Terms of Service

Effective date: April 3, 2023

1. Introduction

Welcome to The What If. Your privacy is important to us, and we are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your data in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

2. Data Controller

The data controller responsible for your personal data is:

The What If
Medien.Bayern GmbH
Media Lab Bayern
Balanstraße 73 / Haus 11
81541 München, Germany
Email: contact@thewhatif.org

Representatives:

  • Stefan Sutor (Vorsitzender)
  • Lina Timm

3. Information We Collect

  • Personal Data: Name, email, and other details provided during inquiries or signups.
  • Usage Data: IP address, device information, browser type, and activity data collected via cookies or analytics tools.
  • Communication Data: Records of your communication with us.

4. Purpose of Data Processing

We process your data for the following purposes:

  • To provide and maintain our website.
  • To analyze user interactions via Google Analytics and improve our services.
  • To respond to your inquiries or requests.
  • To comply with legal obligations.

5. Legal Basis for Processing

We process data based on:

  • Consent (Art. 6(1)(a) GDPR): For analytics or newsletter subscriptions.
  • Contractual necessity (Art. 6(1)(b) GDPR): When responding to inquiries related to our services.
  • Legitimate interests (Art. 6(1)(f) GDPR): To improve our website functionality and ensure security.

6. Third-Party Tools

We use third-party tools to enhance our services:

  • Google Analytics: To analyze site traffic and improve usability. Google Analytics data is anonymized where possible.
  • Hosting Services: Our website is hosted within the EU, ensuring data storage complies with GDPR requirements.

7. Data Transfers

We do not transfer personal data outside the European Union.

8. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy or as required by law.

9. Data Breach Policy

In the event of a data breach, we will:

  1. Notify affected users within 72 hours of detection.
  2. Report the breach to the appropriate supervisory authority.
  3. Take immediate steps to mitigate risks and prevent further breaches.

10. Your Rights

You have the right to:

  • Access, correct, or delete your data.
  • Restrict or object to data processing.
  • Withdraw consent at any time for future processing.
  • Complain with your local Data Protection Authority, such as Bayerisches Landesamt für Datenschutzaufsicht.

11. Cookies

Refer to our Cookies Settings for more information on how we use cookies and how you can manage them.

12. Contact

For any questions or concerns, please contact us at contact@thewhatif.org.