Privacy Policy

Data Privacy Policy
Name and address of the controller The controller in terms of the EU General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) is:
MvK Sports GmbH
Managing Director: Markus von Kotzebue
Französische Str. 20
10117 Berlin
Phone: +49 (0)170 189 2246
E-Mail: office@mvksports.de

Technical implementation by MAYOLOVE
Address

I. Name and address of the data privacy officer Markus von Kotzebue c/o MvK Sports GmbH
-Datenschutz-
Französische Str. 20
10117 Berlin, Germany
E-mail: office@mvksports.de

II. General information on data processing
Scope of processing personal data Every time our website is accessed, our system automatically records information from the computer system which accesses it, logging the following data: Information about the browser type and version used
The user's operating system
The IP address of the user (to ensure smooth operations and protection against attacks, e.g., DDoS)
The date and time of access
Websites from which the user's system reached our website (stored as the referrer)

We process personal data of our users only to the extent necessary for the presentation and optimization of a functional website as well as our content and services. Moreover, we use cookies on our website (for details see below in Section X of this data privacy policy). We never use personal data to identify our users personally or to create user profiles. We do not use web analytics.

The processing of personal data of our users normally takes place only with their consent, except in those cases where the data processing is permitted by law.

Legal basis for processing personal data The legal basis for processing personal data within the framework of this website is Article 6(1) point (f) of the GDPR in conjunction with Section 3 of the BDSG. Where we obtain consent to process personal data, the legal basis is provided by Article 6(1) point (a) of the GDPR.

Data erasure and storage duration Your personal data will be erased or blocked as soon as the purpose for which it was stored no longer applies.

III. Presentation of the website and creation of log files
Legal basis for data processing The legal basis for the temporary storage of data and log files is Article 6(1) point (f) of the GDPR in conjunction with Section 3 of the new BDSG.

Purpose of data processing The temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user's computer. This requires the user's IP address to be saved for the duration of the session. The IP address is recorded in the log file of the load balancer for 60 days to ensure smooth operations and protection against attacks (e.g., DDoS).

Duration of storage The log files are stored centrally and deleted after 60 days.

Right to object and deletion The collection of data to present the website and the storage of the data in log files is absolutely necessary for the operation of the internet presence. Therefore, there is no right to objection for the user.

IV. Use of cookies
a) Description and scope of data processing Cookies are used on our pages. These cookies are necessary for technical reasons so that our pages work correctly. Another cookie is stored when the website is accessed to help prevent manipulation by third parties (e.g., CSRF attacks). We only use session cookies, which are automatically deleted after you close your browser session.

b) Legal basis for data processing The legal basis for processing personal data using cookies is Article 6(1) point (f) of the GDPR in conjunction with Section 3 of the new BDSG, and/or Article 6(1) point (a) of the GDPR for cookies which require consent.

c) Purpose of data processing The purpose of using the technically necessary cookies is to enable the website's functions to work properly. The user data collected by technically necessary cookies will not be used to create user profiles.

d) Duration of storage and rights to objection and deletion Cookies are stored on the user's computer and transmitted to our site from there. Therefore, you as a user have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transfer of cookies. Previously stored cookies can be deleted at any time, either manually or automatically.

V. Contact form and e-mail contact
Description and scope of data processing There is a contact form on our website which can be used for contacting us online. If you use this opportunity, the data entered in the input form is sent to us and stored. This data includes: Subject
Your message
Title, first name, surname, e-mail address, street and house number, postal code, city

At the time of sending the message, the following additional data is stored: The IP address of the user
The date and time of registration

During the sending process, your consent is obtained for processing the data for this purpose, and you are referred to this privacy policy statement. Alternatively, you can contact us via the e-mail address provided. In this case, the user's personal data transmitted together with the e-mail is stored. In this regard, there is no disclosure of data to third parties, and the data is used solely for processing the conversation.

Legal basis for data processing The legal basis for processing data in the course of sending an e-mail is Article 6(1) point (f) of the GDPR.

Purpose of data processing The processing of personal data from the input form is used solely for us to handle the contact request. The other personal data processed during the sending process is intended to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage The data is deleted as soon as the purpose for which it was stored no longer applies. There is a retention period of up to three years for the personal data entered into the contact form and the data sent by e-mail. The other personal data collected as part of the sending process is deleted after a maximum period of seven days.

Right to objection and deletion The user has the right to withdraw their consent to the processing of personal data at any time. If the user contacts us by e-mail, they can object to the storage of their personal data at any time. In such cases, the conversation cannot be continued. In this event, all personal data that has been stored in the course of the contact will be deleted.

VI. Information on your rights
If your personal data is processed, you are a data subject under the provisions of the GDPR and have the following rights that you can demand from your controller:

Right of access by the data subject – Art. 15 GDPR The data subject has the right to obtain from the controller confirmation as to whether or not personal data concerning him or her is being processed. If this is the case, the data subject is entitled to obtain the following information: The purposes of the processing of personal data
The categories of personal data concerned
The recipients or categories of recipients to whom the personal data has been or will be disclosed
The envisaged period for which the personal data will be stored, or the criteria used to determine that period
The existence of the right to request rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing
The right to lodge a complaint with a supervisory authority
Where the personal data is not collected from the data subject, any available information as to its source
The existence of automated decision-making, including profiling, and meaningful information about the logic involved

Right to rectification – Art. 16 GDPR The data subject has the right to obtain the rectification of inaccurate or incomplete personal data. The controller must make the corrections without undue delay.

Right to erasure – Art. 17 GDPR The data subject has the right to request the erasure of personal data under certain conditions, for example, when it is no longer necessary for the purposes for which it was collected or if consent is withdrawn.

Right to restriction of processing – Art. 18 GDPR The data subject can request restriction of processing under certain conditions, for example, if the accuracy of the data is contested or if the processing is unlawful but the data subject does not want it erased.

Right to data portability – Art. 20 GDPR The data subject has the right to receive the personal data they have provided in a structured, commonly used, and machine-readable format, and they have the right to have the data transmitted to another controller.

Right to object – Art. 21 GDPR The data subject can object to processing on grounds relating to their particular situation, particularly when the legal basis for the processing is point (f) of Article 6(1) GDPR.

Right to withdraw consent – Art. 7(3) GDPR The data subject has the right to withdraw their consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal.

Right to lodge a complaint with a supervisory authority – Art. 77 GDPR The data subject has the right to lodge a complaint with a supervisory authority if they believe that the processing of personal data infringes GDPR.

Responsible supervisory authority for our company headquarters: Die Berliner Landesbeauftragte für Datenschutz Meike Kamp
Alt-Moabit 59-61
10555 Berlin, Germany
https://www.datenschutz-berlin.de/

Version: October 2025