Data Protection

Responsible for data processing

The controller pursuant to Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is

Grey Skies Ahead
Sebastian Haslinger

(blackraven multimedia OG)
Gartengasse 21, 8010 Graz, Austria
booking@greyskiesahead.com

 

Data processing of individuals

We process the data that various people provide to us through their own information, for example in the context of an inquiry by e-mail, for the initiation and conclusion of a contract or a business relationship.

Data subjects
We process the following data from interested parties: Company, name of contact person and professional contact and address data.
We process the following data from customers Company, title and names of contact persons, professional address data and contact details, bank details.

Forwarding of data
We only pass on personal data to third parties if this is necessary for the purpose of contract processing and fulfillment or due to legal regulations.

Storage/deletion of data
The data will be deleted by us as soon as storage is no longer required or statutory retention obligations have expired. If the basis for processing is consent, we will restrict the processing or delete the data if consent is withdrawn – unless there are legal provisions to the contrary.

Contacting us by e-mail
When you contact us by e-mail, the data you provide will be stored by us on the basis of your consent in order to answer your questions.

Legal basis
The legal basis for data processing is

– the initiation and fulfillment of the contract pursuant to Art. 6 para. 1 lit. b GDPR.
– legal obligations pursuant to Art. 6 para. 1 lit. c GDPR (e.g. statutory retention and documentation obligations)

– legitimate interests of our company within the meaning of Art. 6 para. 1 lit. f GDPR (e.g. statistical evaluations)
– Art. 6 para. 1 lit. a GDPR when obtaining consent (for example when processing image data or for advertising purposes).

 

Data processing when visiting our website

Informational use of the website
When using the website for informational purposes only, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect at most the data that is technically necessary for us to display our website to you and to ensure stability and security:

– IP address
– Date and time of the request
– Time zone difference to Coordinated Universal Time (UTC)
– Content of the request (specific page)
– Access status/HTTP status code
– Website from which the request originates
– Browser
– Operating system and its interface
– Language and version of the browser software

Legal basis: Art. 6 para. 1 lit. f GDPR

Cookies
In addition to the aforementioned data, cookies are stored on your device when you use our website. Cookies are small text files that are stored on your hard disk assigned to the browser you are using and through which certain information flows to the body that sets the cookie (in this case us). Cookies cannot execute programs or transfer viruses to your computer.

The cookie allows you to be recognized when you visit the website without having to re-enter data that you have already entered.

The information contained in the cookies is used, for example, to determine whether you are logged in or what data you have already entered, or to recognize you as a user when a connection is established between our web server and your browser. Most web browsers automatically accept cookies.

By using our websites, you agree to the use of these cookies if cookies are accepted according to your browser settings.

Transient cookies
Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.

Persistent cookies
Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies at any time in the security settings of your browser.

Third-party cookies
These come from providers other than the operator of the website. They can be used, for example, to collect information for advertising, user-defined content and web statistics.

Browsers
Most browsers are set by default to accept all cookies. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of our website may be restricted.
You can remove cookies stored on your PC yourself at any time by deleting the temporary Internet files.
Legal basis: Art. 6 para. 1 lit. f GDPR (for technical cookies), Art. 6 para. 1 lit. a GDPR (for all other cookies)

Data processing in the USA
It cannot be ruled out that personal data will be transmitted to the USA when you visit our website. If this is the case, we will point this out separately in this privacy policy.

The GDPR requires so-called appropriate safeguards in accordance with Art. 46 GDPR for data transfer to a third country or an international organization. There are no such guarantees for the USA.

Possible risks that cannot currently be ruled out for you as the data subject in connection with the aforementioned information are in particular

– Your personal data could possibly be passed on to other third parties (e.g.: US authorities) by the respective service provider beyond the actual purpose of order fulfillment.
– You may not be able to assert or enforce your rights to information against the respective service provider in the long term.
– There may be a higher probability that incorrect data processing may occur, as the technical and organizational measures for the protection of personal data do not fully meet the requirements of the GDPR in terms of quantity and quality.

By consenting to the processing of (advertising and marketing) cookies, you explicitly consent to the transfer of data to the USA. You can remove cookies stored on your PC yourself at any time by deleting the temporary internet files.
Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing for Google services

We have entered into a contract with Google Ireland Limited („Google“), a company incorporated and operated under Irish law (registration number: 368047) with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. Nevertheless, it is possible that data may be transferred from Europe to the USA, over which we as a company have no influence.

By using this service, a transfer of personal data to the USA takes place or cannot be ruled out! – For more information, please refer to the section „Data processing when visiting our website / data processing in the USA“ of this statement.

Legal basis: Art 6 para 1 lit a GDPR

Google Analytics
This website uses the function „Activation of IP anonymization“ (i.e. Google Analytics has been extended by the code „gat._anonymizeIp();“ to ensure an anonymized collection of IP addresses (so-called IP masking)). As a result, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

According to Google, Google will use the information obtained to evaluate your use of the website, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. However, Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. You can prevent the storage of cookies by selecting the appropriate settings in your browser software. However, we would like to point out that in this case you may not be able to use all functions of the website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the websites (including your anonymized IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link (https://tools.google.com/dlpage/gaoptout?hl=de).

Further information on terms of use and data protection can be found at https://www.google.com/analytics/terms.html or at https://support.google.com/analytics/answer/6004245.

Google Analytics Conversion Tracking (Google Ads)
This website also uses Google Conversion Tracking. Google Ads places a cookie on your computer if you have reached our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Ads customer’s website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. Each Ads customer receives a different cookie. Cookies can therefore not be tracked via the websites of Ads customers. The information collected using the conversion cookie is used to generate conversion statistics for Ads customers who have opted for conversion tracking. Ads customers learn the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in the tracking process, you can also refuse the setting of a cookie required for this – for example, by using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain „www.googleadservices.com“. You can find Google’s privacy policy here.

If you use SSL search, Google’s encrypted search function, the search terms are usually not sent as part of the URL in the referral URL. However, there are some exceptions to this, for example if you use certain less common browsers. Further information on SSL searches can be found here. Search queries or information in the referral URL may also be viewed via Google Analytics or an Application Programming Interface (API). In addition, advertisers may receive information about the exact search terms that triggered a click on an ad. https://policies.google.com/faq

Google Fonts
We use Google Fonts. The use of Google Fonts takes place without authentication and no cookies are sent to the Google Fonts API. If you have an account with Google, none of your Google account data will be transmitted to Google when you use Google Fonts. Google only records the use of CSS and the fonts used and stores this data securely. You can find out more about these and other questions at https://developers.google.com/fonts/faq.

You can find out what data is collected by Google and what this data is used for at https://www.google.com/intl/en/policies/privacy/.

Google APIS /AJAX and JQUERY
To optimize the loading speed, usability and indexing of our website, we use JavaScript technologies as well as corresponding program libraries and CDNs (Content Delivery Networks) from external providers, in this specific case the JavaScript library jQuery from the jQuery Foundation, the program interface Google APIs and the Google AJAX Search API from Google. By accessing our website, these external providers may receive personal information about your visit to our website, in particular through the transmission of your IP address. This data may be processed outside the EU. You can prevent this by installing a JavaScript blocker or deactivating JavaScript in your browser. Deactivating or blocking JavaScript can lead to functional restrictions on websites with JavaScript technologies.

For more information about data processing by Google, please refer to Google’s privacy policy, currently available at: https://www.google.de/intl/en/policies/privacy/ and, in the case of jQuery, on the JS Foundation website at: js.foundation/about/governance/privacy-policy.

Google Gstatic
Gstatic is a domain used by Google to load static content into a different domain name to reduce bandwidth usage and increase network performance for the end user.

Google Remarketing
We use the Google Remarketing service on our website. Google Remarketing can be used to show ads to users who have already visited our website in the past. Within the Google advertising network, this allows advertisements tailored to their interests to be displayed on our site. Google Remarketing uses cookies for this analysis.

Google Tag Manager
We use Google Tag Manager to recognize your user behavior. Google Tag Manager is a solution that allows marketers to manage website tags via an interface. The tool itself (which implements the tags) is a cookie-free domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.

You can find more detailed information here: https://www.google.com/intl/en/tagmanager/faq.html.

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Facebook

We use functions of the social media network Facebook (Facebook Ireland Ltd., 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland) on our website.

We have concluded a contract with Facebook Ireland, but Facebook Ireland may nevertheless transfer personal data to Facebook USA.

By using this service, personal data is transferred to the USA or such a transfer cannot be ruled out! – For more information, please refer to the section „Data processing when visiting our website / data processing in the USA“ of this statement.

For more information, please refer to Facebook’s data policy at https://www.facebook.com/privacy/policy.

For specific information on Facebook pixels, please refer to https://www.facebook.com/business/help/742478679120153.

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Instagram

On our website we use functions of the social media network Instagram of the company Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA.By using this service, personal data is transferred to the USA or cannot be excluded! – For more information, please refer to the section „Data processing when visiting our website / data processing in the USA“ of this statement.

We can display images and videos using the functions for embedding Instagram content (embed function). When you access pages that use such functions, data (IP address, browser data, date, time, cookies) is transmitted to Instagram, stored and analyzed. If you are logged into your Instagram account while browsing our website, this data will be assigned to your personal account. The privacy policy, what information Instagram collects and how they use it can be found at https://help.instagram.com/519522125107875.

 

Data processing when using TikTok

We use TikTok services on our website. In Europe, TikTok Technology Limited, 10 Earsfort Terrace, Dublin, D02 T380, Ireland is responsible.

It cannot be ruled out that personal data may be transferred to the People’s Republic of China in this context. If this is the case, we will point this out separately in this privacy policy.

The GDPR requires so-called appropriate safeguards pursuant to Art. 46 GDPR for a data transfer to a third country or to an international organization. There are no such guarantees for China.

Possible risks that cannot currently be ruled out for you as the data subject in connection with the aforementioned information are in particular

  • Your personal data could possibly be passed on to other third parties (e.g. Chinese authorities) by the respective service provider beyond the actual purpose of fulfilling the order.
  • You may not be able to assert or enforce your rights to information against the respective service provider in the long term.
  • There may be a higher probability of incorrect data processing, as the technical organizational measures for the protection of personal data do not fully comply with the requirements of the GDPR in terms of quantity and quality.

By consenting to the processing of (advertising and marketing) cookies, you explicitly consent to the transfer of data to China. You can remove cookies stored on your PC yourself at any time by deleting the temporary internet files.

For more information on data processing by TikTok, please refer to TikTok’s privacy policy at https://www.tiktok.com/legal/privacy-policy-eea?lang=de.

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using YouTube

When you watch one of our YouTube videos, a connection to YouTube servers is established. YouTube is informed which pages you visit. The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

By using this service, personal data is transferred to the USA or cannot be excluded! – For more information, please refer to the section „Data processing when visiting our website / Data processing in the USA“ of this statement.

Further information on data protection at „YouTube“ can be found in the provider’s privacy policy at: https://www.google.de/intl/de/policies/privacy/

Legal basis: Art 6 para 1 lit a GDPR

 

Data processing when using SoundCloud

When you listen to a SoundCloud file embedded in our website, a connection to SoundCloud servers is established. The operating company of SoundCloud is SoundCloud Global Limited & Co. KG, Rheinsberger Str. 76/77, 10115 Berlin, Germany.

By using this service, personal data is transmitted to SoundCloud.

Further information on data protection at „SoundCloud“ can be found in the provider’s privacy policy at: https://soundcloud.com/pages/privacy

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Spotify

We use Spotify services on our website. The operating company of Spotify is Spotify AB, Regeringsgatan 19, SE-111 53 Stockholm, Sweden.

By using this service, personal data is transmitted to Spotify.

Further information on data protection at „Spotify“ can be found in the provider’s privacy policy at: https://www.spotify.com/at/legal/privacy-policy/

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Bandcamp

We use Bandcamp services on our website. The operating company of Bandcamp is Songtradr, Wilshire Blvd Suite 501 Santa Monica, CA 90403, USA.

By using this service, personal data is transmitted to Bandcamp.

Further information on data protection at „Bandcamp“ can be found in the provider’s privacy policy at: https://bandcamp.com/privacy/

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Deezer

We use Deezer services on our website. The operating company of Deezer is Deezer, 24 rue de Calais 75009 Paris, France.

By using this service, personal data is transmitted to Deezer.

Further information on data protection at „Deezer“ can be found in the provider’s privacy policy at: https://www.deezer.com/legal/personal-datas

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Apple Music

We use Apple Music services on our website. The operating company of Apple Music is Apple Inc., One Apple Park Way, Cupertino, California, USA.

By using this service, personal data is transmitted to Apple.

Further information on data protection at „Apple Music“ can be found in the provider’s privacy policy at: https://www.apple.com/legal/privacy/en-ww/

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Data processing when using Amazon Music

We use Amazon Music services on our website. The operating company of Amazon Music is Amazon, 410 Terry Ave N, Seattle 98109, Washington, USA.

By using this service, personal data is transmitted to Amazon.

Further information on data protection at „Amazon Music“ can be found in the provider’s privacy policy at: https://www.amazon.de/-/en/gp/help/customer/display.html?nodeId=201909010

Legal basis: Art. 6 para. 1 lit. a GDPR

 

Your rights

You have the following rights vis-à-vis us with regard to your personal data:

– Right of access, rectification and erasure
– Right to restriction of processing
– Right to object to the processing
– Right to data portability

Please send your inquiries and concerns by email to booking@greyskiesahead.com or contact us using the contact details provided.

If you are of the opinion that we have violated Austrian or European data protection law in the processing of your data and thereby infringed your rights, please contact us so that we can clarify any questions you may have.

You also have the right to lodge a complaint with the supervisory authority, which is the Austrian Data Protection Authority:

Austrian Data Protection Authority, Barichgasse 40 – 42, 1030 Vienna, Telephone: +43 1 52 152-0

Email: dsb@dsb.gv.at

 

Changes to this privacy policy

We reserve the right to make changes to our privacy policy from time to time. We will publish all changes to the privacy policy on this page. Please refer to the latest version of our privacy policy in this regard.