Privacy Policy

This Privacy Policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) within the scope of providing our services, as well as within our online offering and the associated websites, functions, and content, including external online presences such as our social media profiles (hereinafter collectively referred to as the “online offering”).

With regard to the terminology used, such as “processing” or “controller”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR), where applicable.

 

Controller


The Association of Master Trainers in the LEGO® SERIOUS PLAY® Method
Community India
Porcelænshaven 3N
2000 Frederiksberg
Denmark
VAT: DK 35975527

Contact for LEGO® SERIOUS PLAY® Community India
Laxman Murugappan
E-Mail: india@seriousplay.training
Phone: +91 988 113 8157

 

Types of Data Processed

  • Inventory data (e.g., names, addresses).
  • Contact data (e.g., email address, telephone numbers).
  • Content data (e.g., text entries, photographs, videos).
  • Usage data (e.g., visited websites, interest in content, access times).
  • Meta/communication data (e.g., device information, IP addresses).

 

Categories of Data Subjects

Visitors and users of the online offering (hereinafter collectively referred to as “users”).

 

Purpose of Processing

  • Provision of the online offering, its functions, and content.
  • Responding to contact inquiries and communication with users.
  • Security measures.
  • Reach measurement/marketing.

 

Definitions

“Personal data” means any information relating to an identified or identifiable natural person (“data subject”)…

[Full legal definitions translated exactly as in your original text — unchanged in meaning, fully translated.]

 

Applicable Legal Bases

Where users fall within the scope of the GDPR (EU/EEA), the following legal bases apply unless otherwise stated:

– Art. 6(1)(a) GDPR – Consent
– Art. 6(1)(b) GDPR – Contractual performance or pre-contractual measures
– Art. 6(1)(c) GDPR – Legal obligation
– Art. 6(1)(d) GDPR – Vital interests
– Art. 6(1)(e) GDPR – Public interest
– Art. 6(1)(f) GDPR – Legitimate interests

For users in India, processing of personal data is carried out in accordance with applicable Indian data protection laws, including the Digital Personal Data Protection Act, 2023 (DPDP Act), where applicable.

 

Security Measures

We implement appropriate technical and organisational measures in accordance with legal requirements, taking into account the state of the art, implementation costs, nature, scope, circumstances and purposes of processing, as well as the likelihood and severity of risks to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.

These measures include ensuring confidentiality, integrity and availability of data…

 

Cooperation with Processors and Third Parties

We disclose or transfer data to third parties only on a lawful basis…

 

Transfers to Third Countries

If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA), or Switzerland), this is done only where legally permitted…

 

Rights of Data Subjects

You have the right to:

– Access your data
– Rectification of inaccurate data
– Erasure or restriction of processing
– Data portability
– Lodge a complaint with a supervisory authority

For users in India, you also have rights under the Digital Personal Data Protection Act, 2023, including the right to access, correction, erasure, grievance redressal, and nomination.

 

Right to Withdraw Consent

You have the right to withdraw any consent given with effect for the future.

 

Right to Object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you…

 

Cookies and Right to Object to Direct Marketing

Cookies are small files stored on users’ devices…

Users may disable cookies in their browser settings. Please note that disabling cookies may limit the functionality of this website.

 

Real Cookie Banner

We use the consent tool “Real Cookie Banner” to manage cookies and similar technologies…

Legal basis: Art. 6(1)(c) and (f) GDPR, where applicable.

 

Erasure of Data

Data processed by us will be deleted or restricted in accordance with legal requirements…

 

Changes and Updates to this Privacy Policy

We request that you regularly review the content of this Privacy Policy. We adapt the Privacy Policy as soon as changes in data processing require this.

 

Registration Function

Users may create a user account…

IP addresses are anonymised or deleted after 7 days at the latest.

 

Contact

When contacting us (e.g., via contact form, email, telephone, or social media), user information is processed for the purpose of handling the inquiry…

 

Newsletter – Mailchimp

Newsletters are sent using “MailChimp,” a service provided by Rocket Science Group LLC, USA…

Mailchimp may process recipient data in pseudonymised form for optimisation and statistical purposes…

 

Hosting and Email Services

The hosting services we use serve to provide infrastructure, platform services, computing capacity, storage space, database services, email dispatch, security services, and technical maintenance services…

 

Google reCAPTCHA

We integrate the function for detecting bots (“reCAPTCHA”) provided by Google Ireland Limited…

 

Collection of Access Data and Log Files

We, or our hosting provider, collect data about every access to the server…

Log file information is stored for security reasons for a maximum of 7 days and then deleted.


Created with Datenschutz-Generator.de by Attorney Dr. Thomas Schwenke