DE | Accessible presentation
Translations are powered by AI

Privacy Policy

Privacy Policy munich-startup.de

1. Definitions

Following the example of Art.4 GDPR, this data protection declaration is based on the following definitions:

“Personal data” (Article 4 (1) GDPR) is all information relating to an identified or identifiable natural person (“data subject”). A person is identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, an online identifier, location data or with the help of information about their physical, physiological, genetic, mental, economic, cultural or social identity characteristics. Identifiability can also be achieved by linking such information or other additional knowledge. The origin, form or embodiment of the information is irrelevant (photos, video or sound recordings can also contain personal data).

"Process" (Article 4 (2) GDPR) is any operation in which personal data is handled, whether with or without the aid of automated (i.e., technology-based) procedures. This includes, in particular, the collection (i.e., acquisition), recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, comparison, linking, restriction, erasure or destruction of personal data, as well as the change of a purpose or objective on which data processing was originally based.

“Responsible body” (Art. 4 No. 7 GDPR) is the natural or legal person, public authority, agency or other body which alone or jointly with others decides on the purposes and means of the processing of personal data.

“Third” (Article 4 No. 10 GDPR) is any natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct authority of the controller or processor; this also includes other legal entities belonging to the group.

“Processor” (Article 4 No. 8 GDPR) is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller, in particular in accordance with its instructions (e.g., IT service providers). In the sense of data protection law, a processor is not a third party.

"Consent" (Art. 4 No. 11 GDPR) of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data concerning him or her.

2. Responsible body

Below we inform you about the processing of personal data when you use our website www.munich-startup.de. Personal data is all data that can be personally related to you, e.g., name, address, email addresses, user behavior.

Responsible body according to Art. 4 Paragraph 7 GDPR is the:

MGH-Munich Commercial and Technology Center Company Ltd.
Gollierstrasse 70
80339 Munich

Phone +49 89 540 925 -39
Fax: +49 89 540 925 -30
Email: info@mgh-muc.de

For further information, please refer to our imprint.

3. Data protection officer

You can contact our data protection officer at datenschutz(at)mgh-muc.de or at our postal address with the addition “The Data Protection Officer”.

4. Collection of personal data when visiting the website

a. Collection of personal data

If you use our website (www.munich-startup.de) for informational purposes only, i.e., if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website and ensure stability and security (automatic logging of browser information in our web server's log files):

    • IP address
    • Date and time of the request
    • Time zone difference to Greenwich Mean Time (GMT)
    • Content of the request (specific page)
    • Access status/HTTP status code
    • amount of data transferred
    • Website from which the request comes
    • Browser
    • Operating system and its interface
    • Language and version of the browser software

b. Purpose and legal basis of data processing

The processing of log data is necessary to ensure the proper operation and functionality, as well as to improve the quality of our website. It is also required to ensure stability and data security, in particular to track cyberattacks. The legal basis for the collection of data is Art. 6 (1) (f) GDPR. The legitimate interest lies in ensuring the functionality of our website.

c. Duration of data processing

The aforementioned technical data will be deleted as soon as they are no longer required for the purposes stated above, but no later than 3 months after our website is accessed.

5. Cookies and other technologies

a. Functions of cookies and other technologies

In addition to the data listed under section 2, cookies and other technologies (hereinafter referred to as cookies) are stored on your device when you use our website. Cookies are small text files sent from our browser to your device that allow us to associate them with your browser and provide us with certain information. Cookies cannot run programs or transmit viruses to your computer. They serve to make our website more user-friendly and effective overall, as well as to enable the execution of embedded website functions.

b. Types of cookies

This website uses transient cookies. Transient cookies are automatically deleted when you close your browser. This includes, in particular, session cookies. These store a so-called session ID, which can be used to assign various requests from your browser to the shared session. This allows your device to be recognized when you return to our website. Session cookies are deleted when you log out or close your browser.

c. Legal basis

Any use of cookies that is not strictly necessary will only occur with your express and active consent in accordance with Section 25 (1) (1) TTDSG. In the event that personal data is processed, consent is given in accordance with Article 6 (1) (a) GDPR.

Cookies that are absolutely necessary to provide the desired website (hereinafter: required or essential cookies) are stored on the basis of Section 25 (2) No. 2 of the German Telemedia Act (TTDSG). These cookies are stored without your consent. If personal data is processed in this context, this is done on the basis of our legitimate interest pursuant to Art. 6 (1) (f) GDPR, which is explained in more detail in the "Data Protection Settings."

In addition, we will only pass on your personal data processed by cookies to third parties if you have given your express consent to do so in accordance with Art. 6 (1) (a) GDPR.

d. Consent management

When you first visit our website, the "Privacy Settings" will be displayed. Here, you can decide whether and which cookies you accept. If you do not click "Accept all," only the required cookies will be saved. You can select or deselect individual cookies by clicking "Individual privacy settings." You can reject all cookies except those that are technically necessary by clicking the "Reject" button.

You have the option to opt out of certain essential cookies via our "Privacy Settings" by switching the pre-activated button from "On" to "Off." In this case, some parts of our website may not be available. You do not have this right of objection for cookies that are technically necessary for the provision of our website.

We use the WordPress Borlabs Cookie Plugin to display our “privacy settings” and manage cookies on our website.

e. Cookies and other technologies we use

For a complete list of cookies used on our website, including further detailed information about each cookie, please see our privacy settings.

i.   Cookies and technologies at your own risk

Borlabs

Name of the integrated service and description Integration of the WordPress Borlabs Cookie Plugin by the owner of this website
Name of the cookie borlabs cookie
Value of the cookie %7B%22consents%22%3A%7B%22essential%22%3A%5B%22borlabs-cookie%22%2C%22wbounce%22%2C%22matomo%22%5D%7D%2C%22domainPath%22%3A%22www.munich-startup.de%2F%22%2C%22expires%22%3A%22Wed%2C%2017%20May%202023%2008%3A31%3A25%20GMT%22%2C%22uid%22%3A%22je71g4fc-kgmt2hlu-89ghwf3b-cgmfch90%22%2C%22version%22%3A%222%22%7D
Technical storage form Cookie
Pure first-party cookie Yes
Domain and path of the cookie www.munich-startup.de/
Storage period on users’ devices 1 year
Purposes for which we process the data Storage of data protection settings in our data protection consent tool and management of website visitors' cookies
Legal basis for processing Section 25 (2) No. 2 TTDSG
How the service provider is integrated Plugin integration: The “Cookie Consent Tool” is operated exclusively on our own servers.
Data transfer to a third country No

wBounce

Name of the integrated service and description Integration of the newsletter popup by the owner of this website
Name of the cookie wBounce
Value of the cookie true
Technical storage form Cookie
Pure first-party cookie Yes
Domain and path of the cookie www.munich-startup.de
Storage period on users’ devices 2 weeks
Purposes for which we process the data Saving the settings for the newsletter popup
Purposes for which the service provider processes user data  
Legal basis for processing Section 25 (2) No. 2 TTDSG
Data transfer to a third country No

InnoCraft Ltd.

Name and description of the integrated service Matomo website analyses
This website uses Matomo, a web analytics service provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, NZBN 6106769 ("Matomo"), to analyze and regularly improve website usage. Using the statistics collected, we can optimize our offering and make it more interesting for you as a user. We have selected the privacy settings in Matomo to ensure the best possible protection. In particular, the use of tracking cookies is prevented, and other analytics information is modified in such a way that the creation of user profiles is not possible.
Technical storage form Javascript
Personal data processed Matomo generates statistical data about how visitors use the website. This website uses Matomo with the "AnonymizeIP" extension. This means that IP addresses are shortened and processed, thus preventing any direct personal reference. The IP address transmitted by your browser via Matomo will not be merged with other data we collect.
Legal basis for processing Art. 6 Paragraph 1 Sentence 1 Letter f GDPR
Data transfer to a third country The Matomo analysis tool is operated exclusively on our servers in Germany. Data is not shared with third parties.
Data protection information of the service provider https://matomo.org/privacy-policy/


Web Inclusion GmbH

Name of the integrated service Assistance software EyeAble
Technical storage form Local Storage
Personal data processed All settings made by visitors to our website in connection with individual EyeAble functions (e.g., adjusting font size, accessible fonts) are saved in the visitor's browser's local storage. This saving only occurs when the EyeAble service is actively used.
Storage period on users’ devices Visitors can control the storage period themselves via EyeAble: "Reset All" deletes the settings, and "Instant View" allows presets to be saved for the next website visit.
Purposes for which we process the data Storage of the settings of the EyeAble assistance software for barrier-free display of the website
Legal basis for processing Consent in accordance with Section 25 (1) TTDSG. Revocation of consent for the future via our "data protection settings." Revocation will result in the deletion of your settings in your browser's local storage. You can also delete these settings at any time by clearing your browser cache. If you do not grant us your consent, you can use the Eye-Able functions, but no entries will be made in your browser's local storage. When you leave the website, your individual settings will no longer be accessible. 
How the service provider is integrated Local hosting on our servers
Data transfer to a third country No

ii. Cookies and third-party technologies

Dealroom.co BV

Name and description of the integrated service Insights
Name of the cookie Dealroom cookies
Value of the cookie {"necessary":true,"preferences":true,"statistics":false,"marketing":false,"timestamp":"Tue, 10 May 2022 10:29:10 GMT"}
Technical storage form Cookie
Third-party cookies Yes
Domain and path of the cookie .insights.munich-startup.de  
Personal data processed If you use Insights via our website as a non-registered user, the following data will be transferred to Dealroom:
  • IP address
  • Browser
  • User behavior, preferences, etc.
Storage period on the users’ devices 1 year
Purposes for which we process the data Unlocking Dealroom Content
Legal basis for processing The legal basis for data processing in connection with the provision of insights on our website is Art. 6 (1) (a) GDPR, i.e. the display and the associated data processing only takes place with your consent.
How the service provider is integrated iFrame
Data transfer to a third country Yes According to the OSM privacy policy, data is also transferred to an unsafe third country, the USA, to the company OpenStreetCam street-level imagery by Telenav, Inc. USA.
Data protection information of the service provider https://dealroom.co/privacy-policy


OpenStreetMap Foundation

Name of the integrated service MapTiler interactive map showing the location of the startups registered with us
Name of the cookie __hssrc (session cookie) _gid hubspotutk _ga _gcl_au __hstc  
Value of the cookie __hssrc: 1 _gid: GA1.2.832426036.1652697150 Hubspotutk: 5713ac311c7e9c2d941a4a0a8be3ee37 _ga: GA1.2.127049544.1652697149 _gcl_au: 1.1.347957362.1652697149 __hstc: 44625659.5713ac311c7e9c2d941a4a0a8be3ee37.1652697149636.1652697149636.1652697149636.1  
Technical storage form iFrame (map material is loaded from the OpenStreetMap server and integrated into our website) Cookies
Third-party cookies Yes
Personal data processed To display the maps, the following data is transmitted to the OpenStreetMap server:
  • IP address,
  • browser and device used,
  • operating system,
  • Website from which you were redirected to the OpenStreetMap Foundation website (referring web page) and
  • Date and time of visit to the website
  • Websites you have visited on OpenStreet Map
Storage period on the users’ devices __hssrc: Session duration _gid: 1 day Hubspotutk: 6 months _ga: 2 years _gcl_au: 3 months __hstc: 6 months  
Purposes for which we process the data Unlocking the MapTiler Map
Legal basis for processing Consent in accordance with Section 25 (1) (1) TTDSG and Article 6 (1) (a) GDPR for the processing of personal data
Data transfer to a third country No
Data protection information of the service provider https://wiki.osmfoundation.org/wiki/Privacy_Policy


Google LLC 

Name and description of the integrated service Google reCAPTCHA as spam protection in connection with newsletter registration
Name of the cookie ak_bmsc
Purposes for which we process the data Spam protection
Data transfer to a third country Yes  
Data protection information of the service provider Privacy Policy: https://policies.google.com/privacy?hl=de Terms of Use: https://policies.google.com/terms?hl=de

 

6.     Social networks

We use social media plugins on our websites. If our websites contain symbols from social media providers, we use them solely for passive linking to the respective providers' websites.

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Name of the integrated service Facebook
Name of the cookie datr
Value of the cookie 9aeDYodZ1AK4B2Rsol5IEds9
Technical storage form Cookie
Third-party cookies Yes
Domain and path of the cookie .facebook.com
Storage period on the users’ devices 2 years
Purposes for which we process the data Unblocking Facebook content
Legal basis for processing Section 26 (1) TTDSG
How the service provider is integrated Linking
Data transfer to a third country Yes
Data protection information of the service provider https://www.facebook.com/privacy/explanation


Google Ireland Limited

Name and description of the integrated service YouTube Videos We have embedded YouTube videos on our website. These videos are stored on YouTube.com and can be played directly from our website. These are all embedded in "extended data protection mode," meaning that no data about you as a user is transferred to YouTube if you do not play the videos. The data mentioned in paragraph 2 is only transferred when you play the videos. We have no influence on data processing at YouTube.
Name of the cookie AEC NID _Secure-ENID CONSENT
Value of the cookie AEC: AakniGPDQGS4XSu4uD_gHANkZCfaw2qcaNh4uuSEfLql8WlxqYvc8PYwPxM NID: 511=oXE5vOej55VqqP5v-SmHJ1S1SsndVDuyYC2Q5ySAO1uL2rIGYh3PJwUFlZSA09WKAiqjMwpK-UENFvgVkdW zgxmDdHPgtXF6bpnp8sVmO5GkquNQ8ZW8_HVNd2xFLx-3f67Sqd5pS7PiaQVTuC4A6kRNpZ335sMYqkUP0pSBS3A _Secure ENID: 4.SE=cOkA-BwksPrPGc-h3bLoYkP0__gaqUoB3NKwtsdm6rlY-YFqqqyOdp0cbxFhSjPiX4WDUxvyMtl6j7-aKf0 CRryGOGQu4YAOM2DMJ_gc18E8mDdlo5zx_DzXXnorJg4-iBsANAZ7X7GYqp7lwvVPiAjRBiVIxuVAUnN7WnlbxhU CONSENT: PENDING+906
Technical storage form Cookies
Third-party cookies Yes
Domain and path of the cookie .google.com
Personal data processed When you visit the website, YouTube receives the information that you have accessed the corresponding subpage of our website. In addition, the basic data mentioned above, such as your IP address and timestamp, are transmitted. This occurs regardless of whether YouTube provides a user account through which you are logged in, or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish to be associated with your YouTube profile, you must log out before activating the button.
Purposes for which we process the data Playing YouTube videos embedded in our website.
Purposes for which the service provider processes user data YouTube stores your data as user profiles and uses them for advertising, market research, and/or tailoring its website to meet your needs. Such evaluation is carried out in particular (even for users who are not logged in) to provide tailored advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles; you must contact YouTube to exercise this right.
Legal basis for processing Legal basis for setting the cookie to unlock the content: Section 25 (1) TTDSG The legal basis for the further processing of personal data in connection with the display of the videos is Article 6 (1) (a) GDPR.
How the service provider is integrated Third
Data transfer to a third country The information collected is stored on Google servers, including those in the US. According to Google, the provider has imposed a standard for these cases that corresponds to the former EU-US Privacy Shield and has pledged to comply with applicable data protection laws when transferring data internationally.
Data protection information of the service provider www.google.de/intl/de/policies/privacy


Spotify USA Inc

Name of the integrated service Spotify
Name of the cookie sp_landing sp_t  
Value of the cookie sp_landing: https%3A%2F%2Fopen.spotify.com%2Fembed-podcast%2Fepisode%2F1TCJYGMCk1RmXzdNoLQtlX%3Fsp_cid%3D65f6087df98734615a713e71e2a69894%26device%3Ddesktop%26si%3DYwFuOT3VQzuZS3fNRpi-4g   sp_t: 65f6087df98734615a713e71e2a69894    
Technical storage form Cookies
Third-party cookies Yes
Domain and path of the cookie sp_landing: .spotify.com sp_t: .spotify.com  
Storage period on the users’ devices sp_landing: 1 day sp_t: 1 year  
Purposes for which we process the data Unblocking Spotify content (playing podcasts on our website)
Purposes for which the service provider processes user data Detailed information on this can be found in Spotify’s privacy policy.
Legal basis for processing The legal basis for playing the podcasts is Art. 6 (1) (a) GDPR, i.e. Spotify is only integrated with your consent.
Data transfer to a third country Yes
Data protection information of the service provider https://www.spotify.com/de/legal/privacy-policy/

7.     Contact form

a. Description and scope of data processing

On our website, you can contact us via a contact form. In this case, the user's personal data will be transmitted with the email. This includes the following mandatory information:

    • Name, email address, subject, message

The personal data from the input form is processed to process the contact request. The data will not be passed on to third parties in this context. The data will be used exclusively for communication with the person making the request.

b. Legal basis for data processing

The legal basis for processing data transmitted when sending an email is Art. 6 (1) (f) GDPR. If the email contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR.

c. Duration of storage

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data from the contact form input mask and data sent via email, this is the case when the respective communication with the user has ended. Communication is terminated when it can be inferred from the circumstances that the matter in question has been conclusively clarified. If statutory retention periods apply, we restrict processing.

8. Newsletter

a. Newsletter registration and legal basis

If you would like to receive the newsletter offered on the website, we require a valid email address from you as well as information that allows us to verify that you are the owner of the specified email address or that the owner agrees to receive the newsletter. Data processing when subscribing to our newsletter is based on your consent, i.e., Art. 6 (1) (a) GDPR.

b. Verification of your email address

We use the so-called double opt-in process to register for our newsletter. This means that after you register, we will send you an email to the email address you provided, asking you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 30 days, your information will be automatically deleted. In addition, we store your IP addresses and the times of registration and confirmation. The purpose of this process is to verify your registration and, if necessary, to investigate any possible misuse of your personal data.

The only mandatory information required to receive the newsletter is your email address. After your confirmation, we will save your email address for the purpose of sending you the newsletter. Your email address will not be shared with third parties.

c. Storage period

We will store your consent for verification and documentation purposes for up to three years to the end of the year following the last newsletter dispatch to you or your declaration of revocation. Individual newsletter emails are only temporarily stored during dispatch; they are not stored for longer periods.

d. Unsubscribe from the newsletter

You can revoke your consent to receive the newsletter and unsubscribe from the newsletter at any time. You can do so by clicking on the link provided in each newsletter email, by sending an email to redaktion@munich-startup.de, or by sending a message to the contact details provided in the imprint.

You can also contact us at this address if you would like information about the personal data stored about you or if you would like to request deletion of this data. Requests for information and deletion should be submitted to MGH in writing.

Documentation Newsletter registration 

9.  “Sign in and Start-up“ form

a. Description and scope of data processing

On our website, users can register their startup and create a profile to display information about the company on the website www.munich-startup.de to publish. As part of the company entry, the information that the user provides us with is collected, which includes: 

    • Mandatory information: Company name, elevator pitch, picture, street and house number, postal code, city, email, consent to the terms of use and the privacy policy
    • Optional: Information about the elevator pitch in English, industry, business model, number of founders, number of employees, year of establishment, consent to publish the year of establishment, telephone, website, Facebook URL, Twitter URL, Instagram URL, Apple App Store, Google Play Store, access data (email, password)
    • “Stage” (Seed Stage, Growth Stage, Startup Stage, Later Stage), consent to publish the “Stage”
    • Financing information: Total financing amount, number of investors, financing round, year of financing, financing amount, consent to publish the financing information

The personal data from the input form is processed to create and manage the company profile and to provide website visitors with information about your company. In this context, the data will not be shared with third parties. The data will be used exclusively for the profile.

b. Legal basis for data processing

The legal basis for the processing of personal data is your consent in accordance with Art. 6 (1) (a) GDPR.

c. Duration of storage

We will delete the personal data after termination of the contract or deletion of the profile, unless there are legal obligations that authorize or require us to retain the personal data.

10.  “Create new event” form

a. Description and scope of data processing

You can publish events and seminar dates on our website. In this context, the following data is collected:

    • Mandatory information: Event title, event description, start/end of the event, event website
    • Optional: All-day event, add more events, event image, event tags, event location, event costs

The processing of personal data from the input form serves to provide website visitors with information about your event. In this context, the data will not be passed on to third parties.

b. Legal basis for data processing

The legal basis for the processing of personal data is your consent in accordance with Art. 6 (1) (a) GDPR.

c. Duration of storage
We will delete the personal data after termination of the contract or deletion of the profile, unless there are legal obligations that authorize or require us to retain the personal data.

11.  Pinboard

If you register on the Pinboard as a contact person for a startup, the following data will be processed based on your consent in accordance with Art. 6 (1) (a) GDPR: company name (personal reference for sole proprietors as natural persons), brief description of the company, address, contact person with name and email address, photo (optional), telephone number (optional). You can revoke your consent at any time with future effect., by logging into your profile and requesting deletion under "Edit profile data." Revoking your consent will result in the deletion of your data. Using Pinboards will then no longer be possible. If you register as the owner of a startup (sole proprietor), your data will be processed on the basis of Art. 6 (1) (b) GDPR for the purpose of fulfilling the Pinboard user agreement concluded with you.

Data will not be transferred to third parties.

Your data will be stored for the duration of your use of the Pinboards and then deleted.

12. AI search with branchly:

MGH offers an AI-supported search function on its website, provided by the chat service of branchly (branchly GmbH, Auerfeldstraße 18, 81541 Munich, https://branchly.io). With the help of this service, website visitors can receive AI-generated answers to their queries, including relevant source information and contact information, through text input and/or navigation aids. A technically necessary connection to branchly's servers is established so that the search queries are transmitted to branchly. branchly uses this data exclusively to provide the search function. No cookies are used. MGH uses the search queries for the purpose of structurally and thematically optimizing its website and providing a convenient and efficient search function. The legal basis for data processing is MGH's legitimate interest in providing a convenient and efficient search function in accordance with Art. 6 (1) (f) GDPR. MGH has concluded a data processing agreement with branchly in accordance with Art. 28 GDPR. The categories of data subjects are website visitors. The categories of personal data are the search queries of website visitors, which may contain personal information (e.g., email address, telephone number) if the users themselves provide it. MGH expressly requests that no personal data be entered when using the search function. The data comes from the entries made by website visitors. The search queries are passed on internally to MGH employees and to branchly. If a search query contains personal data, this data is also passed on to MGH employees and to branchly. branchly automatically deletes the data after processing. The search queries received by MGH and the AI-generated answers are deleted after 90 days.

13.  Processor

To provide this website and for the aforementioned purposes, your data may be passed on to technical service providers (e.g., website hosting, support), whom we carefully select and with whom we have concluded data processing agreements. These service providers are bound by our instructions and are regularly monitored by us.

We work with the following processors:

Processor

Purpose

Adequate level of data protection

Hetzner Online GmbH

Web hosting and support

Processing of data in Germany

State of Glow

Web development and support

Processing of data in Germany

14.  No automated decision-making (including profiling)

We do not use the personal data collected from you for any automated decision-making process (including profiling).

15.  Your rights

You can assert your rights as a data subject regarding your processed personal data at any time. As a data subject, you have the right:

    • Pursuant to Art. 15 GDPR, you have the right to request information about your data processed by us. In particular, you can request information about the purposes of processing, the category of data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected from us, as well as the existence of automated decision-making, including profiling, and, where applicable, meaningful information on its details;
    • to request the immediate correction of incorrect or the completion of your data stored by us in accordance with Art. 16 GDPR;
    • to request the deletion of your data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
    • to request the restriction of the processing of your data in accordance with Art. 18 GDPR if you contest the accuracy of the data or if the processing is unlawful;
    • pursuant to Art. 20 GDPR, to receive the data you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another controller (“data portability”);
    • to object to processing pursuant to Art. 21 GDPR, provided that the processing is carried out on the basis of Art. 6 (1) (e) or (f) GDPR. This is particularly the case if the processing is not necessary to fulfill a contract with you. When exercising such an objection, we ask you to explain the reasons why we should not process your data as we do. If your objection is justified, we will examine the situation and will either stop or adapt the data processing or show you our compelling legitimate reasons on the basis of which we continue the processing;
    • According to Art. 7 (3) GDPR, you have the right to revoke your consent (even before the GDPR came into force, i.e. before 25 May 2018) – that is, your voluntary, informed and unambiguous will, made clear by a declaration or other unambiguous confirming act, that you agree to the processing of the personal data concerned for one or more specific purposes – at any time, if you have given such consent. This means that we may no longer continue the data processing based on this consent in the future and
    • pursuant to Art. 77 GDPR, to complain to a data protection supervisory authority about the processing of your personal data in our company.

16.  Data security

Munich Startup takes technical and organizational measures to ensure that your personal data is protected against accidental or unlawful deletion, alteration, loss, unauthorized disclosure, or access (e.g., TSL encryption for our website). In doing so, we consider the state of the art, implementation costs, and the nature, scope, context, and purpose of the processing, as well as the existing risks of a data breach (including its likelihood and impact) for the data subject. Our security measures are continuously improved in line with technological developments.

We will be happy to provide you with further information upon request. Please contact our data protection officer (see section 3).

17.  Left

Munich Startup is not responsible for the data protection of other websites or their content to which links are provided.

18.  Changes

In light of ongoing developments in data protection law and technological or organizational changes, our privacy policy is regularly reviewed for any necessary adjustments or additions. You will be notified of any changes on this website.

19.  Adjust privacy settings

You can adjust your data protection preferences using our data protection consent tool.

Munich Commercial Court and Technology Center Company Ltd.

 

This privacy policy is dated May 2023.