for the Website of radio.de GmbH
With the following privacy policy, we would like to inform you about the nature, scope, and purpose of the collection and processing of your personal data when you visit the website offered by radio GmbH, Mühlenkamp 59, 22303 Hamburg (hereinafter also “radio.de,” “we,” “us”) under the web address www.radio.de as well as the other country‑specific web addresses of radio.de listed in the footer of the website (collectively, the “Website”), and when you use the functions offered on it (the “Services”). Protecting your personal data during your visit to our Website is an important concern for us.
Where we link to third‑party offerings (e.g., social networks) within our Website, the privacy policies of those third parties apply. If you click such a link, we are not responsible for any further data processing.
Personal data collected during your use of our Website is processed only by radio.de and the third parties listed in this privacy policy and in our Privacy Center. Beyond this, radio.de generally does not disclose personal data to other third parties. Personal data is disclosed to other third parties only in the exceptional circumstance where radio.de is required to disclose the collected data due to an administrative or judicial order.
Our privacy information for the use of the radio.de app can be found in the app and in the Play Store or App Store.
Please note that this is a translation of the German Privacy Policy, which is available under www.radio.de. In case of contradiction between the different versions, the German version will prevail.
The controller responsible for the collection and processing of your personal data under the EU General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) is:
radio.de GmbH
Mühlenkamp 59
22303 Hamburg
Deutschland
Phone: + 49 40 - 570 065 150
Email: [email protected]
Further information about radio.de can be found in the imprint of the Website.
If you have any questions regarding data protection, you can contact the Data Protection Office by email at [email protected] or by mail at:
MADSACK Mediengruppe
Datenschutz
August-Madsack-Straße 1
30559 Hannover
Deutschland
This privacy policy applies to the collection and processing of personal data in connection with your use of the Website offered by radio.de. Personal data means any information relating to an identified or identifiable natural person. Depending on how and to what extent you use our Website, different types of data may be collected and processed.
When you access our Website, radio.de collects data regarding your use of our Website, so‑called “website log files” (“Logfiles”). Each access to our Website is logged.
The logfiles created from this process include the following data:
- Your IP address;
- Time, type, and number of server requests;
- Your browser type and, where applicable, other similar information.
These data are technically necessary for us to display our Website to you and to ensure stability and security.
In addition, the collection and processing of the information stored in the logfiles is carried out solely for anonymized statistical analysis purposes, i.e., to analyze your use of our Website and thereby continually improve our services.
Our legitimate interest in this regard follows from the purposes described above, within the meaning of Art. 6(1) lit. f GDPR. The data collected in this way cannot be attributed to you as an identified individual. The data is not merged with other data sources.
We refer to third-party radio streams on our Website. In order for you to receive the programming of the various stations, the respective service providers process the information listed under Section 3.1. You can find further details on data protection practices in the privacy policies of these service providers. We have no influence over the storage and further use of your data by these service providers.
To offer you Services tailored to your location (e.g., displaying stations near you), the collection of location data is required when you actively use the Website. To provide these Services, radio.de must also process your IP address. This so-called geolocation - assigning website usage to the geographic location of the access - relies exclusively on the IP address. The geographic information obtained cannot, under any circumstances, be used to identify the precise physical location of a user. Where additional location data is transmitted to third parties by iOS, Android, BlackBerry, or Windows Phone systems, radio.de has no influence over such data collection.
These data processing activities are carried out pursuant to Art. 6(1) lit. f GDPR based on our legitimate interest in providing you with our Services.
If you need assistance using our Website and the content available on it, you may use our Help Center by clicking the “Help/FAQ” link in the footer of the Website. This will direct you away from our Website to https://radio.zendesk.com/hc/de/, operated by Zendesk Inc. (for further information about Zendesk, see Section 5.3). You can also access the Help Center through the “contact” link in the footer of the Website and then clicking the button “submit a request.” The Help Center contains frequently asked questions and corresponding guidance.
In addition, you may request direct assistance through the “Submit a request” button in the Help Center. For this purpose, we use the customer service platform provided by Zendesk Inc. You may also contact us by email, postal mail, or telephone. In doing so, we collect, process, and store your contact details and the content of your inquiry pursuant to Art. 6(1) lit. a GDPR, based on your consent, or pursuant to Art. 6(1) lit. b GDPR if your inquiry relates to (pre-)contractual matters, or pursuant to Art. 6(1) lit. f GDPR where radio.de has a legitimate interest in doing so.
We process the personal data described in Sections 3.1 through 3.3 for administrative purposes, to organize our operations, and to comply with legal obligations, such as archiving requirements. The legal bases for this processing are Art. 6(1) lit. b, lit. c, or lit. f GDPR. Both visitors to our Website and users of our Services are affected by this processing. The purpose of - and our interest in - this processing lies in maintaining our business operations, fulfilling our statutory duties, and performing our contractual obligations.
We process and store personal data only for the period necessary to achieve the respective processing purpose, or for as long as required by statutory provisions, but at least for the duration of the applicable statutory limitation periods.
If the purpose of storage ceases to apply, if you withdraw your consent, or if a legally prescribed retention period expires, the personal data will routinely be blocked or deleted after 30 days in accordance with statutory requirements.
During the booking process for a Prime subscription and when using our Services as a Prime subscriber, we - and service providers engaged by us - process, in addition to the data and processing activities previously described, further personal data that are required for the provision of the Prime subscription.
When you use radio.de with a Prime subscription, we use only strictly necessary cookies and comparable technologies. This means that accessing or storing information on your device occurs only when this is strictly required for the Service you have requested and we would otherwise be unable to provide the Service (§ 25(2) TDDDG). The legal basis for the further processing of these technically necessary personal data within the Prime subscription is Art. 6(1)(b) and/or Art. 6(1)(f) GDPR.
3.6.1. User Account
To conclude a Prime subscription, users must create a User Account. As part of the registration process, you provide your email address and a secure password of your choice. You may also optionally provide us with your first name. Registration is processed by our service provider “GRZ” (Gutenberg Rechenzentrum GmbH & Co. KG). Further information on data processing can be found in GRZ’s privacy policies. The legal basis for the data processing is Art. 6(1)(b) GDPR. You can revoke your consent to the processing of optionally provided data at any time with future effect.
GRZ acts as our processor in this context of data processing. We have entered into a data processing agreement with GRZ in accordance with Article 28 GDPR.
We store your registration details until you submit a request to delete your online account with us, unless statutory retention obligations require continued storage. To delete your account, simply send an email to [email protected].
3.6.2. Subscription
The conclusion of the Prime subscription, including the payment and billing process, is legally and technically carried out with your seller FastSpring. FastSpring (FastSpring B.V., Strawinskylaan 3101 Tenant B.V., 1077 ZX Amsterdam) is solely responsible (Data Controller) for the data processing. FastSpring’s terms and conditions apply, and information on data processing can be found in its privacy policy.
As far as we process Data in joint responsibility before and after the subscription, we have concluded a agreement with FastSpring in accordance with Article 26(1) GDPR. The legal basis for this processing is Article 6(1)(b) GDPR.
3.6.3. Email Advertising / Newsletter
With your consent, you will receive an email newsletter and additional email advertising containing information about XY (Art. 6(1)(a) GDPR, § 7(2)(3) UWG). Where the requirements of § 7(3) UWG are met, you may receive the above-mentioned newsletters even without having previously given explicit consent. Of course, you may withdraw your consent at any time with effect for the future or object to the processing of your data for advertising purposes.
To obtain your consent, we use the double opt-in procedure to prevent our newsletter or other email advertising from being sent to email addresses of individuals who did not request it. As part of this process, your IP address is also collected and stored for documentation purposes (Art. 6(1)(c), Art. 7(1) GDPR).
3.7. Use of Our Service with Advertising & Tracking
If you choose, by clicking the “Accept all” button, to use our Service without a paid subscription, we finance our offering through advertising. For this purpose, advertisers set cookies that enable tracking to deliver and optimize advertising based on your usage behavior and your presumed interests and needs. To provide this offering, we use cookies, device identifiers, and similar technologies on your end devices.
To obtain your consent to the processing of data by means of cookies and other information and objects stored on your end device, we use a so-called Consent Management Platform (“CMP”) in order to meet the requirements of the GDPR and provide you, as a user, with the highest possible degree of transparency. In this regard, we participate in the Transparency & Consent Framework (“TCF”) of IAB Europe and adhere to its specifications and guidelines. The Interactive Advertising Bureau (IAB) is an international industry association of the online advertising sector.
The storage of information on the end user’s device or access to information is carried out in accordance with § 25(1) TDDDG, Art. 6(1)(a) GDPR. The legal basis for the further processing is your consent under Art. 6(1)(a) GDPR. The legal basis for the transfer of data to the United States is Art. 49(1) lit. a GDPR.
You may withdraw your consent at any time with effect for the future by clicking the “Privacy-Manager” link at the bottom of the page. Our cookie layer will then reappear, and you can again choose how you would like to use radio.de.
Note regarding consent: Some of the services listed in the CMP transfer data to countries outside the European Economic Area (“EEA”), including in particular the United States of America (“USA”).
3.7.1. Third Countries
Some of our third-party providers are based in countries outside the European Union (“EU”) or the European Economic Area (“EEA”) (“Third Countries”), including the United States of America (“USA”).
For certain companies in the USA, there is an adequacy decision of the European Commission pursuant to Art. 45 GDPR (“EU-U.S. Data Privacy Framework”, “DPF”). Where we cooperate with service providers certified under the DPF, data transfers take place on the basis of this adequacy decision. A current list of certified companies is available at https://www.dataprivacyframework.gov.
For all other recipients in the USA and recipients in other third countries for which no adequacy decision exists, data transfers are carried out pursuant to Art. 46 GDPR on the basis of appropriate safeguards, in particular the European Commission’s standard contractual clauses (“SCCs”).
In such cases, we implement additional technical and organizational measures to ensure an adequate level of protection for your data. Despite these measures, in certain third countries - including the USA, where no DPF certification exists - it cannot be ruled out that government authorities may access the transferred data on the basis of local laws and that data subjects’ rights may not be enforceable to the same extent as in the EU. We continuously assess these risks and adjust our safeguards accordingly.
3.7.2. Storage period
Your data collected for advertising purposes will be stored for as long as the advertising purpose continues or until we receive a revocation of your consent or your objection to the processing of your data for advertising purposes. You can obtain information about the duration of the storage of your data individually by contacting our data protection officer (see section 2).
Radio.de uses so-called cookies and a PPID („Publisher Provided Identifier“).
Cookies are small text files that are stored on your computer by your browser. The use of cookies makes it easier for you to use our Services and enables us to better understand your user behavior and to offer you content and services tailored to your needs.
Session cookies are used only for the duration of the respective session. They store information relating to your username, user permissions, session validity and, when the search function is used, the search terms entered. These cookies are deleted once the session ends, meaning when you leave our website or close your browser window.
Other cookies remain stored on your device for a longer period (up to twelve months) and enable us, our service providers and our advertising partners to recognise your browser upon your next visit (persistent cookies).
In addition, similar technologies (in particular device identifiers, local storage objects and web beacons) are used on our website. For ease of reference, we refer to such technologies collectively as “cookies” throughout this notice.
The legal basis on which your personal data is processed by cookies depends on whether we request your consent. Where this is the case and you consent to the use of cookies, the legal basis for processing your data is your consent pursuant to Section 25(1) TDDDG in conjunction with Article 6(1)(a) GDPR, and any further processing is based on Article 6(1) GDPR.
Otherwise, data processed through cookies is carried out on the basis of Section 25(2) TDDDG (for example, technically necessary cookies required to ensure the proper functioning of our website) or, where the use of cookies is necessary to fulfil our contractual obligations.
A PPID enables publishers to send an identifier to Google Ad Manager that can be used for frequency capping, audience segmentation and targeting, sequential ad rotation, and other audience-based ad-delivery functions across devices.
To generate a PPID, we require your consent pursuant to Art. 6(1)(a) GDPR. The identifier sent to Ad Manager is hashed so that it cannot be used by Google. Moreover, the identifier does not contain any unencrypted personally identifiable information and does not constitute a raw third-party or device ID.
If Google has been informed that a user has opted out of personalized ads, for example, in the Ads Settings, by means of EU user consent controls, or via restricted data processing settings, all features that use a PPID for browser-based ad targeting are deactivated.
If a user does not consent to the use of PPIDs for ad delivery or deletes his or her account, the publisher may no longer send that user’s PPID to Google.
If a user asks the publisher to delete his or her usage data, we send a corresponding request to Ad Manager so that the user’s data is removed from Google’s internal storage systems.
To provide you with the highest possible level of transparency and control over the processing of your data, we follow the Transparency and Consent Framework of IAB Europe (the “IAB Standard”), including its specifications and guidelines. The IAB Standard provides participating advertising partners with a common language to communicate users’ decisions regarding the delivery of relevant online advertising and content. A significant proportion of our advertising partners are vendors certified under the IAB Standard (an overview of participating advertising partners can be found here). You can obtain information about the Transparency and Consent Framework on the IAB Europe website at iabeurope.eu/.
We have integrated a Consent Management Platform (the “CMP”) into our Website that is aligned with the requirements of the IAB Standard and is offered by Sourcepoint Technologies, Inc. (for more information about Sourcepoint Technologies, Inc., see Section 5.2). Through the CMP, you receive information about the cookies and similar technologies used and can configure their use with respect to specific service providers. You can also grant and withdraw consent to the setting of cookies via the CMP. When you access our Website and make settings through the CMP, a cookie is placed on your device in which your chosen settings are stored. The use of the CMP is based on Art. 6(1) lit. c GDPR, in order to obtain and document your consent for certain data processing operations, and on Art. 6(1) lit. f GDPR, based on our legitimate interest in providing you with a convenient way to control the processing of your personal data.
Based on your consent (Art. 6 para. 1 lit. a GDPR), we may share personal data or other information that we collect from you - such as your email address (in hashed, pseudonymous form), your IP address, and/or information about your browser or operating system - with ID5 and its corporate affiliates acting as controllers. ID5 uses this information to create an ID that can be used to recognize you across your devices. This ID does not contain any of your directly identifiable personal data. We may place this ID in our first-party cookie or use an ID5 cookie and allow it to be used for online and cross-channel advertising. This ID may be shared by us, or on our behalf, with our advertising partners and other third-party advertising providers worldwide to enable interest-based content and/or targeted advertising throughout your online experience (e.g., web, email, connected devices, in-app advertising, etc.). Detailed information on ID5’s data processing activities related to this ID and opting out of ID5 can be found in the ID5 Platform Privacy Policy at: https://id5.io/platform-privacy-policy. You have the right to withdraw your consent to the processing of your personal data at any time or to object to such processing.
Radio.de cooperates with the following external web hosting providers, which enable us to make our Website and Services available online and to process your data securely and efficiently. We have a legitimate interest in this within the meaning of Art. 6(1) lit. f GDPR. All information generated in connection with your use of our Services in accordance with Sections 3.1 through 3.3 is transmitted to these web hosts and stored there until we delete it.
Another hosting provider is Amazon Web Services Inc., 410 Terry Avenue North, Seattle, WA 98109-5210, USA (“Amazon Web Services”). Amazon Web Services is certified under the ISO 27001, ISO 27017, and ISO 27018 standards, which take into account aspects such as data security, data protection, and resilience. The data centers used by Amazon Web Services are located in Germany, in the Amazon Web Services Region Frankfurt. Any transfer, in individual cases, to a country outside the EU or EEA is carried out on the basis of data protection safeguards as set forth in Art. 45 et seq. GDPR, in particular in the form of data transfer agreements that incorporate the standard contractual clauses approved by the European Commission. The Amazon Web Services privacy policy is available at https://aws.amazon.com/privacy/.
We use the services of Cloudflare, Inc. (101 Townsend St., San Francisco, CA 94107, USA, “Cloudflare”) to make our Website faster and more secure. By means of a so-called Content Delivery Network, Cloudflare distributes the content of websites based on the IP addresses it collects to servers located near each Website visitor, thereby accelerating access to and increasing the stability of the Website. At the same time, Cloudflare provides various security systems. Radio.de has a legitimate interest in these purposes within the meaning of Art. 6(1) lit. f GDPR. Under a data protection agreement and in accordance with our instructions, Cloudflare processes all data generated in connection with your use of our Services pursuant to Sections 3.1 through 3.3. Cloudflare stores this information on servers that may be located anywhere in the world. However, Cloudflare is committed to maintaining appropriate safeguards to ensure an adequate level of data protection. Cloudflare stores data only for as long as necessary to provide the Cloudflare services or until we instruct Cloudflare to delete the data. Cloudflare’s privacy policy can be found at https://www.cloudflare.com/privacy-policy/ and https://www.cloudflare.com/gdpr/introduction/.
On our Website, we use the Consent Management Platform (“CMP”) of the service provider Sourcepoint Technologies, Inc. (228 Park Avenue South, #87903, New York, NY 10003-1502, USA, “Sourcepoint”). When you access our Website and make settings through the CMP, a cookie is placed on your end device in which your settings are stored. You can delete this cookie at any time. The data collected through the cookie are transmitted to servers of Sourcepoint, which are located in France. Under a data processing agreement, Sourcepoint processes personal data exclusively in accordance with our instructions. Any transfer, in individual cases, to a country outside the EU or EEA is carried out on the basis of data protection safeguards pursuant to Art. 45 et seq. GDPR, in particular in the form of data transfer agreements that incorporate the standard contractual clauses approved by the European Commission. The use of Sourcepoint is based on Art. 6(1)(f) GDPR because of our legitimate interest in using an appropriate service provider for documenting your consent.
Sourcepoint is a member of IAB Europe (https://iabeurope.eu/members/sourcepoint/).
Further information about Sourcepoint’s privacy practices and the CMP can be found at https://sourcepoint.com/privacy-notice and https://documentation.sourcepoint.com/web-implementation/sourcepoint-gdpr-and-tcf-v2-support.
Radio.de uses web analytics services of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, collectively “Google”). Google uses cookies (text files stored on your computer) to generate, in particular, the following information:
- Browser type/version,
- Operating system used,
- Referrer URL (the previously visited page),
- Hostname of the accessing computer (IP address),
- Time of the server request
The legal basis for data collection is Art. 6(1) lit. a, f GDPR. The information generated by the cookie regarding your use of our Website is transmitted to a Google server, which may be located in the USA, and stored there. However, through the IP anonymization activated by radio.de, your IP address is shortened by Google within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission. Any transfer, in individual cases, to a country outside the EU or EEA is carried out on the basis of data protection safeguards pursuant to Art. 45 et seq. GDPR, in particular in the form of data transfer agreements that incorporate the standard contractual clauses approved by the European Commission. On behalf of radio.de, Google uses this information to evaluate your use of our Website, to compile reports on website activity, and to provide other services related to website and internet usage to radio.de. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. radio.de has no influence over the scope of data collection by Google. The purpose and scope of data collection and the further processing of data by Google, as well as your rights in this regard and the privacy settings available to you, can be found in Google’s privacy notices at https://policies.google.com/privacy and in additional information at https://policies.google.com/technologies. You can prevent the storage of cookies by adjusting your browser software accordingly. However, radio.de advises that, in this case, you may not be able to fully use all content available on the Website. You can also prevent Google from collecting and processing the data generated by the cookie relating to your use of our Website (including your IP address) by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
The following Google analytics services are used:
- Google Analytics, which evaluates overall usage of our Website and enables us to improve the user-friendliness of our site.
- Google Optimize, which tests different versions of our Website and analyzes their use, allowing us to improve user-friendliness in line with the website variant preferred by users.
Radio.de uses the “Skalierbares Zentrales Messverfahren” (“SZM”), an analysis system of INFOnline GmbH, Brühler Str. 9, D-53119 Bonn, Germany (“INFOnline” and “SZM”) to determine statistical usage metrics for our Website. Anonymous measurement values are collected. Your identity is always protected. You will not receive any advertising through this system. The aim of the reach measurement is to statistically determine the usage intensity and number of users of a website. The resulting statistics enable us to improve our Services and make them more interesting for you as a user. The legal basis for using the SZM procedure is your express consent pursuant to Art. 6(1) lit. a GDPR.
The SZM reach measurement uses, for device recognition, either a cookie or a signature created from various automatically transmitted information from your device. The validity of the cookie is limited to a maximum of one year. IP addresses are not stored in this process and are processed only in anonymized form. Individual users are never identified. Further information on the SZM procedure can be found at https://www.infonline.de/datenschutz. You can also prevent INFOnline from collecting and processing data generated by the cookie relating to your use of our Website by using the opt-out option provided by INFOnline at https://optout.ioam.de.
Our Website also participates in the reach measurement of the Arbeitsgemeinschaft Online-Forschung e.V. (“AGOF”), the Informationsgemeinschaft zur Feststellung der Verbreitung von Werbeträgern e.V. (“IVW”), and the Arbeitsgemeinschaft Media-Analyse e.V. (“agma”) using this measurement method. AGOF, IVW, and agma periodically publish usage statistics for participating offerings in their studies. Anonymous measurement values are collected in this context.
We use Sentry, an error analysis software provided by Functional Software Inc., 45 Fremont St, San Francisco, CA 94105, USA, on our Website. Sentry helps us ensure a high level of availability of our Website and a seamless user experience (Art. 6(1)(f) GDPR). We use Sentry to monitor the stability of our Website and to identify code errors or exceptions. The software uses only those user data that are already automatically transmitted by your browser. Logged information includes:
- Timestamp
- Ressource/URL, runtime environment
- Error type/category, technical error log / stack trace
- Assessment of criticality
- Correlation with changes in application code
- Device characteristics: browser version, operating system, device category
The data are not evaluated for advertising purposes. Data are collected anonymously, stored on servers in the European Union, used in non-personalized form, and then deleted.
Radio.de uses Zendesk, a customer service platform provided by Zendesk Inc., 1019 Market Street, San Francisco, CA 94103, USA (“Zendesk”). We use Zendesk to respond to customer inquiries.
When you send us a message via the “Submit a request” button in the Help Center, the data necessary to process your inquiry, such as your email address - as described in Section 3.3 of this privacy policy - are collected via our Website in order to process your support ticket.
The data processed in each case are stored on servers of Zendesk, which may also be located outside the EU, in particular in the USA or the Asia-Pacific region. Under a data processing agreement, Zendesk processes personal data exclusively in accordance with our instructions. Any transfer to a country outside the EU or EEA is carried out on the basis of data protection safeguards pursuant to Art. 45 et seq. GDPR, in particular in the form of data transfer agreements that incorporate the standard contractual clauses approved by the European Commission. The legal basis for the use of Zendesk is Art. 6(1) lit. a GDPR, where you have given us your express consent, and Art. 6(1) lit. f GDPR, where we have a legitimate interest in using a third-party service provider to facilitate our operational processes in responding to your inquiries about our Services.
The purpose and scope of data collection and the further processing of data by Zendesk, as well as your rights and privacy settings, can be found in Zendesk’s privacy notices: https://www.zendesk.de/company/customers-partners/privacy-policy/ and https://support.zendesk.com/hc/de/articles/360022366953-Einhaltung-der-Datenschutz-Grundverordnung-in-Zendesk-Produkten.
Radio.de uses the push notification service of Airship Group, Inc., 1225 West Burnside, Suite 401, Portland, OR 97209, USA (“Airship”). In connection with the use of the Website, push notifications may be sent to provide you with functions and Services tailored to your usage. An example of such a push notification is: “Your favorite station misses you – tune in now.” You will receive such push notifications only if you have granted the corresponding permissions for radio.de in your browser settings. You can adjust these permissions at any time in your browser settings; you may thus enable or revoke push notifications at any time. Airship stores your IP address, technical configuration data of the browser and device, push notification tokens, and usage data concerning your use of the Website. When using certain browsers, you will also be separately asked whether you wish to consent to the collection, processing, and storage of the data necessary for sending push notifications. You may withdraw such consent at any time by contacting us at the email address provided above. The legal basis for the collection and processing of your personal data is Art. 6(1) lit. a GDPR. Further information on how Airship protects your privacy can be found in Airship’s privacy notice at: https://www.airship.com/legal/privacy/.
Radio.de cooperates with various advertising marketers. Advertising marketers sell online advertising inventory on third-party websites - including our Website. We comply with data protection requirements in this context and have concluded data processing agreements where necessary. The basis for data processing is your express consent in accordance with Art. 6 (1) (a) GDPR. Where personal data are transferred for advertising marketing purposes to countries outside the EU or EEA, such transfers are always made on the basis of data protection safeguards pursuant to Art. 45 et seq. GDPR, in particular in the form of data transfer agreements that incorporate the standard contractual clauses approved by the European Commission.
Radio.de uses Google Ad Manager, a tool from Google for marketing advertising inventory. Google Ad Manager uses technologies to present you with advertising that is relevant to you. To this end, a pseudonymous identification number (ID) is assigned to your browser through a cookie and/or a similar pseudonymous end-user identifier to track which ads have been displayed in your browser and which ads have been clicked. The use of the Ad Manager end-user identifier enables Google, its partner websites, and other third parties on whose behalf Google acts, to serve ads solely based on previous visits to our Website or other websites on the internet. When an ad request is made, Google typically also collects the IP address of the website visitor, which is transmitted to the respective advertising partners for the purpose of ad delivery. More information about Google Ad Manager is available at https://support.google.com/admanager/answer/9035987?hl=de and, more generally, about Google and how to prevent Google from setting cookies, in Section 5.3 (“Google Analytics Services”).
For digital advertising marketing of our Services, we use vendors that are certified under the IAB Standard in accordance with TCF v2.0 (for more details about the IAB Standard, see Section 4). Our cooperation with these vendors is not continuous; some vendors become active only through our contractual cooperation with the service providers listed in Section 5.6.3. As a result, the vendors active in connection with our Services may change over time. An overview of the IAB Standard-certified vendors with which cooperation is currently possible can be found at the following link:
There, you can also obtain information about the scope and legal basis of each vendor’s processing activities and configure your preferences regarding the processing of your data by these vendors.
The advertising marketing carried out by us and on our Website takes different forms. Below, we explain the types of marketing used and the recipients (categories) of personal data (also referred to as “advertising partners”) that may process your personal data in this context. The service providers listed in this section act under specific agreements with us and solely on the basis of your consent under Art. 6(1) lit. a GDPR and are, for the most part, certified under the IAB Standard. Please note that additional advertising partners within the IAB network may process your data (see Section 5.6.2 for further details).
In some cases, we carry out direct campaigns with different, rotating advertising clients or agencies, each with limited time periods and targeting parameters. These advertising partners are themselves responsible for their data processing activities.
Possible technical implementations:
- Redirects and VAST creatives – Through Google Ad Manager, we establish a technical connection between our advertising inventory and the advertising partner’s ad server. A tracking pixel and click URLs can also be directly integrated here.
- Physical creatives (video spots and graphics) – Some files are stored directly in Google Ad Manager; in such cases, no personal data are transmitted to the advertising partners.
- Tracking pixels – An “invisible” graphic is delivered simultaneously with the advertising medium. The graphic is hosted on an external server of the advertising partner. Frequently, a third-party provider acts on behalf of the advertising partner.
- Click URLs with tracking parameters – If you click on the advertising medium, you may be redirected via a tracking provider to the advertising partner’s landing page. Data collection by the tracking provider takes place only if you click on the advertising medium.
Personal data that may be processed:
- Online identifiers (IP addresses, cookie IDs, device IDs)
- Transaction data (such as time of an ad impression, time of an ad click)
Nature and scope of processing
Shortened IP addresses and cookie or device IDs are used to compile monthly reports and to deliver advertising within the Website.
With other advertising partners, we carry out open-ended campaigns with fixed technical setups.
· Redirects and VAST creatives – Through Google Ad Manager, we establish a technical connection between our advertising inventory and the advertising client’s ad server. A tracking pixel and click URLs can also be directly integrated here.
- Online identifiers (IP addresses, cookie IDs, device IDs)
- Transaction data (such as time of an ad impression, time of an ad click)
Nature and scope of processing
IP addresses and cookie or device IDs are used to compile monthly reports and to deliver ads.
Advertising partners of radio.de for reach-based marketing include, for example:
Privacy Policy: https://privacy-portal.smartclip.net/en/
Opt-Out: https://privacy-portal.smartclip.net/en/opt-out
Privacy Policy: https://www.smartstream.tv/en/productprivacy
Opt-Out: https://smarstream.tv/en/cookie-opt-out
Privacy Policy: https://goldbach.com/de/de/datenschutz/goldbach-germany
Opt-Out: https://goldbach.com/de/de/datenschutz/goldbach-germany#14-kontaktieren-sie-uns
Privacy Policy: https://goldbach.com/at/de/datenschutz/datenschutz-goldbach-austria
Opt-Out: https://goldbach.com/at/de/datenschutz/datenschutz-goldbach-austria#14-kontaktieren-sie-uns
Privacy Policy: https://yoc.com/privacy/
Opt-Out: https://t.visx.net/opt-out
Privacy Policy: https://www.spotx.tv/privacy-policy/
Opt-Out: https://www.spotx.tv/privacy-policy/gdpr/
Through Google Ad Manager, we are connected to various networks that bid on the advertising inventory on our Website. Some networks are active via Google ADX, a digital real-time marketplace, and bid there on our advertising inventory, while other networks are separately enabled. The selection and delivery of advertising then take place via Google Ad Manager. This process is fully automated, both in terms of the control of advertising opportunities (so-called “programmatic advertising”) and the price formation between supply and demand (“real-time bidding”).
- Redirects and VAST creatives – Through Google Ad Manager, we establish a technical connection between our advertising inventory and the advertising client’s ad server. A tracking pixel and click URLs can also be directly integrated here.
- Online identifiers (IP address, cookie IDs, device IDs)
- Behavioral data (URL, keywords, user agent)
- Technical browser parameters (browser identifier, operating system, screen resolution, device class, device manufacturer)
Nature and scope of processing
Personal data are used to create usage profiles and to deliver and display advertising campaigns within our Website.
(an overview of advertising partners connected to Google ADX can be found at the corresponding Google resources)
Privacy Policy: https://policies.google.com/privacy?hl=en
Opt-Out: https://adssettings.google.com/authenticated?hl=en
Privacy Policy: https://policies.google.com/privacy?hl=en
Opt-Out: https://adssettings.google.com/authenticated?hl=en
Privacy Policy: https://www.indexexchange.com/privacy/
Opt-Out: https://optout.networkadvertising.org/?c=1
Privacy Policy: https://rubiconproject.com/rubicon-project-advertising-technology-privacy-policy/
Opt-Out: https://rubiconproject.com/privacy/consumer-online-profile-and-opt-out/
Privacy Policy: https://www.xandr.com/privacy/platform-privacy-policy/
Opt-Out: https://platform.xandr.com/privacy-center/opt_out
Privacy Policy: https://www.sovrn.com/privacy-policy/
Opt-Out: https://www.viglink.com/opt-out
Privacy Policy: https://pubmatic.com/legal/privacy/
Opt-Out: https://pubmatic.com/legal/opt-out/
Privacy Policy: https://www.rhythmone.com/privacy-policy/
Opt-Out: https://www.rhythmone.com/opt-out/
Privacy Policy: https://www.improvedigital.com/platform-privacy-policy/
Opt-Out: https://www.improvedigital.com/opt-out-page/
Privacy Policy: https://www.media.net/privacy-policy/
Opt-Out: https://optout.networkadvertising.org/?c=1
Privacy Policy: https://yoc.com/privacy/
Opt-Out: https://t.visx.net/opt-out
Privacy Policy: https://smartadserver.com/end-user-privacy-policy/
Opt-Out: http://www.smartadserver.com/diffx/gdprOptoutAll
Privacy Policy: https://yieldlab.com/datenschutz/
Opt-Out: https://yieldlab.com/privacy-platform/
The service provider emetriq GmbH enables the delivery of advertising campaigns tailored to specific target groups (“targeting”) on the basis of proprietary data pools.
Technical implementation:
- Cookie – emetriq sets a cookie on visitors to our Website that collects the following data.
Personal data that may be processed:
- Online identifiers (IP address, cookie IDs, device IDs)
- Behavioral data (URL, keywords, user agent)
- Technical browser parameters (browser identifier, operating system, screen resolution, device class, device manufacturer)
Nature and scope of processing
Personal data are used to create usage profiles and to deliver and display advertising campaigns within our Website.
Privacy Policy: https://www.emetriq.com/datenschutz/
Opt-Out: https://www.emetriq.com/opt-out/
Radio.de uses the following additional external service providers for marketing purposes. The legal basis for data collection is Art. 6(1) lit. a GDPR. Our legitimate interest lies in optimizing our offerings. Further information can be found in the following sections for each service provider.
Radio.de uses Google Ads, a service provided by Google, to highlight our Website through advertisements (“Google Ads”) on external websites. Radio.de can determine the success of each advertising campaign in relation to the data obtained. When you arrive at our Website via a Google ad, Google Ads places a cookie (“conversion cookie”) on your end device. These cookies expire after 30 days and are not used to personally identify you. If you visit certain pages of our Website or perform specific actions within the Website (such as starting a station) while the cookie is still valid, we and Google can recognize that you were redirected to our site via the ad and are using the Website. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Google Ads customers. The information collected using the conversion cookie is used to compile conversion statistics. Radio.de thus learns the total number of users who clicked on an ad and were redirected to a page tagged with a conversion tracking tag, as well as information about activities carried out on the Website. Radio.de has no influence over the scope of data collection. Further information about Google and how to prevent Google from setting cookies is available in Section 5.3 (“Google Analytics Services”).
Radio.de uses Maze, a service of MAZE.DESIGN INC., 800 Menlo Ave, Suite 220, Menlo Park, CA 94025, USA, to conduct surveys and user tests. You may be offered the voluntary option to participate in a survey or user test when using the Website. Maze’s privacy policy is available at: https://maze.co/privacy-policy/.
Radio.de uses Microsoft Advertising, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (“Microsoft Advertising” and “Microsoft”), to display advertising. When you arrive at our Website via a Microsoft Bing ad, Microsoft Advertising places a cookie (“conversion cookie”) on your end device. If you visit certain pages of our Website or perform specific actions within the Website (such as starting a station) while the cookie is still valid, we and Microsoft can recognize that you were redirected to our site via the ad and are using the Website. The information collected via the conversion cookie is used to compile conversion statistics. Radio.de thus learns the total number of users who clicked on an ad and were redirected to a page tagged with a conversion tracking tag, as well as information about activities carried out on the Website. Radio.de has no influence over the scope of data collection.
The information collected through the conversion cookie is transmitted to Microsoft servers in the USA and stored there for a maximum of 180 days.
The purpose and scope of data collection and the further processing of data by Microsoft, as well as your related rights and privacy settings, can be found in Microsoft’s privacy statement at https://privacy.microsoft.com/privacystatement. You can prevent the storage of cookies by adjusting your browser software accordingly. However, Radio.de advises that, in this case, you may not be able to fully use all content available on the Website. You can also prevent Microsoft from collecting and processing data generated by the cookie relating to your use of our Website by using the opt-out option at http://choice.microsoft.com/de-DE/opt-out.
Pursuant to the GDPR, and in accordance with the relevant provisions of Union law and national law, you have the following rights - subject to the conditions set out in the respective provisions - which you can exercise against radio.de (unless otherwise stated), for example, by sending an email to [email protected] or by contacting us using the details provided in Section 2. Radio.de will comply with your rights, provided the applicable requirements are met:
Pursuant to Art. 15 GDPR, you may obtain confirmation from radio.de as to whether personal data concerning you are being collected, processed, and stored by radio.de. Where this is the case, you may obtain, among other things, information about the purposes for which the personal data are collected and processed and about the intended duration of the storage of personal data concerning you, or, if specific information is not possible, about the criteria used to determine the storage period.
If the personal data collected and processed concerning you are inaccurate or incomplete, you have the right under Art. 16 GDPR to request that radio.de rectify and/or complete your personal data.
You may request the restriction of processing of personal data concerning you pursuant to Art. 18 GDPR.
You may request pursuant to Art. 17 GDPR that radio.de erase personal data concerning you without undue delay. radio.de may be obliged to erase such data without undue delay where the personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed, or where you have withdrawn your consent on which the collection, processing, and storage were based. The right to erasure does not apply, among other things, to the extent that processing is necessary to comply with a legal obligation requiring collection and processing under Union or Member State law to which Radio.de is subject, or where collection and processing are necessary for the establishment, exercise, or defense of legal claims.
Pursuant to Art. 20 GDPR, you have the right to receive the personal data concerning you that you have provided to us, as the controller, in a structured, commonly used, and machine-readable format. You also have the right to transmit those data to another controller without hindrance from us.
You have the right, pursuant to Art. 21 GDPR, to object to the processing of personal data concerning you. Under Art. 21(1) GDPR, you may object at any time, on grounds relating to your particular situation, to the processing of personal data based on Art. 6(1) lit. f GDPR.
If you have given us your consent to collect and process your personal data, you have the right to withdraw your consent at any time pursuant to Art. 7(3) GDPR. The lawfulness of processing based on consent before its withdrawal remains unaffected.
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement, if you consider that the collection and processing of personal data concerning you infringes the GDPR.
In the course of further developing our Services and implementing new technologies, Radio.de reserves the right to update this privacy policy at any time. We therefore ask that you regularly review the privacy policy available here.
Last updated: November 2025
Ireland