CHOCOVERSUM
Monday – Sunday 10am – 6pm — Buy tickets NOW and secure a time-slot with no waiting time!
Monday – Sunday 10am – 6pm — Buy tickets NOW and secure a time-slot with no waiting time!
Monday – Sunday 10am – 6pm — Buy tickets NOW and secure a time-slot with no waiting time!
Monday – Sunday 10am – 6pm — Buy tickets NOW and secure a time-slot with no waiting time!
The use of our website is possible without providing personal data. Where personal data (for example name, address or E-Mail addresses) on our sides is concerned, this always takes place, when possible, on a voluntary basis. This data will not be disclosed to third parties without your consent. Please note that data transmission over the Internet (e.g. communication via e-mail) may have security issues.
(1) In the following we inform about the collection of personal data when using our website. Personal data is all data that are personally identifiable to you, e.g. name, address, e-mail addresses and user behaviour.
(2) The person responsible pursuant to Article 4 (7) of the EU General Data Protection Regulation (GDPR) is
Chocoversum GmbH Meßberg 1, 20095 Hamburg Tel.: (040) 41 91 23 00 Fax: (040) 41 91 23 0 – 20 E-Mail: info@CHOCOVERSUM.de
(see our imprint).
You can contact our data protection officer at:
Rechtsanwalt Bertold Frick Datenschutz-Metropol GmbH Baumwollbörse, Wachtstraße 17/24, 28195 Bremen Tel.: (0421) 339 53 50 Fax: (0421) 339 53 55 E-Mail: frick@trinity-metropol.de
(3) When you contact us by e-mail, the information you provide (your e-mail address, if applicable your name and telephone number) will be stored by us to answer your questions. We delete the data that arise in this context after the storage is no longer required, or limit the processing if statutory storage obligations exist.
(4) If we rely on commissioned service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective transactions below. In doing so, we also specify the specified criteria for the storage duration.
(1) You have the following rights with respect to your personal data:
To assert your rights, please contact: frick@trinity-metropol.de
(2) If you wish to complain to the data protection supervisory authority for our company’s registered office about our processing of your, please contact:
Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit Klosterwall 6 (Block C), 20095 Hamburg Tel.: (040) 4 28 54 – 40 40 E-Fax: (040) 4 279 – 11811 E-Mail: mailbox@datenschutz.hamburg.de
(1) When only using the website for information purpose, i.e. if you do not register or otherwise provide us with information, we will only collect the personal data that your
browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website and to ensure stability and security (legal basis is Art. 6 (1) sentence 1 (f) GDPR):
We employ technical and organisational measures to secure our website and other systems against the loss, destruction, access, alteration or dissemination of your personal data by unauthorised persons. However, notwithstanding regular controls, complete protection against all risks is not possible. In some places, the website employs the industry standard SSL (Secure Sockets Layer) for encryption, which guarantees the privacy of your personal details.
(1) This website uses social plugins from social networks. Separate data protection and liability rules apply to social networks and the websites of third parties in general. The saving and use of personal data by the relevant website operators (service providers) upon the use of their services may exceed the extent provided for under this data protection policy. CHOCOVERSUM cannot influence what data an activated plugin collects and how the provider uses this data. CHOCOVERSUM does not collect any personal information itself by means of or through the use of social plugins.
(2) To increase the protection of your data, the plugins are not embedded in the website without restriction, but only when using an HTML link (so-called “Shariff solution” by c’t). Such embedding guarantees that no connection is made with the social network provider’s servers upon visiting a site containing such plugins. If you click on one of the buttons, a new window opens in your browser and calls up the relevant service provider’s website, where (after entering any applicable login information) you are able to activate, for example, the “like” or “share” buttons. Please refer to the relevant provider’s data protection policy for information about the purpose and extent of data collection and the provider’s further processing and use of the data, as well as your rights in this regard and the settings you can choose to protect your privacy.
Facebook Operator: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA Website: www.facebook.com Data protection: http://www.facebook.com/policy.php
The rights of data subjects can be enforced with Facebook Ireland, as well as Chocoversum GmbH.
According to the General Data Protection Regulation (GDPR), Facebook is primarily responsible for processing insight data and fulfils all obligations relating to the processing of insight data under the GDPR.
The substance of the page insights controller addendum is made available to data subjects by Facebook Ireland.
As operator, we do not make any decisions relating to the processing of insight data or any other data resulting from Art. 13 GDPR, including legal basis, identity of the controller and the duration for which cookies are saved on users’ terminals.
Instagram Operator: Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA Website: https://www.instagram.com Data protection: https://help.instagram.com/155833707900388
Tripadvisor Operator: TripAdvisor LLC, 400 1st Avenue, Needham, MA 02494 USA Website: https://www.tripadvisor.de Data protection: https://tripadvisor.mediaroom.com/DE-privacy-policy
(1) Our webpages employ so-called “cookies”. Cookies are small text files that are saved on browser’s cache for the duration of your session (so-called “session cookies”) or on your hard drive for a particular time (so-called “permanent cookies”). Cookies enable recognition of the internet browser, so that when you next visit our website, you can be provided more quickly with targeted content which is tailored to your wishes and requirements. We therefore use cookies that are technically necessary to our legitimate interest in providing a website tailored to our visitors’ wishes. The cookies do not save any personal data.
(2) If, in addition to cookies that are technically necessary, we also wish to use marketing, tracking or analysis cookies, your express prior consent is required. This is requested on the cookie banner that appears on our website when you begin to use it. This cookie banner provides information about our cookie policy and gives you the opportunity to choose whether to refuse or grant consent to all or particular types of cookies.
(3) If you grant consent, the legal basis for processing personal data is Art. 6 (1) (a) GDPR. You can change your cookie settings or revoke your consent using the blue button at the bottom right of your browser window.
(1) This website uses Google Universal Analytics, a web analysis service of Google Inc. (referred to below as “Google”). Google Universal Analytics also uses cookies.
Your express consent is required for the use of Google Universal Analytics. You have the opportunity to refuse or grant consent to this and to obtain information about our company’s data protection policy through the cookie banner when you begin to use our website.
(2) If you grant consent, the legal basis for processing personal data is Art. 6 (1) (a) GDPR.
You can withdraw your given consent at any time without giving reasons. You can do this by, for example, sending an email to: info@chocoversum.de. In our Legal notice, you will find further contact details to which you can address the withdrawal.
(3) The information about your use of the website created by the cookie is normally transmitted to a Google server in the USA and saved there. IP anonymisation is instituted on our website, so that your IP address is first abbreviated by Google within the member states of the European Union or other contracting states of the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. Google has agreed to comply with the Privacy Shield Agreement concerning the collection, use and saving of personal data from EU member states that was made between the EU and the USA and published by the US Department of Trade, and holds a corresponding Privacy Shield Certificate.
In a decision dated 16/07/2020, the European Court of Justice declared that the Privacy Shield data protection agreement between the USA and the EU is invalid.
(1) Our website uses the “Custom Audiences” remarketing function of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). This enables us to present our website’s visitors with interest-related advertisements during visits to the Facebook social network (“Facebook ads”). On visiting our website, the Facebook remarketing tag (cookie) implemented on the site creates a direct connection to Facebook’s servers and the Facebook server is informed that you have visited this website. Facebook lists this information on your personal Facebook user account. More detailed information about the collection and use of the information by Facebook, as well as your rights in this regard and the possible ways to protect your privacy can be found in Facebook’s data protection policy at https://www.facebook.com/about/privacy/.
(2) Your express consent is required in order to employ tracking and marketing cookies. You have the opportunity to refuse or grant consent to these cookies and to obtain information about our company’s data protection policy via the cookie banner when you begin to use our website.
(3) If you grant consent, the legal basis for processing personal data is Art. 6 (1) (a) GDPR.
You can withdraw your given consent at any time without giving reasons. You can do this by, for example, sending an email to: info@chocoversum.de. In our Legal notice, you will find further contact details to which you can address the withdrawal.
You can also object to the use of cookies at any time and deactivate the “Custom Audiences” remarketing function. In addition, you can adjust your settings on Facebook itself via the following link: https://www.facebook.com/settings/?tab=ads#_=_. You must be registered with Facebook in order to do this.
(1) We use the so-called “Facebook Pixel” from Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, within our website for the purposes of analysis, optimisation and for our commercial operations. This enables a user’s behaviour to be tracked after the user has clicked on a Facebook advertisement and been transferred to the supplier’s website. This process serves the evaluation of Facebook advertisements for market research and statistical purposes and can contribute to the optimisation of future marketing measures. The collected data is anonymous to us and therefore does not enable us to identify the user. However, the data is saved and processed by Facebook, so that a link to the relevant user profile is possible and Facebook can use the data for its own advertising purposes in accordance
with Facebook’s privacy policy (https://www.facebook.com/about/privacy/). This only affects users who have a Facebook account and are logged in to Facebook’s member area. Users who are not members of Facebook are not affected by this data processing.
(2) Your express consent is required in order to employ tracking and marketing cookies. You have the opportunity to refuse or grant consent to this and to obtain information about our company’s data protection policy via the cookie banner when you begin to use our website.
If you grant consent, the legal basis for processing personal data is Art. 6 (1) (a) GDPR.
You can withdraw your given consent at any time without giving reasons. You can do this by, for example, sending an email to: info@chocoversum.de. In our Legal notice, you will find further contact details to which you can address the withdrawal.
You can also object to the use of cookies and deactivate their function at any time. In addition, you can adjust your settings on Facebook itself via the following link: https://www.facebook.com/settings/?tab=ads#_=_. You must be registered with Facebook in order to do this.
(1) On our website you have the opportunity to subscribe to our newsletter. For this, we need your name as well as your e-mail address to send you the newsletter.
(2) The legal basis for this is the consent (Article 6 (1) sentence 1 (a) GDPR). When registering for the newsletter, you agree to us sending a newsletter to your e-mail address. By registering, you agree to the following consent text:
“I hereby agree that [name] may send me e-mails to the e-mail address specified by me. I have the right at any time to revoke this consent with effect for the future. I have read the privacy policy with further information on data processing. “
(3) You can revoke this consent at any time in the future by unsubscribing from the newsletter. At the end of each Newsmail, you will find a link through which you can unsubscribe from the newsletter. Your entry will be deleted automatically.
(4) Registration for our newsletter takes place in a so-called double opt-in procedure. In other words, you will receive an e-mail after logging in, requesting confirmation of your registration. As proof of the registration for the newsletter, the registration and confirmation times as well as the IP address are stored.
(5) The statistical survey, analysis and logging of the registration procedure is based on legitimate interests (Article 6 (1) sentence 1 (f) GDPR). The legitimate interest here is the proper and technically flawless execution of the e-mail dispatch.
(6) We only save the e-mail address you have provided when ordering the newsletter for as long as you have subscribed to the newsletter. As soon as you have unsubscribed from the newsletter, we will delete your e-mail address.
(7) The Newsletter Software uses Rapidmail (https://www.rapidmail.de). Your data will be transmitted to Rapidmail GmbH. Rapidmail is prohibited from selling and using your data for any purpose other than sending newsletters. Rapidmail is a German, certified provider that has been selected according to the requirements of the General Data Protection Regulation and the Federal Data Protection Act.
(8) In addition, we will not forward the e-mail address you provided us with to third parties.
(1) When you register for a “list of events”, the information given here will be collected, stored, processed and used. The legal basis for this is the consent (Art. 6 (1) sentence 1 (a) GDPR). When you register on the waiting list, you consent to us sending an e-mail with information about your waiting list topic to your e-mail address.
(2) As soon as the next information about your waiting list topic is available, you will receive an e-mail to the address you have specified. Your data will then be deleted.
(3) You can revoke your consent to the storage of the data, the e-mail address and its use for sending the waiting list notification at any time by e-mail to info@chocoversum.de.
On our website, we offer you the opportunity to register school classes or companies via an online form and to request a corresponding offer. When using these forms, please provide the name, e-mail and telephone number or, in the case of school classes, the telephone number of a chaperone (the processing of this data is based on Article 6 (1) (f) of the GDPR and serves our legitimate interests to provide you with further way to make specific contact and get a contact before an offer is submitted. The storage of this data is only to the extent necessary for the preparation of the offer and execution of the booked event.
The website of CHOCOVERSUM has integrated the Google Maps service to visualise and display the contact address. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. During use, Google collects and processes data about the use of the map function by the user. For more information about data processing, see the Google Privacy Policy (https://policies.google.com/privacy?hl=en)
We use the social network YouTube, provider Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland to integrate and link videos.
YouTube video integration
We embed our videos in the so-called “extended data protection mode” to give you a privacy-friendly view. Like most online presences, however, YouTube also uses cookies to collect information about the visitors to your online presence. YouTube uses these, among other things, to collect video statistics, to prevent fraud and to improve user-friendliness. This also leads to a connection being established with the Google DoubleClick network. If you play videos on our website, this could trigger further data processing operations. Unfortunately, we have no influence on this.
If you do not want YouTube to be able to assign your visit to our online presence while playing a video to your YouTube user account, please log out of your YouTube user account before clicking the play button.
YouTube linking
Links to the YouTube social network are integrated into our online presence. You can recognize the YouTube links by the YouTube logo on our online presence. If you click on one of the YouTube “buttons” while you are logged into your YouTube account with the same browser, YouTube can assign your visit to our online presence to your user account. We would like to point out that, as the provider of the online presence, we have no knowledge of the content of the transmitted data or their use by YouTube.
If you do not want YouTube to be able to assign your visit to our online presence to your YouTube user account after clicking on one of the YouTube “buttons”, please log out of your YouTube user account before clicking the YouTube “button” .
For more information on how your personal data is handled when you visit the YouTube website and play YouTube videos, see the YouTube privacy policy.
We process personal data to greet individual guests if there are special occasions or if this is requested by guests. The name and information relating to the occasion (such as the guest’s birthday and age) are displayed on a screen in the museum foyer.
Processing takes place on the basis of Art. 6 Para. 1 lit.f GDPR to safeguard our legitimate interests and the interests of the person concerned. The person in charge would like to offer her guests a special experience and make their stay a pleasant one. This also includes a personal address in order to highlight the special features of the visit and to give the respective guest a special welcome. This guarantees our interest in providing service-oriented, customer-oriented services.
As a rule, only the employees of the responsible persons and the guests of the respective group have the possibility to see the advertisement in the foyer. Viewing by unauthorized third parties is fundamentally excluded. The personal data for welcoming the guest will be deleted after the event has taken place, unless there are statutory.
For service inquiries, we offer you the opportunity to obtain information on our website using a chat bot, to have self-care solutions communicated, and to establish contact with our messenger service.
Our technical service provider for the chat bot service is knowhere GmbH, Steinhöft 9, 20459 Hamburg. Information on data protection can be found at https://www.moin.ai/chatbots-dsgvo
No further information is required from you to use the chat bot. To optimize the artificial intelligence of the chat bot, log files and chat histories are stored for 30 days.
In particular, we would like to point out that you do not have to provide any personal data. Further information can be found in our terms of use for the messenger or the chat bot.
Contract-related service requests are an exception. If you would like to use this service, you can provide our customer service with an email address
The data processing takes place on the basis of our legitimate interests in accordance with Art. 6 Para. 1 S. 1 Letter f) GDPR
(1) Purpose: Your data will be used exclusively for the purpose of tracking SARS-CoV-2 infection chains. The use of your data for our own purposes or services, especially advertising, is excluded.
(2) Legal basis: The legal basis for processing your data is Art. 6 Paragraph 1 lit. c General Data Protection Regulation (GDPR) in conjunction with Section 26 Paragraph 2 No. 2 of the HmbSARS-CoV-2 containment regulation.
(3) We use the digital solution from https://darfichrein.de for data acquisition.
(4) Transmission to third parties: Your data will be presented to the competent authority (health authority) upon request.
Retention periods / deletion periods: Your data will be deleted after the retention period of 4 weeks has expired.
You are entitled to all data subject rights according to Art. 15 ff. GDPR, in particular information, deletion and restriction of processing.
The use of contact data published in the context of the imprint obligation by third parties for sending unsolicited advertising and information materials is hereby expressly prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
As of January 2022