We process your data exclusively on the basis of the legal provisions, in particular the GDPR and the German Federal Data Protection Act (BDSG). If we require your consent for certain processing operations, we will ask you separately for your consent and record it.
Controller and Data Protection Officer
Our company has not appointed a data protection officer as we are not legally required to do so. However, if you have any questions regarding data protection, you can always contact us at (link). We will process your request promptly.
Collection of personal data
Our company only collects personal data if it is necessary to fulfill the respective purpose and/or if the user has given their consent. We comply with the data protection regulations of the EU General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG).
The collected data is limited to the necessary minimum and is used exclusively for the respective purpose. We regularly review and update the collected data to ensure that it is current and correct. Data is only disclosed to third parties if it is necessary to fulfill the respective purpose and/or if the user has given their consent.
Data storage and contact
We store personal data of users who purchase or request our products or services. This includes, in particular, name, email address, payment information, and, if applicable, address data. This data is used exclusively to process the respective purchase or to respond to the request and is kept in accordance with legal provisions and deadlines.
Furthermore, based on our business interests, we store information about suppliers, organizers, and other business partners for later contact. The majority of business-related data is generally stored permanently.
When contacting us, for example via contact form, email or telephone, we process the user's information in accordance with Art. 6 para. 1 lit. b GDPR to process the request and its handling. The information may be stored in a Customer Relationship Management system ("CRM system") or similar request organization.
We delete requests if they are no longer necessary. The necessity is reviewed every two years and the legal archiving obligations apply.
We use technical and organizational security measures to protect the personal data of our users stored against accidental or intentional manipulation, loss, or destruction, and against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
We would like to point out that the transmission of data over the Internet (e.g., when communicating by email) can have security gaps. It is not possible to provide complete protection of data against access by third parties.
Purpose of data processing
The processing of personal data is carried out to fulfill our contractual obligations as well as to safeguard our legitimate interests. This includes in particular the provision and improvement of our services, invoicing our customers and carrying out marketing activities. We also use the data to ensure the security and integrity of our IT systems and to comply with legal requirements.
The data collected allows us to tailor and optimize our services to the needs of our customers. We analyze the use of our website and games to gain insights into the interests of our users and to improve our offerings. Data processing also serves to prevent fraud and investigate crimes.
We do not use your data for automated decision-making or profiling that has legal effects on you or similarly significantly affects you.
Contact and Support
If you contact us by email or through our contact form, or use our support services, we process your information to handle your request and its processing according to Art. 6 para. 1 lit. b GDPR. This includes storing your data in our Customer Relationship Management system or a comparable system.
We delete your requests as soon as they are no longer necessary and review the necessity at regular intervals. However, there may be legal retention obligations for some data that we must fulfill. In such cases, we will delete your data immediately after the retention obligations have expired.
Disclosure of data to third parties
We only disclose personal data to third parties if this is necessary to fulfill our contractual obligations, such as to payment service providers for processing payments or to shipping companies for delivering orders. Further transmission of data to third parties only occurs if you have expressly consented to it or if there is a legal obligation to do so.
In certain cases, we use service providers located outside of the European Economic Area (EEA). In this case, we ensure that an adequate level of data protection is ensured at the recipient before transferring your data. This can be achieved, for example, by agreeing on standard contractual clauses with the recipient.
Data collection on our website
Storage and Deletion of Personal Data
We only store personal data for as long as necessary for the respective purpose. We particularly observe legal retention periods and delete data as soon as it is no longer needed.
If you wish to exercise your right to have your personal data deleted, please contact us. We will then delete your data immediately, unless there are legal retention periods or other reasons that prevent us from doing so.
Data processing in job applications and application procedures
We collect and process personal data from job applicants for the purpose of processing the application procedure. The processing may also be done electronically. This is particularly the case when an applicant submits relevant application documents electronically, for example by email or through a web form on the website.
If we enter into an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If we do not enter into an employment contract with the applicant, the application documents will be automatically deleted six months after the decision to reject the application, unless there are other legitimate interests that prevent deletion. A legitimate interest in this sense would be, for example, the obligation to provide evidence in a proceeding under the General Equal Treatment Act (AGG).
There are different types of cookies: session cookies are deleted when you leave the website, while permanent cookies remain stored on your device for a longer period of time. In addition, first-party cookies can be set by our website and third-party cookies can be set by other websites.
Most browsers are set to accept cookies by default. However, you can set your browser settings to not accept cookies or to be notified when cookies are sent. Please note that some features of our website may not work properly if you do not accept cookies.
As of: 09.03.23/2023/Alchemical - Angelo Denecke & Ron Kaiser GbR