephone, fax or post.

Dropbox Business

We use the secure business version of Dropbox (cloud) to distribute data within our company so that we can securely link employee workstations in physically different locations to the outside world.
Quote from the Dropbox privacy policy:
„Dropbox is committed to ensuring the security and privacy of our users‘ personal data at all times in accordance with legal requirements and best practices. As described in our Security, Compliance and Privacy Policy and demonstrated by our current ISO/IEC 27018:2014 certified data protection measures, we already meet many of the requirements of the EU GDPR. In order to fulfill our responsibility to our users, we are already working extensively on expanding and implementing our compliance measures for the EU GDPR to achieve full compliance before it comes into force on May 25, 2018. We are also making a number of changes to ensure that our processes and procedures continue to meet or exceed the new requirements and ongoing guidance published by data protection authorities.“
Privacy Policy: https://blogs.dropbox.com/business/2015/05/dropbox-for-business-iso-27018/

Hosting

Our websites are hosted by various companies in Germany. Their services include computing capacity, storage space, infrastructure, platform services, databases, security services and maintenance. We need these services to operate our online services.
In doing so, we process contact data, inventory lists, content, media, contracts, usage data, metadata, communications with customers, visitors and partners on the basis of our legitimate interests in a meaningful and secure provision of our website in accordance with Art. 6 para. 1 lit. f GDPR using appropriate tools at the hosting provider. Art. 6 para. 1 lit. f GDPR in conjunction with. Art. 28 GDPR (data processing agreement).

We have order processing contracts with the following German web hosts:
Raidboxes, RAIDBOXES GmbH, Friedrich-Ebert-Straße 7, 48153 Münster, Germany
Privacy policy: https://raidboxes.de/datenschutzerklaerungen-nach-dsgvo/

Webgo, webgo GmbH, Wandsbeker Zollstr. 95, 22041 Hamburg
Privacy policy: https://www.webgo.de/datenschutz/

Domain Offensive, Greenmark IT GmbH, Leinstr. 3, 31061 Alfeld
Privacy policy: https://www.do.de/unternehmen/datenschutz/

Online presence in social media

We maintain online presences within social networks and platforms in order to communicate with our customers, interested parties and users in as many ways as possible and to inform them about our services. When accessing the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply. You will find these exactly on the platform where you will find our online presence.

Our visitors themselves are responsible for the provision and content of contributions, comments and messages via these online presences.
We process this user data by storing it within these platforms.

Standard deadlines for the deletion of data

The legislator has issued a wide range of retention periods and obligations. For example, companies must keep invoices and account statements containing customers‘ personal data for 10 years (Germany, as of 2018) for tax and accounting reasons. The corresponding data will only be deleted after these periods have expired.
For the assertion, exercise and defense of legal claims, we only delete the necessary data after the end of the corresponding limitation and warranty periods.
Data will not be deleted for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation and public tasks, for reasons of public interest and for public research purposes, unless there are legal reasons to the contrary. If legitimate reasons are presented to us, we will remove the corresponding data after checking the legality of the deletion claim.
Unless this privacy policy contains other, deviating provisions regarding the storage of data, the data collected by us will be stored by us for as long as it is required for the aforementioned purposes for which it was collected.

Other data uses and data deletion

Further processing or use of your personal data generally only takes place if this is permitted by law or if you have consented to the use of the data.
In the event of further processing for purposes other than those for which the data was originally collected, we will inform you of these other purposes prior to further processing and provide you with further relevant information.

Abuse detection and prosecution

We store information for misuse detection and tracking, in particular your IP address, for a maximum of 7 days. The legal basis in this respect is Art. 6 para. 1 lit. f GDPR. Our legitimate interest in retaining data for 7 days is to ensure the proper functioning of our website and the transactions carried out via it and to be able to ward off cyber attacks and the like. We may use anonymous usage information to tailor the design of our website to your needs.

Deletion concept

At the end of each year, we delete the invoices, documents, e-mails and digital database data that are no longer required for the longest retention period – currently the data from 10 years ago. You will then no longer be able to retrieve data from an earlier period.
Exceptions to this are long-term contractual relationships (e.g. subscription system, partnerships) or approved or requested permanent storage, insofar as the data is necessary for the continuation of the relationship or is requested by the user.
To delete data from the database, we use a tool in our content management system that allows personal data to be removed within a few seconds based on name or e-mail address.

Permanent measures

Ventori Europe OÜ keeps a register of processing activities incl. a description of the technical and organizational measures (TOMs).

Rights regarding the processing of personal data

Right to information

You have the right to receive information from us at any time about the personal data concerning you that we process within the scope of Art. 15 GDPR. You can submit an application by post or e-mail to the addresses below.

Right to rectification of inaccurate data

You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you (Art. 16 GDPR). Please use the contact addresses below.

Right to erasure

You have the right to the immediate erasure of personal data concerning you if the legal grounds pursuant to Art. 17 GDPR apply. Such reasons exist, for example, if a request to us has been completed, no booking has been made and contact is not to be resumed.
Even if you have withdrawn your consent, e.g. for a newsletter subscription, or have objected to the processing for the first time and if there is no other legal basis for the processing.
Legislation gives retention obligations for tax or accounting purposes higher priority than data protection. It is therefore not possible to delete the data if state laws and regulations prevent this. An example of this is the invoices with your address data and information about your order.
For deletion requests, please use the contact addresses below.

Right to restriction of processing

You have the right to restrict processing if the conditions are met and in accordance with Art. 18 GDPR.
You can request restricted processing, for example, if the processing is unlawful. Even if you have a right to erasure, but prefer to restrict the use of your personal data.
If you are of the opinion that your objection to the processing pursuant to Art. 21 para. 1 GDPR is justified, but we are of the opinion that our legitimate reasons outweigh yours, processing may be restricted until the case has been clarified.
Please use the contact addresses below to apply for restrictions.

Right to data portability

You have a right to data portability in accordance with Art. 20 GDPR. Upon request, we will provide you with the data concerning you in a commonly used, machine-readable format. You can then transfer this data to another service provider for further use. The prerequisite for this is that the processing is based on consent or on a contract and is carried out using automated procedures. You can request the data transfer via the contact addresses below.

Right of objection

You have the right to object at any time to the processing of personal data concerning you which is based, inter alia, on Art. 6 para. 1 lit. e or f GDPR, to file an objection in accordance with Art. 21 GDPR. We will then cease processing your personal data unless there are compelling legitimate grounds for processing that restrict your interests, rights and freedoms, conflict with other legal provisions or the processing serves to assert, exercise or defend legal claims. In these cases, we will present our point of view to you, which you can of course object to.
In particular, you may object to the processing of your data for direct marketing purposes.
Please address any objections to our contact addresses below.

You can assert your right to revocation, correction, deletion, data transfer, restriction of processing and information at the following address:

VENTORI Europe OÜ
Sepapaja tn 6, Lasnamäe linnaosa
Tallinn 15551
Estonia
Phone: +49 (0) 5322 9049150
Fax: +49 (0) 5322 90491509
Email: info@ventori.de

To prevent someone else from impersonating you, you must verify yourself when you request information, deletion or correction. For this purpose, you can provide us with identification documents that prove your identity (e.g. a signed copy of your identity card or passport). Other persons can only obtain information about you from us if you have authorized this person to do so (e.g. lawyers) and these persons can also prove this authorization to us.
For your own protection and the protection of your data, we are otherwise unable to implement any of the measures listed in this section.
We are not responsible for misuse of data on the way to our contact addresses (e.g. by post) – especially if you use an incorrect address, fax number or e-mail.
To protect against misuse (e.g. if someone has stolen your ID and forged your signature), we keep your proof of identity in protected rooms or on protected servers until the statutory period for taking legal action has expired. We then destroy your receipts.
From the time we receive your application and proof of identity, we will respond within 72 hours.

Right to lodge a complaint with a supervisory authority

If you believe that the processing of personal data concerning you by us is unlawful, you have the right to lodge a complaint with the supervisory authority, which you can contact as follows:

Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstr. 219
10969 Berlin
Tel.: 030/13889-0
Fax: 030/21550-50
Email: mailbox@datenschutz-berlin.de

Data Protection Officer

Due to its number of employees, its structure and the non-automated processing of your data, our company is not obliged to appoint a data protection officer.
If you have any questions regarding the processing of your personal data, you can contact Dipl. Frank Schulze, who is also available in the event of requests for information, applications or complaints.

If you are unable to understand the details of this privacy policy, we will of course be happy to explain them to you in more detail. We want you to feel safe and well looked after on our websites. We are therefore happy to explain our work processes and the path of your data in a transparent manner.

VENTORI Europe OÜ
Sepapaja tn 6, Lasnamäe linnaosa
Tallinn 15551
Estonia
Phone: +49 (0) 5322 9049150
Email: info@ventori.de

Status: 30.12.2023

Data protection

Data protection

Kontakt

Quick Links

Informationen