A-
A+

Privacy Policy for www.maintower.ticketfritz.de

Thank you for visiting our website (www.maintower.ticketfritz.de) and for your interest in our ticket shop. Helaba takes the protection of your personal data very seriously. Therefore, you can find out here which personal data we process during your visit to our website and how we protect it. In addition, we will inform you about your rights under the General Data Protection Regulation (GDPR).

 

Information about the controller

Name and contact

Landesbank Hessen-Thüringen Girozentrale

Anstalt des Öffentlichen Rechts

Neue Mainzer Straße 52- 58

60311 Frankfurt am Main

Tel: +49-69-9132-01

 

Corporate data protection

Landesbank Hessen-Thüringen Girozentrale

Anstalt des Öffentlichen Rechts

Datenschutzbeauftragter

Kaiserleistraße 29 – 35

63067 Offenbach

Tel: +49-69-9132-01

 

E-Mail: datenschutz@helaba.de

 

Categories of personal data

When you visit our website, your internet browser automatically sends information to our website's server. This information is temporarily stored in a so-called log file. The log file contains time/date, IP address and URL (log parameter) and is automatically deleted after your visit.

In addition, when you visit our website, we use cookies and analysis tools and provide you with other services in which personal data is processed. You can find out more about this under the relevant points of this data protection notice.

 

Processing Purposes

We process your personal data to ensure a smooth connection to the website, convenient use of our website, to evaluate system security and stability, as well as for administrative purposes and other services, in particular for payment processing.

 

Cookies

Helaba uses necessary and optional cookies when you visit the website. Cookies are small text files that are stored on your device and stored by your browser. They serve to make our offer more user-friendly - for example, so that you do not have to confirm a preceding disclaimer several times. Such cookies we use are so-called "session cookies" because they are automatically reset at the end of your visit. Our cookies do not cause any damage to your device and do not contain viruses.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which websites and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows the websites and servers visited to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A particular internet browser can be recognized and identified via the unique cookie ID.


If you do not want to allow cookies, you can prevent this at any time via the settings of your browser or delete cookies that have already been set or revoke their use under the cookie settings.

Under certain circumstances, not all functions of our website can be used.

Cookie settings

Useful Cookies:

Cookie-Name

Purpose

Storage period

ASP.NET_SessionId

Unique alphanumeric key to manage the current browser session

Session

Cb-accepted

is used to hide the cookie banner when the cookie notice is accepted

Persistent

Size

is used to store the font size

Session

ASPXAUTH

Used to determine if a user is authenticated

Session

PreferredCulture

stores the language of the website chosen by the user

Session

RequestedVerifiction Token

protects the user from so-called "forgery attacks"

Session

 

Web tracking with Azure Insight

Our website uses Application Insights for analysis purposes with the Microsoft Application Insights software to collect statistical usage and telemetry data. The cookie stores a unique identifier to recognize users on repeat visits over time.

 

Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address bar of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

 

Registration on this website

You can register on our website to use additional features on the site. We use the data entered for this purpose only for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will refuse registration.

For important changes, such as in the scope of the offer or in the event of technically necessary changes, we will use the e-mail address provided during registration to inform you in this way.

The data entered during registration is processed on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke any consent you have given at any time. All you need to do is send us an informal message by e-mail. The lawfulness of the data processing that has already been carried out remains unaffected by the revocation.

The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Statutory retention periods remain unaffected.

 

Use of personal data in payment transactions

Payment with PayPal

On our website, we offer payment with the online payment service provider PayPal, where your contact details are transmitted to PayPal. PayPal is an offer of PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.

The personal data transmitted to PayPal is usually first name, last name, IP address, e-mail address, or other data required for payment processing.

This transmission is necessary to process your payment using the payment method you have selected, in particular to confirm your identity and to administer your payment. The legal basis is Art. 6 (1) (b) GDPR.

Please note, however: Personal data may also be passed on by PayPal to service providers, subcontractors or other affiliated companies insofar as this is necessary for the fulfilment of the contractual obligations arising from your payment order or the personal data is to be processed on behalf of the customer.

Depending on the payment method selected via PayPal, e.g. invoice or direct debit, the personal data transmitted to PayPal will be transmitted by PayPal to credit reference agencies. This transmission serves to check the identity and creditworthiness of the payment order you have made. You can find out which credit agencies these are and which data is generally collected, processed, stored and passed on by PayPal in PayPal's privacy policy under https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

 

Legal bases for processing

We process your personal data in accordance with applicable data protection law.

  1. If you have given us consent for the processing of your personal data, our data processing is covered by the legal basis of consent in accordance with Art. 6 (1) (a) GDPR.
  2. Processing of data (customer and contract data)

We also collect, process and use personal data insofar as they are necessary for the establishment, content design or modification of the legal relationship. This is done on the basis of Art. 6 (1) (b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We collect, process and use personal data about the use of our website (usage data) only to the extent necessary to enable the user to use the service or to bill for it.

The customer data collected will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.

 

In addition, your personal data may be processed by us within the scope of our legitimate interest as well as the legitimate interests of third parties (Art. 6 para. 1 lit. f GDPR). This is particularly due to optimizing our internet offering. Such processing is carried out after careful consideration of your and our interests, in particular taking into account the nature of the personal data, the purpose of the processing and the circumstances of the processing.

 

Recipients of personal data

Within the bank, access to your personal data is granted to those entities that need it to fulfil the processing purposes. Service providers and vicarious agents used by us may also receive your personal data for this purpose. However, disclosure to third parties will only take place if there is a legal basis for this in accordance with Art. 6 (1) GDPR and/or service providers commissioned by us act as processors.

 

Data transfer to third countries

Data will only be transferred to entities outside the EU or the EEA (so-called third countries) to secure third countries for which an adequacy decision has been issued by the European Commission.

 

Storage period of personal data

We will delete your personal data as soon as the purpose for which we collected and processed the data no longer applies. Beyond this time, storage will only take place if this is required by law, ordinance or other legal provisions. If deletion is not possible in individual cases, the corresponding personal data will be marked with the aim of restricting their future processing.

 

Rights of data subjects

You have the right to information in accordance with Article 15 of the GDPR, the right to rectification in accordance with Article 16 of the GDPR, the right to erasure in accordance with Article 17 of the GDPR, the right to restriction of processing in accordance with Article 18 of the GDPR, the right to object in accordance with Article 21 of the GDPR and the right to data portability in accordance with Article 20 of the GDPR. The right to information and the right to erasure are subject to the restrictions under §§ 34 and 35 BDSG.

In addition, there is a right to lodge a complaint with a competent data protection supervisory authority (Article 77 GDPR in conjunction with Section 19 BDSG). The supervisory authority responsible for Helaba since 01.01.2024 is:

The Hessian Commissioner for Data Protection and Freedom of Information

Gustav-Stresemann-Ring 1

65189 Wiesbaden

Department of Credit Institutions

Phone: +49-0611-1408-0

Fax: +49-0611-1408-900-901

E-Mail: poststelle@datenschutz.hessen.de

 

Pursuant to Article 2 (1) of the State Treaty on the Formation of a Joint Savings Bank Organisation of Hesse-Thuringia, the responsibilities of the Hessian and Thuringian supervisory authorities change every 4 years. From 01.01.2028:

The Thuringian State Commissioner for Data Protection and Information Security,

Häßlerstraße 8

99096 Erfurt

Phone: +49-0361-57-3112900

Email: poststelle@datenschutz.thueringen.de

 

You can revoke your consent to the processing of your personal data at any time. This also applies to the revocation of declarations of consent that were given to us before the EU General Data Protection Regulation came into force, i.e. before 25 May 2018. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is not affected.

 

Learn more

We do not use any profiling during your visit to our website. Fully automated decision-making also does not take place.

 

Published by Landesbank Hessen-Thüringen Girozentrale
© Landesbank Hessen-Thüringen Girozentrale
All rights reserved.