Privacy

A. General Information

§ 1 Information on the Collection of Personal Data

(1) In the following, we inform you about the processing of personal data when using our website. Personal data includes all data that can be related to you personally, such as name, address, email addresses, and user behavior. By doing so, we aim to inform you about our processing activities and at the same time comply with our legal obligations, particularly those arising from the EU General Data Protection Regulation (GDPR).

(2) The controller pursuant to Art. 4 para. 7 GDPR is Streamfinity UG (haftungsbeschränkt), Magdeburger Str. 64, 36037 Fulda, [email protected].

(3) When you contact us by email or via a contact form, the data you provide (your email address, possibly your name and phone number) will be stored by us to answer your questions. We delete the data arising in this context after the query is assigned to a contract, according to the contract duration deadlines, or otherwise when the storage is no longer necessary, or we restrict the processing if there are legal retention obligations.

(4) If we use commissioned service providers for individual functions of our offering or wish to use your data for advertising purposes, we will always carefully select and monitor these service providers and inform you in detail about the respective processes below. We will also specify the established criteria for the storage duration.

§ 2 Your Rights

(1) You have the following rights concerning your personal data:

  • Right to information,
  • Right to rectification or deletion,
  • Right to restriction of processing,
  • Right to object to processing,
  • Right to data portability.

(2) You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data.

§ 3 Processing of Personal Data When Visiting Our Website

When using the website for informational purposes only, i.e., without registering or otherwise providing us with information, we only collect the personal data that your browser transmits to our server. These data are technically necessary for us to display our website to you and ensure stability and security. The legal basis is Article 6(1) sentence 1 lit. f GDPR:

  • IP address,
  • Date and time of the request,
  • Time zone difference to Greenwich Mean Time (GMT),
  • Content of the request (specific page),
  • Access status/HTTP status code,
    • Amount of data transferred,
    • Referring website,
    • Browser,
    • Operating system,
    • Language and version of the browser software.

§ 4 Additional Functions and Offers of Our Website

(1) In addition to the purely informational use of our website, we offer various services that you can use if you are interested. For this purpose, you usually need to provide additional personal data, which we use to perform the respective services. For all data processing purposes described here, the aforementioned principles of data processing apply.

(2) We sometimes use external service providers to process your data. These providers are carefully selected, bound by our instructions, and regularly monitored.

(3) Furthermore, we may share your personal data with third parties when participation in promotions, competitions, contract conclusions, or similar services are offered by us jointly with partners. Depending on the service, your data may also be collected by the partners on their own responsibility. You will receive more information when providing your data or below in the description of the respective offers.

(4) If our service providers or partners are based in a country outside the European Economic Area (EEA), we inform you about the consequences of this circumstance in the description of the offer.

§ 5 Objection or Withdrawal Against the Processing of Your Data

(1) If you have given consent to the processing of your data, you can withdraw it at any time. Such a withdrawal affects the permissibility of processing your personal data after you have expressed it to us. The permissibility of processing your data until the time of your withdrawal remains unaffected.

(2) As far as we base the processing of your personal data on the balance of interests, you can object to the processing. This is the case if the processing is not necessary for the performance of a contract with you, which we will demonstrate in the following description of the functions. When exercising such an objection, we ask for an explanation of the reasons why we should not process your personal data as we do. In the case of your justified objection, we will examine the situation and either stop or adjust the data processing or show you our compelling legitimate grounds for continuing the processing.

(3) You can, of course, object to the processing of your personal data for advertising and data analysis purposes at any time. The best way to exercise your objection to advertising is to contact us using the contact details above.

§ 6 Processing of Data from Your Devices (“Cookie Policy”)

(1) In addition to the aforementioned data, we use technical tools for various functions when you use our website, particularly cookies that can be stored on your device. Upon accessing our website and at any later time, you have the choice of whether to generally allow cookies or to select individual additional functions. You can make changes in your browser settings or through our consent manager. Below, we first describe cookies from a technical perspective (2) before we go into more detail about your individual choices by describing technically necessary cookies (3) and cookies that you can voluntarily select or deselect (4).

(2) Cookies are text files or information in a database that are stored on your hard drive and associated with the browser you are using, allowing certain information to flow to the entity that sets the cookie. Cookies cannot run programs or transmit viruses to your computer; they primarily serve to make the internet offering faster and more user-friendly. This website uses the following types of cookies, whose functionality and legal basis we will explain below:

– Transient cookies: Such cookies, especially session cookies, are automatically deleted when you close the browser or log out. They contain a so-called session ID, which allows various requests from your browser to be assigned to the common session, and your computer can be recognized when you return to our website.

– Persistent cookies: Such cookies are automatically deleted after a specified period, which can differ depending on the cookie. You can view the set cookies and their durations at any time in your browser settings and delete the cookies manually.

– [Other technologies: These functions do not rely on cookies but on similar technical mechanisms such as Flash cookies, HTML5 objects, or an analysis of your browser settings. The result is that we can use the techniques described below. Here, too, you can consent or object.]

(3) Mandatory, technically necessary functions for displaying the website: The technical structure of the website requires us to use techniques, particularly cookies. Without these techniques, our website cannot be displayed (fully correctly), or support functions cannot be enabled. These are generally transient cookies, which are deleted at the end of your website visit, at the latest when you close your browser. You cannot deselect these cookies if you want to use our website. The individual cookies are visible in the consent manager. The legal basis for this processing is Art. 6 para. 1 sentence 1 lit. f GDPR.

(4) Optional cookies with your consent: We use various cookies only with your consent, which you can select using the so-called cookie consent tool during your first visit to our website. These functions are activated only if you agree and can be used in particular to analyze and improve visits to our website, facilitate your use across different browsers or devices, recognize you on a return visit, or serve advertisements (including tailoring ads to your interests, measuring ad effectiveness, or showing interest-based ads). The legal basis for this processing is Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out based on the consent until the revocation.

The functions we use, which you can select and revoke individually through the consent manager, are described below.

§ 7 SSL Encryption

Your visit to our website and the transmission of personal data or personal content is secured with SSL encryption. Please ensure that SSL encryption is enabled for you. You can recognize the use of encryption easily: the display in your browser line changes from "http://" to "https://" when SSL encryption is activated. Data encrypted via SSL cannot be read by third parties. Therefore, only transmit your confidential information with SSL encryption enabled and contact us if in doubt.

B. Hosting

1. Hetzner

We host our website with Hetzner. The service provider offers web hosting and is a German company: Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. We have a data processing agreement with Hetzner. More about Hetzner’s privacy policy can be found here: Hetzner Privacy Policy.

If you also use our hosting offer, we execute it via Hetzner.

2. Cloudflare

(1) We use the Content Delivery Network (CDN) and hosting service of the American company Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA – in Germany: Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich, Germany (Cloudflare), to increase the security and delivery speed of our website.

(2) A CDN is a network of globally distributed servers capable of delivering optimized content to website users. For this purpose, personal data may be processed in Cloudflare's server log files.

(3) Cloudflare is the recipient of your personal data and acts as a data processor on our behalf. This corresponds to our legitimate interest in the sense of Article 6(1) sentence 1 lit. f GDPR, as we do not operate a content delivery network ourselves. You have the right to object to the processing. Whether the objection is successful depends on the outcome of a balancing of interests. The processing of the data specified in this section is neither legally nor contractually required. The functionality of the website is not guaranteed without the processing.

(4) Your personal data will be stored by Cloudflare for as long as necessary for the described purposes. Cloudflare also processes data in the USA. Under the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers certified under the DPF is legally secure (here is the official DPF list). Cloudflare is currently certified under the DPF and thereby officially complies with applicable data protection laws for international data transfers. Cloudflare has also implemented compliance measures for international data transfers, which apply to all global activities where Cloudflare processes personal data of natural persons in the EU. These measures are based on the EU standard contractual clauses (SCCs). More information can be found here: Cloudflare Customer SCCs.

(5) More about Cloudflare’s privacy policy can be found here: Cloudflare Privacy Policy.

C. Special Uses of the Website

1. Use of Blog Functions

(1) In our blog, where we publish various articles on topics related to our activities, you can leave public comments. Your comment will be published with your specified username. We recommend using a pseudonym instead of your real name. The provision of a username and email address is mandatory; all other information is voluntary. If you leave a comment, we also store your IP address, which we delete after [one week]. The storage is necessary to defend ourselves against liability claims in cases of potential publication of illegal content. We need your email address to contact you if a third party objects to your comment as unlawful. The legal basis is Article 6(1) sentence 1 lit. c and f GDPR. Comments are not reviewed before publication. We reserve the right to delete comments if they are objected to as unlawful by third parties.

2. Use of Our Restricted Area

(1) If you wish to use our restricted area, you must register by providing your email address, a self-chosen password, and a freely selectable username. Using a real name is not required; pseudonymous use is possible. The provision of the previously mentioned data is mandatory, all other information can be provided voluntarily through the use of our portal. For this service, we use the so-called double opt-in procedure, i.e., you will receive an email in which you must confirm that you are the owner of the provided email address and wish to receive notifications. You can unsubscribe from notifications at any time, e.g., by clicking on the link in the email or through the contact details provided. Your provided data and the time points of your registration for the service and your IP address will be stored by us until you unsubscribe from the notification service. Alternatively, you can register using your Google or Twitch account. Further information will be provided below.

(2) When you use our portal, we store your data required for contract fulfillment, including payment details, until you permanently delete your access. Furthermore, we store the voluntary data provided by you for the time of your use of the portal, unless you delete them beforehand. You can manage and change all details in the protected customer area. The legal basis is Article 6(1) sentence 1 lit. b GDPR.

(3) When you use the portal, your data may be made accessible to other participants of the portal according to the contractual performance. Non-registered members do not receive any information about you. For all registered members, your username and photo are visible, regardless of whether you have released them. In contrast, your entire profile with the data you have released is visible to all members you have confirmed as personal contacts. If you make content accessible to your personal contacts that you do not send via a private message, this content is visible to third parties, provided your personal contact has granted access. If you post contributions in public groups, they are visible to all registered members of the portal.

(4) To prevent unauthorized access by third parties to your personal data, especially financial data, the connection is encrypted using TLS technology.

3. Use of Our Contact Form & Email Contact

(1) On our website, there is a contact form that can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. This data includes:

The following is a list of data from the input mask:

  • Email address

For the processing of the data, your consent will be obtained during the submission process, and you will be referred to this privacy policy.

Alternatively, contact can be made via the provided email address. In this case, the user's personal data transmitted with the email will be stored.

There is no transfer of the data to third parties in this context. The data is used exclusively for processing the conversation.

(2) The legal basis for processing the data is Art. 6 para. 1 lit. a GDPR if the user has given consent.

The legal basis for processing data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR. If the email contact aims to conclude a contract, an additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

(3) The processing of personal data from the input mask serves solely to handle the contact request. In the case of contact via email, this also constitutes the necessary legitimate interest in processing the data.

Other personal data processed during the submission process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

(4) The data will be deleted as soon as they are no longer necessary for the purpose of their collection. For personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is considered ended when it can be inferred from the circumstances that the relevant matter has been conclusively clarified. Personal data collected during the submission process will be deleted at the latest after seven days.

The user has the right to withdraw their consent to the processing of personal data at any time. If the user contacts us via email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.

4. Payment Processing

(1) We use the payment tool of the American online payment service Stripe on our website. In the EU, Stripe Payments Europe (Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is responsible.

(2) If you choose Stripe as a payment method, personal data will also be transmitted to and stored by Stripe. These are transaction data, including payment method (e.g., credit card or debit card number, bank sort code, currency, amount, and date of payment). A transaction may also transmit your name, email address, billing or shipping address, and sometimes your transaction history. These data are necessary for authentication. Stripe may also collect name, address, phone number, and country, alongside technical data about your device (such as IP address) to prevent fraud, financial reporting, and to fully provide its services.

(3) We offer Stripe as a payment service provider for the handling of contractual and legal relationships (Article 6(1) lit. b GDPR). The successful use of the service also requires your consent (Article 6(1) lit. a GDPR) if the use involves allowing cookies.

Stripe processes data, including your data, in the USA. Under the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers certified under the DPF is legally secure (here is the official DPF list). Stripe is currently certified under the DPF and thereby officially complies with applicable data protection laws for international data transfers.

More about Stripe’s privacy policy can be found here: Stripe Privacy Policy.

5. Error Analysis by Sentry

We use the Sentry web analysis service on our website. Sentry is offered by Functional Software, Inc., 132 Hawthorne St, San Francisco, CA 94107, USA.

More about Sentry’s privacy policy can be found here: Sentry Privacy Policy.

6. OpenAI

(1) On our website, we use the API interface of the American company OpenAI. This service is offered by OpenAI OpCo, LLC, 3180 18th Street, San Francisco, CA, USA. We use OpenAI for convenient speech recognition of YouTube videos.

(2) No personal data is collected in this process. OpenAI also processes data in the USA. Under the Data Privacy Framework for the secure data transfer from the EU to the USA, the use of all US service providers certified under the DPF is legally compliant (here is the official DPF list). As of the current status, OpenAI is not DPF certified and thus does not officially comply with applicable data protection laws for international data transfers.

For more information on data protection at OpenAI, please see: https://openai.com/policies/privacy-policy

7. Pushover

(1) On our website, we use Pushover for communication with our users. Pushover is a service offered by the American company Pushover, LLC (formerly Superblock, LLC).

We use Pushover solely to communicate with you if you have previously consented, installed the Pushover app, and entered the individual token on our website.

(2) The use of Pushover is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. In addition to your consent, we have a legitimate interest in optimizing and simplifying our communication with our users and in improving our services both technically and economically. By using Pushover, we enhance communication on our website and expand our support offerings. The legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate Interests).

Pushover also processes data in the USA. Under the Data Privacy Framework for the secure data transfer from the EU to the USA, the use of all US service providers certified under the DPF is legally compliant (here is the official DPF list). As of the current status, Pushover is not DPF certified and thus does not officially comply with applicable data protection laws for international data transfers.

For more information on data protection at Pushover, please see: https://pushover.net/privacy

8. YouTube API

On our website, we use YouTube APIs provided by the American company Google Inc. In Europe, the responsible entity is Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland).

We use the YouTube APIs for authentication and authorization of our users. When registering, you can choose how you want to sign up. The processing of additional YouTube data is only possible if you explicitly agree to authenticate using YouTube.

We use the YouTube APIs to display relevant content: Our platform aims to aggregate view counts from previously untrackable sources and display them to both the original YouTube creator and the person generating the views. We identify videos for which views have been generated and show users on both sides information such as title, thumbnail, or YouTube view counts, which are retrieved via the YouTube API.

We use the YouTube APIs for search: We use YouTube search endpoints to aggregate video view counts, making previously untrackable view counts visible.

This is done in accordance with Art. 6 para. 1 lit. a GDPR based on your consent.

Google processes your data, among other places, in the USA. YouTube or Google is an active participant in the EU-US Data Privacy Framework, whose participating companies are considered by the EU Commission to be safe for the transfer of personal data of EU citizens to the USA. More information can be found here: https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses what are known as standard contractual clauses (= Art. 46 para. 2 and 3 GDPR). These are provided by the EU Commission to meet European data protection standards when processed in third countries (e.g., the USA). More information on data protection at Google can be found here: http://www.google.com/policies/privacy.

Users can revoke access to data collected via YouTube APIs via the steps outlined in Google security settings.

D. Newsletter

1. General Information

(1) You can subscribe to our newsletter, through which we inform you about our current interesting offers, by giving your consent. The advertised goods and services are named in the declaration of consent.

(2) For the registration to our newsletter, we use the so-called double opt-in procedure. This means that after your registration, we send you an email to the specified email address, in which we ask you to confirm that you are the owner of the provided email address and wish to receive the notifications. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. Additionally, we store your used IP addresses and the times of registration and confirmation. The purpose of the procedure is to verify your registration and, if necessary, to clarify any potential misuse of your personal data.

(3) The only mandatory information for receiving the newsletter is your email address. The provision of additional, separately marked data is voluntary and is used to address you personally. After your confirmation, we store your email address for the purpose of sending the newsletter. The legal basis is Art. 6 para. 1 sentence 1 lit. a GDPR.

(4) You can withdraw your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can declare the withdrawal by clicking on the link provided in every newsletter email, by email to [email protected], or by sending a message to the contact details provided in the imprint.

2. Newsletter Delivery with Amazon SES

(1) For sending our email newsletter, we use Amazon Simple Email Service provided by the American company Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, USA ("Amazon SES"). We transfer the data provided during the newsletter registration to Amazon SES, according to Art. 6 para. 1 lit. f GDPR. The transfer serves our legitimate interest in using a secure and user-friendly newsletter system.

(2) Amazon also processes data in the USA. According to the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers is legally compliant if they are certified under the DPF (here is the official DPF list). As of the current status, Amazon is DPF certified and thus officially complies with applicable data protection laws for international data transfer. We have signed a data processing agreement with Amazon SES, obliging Amazon SES to protect our customers' data and not to share it with third parties.

(3) Amazon SES uses this information to send and statistically evaluate the newsletters on our behalf. For this purpose, the sent emails contain so-called web beacons or tracking pixels. These one-pixel image files are stored on our website and enable us to recognize if a newsletter message was opened and which links were clicked. Additionally, technical information such as the time of retrieval, IP address, browser type, and operating system are recorded. The data is collected exclusively in pseudonymized form and is not linked with your other personal data, making direct personal identification impossible. This data serves only the statistical analysis of newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the interests of the recipients. If you object to the statistical data analysis, you must unsubscribe from the newsletter.

Further information on data protection at Amazon SES can be found here: https://d1.awsstatic.com/legal/privacypolicy/AWS_Privacy_Notice_German_2020-08-15.pdf

E. Web Analytics with plausible.io

We use the web analytics tool plausible.io on our website, provided by the Estonian company Plausible Insights OÜ, Västriku tn 2, 50403, Tartu, Estonia.

Plausible runs directly through Streamfinity. No data is transmitted to Plausible's servers. To learn more about the data processed by plausible.io and how it works without cookies, please refer to their privacy policy at: https://plausible.io/data-policy.

F. Social Media

1. Embedding YouTube Videos

(1) We have embedded YouTube videos into our online offer, which are stored on YouTube.com and can be played directly from our website. These are all embedded in the "enhanced privacy mode," meaning that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in para. 2 be transmitted. We have no influence on this data transfer. The legal basis for displaying the videos is Art. 6 para. 1 sentence 1 lit. a GDPR, meaning the embedding is done only with your consent.

(2) By visiting the website, YouTube receives the information that you have accessed the corresponding subpage of our website. Additionally, the basic data mentioned above, such as IP address and timestamp, is transmitted. This occurs regardless of whether YouTube provides a user account that you are logged into or if no user account exists. If you are logged into Google, your data will be directly associated with your account. If you do not want this association with your YouTube profile, you must log out before activating the button. YouTube stores your data as user profiles and uses them for advertising, market research, and/or demand-oriented design of its website. Such an evaluation occurs particularly (even for users not logged in) to provide demand-oriented advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

(3) The collected information is stored on Google's servers, including in the USA. According to the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers is legally compliant if they are certified under the DPF (here is the official DPF list). As of the current status, YouTube is DPF certified and thus officially complies with applicable data protection laws for international data transfer.

(4) Further information on the purpose and scope of data collection and its processing by YouTube can be found in the privacy policy. There you will also find further information on your rights and settings options for protecting your privacy: www.google.de/intl/de/policies/privacy.

(5) The use of information obtained from Google APIs by Streamfinity and its transfer to other applications is in compliance with the Google API Services User Data Policy, including the requirements for limited use.

2. Embedding Twitch Livestream

We use the live streaming portal Twitch on our website. Twitch is a service provided by the American company Twitch Interactive, Inc., 350 Bush Street, 2nd Floor, San Francisco, CA 94104, USA.

According to the European Commission, there is currently no adequate level of data protection for data transfer to the USA when using Twitch. The processing of personal data when using Twitch on our website is mainly carried out by Twitch. Data may be processed and stored by Twitch without anonymization. Additionally, US authorities may have access to personal data.

Information on data processing at Twitch can be found here: https://www.twitch.tv/p/en/legal/privacy-notice/.

3. Social Sign-in Buttons

(1) On our website, we offer the possibility of social sign-in via Google account, Twitch account, and Discord account. These functions allow you to log in easily using your social network login. The legal basis for the use of these plug-ins is Art. 6 para. 1 sentence 1 lit. a GDPR, meaning the embedding is done only with your consent.

(2) The plug-in provider stores the data collected about you as usage profiles and uses them for advertising, market research, and/or demand-oriented design of its website. Such an evaluation occurs particularly (even for users not logged in) to provide demand-oriented advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Data transfer occurs regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected with us will be directly associated with your account at the plug-in provider, and information is exchanged that enables the login with us.

(3) The collected information is stored on servers of Google, Twitch, and Discord, including in the USA. According to the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers is legally compliant if they are certified under the DPF (here is the official DPF list). As of the current status, YouTube and Discord are DPF certified and thus officially comply with applicable data protection laws for international data transfer. According to the European Commission, there is currently no adequate level of data protection for data transfer to the USA when using Twitch. The processing of personal data when using Twitch on our website is mainly carried out by Twitch. Data may be processed and stored by Twitch without anonymization. Additionally, US authorities may have access to personal data.

(4) You can withdraw your consent at any time without affecting the legality of the processing carried out based on the consent until the withdrawal. You can most easily withdraw your consent via our consent manager or the functions of the social media providers.

(5) Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the following provided privacy policies of these providers. There you will also find further information on your rights and settings options for protecting your privacy. Addresses of the respective plug-in providers and URLs of their respective privacy policies:

Google is a service of Google LLC with its European headquarters at Gordon House, Barrow Street, Dublin 4, Ireland. Information on data protection at Google can be found here: www.google.de/intl/de/policies/privacy.

Twitch is a service of Twitch Interactive, Inc., 350 Bush Street, Second Floor, San Francisco, CA 94104, USA. Information on data protection at Twitch can be found here: https://www.twitch.tv/privacy

Discord is a service of Discord, Inc., 444 De Haro St Ste 200, San Francisco, CA 94107, USA. Information on data protection at Discord can be found here: https://discord.com/privacy

4. Our Presence on Social Networks

(1) We have various presences on social media platforms. We operate the presences with the following providers:

Instagram and Threads is a service provided by Meta Platforms Ireland Limited, 4 Merrion Road, Dublin 4, D04 X2K5, Ireland. URL: https://www.instagram.com/streamfinity_tv/ | https://www.threads.net/@streamfinity_tv. Information on data protection at Meta can be found here: https://www.facebook.com/privacy/center/

LinkedIn, provided by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA; URL: https://www.linkedin.com/company/streamfinitytv/. Information on data protection on LinkedIn can be found here: https://de.linkedin.com/legal/privacy-policy

Twitter / "X" is a service provided by Twitter International Unlimited Company, Attn: Data Protection Officer, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 IRELAND. URL: https://x.com/Streamfinity. Information on data protection at "X" can be found here: https://twitter.com/de/privacy

Twitch is a service provided by Twitch Interactive, Inc., 350 Bush Street, Second Floor, San Francisco, CA 94104, USA. URL: https://www.twitch.tv/streamfinity. Information on data protection at Twitch can be found here: https://www.twitch.tv/privacy

BlueSky is a service provided by Bluesky PBLLC, Seattle, Washington, USA. URL: https://bsky.app/profile/streamfinity.tv. Information on data protection at BlueSky can be found here: https://bsky.social/about/support/privacy-policy

(2) We use the technical platform and services of the providers for these information services. We inform you that you use our presences on social media platforms and their functions on your own responsibility. This applies particularly to the use of interactive functions (e.g., commenting, sharing, rating). When visiting our presences, the providers of the social media platforms collect your IP address and other information that is stored in the form of cookies on your device. These information is used to provide us, as the operator of the accounts, with statistical information about the interaction with us.

(3) The collected information is stored on the servers of the providers, including those outside Europe. According to the Data Privacy Framework for secure data transfer from the EU to the USA, the use of all US service providers is legally compliant if they are certified under the DPF (here is the official DPF list). As of the current status, Meta, YouTube, LinkedIn, and X are DPF certified and thus officially comply with applicable data protection laws for international data transfer. We do not know how the social media platforms use the data from your visit to our accounts and interaction with our contributions for their own purposes, how long this data is stored, and whether data is transferred to third parties. Data processing may differ depending on whether you are registered and logged in to the social network or visit the site as a non-registered and/or non-logged-in user. When accessing a post or the account, the IP address assigned to your device is transmitted to the provider of the social media platform. If you are currently logged in as a user, your movements on the network can be tracked via a cookie on your device. Embedded buttons on websites allow the platforms to record your visits to these websites and assign them to your profile. Based on this data, content or advertising tailored to you can be offered. If you want to avoid this, you should log out or deactivate the "stay logged in" function, delete the cookies on your device, and restart your browser.

According to the European Commission, there is currently no adequate level of data protection for data transfer to the USA when using Twitch. The processing of personal data when using Twitch on our website is mainly carried out by Twitch. Data may be processed and stored by Twitch without anonymization. Additionally, US authorities may have access to personal data.

(4) We, as the provider of the information service, only process the data from your use of our service that you provide to us and require an interaction. For example, if you ask a question that we can only answer by email, we will store your information according to the general principles of our data processing described in this privacy policy. The legal basis for processing your data on the social media platform is Art. 6 para. 1 sentence 1 lit. f GDPR.

(5) To exercise your data subject rights, you can contact us or the provider of the social media platform. If one party is not responsible for answering or needs to obtain information from the other party, we or the provider will forward your request to the respective partner. For questions about profiling or the processing of your data when using the website, please contact the operator of the social media platform directly. For questions about the processing of your interaction with us on our site, write to the contact details provided above.

(6) The information that the social media platform receives and how it is used is described in the providers' privacy policies (link see in the above table). There you will also find information about contact options and settings options for advertising. Further information on social networks and how to protect your data can also be found at www.youngdata.de.

G. Online Advertising - Use of Google AdSense

(1) This website uses the online advertising service Google AdSense, through which you can be shown banner advertisements tailored to your interests to inform you about our products. The advertisements are recognizable by the note "Google Ads" in the respective ad. The legal basis for processing your data is Art. 6 para. 1 sentence 1 lit. a GDPR, meaning the embedding is done only with your consent.

(2) By visiting our website, Google receives the information that you have accessed our website. For this purpose, Google uses a short text in the source code of the website ("code snippet") to set a cookie on your computer. The above-mentioned basic data, such as IP address and timestamp, are transmitted. We allow Google to collect the necessary information about you for the appropriate advertisement but have no knowledge of the extent of the data collection and storage duration. If you are logged in with your Google account, your data can be directly associated with it. If you do not wish the association with your Google profile, you must log out. It is possible that this data will be transferred to Google's contractual partners, third parties, and authorities.

This website also has Google AdSense ads from third-party providers activated. The aforementioned data can therefore also be transferred to the third-party providers cooperating with Google (named under support.google.com/dfp_sb/answer/94149).

(3) You can withdraw your consent at any time without affecting the legality of the processing carried out based on the consent until the withdrawal. You can most easily withdraw your consent via our consent manager, on the pages where advertising appears, or through the following functions: a) through an appropriate setting in your browser software; particularly, suppressing third-party cookies will prevent you from receiving ads from third-party providers; b) by deactivating interest-based ads at Google via the link www.google.com/settings/ads, whereby this setting will be deleted if you delete your cookies; c) by deactivating interest-based ads from providers who are part of the "About Ads" self-regulation campaign via the link https://www.aboutads.info/choices, whereby this setting will be deleted if you delete your cookies; d) by permanent deactivation in your browsers Firefox, Internet Explorer, or Google Chrome under the link https://www.google.com/settings/ads/plugin. We inform you that in this case, you may not be able to use all functions of this offer to their full extent.

(4) Further information on the purpose and scope of data processing and further information on your rights and setting options to protect your privacy can be found at: Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; privacy conditions for advertising: www.google.de/intl/de/policies/technologies/ads.

H. Applicant Data

All data that you provide to us via our homepage or as an application in another way will be processed solely for the purpose of conducting the application and selection process and is used solely for evaluating professional suitability and contacting you. This includes your salutation, first name, surname, address, telephone number, email address, your resume, as well as data on your education and qualifications, Art. 6 para. 1 b) GDPR, 26 BDSG.

If you provide "special categories of personal data" according to Art. 9 GDPR in the application letter or other documents submitted by you in the application process, your consent also applies to these data. We ask you to avoid providing special categories of personal data in the application as much as possible.

Your application documents will only be forwarded to those responsible for evaluating the application and, if necessary, hiring.

Your applicant data will be used exclusively for application procedures with us. The data and files you provide will be stored and used exclusively for purposes related to the collection and processing of your application.

By submitting your application, you simultaneously give your consent to the storage of your applicant data. Six months after the completion of the application process, your applicant data will be deleted. No separate notification will be given.

The principles outlined also apply to an unsolicited application, meaning if you apply for a position that is not specifically advertised or if you submit applicant data by post or email.