Skip to content
Sign Letter

Privacy Policy

I. Introduction and terms

1. GENERAL

When operating our website with the URL www.creators-for-europe-united.eu (hereinafter referred to as the “website”), we process personal data. We treat this data confidentially and process it in accordance with the applicable laws – in particular the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telecommunications Digital Services Data Protection Act (TDDDG). With these data protection provisions, we want to inform you about what personal data we collect from you, for what purposes and on what legal basis we use it and, if applicable, to whom we disclose it. In addition, we will explain to you what rights you have to protect and enforce your data privacy.

2. NOTES

Our privacy policy contains technical terms that are used in the GDPR and the BDSG. For your better understanding, we would like to explain these terms in simple terms in advance:

2.1 Personal data

“Personal data” means any information relating to an identified or identifiable person (Art. 4 No. 1 GDPR). Details of an identified person can be, for example, their name or email address. However, personal data is also data for which the identity is not immediately apparent, but can be determined by combining your own or third-party information to find out who the person is. A person can be identified, for example, by providing their address or bank details, their date of birth or user name, their IP addresses and/or location data. All information that can be used to identify a person in any way is relevant here.

2.2 Processing

Art. 4 no. 2 GDPR defines “processing” as any operation relating to personal data. This applies in particular to the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure, transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of personal data.

II. Responsible person and data protection officer

3. RESPONSIBLE

Responsible for data processing is:

Katharina Uppenbrink (“we”)
Address: c/o Initiative Urheberrecht, Köthener Str. 44, 10963 Berlin
Phone: +49 (0)160 90954016
E-mail: mail@creators-for-europe-united.eu

4. DATA PROTECTION OFFICER

I am not obliged to appoint a company data protection officer. If you have any questions or concerns about data protection on our website, you can contact us using the contact details above.

III. Processing frame

5. PROCESSING FRAMEWORK: WEBSITE

As part of the website, we process the personal data of you listed in detail below in Section IV. We only process data that you actively provide on the website (e.g. by filling out forms) or that you automatically provide when using our website.

Your data will be processed exclusively by us and will not be sold, lent or passed on to third parties. If we use the help of external service providers to process your personal data, this is done within the framework of so-called order processing, in which we as the client are authorized to issue instructions to our contractors. We use external service providers to operate our website for hosting, maintenance, care and further development. We host our website with the external provider raidboxes.io (address: Hafenstraße 32 48153 Münster).  If other external service providers are used for individual processing operations listed in Section IV, they will be named there.

We do not transfer data to third countries and do not plan to do so. We will provide information about exceptions to this principle in the processing described below. Any data transfer to third countries then takes place on the basis of the so-called EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/) or the so-called EU standard contractual clauses.

IV. The processing in detail

6. PROVISION OF THE WEBSITE AND SERVER LOG FILES

6.1 Description of the processing

Each time you visit the website, we automatically collect information that your browser transmits to our server. This involves the following data:

  • – IP address
  • – Browser software used, as well as its version and language
  • – Operating system
  • – the website from which visitors came to the website (so-called referrer)
  • – the date and time the website was accessed

These are also stored in the so-called log files of our system. The temporary storage of your IP address by the system is necessary in order to be able to deliver our website to the user’s end device. Your IP address is also recorded in the log files for security reasons to prevent attacks on our website (in particular so-called DDoS attacks) and to prevent fraud. The data is deleted after a statistical analysis after 7 days at the latest. Further information can be found in the Raidboxes GmbH privacy policy. These can be viewed at https://raidboxes.io/legal/privacy/.

6.2 Purpose

Processing is carried out to enable the website to be accessed and to ensure its stability and security. In addition, the processing serves the statistical evaluation and improvement of our online offer.

6.3 Legal basis

Processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f GDPR). Our legitimate interest lies in the purpose stated in section6.2.

6.4 Storage period

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. The log files are deleted after 7 days.

7. COOKIES

7.1 Description of the processing

Our website uses cookies. Cookies are small text files that are stored on the user’s device when visiting a website. Cookies contain information that enables to recognize an end device and possibly certain functions of a website. We differentiate between our own cookies and external, so-called third-party cookies. So-called “session cookies” and “persistent cookies” are used on our website. “Session cookies” are automatically deleted when you end your internet session and close the browser. Persistent cookies remain stored on your end device for a longer period of time. We only use cookies that are technically necessary for the operation of our website. No consent is required for these cookies.  The following cookies are used on our website:

Cookie namePurposeStorage duration
wp-wpml_current_languageLanguage used1 day

7.2 Purpose

We use cookies to make our website more user-friendly and to offer the functions described in section 7.1.

7.3 Legal basis

Processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f GDPR in conjunction with Section 25 para. 2 no. 2 TDDDG). Our legitimate interest lies in the purpose stated in section 7.1.

7.4 Storage period

Cookies are automatically deleted at the end of a session or at the end of the specified storage period. As cookies are stored on your end device, you as the user have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted. This can also be done automatically. If cookies are deactivated, deleted or restricted for our website, it may be that individual functions of our website cannot be used or can only be used to a limited extent.

7.5 Recipients

When cookies are used, data may be transmitted to the corresponding providers of these third-party services. Under certain circumstances, data may also be transferred to third countries outside the European Union or the European Economic Area. We provide information about the recipients of data and the transfer to third countries in the corresponding section on the third-party service in this privacy policy.

8. CONTACT BY E-MAIL

8.1 Description of the processing

You can also contact us via the e-mail addresses provided on the website. To contact us, you can write to us using the e-mail address provided on the website. In this case, the personal data transmitted with the e-mail will be processed by us.

8.2 Purpose

The data transmitted with and in your e-mail will be used exclusively for the purpose of processing and responding to your request.

8.3 Legal basis

Processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f GDPR). Our legitimate interest lies in the purpose stated in section 8.2.

8.4 Storage period

We will delete the data as soon as it is no longer required for the purpose for which it was collected. This is usually the case when the respective communication with you has ended. Communication is deemed to have ended when it can be inferred from the circumstances that your request has been conclusively clarified . If statutory retention periods prevent deletion, the data will be deleted immediately after the statutory retention period has expired.

9. FONT REPLACEMENT

When displaying our website, the standard fonts of your device are replaced by fonts. This is done to make the text on our website easier to read and more aesthetically pleasing. When replacing fonts, we have opted for a data protection-friendly solution. We do not use external services such as Google Fonts or Adobe Fonts. Instead, we store the fonts to be replaced locally on our server. This has the advantage that when you visit our site, your browser does not send a request to external font replacement services and therefore no data, in particular your IP address in connection with the address of our website, is transmitted to third parties.

V. Security measures

10. Security measures

To protect your personal data from unauthorized access, we have provided our website with an SSL or TLS certificate. SSL stands for “Secure Sockets Layer” and TLS for “Transport Layer Security” and encrypts the communication of data between a website and the user’s end device. You can recognize active SSL or TLS encryption by a small padlock logo that is displayed on the far left in the address bar of the browser.

VI. Your rights

11. Rights of data subjects

With regard to the data processing described above by our association, you are entitled to the following data subject rights:

11.1 Information (Art. 15 GDPR)

You have the right to request confirmation from us as to whether we are processing personal data concerning you. If this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 GDPR under the conditions specified in Art. 15 GDPR.

11.2 Rectification (Art. 16 GDPR)

You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you and, where applicable, the completion of incomplete personal data.

11.3 Erasure (Art. 17 GDPR)

You have the right to demand that we delete personal data concerning you immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. if your data is no longer required for the purposes we are pursuing.

11.4 Restriction of data processing (Art. 18 GDPR)

You have the right to demand that we restrict processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you dispute the accuracy of your personal data, data processing will be restricted for the period of time that enables us to verify the accuracy of your data.

11.5 Data portability (Art. 20 GDPR)

You have the right, under the conditions set out in Art. 20 GDPR, to request the surrender of the data concerning you in a structured, common and machine-readable format.

11.6 Withdrawal of consent (Art. 7 para. 3 GDPR)

You have the right to withdraw your consent at any time for processing that is based on consent. The revocation applies from the time it is asserted. In other words, it is effective for the future. Withdrawal of consent therefore does not retroactively render the processing unlawful.

11.7 Complaint (Art. 77 GDPR)

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority. You can assert this right with a supervisory authority in the EU Member State of your place of residence, your place of work or the place of the alleged infringement.

11.8 Prohibition of automated decision-making/profiling (Art. 22 GDPR)

Decisions that have legal consequences for you or significantly affect you may not be based solely on automated processing of personal data, including profiling. We hereby inform you that we do not use automated decision-making, including profiling, with regard to your personal data.

11.9 Right to object (Art. 21 GDPR)

If we process your personal data on the basis of Art. 6 para. 1 lit. f GDPR (for the protection of overriding legitimate interests), you have the right to object to this under the conditions listed in Art. 21 GDPR. However, this only applies if there are grounds relating to your particular situation. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms. We also do not have to stop processing if it serves the assertion, exercise or defense of legal claims. In any case – regardless of a particular situation – you have the right to object to the processing of your personal data for direct marketing purposes at any time.

Status: April 2025