The LEGO® SERIOUS PLAY® Podcast for Pros

Data privacy

Name and address of the controller:

The controller within the meaning of the EU General Data Protection Regulation and other data protection regulations is:

Matthias Renner
Eulengasse 48
60385 Frankfurt
Germany

Tel.: +49 151 598 99 818
Email: LSP@bricks-boutique-hotel.com
Website: https://bricks-boutique-hotel.com

We respect your data!

We are pleased about your interest in our website. The trust of all visitors and customers, the security of your data, and the protection of your privacy are of central importance to us. Therefore, your personal data is handled in accordance with the applicable legal data protection regulations and this privacy policy. Personal data refers to information that can be used to identify you, such as your real name, address, or telephone number.

If you view and use our site without registering or explicitly providing us with information, we process the data transmitted to us with each request from your browser (see below „Log Data“). If you explicitly provide us with personal data (e.g., via our contact form), this is done solely for the purpose related to your inquiry or the respective task. We would like to point out that data transmission on the internet can never be completely protected from access by third parties.

Below, we would like to explain in more detail which data we process, when, and for what purpose. It explains how our services operate and how the protection of your personal data is ensured.

Legal basis for the processing of personal data

If we obtain the consent of the data subject for processing personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis.

For the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations necessary to carry out pre-contractual measures.

If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

If the processing is necessary for the purposes of legitimate interests pursued by our company or a third party and these are not overridden by the interests, fundamental rights, and freedoms of the data subject, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing of data.

Data deletion and storage duration

The personal data of the data subject will be deleted as soon as the purpose of storage no longer applies. Storage may also take place if this is required by European or national laws or other regulations to which the controller is subject. Blocking or deletion of the data will also occur when a storage period prescribed by these regulations expires, unless further storage of the data is necessary for the conclusion or fulfillment of a contract.

Your rights

You have the right to obtain free information about the personal data stored by us concerning you, as well as, if applicable, the right to rectification, restriction of processing, or deletion of this data. You also have the right to data portability. Finally, you have the right to lodge a complaint with the data protection supervisory authority regarding the processing of your personal data by us.

We would also like to inform you that you can object to the future processing of your personal data at any time in accordance with the legal provisions under Art. 21 GDPR. The objection can particularly be made against processing for direct marketing purposes.

Provision of information

If you have any questions regarding the collection, processing, or use of your personal data, or if you require information, correction, blocking, or deletion of data, as well as for the revocation of any consents given or to object to a specific use of data, please contact us using the following email address: datenschutz@brickolution.com

Log Data

The automatic collection and storage of log data by the internet service provider is carried out because the processing of this data is technically necessary to display our website to you and to ensure its stability and security. The log data includes the following information:

Date and time of each request
Internet address (URL) requested
URL previously visited by the visitor
Browser and language used
Operating system and its interface
IP address (anonymised) and hostname of the visitor
Access status / HTTP status code

Data volume transferred in each case

The transmission of this data to us occurs automatically and cannot be linked to your person without disproportionate effort. The legal basis for processing this data is our legitimate interest in accordance with Art. 6 paragraph 1 sentence 1 lit. f GDPR, as this data processing is necessary for the operation and display of the website. The data will be deleted as soon as it is no longer required for the purpose for which it was collected. In the case of data collection for providing the website, this occurs when the respective session has ended. The collection of data for providing the website and storing the data in log files is essential for the operation of the website. Therefore, the user has no right to object.

Cookies

To make your visit to our website more attractive and to enable the use of certain functions, we use so-called cookies. These are small text files stored on your device that save specific information to exchange with our system. The legal basis for processing this data is Art. 6 paragraph 1 sentence 1 lit. f GDPR. Some of the cookies we use are deleted at the end of the browser session, i.e., when the browser is closed (transient cookies). These include session cookies, which store a unique identifier (session ID). This session ID allows different requests from your browser to be assigned to the same session, enabling your device to be recognised when you return to our website during a session. Session cookies are also deleted when you log out.

Other cookies remain on your device for a predetermined period and allow us to recognise your browser or device on your next visit (persistent cookies).

Please note that certain cookies are set as soon as you enter our website. You can configure your browser to inform you about the setting of cookies, allow cookies on a case-by-case basis, exclude the acceptance of cookies in specific cases, particularly third-party cookies, or generally exclude them. If cookies are not accepted, the functionality of our website may be limited for you.

If you view content using the Flash plugin, Flash cookies may be used. These are not captured and stored by your browser but by the Flash plugin itself. If you do not want Flash cookies to be processed, you must install an appropriate add-on, such as „Better Privacy“ for Mozilla Firefox or the „Adobe Flash Killer Cookie“ for Google Chrome.

Configuring cookie settings in the browser

You have the option to prevent cookies from being stored on your computer by adjusting the appropriate browser settings. Each browser differs in how it manages cookie settings. This is described in the help menu of each browser, which explains how to change your cookie settings. You can find these settings for the respective browsers at the following links:
Internet Explorer^™: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
Safari^™: http://apple-safari.giga.de/tipps/cookies-in-safari-aktivieren-blockieren-loeschen-so-geht-s and https://support.apple.com/
Chrome^™: http://support.google.com/chrome/bin/answer.py?hl=en&answer=95647
Firefox^™: https://support.mozilla.org/en/kb/enhanced-tracking-protection-firefox-desktop
Opera^™: https://help.opera.com/en/latest/web-preferences/

Encryption via SSL

For security reasons, our website uses SSL encryption (Secure Sockets Layer). This ensures that transmitted data is protected and cannot be read by third parties. You can recognise successful encryption by the fact that the protocol in the browser’s status bar changes from „http://“ to „https://“, and a closed padlock symbol is visible.

Contact form

You can contact us electronically via the provided contact form. The form indicates which data is mandatory and which can be provided voluntarily. All entered data is stored and used solely for the purpose of responding to your inquiries. In addition, your IP address, as well as the date and time of the registration, are stored. Your personal data will be deleted as soon as storage is no longer necessary for this purpose, or we will restrict processing if legal retention obligations apply. The legal basis for processing the data is the execution of a pre-contractual measure through your inquiry according to Art. 6 para. 1 lit. b GDPR.

Podigee

This website uses the Podigee Player for hosting and providing podcasts. The provider of these services is Podigee UG, Schlesische Straße 20, 10997 Berlin.

The player sends IP addresses to Podigee’s statistics, where they are anonymised and stored.
We have entered into a data processing agreement with Podigee in accordance with Art. 28 GDPR. The legal basis for the processing of the data is our legitimate interest according to Art. 6 para. 1 lit. f GDPR, as we aim to offer you an engaging website along with various modern ways to access information and interact with us. Further information can be found in Podigee’s privacy policy, available at: https://www.podigee.com/en/about/privacy/

Privacy policy regarding the use of YouTube

The controller has integrated components from YouTube on this website. YouTube is an internet video portal that allows video publishers to upload video clips for free and enables other users to view, rate, and comment on these videos, also free of charge. YouTube permits the publication of all types of videos, including full-length films and TV shows, as well as music videos, trailers, or videos created by users.

The operator of YouTube is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

Each time one of the individual pages of this website, operated by the controller, is accessed and contains a YouTube component (YouTube video), the internet browser on the information technology system of the data subject is automatically prompted by the respective YouTube component to download a display of the corresponding YouTube component from YouTube. Further information about YouTube can be accessed at https://www.youtube.com/yt/about/. As part of this technical process, YouTube and Google become aware of which specific subpage of our website the data subject visited.

If the data subject is logged into YouTube at the same time, YouTube recognises which specific subpage of our website the data subject visited when accessing a subpage containing a YouTube video. This information is collected by YouTube and Google and associated with the respective YouTube account of the data subject.

YouTube and Google receive information through the YouTube component that the data subject has visited our website, provided the data subject is logged into YouTube at the time of the visit; this happens regardless of whether the person clicks on a YouTube video or not. If such transmission of this information to YouTube and Google is not desired, the data subject can prevent this by logging out of their YouTube account before visiting our website.

The privacy policies published by YouTube, which are available at https://www.google.de/intl/en/policies/privacy/, provide information about the collection, processing, and use of personal data by YouTube and Google.

Encryption with RSA

We use RSA technology for encryption. RSA is an algorithm for encryption that uses a private and a public key. The public key is used to encrypt data before it is sent to the server where the corresponding certificate is stored. This public key is transmitted to any internet user who wants to connect to the respective website. The private key, created together with the CSR, is used to decrypt the data encrypted with the public key. The private key should not be made accessible to any third party, as your SSL security depends on it.

System and Information Security

We secure our website and our other systems through technical and organisational measures against loss, destruction, access, modification, or distribution of stored data by unauthorised persons. Despite our controls, complete protection against all risks is not possible. Simply due to the connection to the internet and the resulting technical possibilities, we cannot guarantee that content and information flow will not be viewed or recorded by third parties.

Objection to unsolicited advertising via email

As part of the legal obligation to provide an imprint in accordance with § 5 TMG, we have published general contact details and an email address on our website. We hereby object to the use of these contact details for the unsolicited sending of informational materials, advertising, or spam emails that we have not explicitly requested.