privacy.

Privacy Policy pursuant to the General Data Protection Regulation (GDPR)

1. General Information

We, the operators of this website, take the protection of your personal data very seriously.
We handle your personal data confidentially and in accordance with the applicable statutory data protection regulations, in particular the General Data Protection Regulation (EU) 2016/679 (GDPR), the German Federal Data Protection Act (BDSG), and the German Telemedia Act (TMG).

This Privacy Policy is intended to inform you about:

• what personal data we collect,
• how we collect it,
• for what purposes we use it,
• on what legal basis we process it, and
• what rights you have as a data subject.

Personal data means any information relating to an identified or identifiable natural person (Art. 4 (1) GDPR).

2. Controller pursuant to Art. 4 (7) GDPR

The controller responsible for the processing of personal data on this website is:

Hoffmann & Witt GbR
Dominic Hoffmann & Vincent Witt
Ernst-Moritz-Arndt-Str. 13
58840 Plettenberg
Germany
Phone: +49 176 43386563
Email: contact@polariotmusic.com

Controller means the natural or legal person who determines the purposes and means of processing personal data.

3. Legal Basis for Processing Personal Data

We process your personal data only in strict compliance with applicable laws.
The relevant legal bases pursuant to Art. 6 GDPR are:

• Art. 6 (1) lit. a GDPR: Processing based on your consent
• Art. 6 (1) lit. b GDPR: Processing necessary for the performance of a contract or in order to take steps prior to entering into a contract
• Art. 6 (1) lit. c GDPR: Processing necessary for compliance with a legal obligation
• Art. 6 (1) lit. f GDPR: Processing based on our legitimate interests, provided your fundamental rights and freedoms do not override those interests

Whenever we rely on consent, you have the right to withdraw your consent at any time with future effect (Art. 7 (3) GDPR).

4. Data Collection on This Website

a) Server Log Files (Art. 6 (1) lit. f GDPR)

When you visit our website, information transmitted by your browser is automatically collected and stored in server log files by our hosting provider (IONOS SE).
The following information may be recorded:

• IP address (anonymized by IONOS)
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Request content (specific page)
• Access status/HTTP status code
• Amount of data transferred
• Website from which the request comes (referrer URL)
• Browser type and version
• Operating system and its interface
• Language and version of the browser software

This data is collected for technical reasons (e.g., ensuring a stable and secure website operation) and to analyze system security and stability.
We do not combine this data with other data sources.

Purpose: Technical security, fraud prevention
Legal Basis: Art. 6 (1) lit. f GDPR (legitimate interest)

b) Contact by Email (Art. 6 (1) lit. a and b GDPR)

When you contact us by email, the information you provide (your name, your email address, your message) is stored to process your request and any follow-up questions.

We process this data only based on your consent (Art. 6 (1) lit. a GDPR) or because it is necessary for pre-contractual measures (Art. 6 (1) lit. b GDPR).

We will not share your data without your express consent unless legally required to do so.

5. Cookies (Art. 6 (1) lit. a GDPR)

Our website uses cookies and similar technologies to make your experience more efficient and enjoyable.

Cookies are small text files that are stored on your device and contain information that improves website functionality or analyzes usage behavior.

Types of cookies used:

• Essential cookies: Required to provide core functionalities such as navigation, security, and accessibility.
• Performance cookies: Collect anonymous information about how users interact with the website to improve performance.
• Marketing cookies: Track users across websites to display relevant advertising or enable third-party functionalities.

Upon your first visit to our website, you will be asked via cookie consent banner whether you agree to the use of non-essential cookies.
You can withdraw your consent at any time or configure your browser to block cookies.

6. Embedded Content and Third-Party Services (Art. 6 (1) lit. f GDPR)

Our website may embed external content, such as music streams, videos, or social media feeds.

These embedded services behave as if you were visiting the third-party website directly and may collect the following data:

• IP address
• Browser and device data
• Referrer URL
• Session data (e.g., interaction with embedded content)

Providers may include:

• Spotify
• YouTube (Google)
• Instagram (Meta Platforms)
• TikTok

We have no control over the processing activities of these third parties.
Further information is available in the respective providers' privacy policies.

7. Your Rights as a Data Subject (Art. 12–23 GDPR)

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR): Obtain information about your stored personal data.
• Right to rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete data.
• Right to erasure (Art. 17 GDPR): Request deletion of your personal data ("right to be forgotten").
• Right to restriction of processing (Art. 18 GDPR): Restrict the processing of your data under certain conditions.
• Right to data portability (Art. 20 GDPR): Receive your personal data in a structured, commonly used format.
• Right to object (Art. 21 GDPR): Object to the processing of your data based on legitimate interests.
• Right to withdraw consent (Art. 7 (3) GDPR): Withdraw consent at any time.
• Right to lodge a complaint (Art. 77 GDPR): File a complaint with a supervisory authority if you believe data protection regulations have been violated.

For inquiries, please contact:
Email: contact@polariotmusic.com

8. Data Retention (Art. 5 (1) lit. e GDPR)

We store personal data only as long as necessary for the purposes for which it was collected, or as required by legal retention obligations (e.g., tax law, commercial law).

After the retention period, the data will be deleted or anonymized in accordance with data protection laws.

9. Data Security Measures (Art. 32 GDPR)

We implement technical and organizational measures to secure your data, including:

• SSL/TLS encryption for data transmission
• Firewall and intrusion detection technologies
• Access control systems for servers
• Regular backups and monitoring procedures

These measures are designed to prevent loss, misuse, unauthorized access, and disclosure of your personal data.

10. Data Transfers to Third Countries (Art. 44–49 GDPR)

If personal data is transferred outside the European Economic Area (EEA), appropriate safeguards are implemented to ensure an adequate level of data protection, including:

• Binding Corporate Rules
• Standard Contractual Clauses (SCCs)
• Transfers based on consent (Art. 49 (1) lit. a GDPR)

You will be informed separately if data transfer occurs in individual cases.

11. Obligation to Provide Personal Data

There is no contractual or statutory obligation for you to provide your personal data when visiting this website.
However, some services (e.g., contact form submissions, streaming content) may not function properly without certain data.

12. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy to ensure it always complies with current legal requirements or to reflect changes to our services.

The latest version will always be published on this page.

Effective Date: April 2025