Data protection:
Data protection information
CT CultureTotal Gmbh (hereinafter referred to as “we”) takes the protection of your personal data (hereinafter also referred to as “data”) very seriously. With the following data protection information, we therefore inform you about the manner and scope of the processing of personal data on our website www.culturetotal.com (hereinafter referred to as “website”) and when using the services offered by us on the CultureTotal platform (hereinafter referred to as “services”). This information is available to you at any time at www.CultureTotal/datenschutz. This data protection information relates solely to the aforementioned website and the services on our CultureTotal platform. For other CultureTotal offers and Internet pages, the data protection information presented there is relevant.
Directly responsible for the data processing on the occasion of the use of the website and responsible person in the sense of the EU General Data Protection Regulation (DS-GVO) is:
CT CultureTotal GmbH
Bahnhofstr. 13
27374 Visselhövede
represented by
Dr. Majid Montazer and Gerd v. Coburg as managing directors
Fax: +49 4262 8779 098
E-mail: info@dev.culturetotal.com
Data protection officer of the responsible person:
Vanessa Ruth
as data protection officer of CT CultureTotal GmbH
If you have any questions or suggestions regarding data protection, it is best to contact our data protection officer directly.
1 What is personal data?
The subject of data protection is personal data. Personal data is any information relating to an identified or identifiable natural person (“individual”).
or identifiable natural person (“data subject”) (Art. 4 No. 1 DS-GVO).
2.1 General data processing when you visit our website www.CultureTotal.com
When you visit our website, the following data is always processed, i.e. even during a simple visit and without you using specific services in detail, without us drawing any conclusions about your person:
– the previously visited website (so-called referrer URL);
– the individual pages of our website which are accessed by you;
– the date and time of access;
– the Internet protocol address (IP address) of the accessing end device;
– the type of terminal device used for access (e.g. computer, mobile phone, etc.);
– the browser and the operating system of the end device, including the respective version number and the language set there.
This information is required in order to:
– deliver the content of our website correctly;
– optimise the content of our website, e.g. adapt the content for viewing on a mobile device;
– ensure the long-term functionality of our information technology systems and the technology of our website;
as well as
– to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.
We process this data as long as it is necessary for the aforementioned purposes. The processing of your data is thus carried out to ensure the best possible presentation and integrity of the website and is therefore carried out in our legitimate interest in this respect.
interest pursuant to Art. 6 para. 1 sentence 1 letter f) DS-GVO. For this data processing, we use our 1&1 IONOS SE, Elgendorferstr. 57, 56 410 Montabaur.
2.2 Use of technically necessary cookies
In addition, we use technically necessary cookies to provide our website and services. These cookies are
necessary for you to navigate through the pages and use essential functions. This data processing is therefore carried out in
our legitimate interest in this regard pursuant to Art. 6 para. 1 sentence 1 letter f) DS-GVO. Detailed information on the use of cookies can be found in our cookie declaration. This can be accessed via the “Cookie settings” link at the bottom of our website as well as via the
via the link https://culturetotal/cookies.
2.3 Use of technically unnecessary cookies with your consent
The use of technically unnecessary cookies is only permitted with your consent. When you visit our website for the first time, a so-called cookie banner appears, through which you can give us your consent for the use of certain cookies. Detailed information about the use of cookies and your consent can be found in our cookie declaration. This can be accessed via the “Cookie settings” link at the bottom of our website as well as via the link https://culturetotal/cookies. You can also change or revoke your consent at any time in the cookie declaration.
If you give us your consent to use certain cookies, the corresponding data processing is carried out with your consent and is consequently based on Art. 6 para. 1 sentence 1 letter a) DS-GVO.
You will also find the periods of data storage listed in detail in the cookie declaration.
2.4 Data we process when you use our services
We offer you various services related to content access, including broadcasting services, in particular via the CultureTotal website as well as the CultureTotal apps.
2.4.1 Data we process when you register and log in as a user for one of our services requiring registration
The use of certain services, e.g. paid services (e.g. pay-per-view, subscription) and personalised services (e.g. watchlist, recommendations), requires registration for a CultureTotal user account by you as a user. Furthermore, these services can only be provided if you are logged in. In doing so, we process the following data.
2.4.1.1 Registration for the CultureTotal user account required for use
Registration requires at least the provision of a name, a valid e-mail address, date of birth, gender and a password of your choice.
We need this data to identify you as our contractual partner and to enable the fulfilment of the contract and the provision of the respective service to you as a registered user. The processing of the above data is thus carried out for the fulfilment of the contract and is consequently based on Art. 6 para. 1 sentence 1 letter b) DS-GVO.
In addition, you can voluntarily provide us with further information that is assigned to your user profile and that can be viewed by other users of our services. These are:
– Address
– Telephone number
– User profile page
– Biographical data
– User picture
– User language
– Social media profiles
The processing of the above data is voluntary and with your consent and is therefore based on Art. 6 para. 1 sentence 1 letter a) DSGVO.
We store the above data until your user account is deleted. You can delete your account by following “Settings” > “Delete account” within your user account.
2.4.1.2 Logging in to your CultureTotal.com user account
Logging in to your user account requires you to enter your (user) name and password. We need this data to identify you as our contractual partner and to enable the fulfilment of the contract and the provision of the respective service to you as a registered user. The processing of the above data is thus carried out for the fulfilment of the contract and is consequently based on Art. 6 para. 1 sentence 1 letter b) DS-GVO.
We process the above data only within the scope and at the time of registration.
2.4.2 Data we process when you register for, log in to and use our “User Generated Content” offer
We offer users the opportunity to upload their own moving image content to the CultureTotal.com platform (“User Generated Content” offer). The use of our “User Generated Content” offer requires registration for a CultureTotal.com user account. Individuals can register. The contact person’s data collected in the process therefore constitutes personal data. Furthermore, the offer can only be used if you are registered as a user.
2.4.2.2 Registration for the “User Generated Content” offer
Registration requires at least your name, a valid e-mail address and a password of your choice.
We need this data to identify you as our contact person and to enable the fulfilment of the contract and the provision of the respective service to you or your organisation as a registered user. The processing of the above data is thus carried out for the fulfilment of the contract and is consequently based on Art. 6 para. 1 sentence 1 letter b) DS-GVO.
In addition, you can voluntarily provide us with further information that will be assigned to your user profile and that can be viewed by other users of our services.
other users of our services. These are:
– Name
– address
– country
– Telephone number
– User language
The processing of the above data is voluntary and with your consent and is consequently based on Art. 6 para. 1 sentence 1 letter a) DSGVO.
We store the above data until your user account is deleted. You can delete your account by following “Settings” > “Delete account” within your user account.
2.4.2.3 Registration for the “User Generated Content” offer
Logging in to your user account requires you to enter your (user) name and password.
We need this data to identify you as our contractual partner and to enable the fulfilment of the contract and the provision of the respective service to you as a registered user. The processing of the above data is thus carried out for the fulfilment of the contract and is consequently based on Art. 6 para. 1 sentence 1 letter b) DS-GVO. We process the above data only within the scope and at the time of registration.
2.4.2.4 Use of the “User Generated Content” offer
If you use our “User Generated Content” offer and upload moving images to our CultureTotal.com platform, the uploaded files will be assigned to your user account. In addition, we collect the time of the upload and store this data.
These are assigned to your user account.
We need this data in order to be able to trace, eliminate and prosecute possible violations of the law. The processing of the above data is therefore in our legitimate interest and is consequently based on Art. 6 (1) sentence 1 letter f) DS-GVO.
We store the above data until your user account is deleted. You can delete your account by following “Settings” > “Delete account” within your user account.
2.5 Processing of data during payment processing
Within the framework of our Paid Content services, various payment methods are available to you for payment processing. In addition to the respective amount to be paid and a pseudonymous transaction number, various data are transmitted for these. These are described in 2.5.1 ff.
The processing of the data is carried out for the purpose of payment processing with regard to contractual services and is based on Art. 6 Paragraph 1 Sentence 1 Letter b) DS-GVO.
Your data may also be disclosed if this is necessary to protect our rights, the rights of the payment service provider, to enforce the terms and conditions of the payment service provider or to comply with requirements of law enforcement authorities. Any disclosure in this regard is based on Art. 6 para. 1 sentence 1 letter f) DS-GVO.
Where required by law, we store payment processing data for at least the legally prescribed minimum period of 10 years (Section 147 (3) of the German Fiscal Code). Insofar as no longer storage period is required, this data is subsequently deleted.
2.5.1 Credit card or SEPA direct debit
When payment is made by credit card or SEPA direct debit, personal data is automatically transmitted to the payment service CTS Eventim KG a. A. is transmitted. The operating company of the payment service is CTS Eventim KG a. A., Cotrescarpe 75A, 21895 Bremen, Germany (hereinafter referred to as “Eventim”).
In the case of payment by credit card, the personal data required to process the payment are the first and last name of the cardholder, card number, CVC (Card Validation Code) and expiry date.
When paying by SEPA direct debit, the personal data required to process the payment are the first and last name of the account holder and the bank account data in the form of the IBAN. As part of the payment confirmation, you must also accept a mandate that gives us authorisation to debit your account. The data processing during the payment process is carried out there by Eventim as the responsible party and in accordance with its privacy policy, which you can view on the following website: https://www.eventim.de.
After completion or during the payment process we receive the following data:
– eMail address
– the last 4 digits of the credit card
– the ID of the borrowed transmission
– the price that was charged to you
2.6 Data we process when you contact us
If you contact us via the contact options we offer, in particular via our provided e-mail addresses, telephone numbers and fax numbers, we process the data you provide to us. This may include the subject of your contact request, your title, (academic) title, name, (mobile) telephone number or e-mail address. We use this data to processing your contact request.
The processing of this data is therefore based on your consent and thus on Art. 6 para. 1 sentence 1 letter a) DS-GVO. You can revoke this consent at any time.
We will store the data until your contact request has been processed.
3 How do we handle your data?
When processing data, it is our aim to always achieve the highest possible level of security within the scope of the respective purpose of use. Although absolute protection cannot be guaranteed, we have therefore taken security precautions to protect your data.
This includes, for example, that we only ever transmit your data in encrypted form. To this end, we use the SSL (Secure Socket Layer) or TLS (Transport Layer Security) coding system, which is designed to prevent third parties from intercepting the data streams and viewing your data in plain text. You can recognise the use of the SSL coding system by the “https://” in the address line of your browser and, in common browsers, by the fact that a corresponding lock symbol appears next to the address line. This gives you the certainty that your data will be transmitted to us securely.
4 How long do we keep your data?
We process and store personal data for the period of time required to achieve the stated purpose (see section 2).
After the purpose has been fulfilled, or if you wish your personal data to be deleted, we will delete this data unless we are legally entitled to retain it (for example, for evidence purposes in the context of the processing of our contractual relationship) or are obliged to do so (for example, for tax reasons). This storage period may be longer than was necessary for the original purpose (standard storage period). In the case of the storage of billing documents, for example, we are obliged to store them for a period of 10 years (Section 147 (3) of the German Fiscal Code).
If the original purpose has been achieved or has ceased to apply, we will not use the personal data for further processing. Once the authorisation no longer applies or the statutory retention obligations have expired, we will delete the data permanently.
You have the following rights regarding the use of your data. You can assert these rights against us as the responsible party. You are welcome to contact our data protection officer directly in these cases.
5.1 Right to information
You have the right to receive information from us at any time and free of charge about the personal data stored about you and a copy of this information. Furthermore, you have the right to information about the information mentioned in Art. 15 (1) DS-GVO.
In addition, you have the right to be informed whether personal data has been transferred to a third country or to an international organisation. If this is the case, you also have the right to obtain information about the appropriate safeguards in connection with the transfer.
Your right to information is essentially based on Art. 15 DS-GVO.
5.2 Right to rectification of incorrect data and completion of incomplete data
You have the right to request that inaccurate personal data concerning you be corrected. You also have the right to request that incomplete personal data be completed, including by means of a supplementary declaration, taking into account the purposes of the processing.
Your right to have incorrect data corrected and incomplete data completed is based on Article 16 of the GDPR.
5.3 Right to data deletion (right to be forgotten)
You have the right to demand that we delete the personal data concerning you immediately, provided that one of the reasons mentioned in Art. 17(1) DS-GVO applies and provided that the processing is not necessary for the reasons mentioned in Art. 17(3) DS-GVO.
Your right to data deletion is based on Art. 17 DS-GVO.
5.4 Right to restriction of processing
You have the right to demand that we restrict processing if one of the conditions set out in Art. 18(1) DS-GVO applies.
Your right to restriction of processing is based on Art. 18 DS-GVO.
5.5 Right to data portability
You have the right, under the conditions of Art. 20 (1) DS-GVO, to receive the personal data concerning you, which you have provided to us, in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance from us. This does not apply if the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
Furthermore, when exercising your right to data portability, you have the right to request that the personal data be transferred directly from one controller to another controller, insofar as this is technically feasible and insofar as the rights and freedoms of other persons are not affected.
Your right to data portability in this respect is based on Art. 20 DS-GVO.
5.6 Right to object
You have the right to object at any time to the processing of personal data relating to you which is carried out on the basis of Art. 6(1)(e) or (f) DS-GVO, if the requirements of Art. 21 DS-GVO are met. This also applies to profiling based on these provisions.
Your right to object is based on Art. 21 DS-GVO.
5.7 Automated decisions in individual cases including profiling
You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you, unless the decision is necessary for the conclusion or performance of a contract between you and us, or is permitted by law of the European Union or the Member States to which we are subject, and that law contains adequate measures to safeguard your rights and freedoms and legitimate interests, or is made with your explicit consent.
If the decision is necessary for the conclusion or performance of a contract between you and us or is made with your express consent, we will take reasonable steps to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain the intervention of a person from our company, to express your point of view and to contest the decision.
If you wish to assert rights relating to automated decisions, you can contact our data protection officer or another member of our staff at any time. These rights are based on Art. 22 DS-GVO.
5.8 Right to revoke consent under data protection law
You have the right to withdraw your consent to the processing of personal data in whole or in part at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. Your right to revoke consent granted under data protection law is based on Art. 7 (3) DS-GVO.
5.9 Right of complaint to the supervisory authority
You have the right to lodge a complaint with the supervisory authority. This right is based on Art. 56 (2) DS-GVO.
The use of collected data is explained in the data protection notice applicable at the time the data is collected.
We reserve the right to change the data protection information in order to adapt it to a changed factual and legal situation. In this case, we will publish the new and then current version of this data protection information on our website. We will draw attention to any changes to this data protection information in a suitable place when the occasion arises. This applies in particular if we intend to use data that has already been collected for purposes other than those for which it was originally collected.
If the use of your personal data is based on your consent, we will only use your data to the extent to which you have consented, irrespective of any changes to this data protection notice in the meantime. If necessary, we will ask you in this case for renewed consent in accordance with an intended change in the use of the data.
The controller has integrated the SaaS platform 3Q SDN on this website for the presentation of video content. 3Q SDN is a platform for the processing and distribution of video content and related services.
The 3Q platform collects data on the use of the audiovisual content offered by the responsible parties.
The operating company of 3Q SDN is
3Q GmbH
Kurfürstendamm 102 10711 Berlin
3Q sets a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, 3Q is enabled to analyse the use of our video content or platform. As part of this technical process, 3Q obtains knowledge of personal data, such as the IP address of the data subject, which 3Q uses, among other things, to enable usage analyses for the use of audiovisual content.
The personal data transmitted to 3Q is usually the
– IP address
– timestamp
– URL
– user agent
and data required for statistical purposes. The applicable privacy policy of 3Q can be found at
https://www.3qsdn.com/de/datenschutz_und_richtlinien.