Michael Stutz Music

Privacy Policy

As of: October 26, 2023

Table of contents

Responsible person

Overview of processing

Relevant legal bases

Safety measures

Deletion of data

Provision of online offerings and web hosting

Contact and inquiry management

Responsible person

Michael Stutz

Bodenstrasse 63

5426 Lengnau AG

Switzerland

E-mail address: info [at] music.michaelstutz.online

Imprint: https://music.michaelstutz.online/imprint.html

Overview of processing

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

Contact details.

Content data.

Usage Data.

Meta, communication and procedural data.

Categories of data subjects

Communication partner.

User.

Purposes of processing

Contact inquiries and communication.

Safety measures.

Managing and responding to inquiries.

Feedback.

Provision of our online offering and user-friendliness.

Information technology infrastructure.

Relevant legal bases

Relevant legal bases according to the Swiss Data Protection Act:If you are in Switzerland, we process your data on the basis of the Federal Data

Protection Act (“Swiss Data Protection Act” for short). This also applies if our processing of your data otherwise affects you in Switzerland and you are

affected by the processing. In principle, the Swiss Data Protection Act does not provide (unlike the GDPR, for example) that a legal basis for the

processing of personal data must be specified. We only process personal data if the processing is lawful, carried out in good faith and proportionate (Art.

6 Para. 1 and 2 of the Swiss Data Protection Act). Furthermore, we only obtain personal data for specific purposes that are recognizable to the person

concerned and only process it in such a way that it is compatible with these purposes (Art. 6 Para. 3 of the Swiss Data Protection Act).

Safety measures

We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the

implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the

extent of the threat to the rights and freedoms of natural persons to ensure a level of protection appropriate to the risk.

The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the

data as well as the access, input, disclosure, ensuring availability and its separation. We have also set up procedures to ensure that the rights of those

affected are exercised, data are deleted and responses are made to data threats. We also take the protection of personal data into account when

developing or selecting hardware, software and procedures in accordance with the principle of data protection, through technology design and through

data protection-friendly default settings.

TLS/SSL encryption (https): To protect users' data transmitted through our online services, we use TLS/SSL encryption. Secure Sockets Layer (SSL) is

the standard technology for securing Internet connections by encrypting data transmitted between a website or app and a browser (or between two

servers). Transport Layer Security (TLS) is an updated and more secure version of SSL. Hyper Text Transfer Protocol Secure (HTTPS) appears in the

URL when a website is secured by an SSL/TLS certificate.

Deletion of data

The data processed by us will be deleted in accordance with the legal requirements as soon as the consent for processing is revoked or other permissions

no longer apply (e.g. if the purpose of processing this data no longer applies or it is not necessary for the purpose). Unless the data is deleted because it

is required for other legally permissible purposes, its processing will be limited to these purposes. This means that the data is blocked and not processed

for other purposes. This applies e.g. B. for data that must be stored for commercial or tax reasons or whose storage is necessary to assert, exercise or

defend legal claims or to protect the rights of another natural or legal person. Our data protection information may also contain further information on

the storage and deletion of data, which applies primarily to the respective processing.

Provision of online offerings and web hosting

We process users' data in order to be able to provide them with our online services. For this purpose, we process the user's IP address, which is necessary

to transmit the content and functions of our online services to the user's browser or device.

Types of data processed:Usage data (e.g. websites visited, interest in content, access times); Meta, communication and procedural data (e.g. IP

addresses, time information, identification numbers, consent status).

Affected people:Users (e.g. website visitors, users of online services).

Purposes of processing:Provision of our online offering and user-friendliness; Information technology infrastructure (operation and provision of

information systems and technical devices (computers, servers, etc.).). Safety measures.

Legal basis:Legitimate interests (Art. 6 Para. 1 Sentence 1 Letter f) GDPR).

Further information on processing processes, procedures and services:

Collection of access data and log files:Access to our online offering is logged in the form of so-called “server log files”. The server log files

include the address and name of the websites and files accessed, date and time of access, amount of data transferred, notification of successful

retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP address. Addresses

and the requesting provider belong. The server log files can be used for security purposes, e.g. B. to avoid overloading the servers (especially in

the case of abusive attacks, so-called DDoS attacks) and on the other hand to ensure the utilization of the servers and their stability; Legal basis:

Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR). Deletion of data: Log file information is stored for a maximum of 30 days and then deleted

or anonymized. Data whose further storage is necessary for evidentiary purposes is excluded from deletion until the respective incident has been

finally clarified.

Contact and inquiry management

When you contact us (e.g. by post, contact form, email, telephone or via social media) as well as within the framework of existing user and business

relationships, the information provided by the inquiring person is processed to the extent necessary to answer contact inquiries and any requested

measures is required.

Types of data processed:Contact details (e.g. email, telephone numbers); Content data (e.g. entries in online forms); Usage data (e.g. websites

visited, interest in content, access times); Meta, communication and procedural data (e.g. IP addresses, time information, identification numbers,

consent status).

Affected people:Communication partner.

Purposes of processing:Contact inquiries and communication; managing and responding to inquiries; Feedback (e.g. collecting feedback via

online form). Provision of our online offering and user-friendliness.

Legal basis:Legitimate interests (Art. 6 Para. 1 Sentence 1 Letter f) GDPR). Fulfillment of the contract and pre-contractual inquiries (Art. 6

para. 1 sentence 1 lit. b) GDPR).

Further information on processing processes, procedures and services:

Contact form:If users contact us via our contact form, e-mail or other communication channels, we process the data provided to us in this

context to process the request communicated; Legal basis: Fulfillment of the contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b)

GDPR), legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).