Privacy Policy
Introduction
We value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and protect the data provided by users of our application (the "App"). By using our App, you agree to the terms outlined below.
1. Data Controller
The data controller for the App is:
Show Advance Gesellschaft mit beschränkter Haftung (GmbH)
Adlerstraße 28
40882 Ratingen
E-Mail: support@show-avdvance.com
Phone: +49 151 - 432 75 776
2. Data We Collect
We collect the following data to facilitate the core functionalities of the App:
Personal Data of Individuals: Name, role, email address (mandatory); optional data such as phone number, address, travel preferences, and T-shirt sizes. Concert and Venue Data: Information about the concert, venue, and related logistical details. Files and Attachments: Artist Riders, Venue Riders, and other files uploaded for advancing purposes.
3. Purpose of Data Processing
We process personal data to:
Enable the advancing process for concerts by collecting and sharing relevant information with participating parties. Ensure seamless communication between artists, promoters, and venues. Store and display necessary files and logistical data.
All data is processed strictly to fulfill the App’s purpose.
4. Data Sharing
We do not sell or share personal data with third parties for marketing purposes. However, we may share data with:
Authorized Users: Artists, promoters, and concert organizers involved in specific events. Service Providers: Hetzner Cloud and AWS S3 for data hosting and storage.
5. Data Storage and Security
Data is stored securely on Hetzner Cloud servers located in the European Union and AWS S3 for file storage. We use Laravel Forge and Envoyer for application deployment and monitoring, ensuring secure handling of data. Access to personal data is restricted to authorized personnel and processed in compliance with GDPR standards.
6. International Data Transfers
As the App is offered internationally, users outside the European Union acknowledge that their data may be stored and processed on servers located within the EU.
7. Your Rights
If your personal data are processed, you have the following rights as a data subject within the meaning of the GDPR: Right of access (Art. 15 GDPR)
You have the right to request confirmation as to whether we are processing data relating to you. You also have the right to obtain from us, at any time and free of charge, information about the personal data stored about you and a copy of this data in accordance with the legal requirements. Right to rectification (Art. 16 GDPR)
You have the right to request the immediate rectification and/or completion of inaccurate or incomplete personal data concerning you. We shall carry out the correction without delay. Right to restriction of processing (Art. 18 GDPR)
You have the right to demand that we restrict processing if one of the legal requirements is met. Right to erasure (Art. 17 GDPR)
You have the right to request that we delete the personal data concerning you without delay, provided that one of the legal grounds applies and insofar as the processing is not necessary. Right to information
If you have asserted the right to rectification, erasure, or restriction of processing against us, we are obliged to notify all recipients to whom the personal data relating to you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed about these recipients. Right to data portability (Art. 20 GDPR)
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, common and machine-readable format in accordance with the legal requirements. You also have the right to transfer this data to another data controller without hindrance from us in accordance with the legal requirements. You also have the right, in accordance with the law, to have the personal data transferred directly from us to another data controller, insofar as this is technically feasible and insofar as this does not affect the rights and freedoms of other persons. Right to object (Art. 21 GDPR)
You have the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data relating to you which is carried out on the legal basis of Article 6 (1) sentence 1 lit. e or f GDPR. This also applies to profiling based on these provisions.
We will no longer process the personal data in the event of objection, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
You can contact us at any time to exercise your right to object. Right of withdrawal in case of consent
You have the right to withdraw your consent to the processing of personal data at any time. The withdrawal of consent does not affect the lawfulness of the processing carried out on the legal basis of the consent until the withdrawal. Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
To exercise these rights, contact us at support@show-advance.com.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law.
9. Updates to This Policy
We may update this Privacy Policy from time to time. Updates will be posted within the App, and we encourage you to review this policy regularly.
Service emails
We send system and service emails to our customers. The system and service emails are used for purposes including, but not limited to, account verification, notification of technical and security notices, crawl status notifications, inactivity notifications, account invitations to other users, changes/updates to features of the Service. To send these system and service emails, we use the Postmark mailing service operated by AC PM LLC at 1 N Dearborn Street, Suite 500, Chicago, IL 60602, USA (“Postmark”).
The legal basis for the processing of your data is the performance of our contract with you according to Art. 6 (1) sentence 1 lit. b GDPR. Accordingly, you cannot unsubscribe from the system and service emails.
After complete processing of the contract or deletion of your account, your data will initially be made unavailable for further use and deleted after expiry of the statutory retention periods.
For more information on data protection, please refer to Postmark’s privacy policy https://postmarkapp.com/privacy-policy.
Due to legal regulations, we provide information on our website that enables a quick electronic contact to us as well as direct communication with us. This includes, in particular, our e-mail address. If you contact us by e-mail, the personal data you send us will be stored automatically.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 (1) sentence 1 lit. f GDPR. If the purpose of the contact is to conclude a contract, the additional the legal basis for the processing is Art. 6 (1) sentence 1 lit. b GDPR.
However, we use the personal data you provide exclusively for processing your specific enquiry. The data provided will always be treated confidentially.
Your details may be stored in a customer relationship management system (so-called CRM system) or another organizational tool for customer data.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent by e-mail, this is the case when the respective conversation with you has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.
If you contact us, you can object to the storage of your personal data at any time. In such a case, the conversation cannot be continued.
Internal organization with Google Services
We use the services Google Drive, Gmail and GSuite, which are operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, for our internal organization and provision of our services, in particular for our email correspondence and for storing files and documents.
In the course of using Google Services, your personal data may be processed and stored on Google’s servers. This includes, in particular, your master data and contact data, data relating to internal processes, data relating to our contract with you, data relating to our communication with you and other internal processes.
The legal basis for the processing of your data is the performance of our contract with you Art. 6 (1) sentence 1 lit. b DSGVO. The legal basis is also our legitimate interest in the internal administration and provision of our services to you Art. 6 (1) sentence 1 lit. f DSGVO.
Google may also process your data and the collected metadata for its own security purposes, for service optimization or for marketing purposes.
For more information, please refer to Google’s privacy policy www.google.com/policies/privacy/.
Meetings with Zoom
We use Zoom, a service operated by ZOOM Video Communications, Inc, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA (“Zoom”), to conduct online meetings.
In the course of using Zoom, your inventory data, such as first name, last name, telephone (optional), e-mail address, password and your profile picture (optional), are processed. In addition, meeting metadata, such as topic, description (optional), participant IP addresses, and device/hardware information, is collected. If the meeting is recorded, MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings and the text file of the online meeting chat are also stored. If you dial in by phone, your corresponding data, such as phone number, country name, start and end time and, if applicable, your IP address will be saved. If you make entries in the chat during the meeting, ask questions or use the survey function, this entered data will also be saved. To enable the display of your video and the playback of your audio track, the data of your video camera and microphone are processed during the meeting. You can turn off or mute the camera or microphone at any time.
The legal basis for processing your data is the performance of our contract with you Art. 6 (1) sentence 1 lit. b DSGVO. Furthermore, the legal basis is our legitimate interest in the effective implementation of online meetings Art. 6 (1) sentence 1 lit. f DSGVO.
Your data will be processed as long as it is necessary for the implementation of the online meeting and related services. This does not apply if, in derogation thereof, a longer storage or retention period is required by law or is necessary for legal enforcement within the statutory limitation periods.
If an online meeting is to be recorded, we will inform you of this in advance.
If you are logged in with a ZOOM account, reports of “online meetings” (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) may be stored by ZOOM for up to one month.
For more information, please see Zoom’s privacy policy https://explore.zoom.us/docs/de-de/privacy.html.
Use of Loom for Support Videos
We use Loom, a service operated by Loom, Inc., which is part of Atlassian, to create and share screencast videos that assist in providing support for your use of our web application. Loom allows us to record and send videos demonstrating how to resolve issues or answer questions regarding your account or the services we provide.
In the course of using Loom, your personal data, such as first name, last name, and email address (if provided), may be processed in order to communicate with you and create the relevant support videos. Additionally, any data you submit through the web application that is relevant to the support request (such as usage patterns, specific issues, and related information) may be used in the creation of the screencast. The videos may include recordings of your actions within the web application as well as any voice or video commentary provided by the support team.
The legal basis for processing your data is the performance of our contract with you, pursuant to Art. 6 (1) sentence 1 lit. b DSGVO, as the videos are created to assist in the support and troubleshooting of the service. Furthermore, the legal basis is our legitimate interest in offering effective and clear support, as per Art. 6 (1) sentence 1 lit. f DSGVO.
Your data, including the recorded screencast videos, will be stored only for as long as necessary for the purpose of resolving the support request and may be deleted afterward. However, some data may be retained for longer if required by law or for legal enforcement within statutory limitation periods.
Loom, as part of Atlassian, adheres to the GDPR requirements and commits to the protection of your personal data. For more information about Loom's privacy practices, please refer to Atlassian's privacy policy here.
Payment service provider Paddle
We use the payment service provider Paddle.com Inc., 3811 Ditmars Blvd, #1071 Astoria, New York, 11105-1803, USA (“Paddle”) to process payments and subscriptions. Paddle
You provide Paddle with your personal data, such as first name, last name, address, email address, IP address, as well as your bank data, to the extent necessary for payment processing, such as credit card numbers, passwords, account numbers, TANs, verification numbers, expiration date, and CVC code. Also necessary for the processing of the payment are such personal data that are related to your booking, such as prices and tax levies or information on previous ordering behavior.
The transmission of the data is solely for the purpose of processing the payment. The legal basis is therefore Art. 6 (1) sentence 1 lit. b DSGVO, insofar as the payment serves to fulfill a contract. Furthermore, we use external payment service providers on the legal basis of our legitimate interests pursuant to Art. 6 (1) sentence 1 lit. f DSGVO in order to offer you effective and secure payment options.
We do not gain access to the data entered; it is processed and stored exclusively by Paddle. Paddle may transmit your data to credit agencies for identity and credit checks as well as for fraud prevention.
Your data will be stored by us until the expiry of statutory retention periods and then deleted.
Paddle’s terms and conditions apply to payment transactions. For further information on data protection, please refer to Paddle’s Privacy Policy: https://www.paddle.com/legal/privacy
Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at: support@show-advance.com