'Personal data', 'data subject', 'controller', 'processor', 'processing', 'enterprise' and 'third party' are terms defined by Article 4 Paragraph 1-26 of the General Data Protection Regulation by the European Union (referred to as GDPR or DSGVO).
The controller of Jerrysource.com, Snippetfox.com, Hiuz.org and Mobilebrowsergames.org is determined to protect user privacy and by himself does not use, analyze or process personal data.
However, the named websites are hosted on an external server provided by the third party enterprise '1&1 Internet SE' (referred to as webspace provider or processor). The processor (one of the major European webspace hosting enterprises) has been chosen carefully pursuant to Article 28 Paragraph 1 GDPR.
While the websites offered by the controller do not use/offer cookies, accounts, registrations, sessions, passwords etc., parts of the contract with the webspace provider include that '1&1 Internet SE' and potentially its contractors store and/or process certain categories of personal data as explained in the following sections.
Pursuant to Article 13 Paragraph 1 GDPR, the controller (named below) is required to provide information to the data subject (in this case the visitor of websites owned by the controller), where personal data relating to the data subject are collected, and, pursuant to Article 14 Paragraph 1 GDPR, where personal data have not been obtained.
Third party processor:
1&1 Internet SE
Affected Services: 'Webspace', '1&1 WebAnalytics'
Purpose of Processing:
- Website Hosting
- Statistic Analysis and Technical Optimization of Services
Category of Personal Data:Inventory Data, Usage Data, Content Data- IP address (anonymized)
Lawfulness of Processing:
Performance of the Contract, pursuant to Article 6 Paragraph 1 point (b) GDPR
Involved Third Party contractors of the Third Party Processor:
Amazon Web Services, Inc., Seattle WA, United States
The period for which the personal data is stored, as described in Article 13 Paragraph 2 point (a) GDPR is determined by the processor. The processor keeps log files for maximum 9 weeks.
As required by Article 13 Paragraph 2 point (b) and (d) GDPR, the controller hereby points out the existence of the right to request access to and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability and furthermore the right to submit a complaint with a supervisory authority, according to the corresponding legislature and if not excluded by Article 13 Paragraph 4 or Article 14 Paragraph 5 GDPR. Point (b) of the latter applies to most aspects of how the processor deals with personal data.
The 'Right of Rectification' is defined by Article 16 GDPR, while Article 17 GDPR explains the 'Right to Erasure', Article 18 GDPR the 'Right to Restriction of Processing', Article 20 GDPR the 'Right to Data Portability', Article 21 GDPR the 'Right to Object'.