Privacy Policy
The protection of your personal data is a particularly important and high priority for us. With the following privacy policy, we try to explain our data protection regulations in an understandable manner and, above all, to inform you about your rights as a data subject.
I. Controller pursuant to Art. 4 No. 7 GDPR
For the processing of personal data within the meaning of the European General Data Protection Regulation (hereinafter: GDPR) as well as other national data protection laws and regulations, the controller is:
2Spicy Entertainment GmbH
Otto-Volger-Straße 9B
65843 Sulzbach (Taunus)
Germany
Phone: +49 0619 0808 9370
Email: info@2spicy.com
II. Definitions
For the definition of the following terms "data processing", "processing", "processing of data", the definitions of Art. 4 GDPR are used as a basis.
III. Data Processing in General
1. Scope of Data Processing
The processing of personal data is generally only carried out to enable the provision of a functional website, the display of content, and the provision of our services. Data processing is generally only carried out after obtaining the consent of the user. No consent is obtained if this is not possible for factual reasons and/or the processing of data is permitted by legal regulations and is therefore lawful even without prior consent of the affected user, or if the data processing is justified by our legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.
2. Relevant Legal Bases for Processing Personal Data
Unless otherwise stated, the relevant legal bases for processing personal data are the following:
3. Disclosure of Personal Data to Third Parties
In order to offer and continuously improve our services, personal data is also transmitted to and, if applicable, disclosed to other companies. These include companies entrusted with IT tasks, such as hosting the internet offering, or payment institutions that handle payment transactions. We also use other services and products from other companies. In any case, we comply with legal requirements and conclude data processing agreements pursuant to Art. 28 GDPR with the relevant companies.
4. Data Processing in Third Countries
When using the companies mentioned above, it may happen that personal data is transferred to and processed in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)). In such a case, this is only done in accordance with legal requirements.
5. Data Deletion and Storage Period
Personal data is deleted as soon as the purpose of storage ceases to apply. Furthermore, storage may occur if we are legally obligated to do so. Deletion or blocking of data also occurs when a statutory retention period exists.
IV. Specifics Regarding the Provision of This Website
1. SSL/TLS Encryption
Our site uses SSL encryption for security reasons, especially to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator.
2. Server Log Files
Our website is hosted by Amazon LLC. When accessing our website, our system automatically collects information from the computer system of the accessing computer. Only anonymized IP addresses of website visitors are stored.
3. Cookies
Cookies must be used to display and use our website. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system.
4. Contact Options
You can contact us via the email address and telephone number provided in the imprint. The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 sentence 1 lit. f GDPR.
5. Services, Service Providers and Plugins Used
Google Fonts: We integrate fonts from the provider Google, whereby user data is used solely for the purpose of displaying fonts in the user's browser. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
V. Your Rights
1. Right to Information
You have the right to know whether personal data concerning you is being processed.
2. Right to Rectification
You have a right to rectification and/or completion if the personal data we process concerning you is inaccurate or incomplete.
3. Right to Erasure ("Right to be Forgotten")
You have the right to request that we delete personal data concerning you without undue delay.
4. Right to Restriction of Processing
You have the right to request restriction of processing of your personal data if one of the legal conditions is met.
5. Right to Notification
You have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation.
6. Right to Data Portability
You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used, and machine-readable format.
7. Right to Object
You have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation.
8. Right to Withdraw Consent
You have the right to withdraw your data protection consent at any time. The withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal.
9. Automated Individual Decision-Making Including Profiling
You have the right not to be subject to a decision based solely on automated processing — including profiling — which produces legal effects concerning you or similarly significantly affects you.
10. Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you violates the GDPR.