Oktoberfest Munich (Go to homepage)
Back to Home

Data Privacy Statement

The Department of Labour and Economic Development operates the official website for the Oktoberfest of the City of Munich under the domain www.oktoberfest.de

In the following, we would like to explain how we handle your personal data.

Blick über die Matthias-Pschorr-Straße zur Bavaria in der Abenddämmerung
München Tourismus, Werner Boehm

  • Name and contact details of the person responsible

City of Munich
Department of Labour and Economic Development
Events Department
80331 Munich
E-mail: veranstaltungen.raw@muenchen.de
Telephone: +49 89 233 96500

  • Contact details of the data protection officer

City of Munich
Data Protection Officer
Marienplatz 8
80331 Munich

  • Collection of personal data

The Department of Labour and Economic Development only collects, stores or processes data for its own business purposes.

In principle, the website is available to all users without any personal data being collected. 

  • Use of cookies and comparable technical processes

The Munich Oktoberfest website of the City of Munich uses so-called ‘cookies’ and similar technical processes in which an identifier is transmitted to your device (computer, smartphone, etc.).

This automatically provides us with certain data about your computer and your connection to the Internet, such as IP address, browser used and operating system. We also record your visit history, i.e. the pages of our website that you visit, including the order, date and time. During your visits, we sometimes use JavaScript to collect and analyse further data, including the time it takes to load a page, whether it is downloaded in full or not, the duration of the visit to a detailed page, data on interaction between pages (e.g. scrolling, clicking, mouse-overs) and on leaving the page.

With the help of these processes, we can analyse how our websites are used in order to optimise our offers overall and to personalise the content specifically for you, e.g. to recognise you as a repeat visitor to our website. In addition, these processes enable you as a user of personalised services not to have to register each time.

The legal basis is Article 6(1)(f) of the EU General Data Protection Regulation.

  • Server-Log-Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

  • IP address  
  • Browser type and browser version
  • Operating system used
  • referrer URL
  • Host name of the accessing computer
  • Time of the server enquiry

This data cannot be assigned to specific persons without further ado. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

The legal basis is Article 6(1)(f) of the EU General Data Protection Regulation.

List of all integrated services

  • Webcam Player / Live-Stream (Only temporarily active )

On the oktoberfest.de subpage, a live stream of the webcam installed at the Paulanerturm, Munich Bavaria location is made available in a player. Responsible for this is wetter.com GmbH, Reichenaustr. 19a, 78467 Konstanz (wetter.com). When you call up the aforementioned subpage or use the player, information about the use of the website, including your IP address, is transmitted to wetter.com. This is done to display the desired live cam view in the form of providing the start image and the live stream.

The data processing is carried out for the desired technical provision of the player and in the interest of a useful experience of our online offer for you and thus for the fulfilment of the contract (Art. 6 para. 1 lit. b GDPR) or on the basis of legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR.

The privacy policy of wetter.com can be found at https://www.wetter.com/datenschutz/adsb/ .

  • etracker

Service description

This is a web analytics tool.

Processing company

Etracker GmbH

erste Brunnenstraße 1, 20459 Hamburg, Germany

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company

privacy@etracker.com

Data processing purposes

This list shows the purposes of data collection and processing.

  • marketing
  • optimisation
  • analysis

Technologies used

This list contains all the technologies used by this service to collect data. Typical technologies are cookies and pixels that are placed in the browser.

  • cookies
  • Device fingerprint

Data collected

This list contains all (personal) data collected by or through the use of this service.

  • Browser language
  • Date and time of the visit
  • Device operating system
  • IP address
  • Referrer URL
  • Time zone
  • Access status
  • Browser information

Legal basis

The required legal basis for the processing of data is stated below.

Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary location where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

European Union

Retention period

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as it is no longer required for the specified processing purposes.

Data is deleted as soon as it is no longer required for the processing purposes.

Data recipients

The recipients of the collected data are listed below.

  • Etracker GmbH

Click here to read the data processor's privacy policy

https://www.etracker.com/datenschutz/

Click here to read the cookie policy of the data processor

https://www.etracker.com/datenschutz/

Click here to object on all domains of the processing company

https://www.etracker.com/datenschutz/

Stored information

  • Name: _et_coid; This is used for cookie recognition.; Typ: cookie; Dauer: 2 Jahre; Domain: .etracker.com;
  • Name: isSdEnabled; This is used to recognize if the scroll depth is measured for the visitor. ; Typ: cookie; Dauer: 1 Tag; Domain: etracker.com;
  • Name: BT_sdc; This is used to recognize if the scroll depth is measured for the visitor. ; Typ: cookie; Dauer: Session; Domain: etracker.com;
  • Name: BT_pdc; Dies wird verwendet, um zu erkennen, ob die Scrolltiefe für den Besucher gemessen wird.; Typ: cookie; Dauer: 1 Jahr; Domain: etracker.com;
  • Name: ; Typ: cookie; Dauer: Session;

  • Usercentrics Consent Management Platform

Service description

This is a consent management service. Usercentrics GmbH is used on the website as a processor for the purpose of consent management.
Processing company

Usercentrics GmbH

Sendlinger Str. 7, 80331 Munich, Germany
Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company

datenschutz@usercentrics.com

Data processing purposes

This list shows the purposes of data collection and processing.

  •     Compliance with legal obligations
  •     Consent storage

Technologies used

This list contains all the technologies used by this service to collect data. Typical technologies are cookies and pixels that are placed in the browser.

  •     Local Storage
  •     Pixel

Data collected

This list contains all (personal) data collected by or through the use of this service.

  •     Opt-in and opt-out data
  •     Referrer URL
  •     User agent
  •     User settings
  •     Consent ID
  •     Time of consent
  •     Consent type
  •     Template version
  •     Banner language
  •     IP address

Legal basis

The required legal basis for the processing of data is stated below.

    Art. 6 para. 1 sentence 1 lit. c GDPR

Place of processing

This is the primary location where the collected data is processed.If the data is also processed in other countries, you will be informed separately.

European Union

Retention period

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as it is no longer required for the specified processing purposes.
Consent data (consent given and withdrawal of consent) is stored for one year. The data will then be deleted immediately.
Data recipients
The recipients of the data collected are listed below.
Usercentrics GmbH

Click here to read the data processor's privacy policy

https://usercentrics.com/privacy-policy/

  • Facebook Social Plugins

Service description

This is a social plugin from Facebook that allows users to connect their website to the Facebook social network.

Processing company

Meta Platforms Ireland Ltd.

4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://www.facebook.com/help/contact/540977946302970

Data processing purposes

This list shows the purposes of data collection and processing.

  •     Integration of Facebook functions
  •     optimisation
  •     marketing

Technologies used

This list contains all the technologies used by this service to collect data. Typical technologies are cookies and pixels that are placed in the browser.

  •     Cookies

Data collected

This list contains all (personal) data collected by or through the use of this service.

  •     Browser information
  •     Date and time of the visit
  •     Facebook user ID
  •     Websites visited
  •     HTTP header
  •     Interaction data
  •     Browser type
  •     IP address

Legal basis

The required legal basis for the processing of data is stated below.

    Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary location where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

European Union

Retention period

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as it is no longer required for the specified processing purposes.

The data is deleted as soon as it is no longer required for the processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you having any legal recourse. Below you will find a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

  •     United States of America
  •     Singapore

Data recipients

The recipients of the data collected are listed below.

  •     Meta Platforms Ireland Ltd, Meta Platforms Inc.

Click here to read the data processor's privacy policy

https://www.facebook.com/privacy/explanation

Click here to read the cookie policy of the data processor

https://www.facebook.com/policies/cookies/

Click here to object on all domains of the processing company

https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen

  • Instagram Content

Service description

This is a plugin of the social media platform Instagram.

Processing company

Facebook Ireland Limited

4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland

Data protection officer of the processing company

Below you will find the email address of the data protection officer of the processing company

https://www.facebook.com/help/contact/540977946302970

Purposes of data processing

This list shows the purposes of data collection and processing.

  •     Retargeting
  •     Social media

Technologies used

This list contains all the technologies used by this service to collect data. Typical technologies are cookies and pixels that are placed in the browser.

  •     Cookies

Data collected

This list contains all (personal) data collected by or through the use of this service.

  •     Device information
  •     Interactions with the plug-in
  •     IP address
  •     Referrer URL

Legal basis

The required legal basis for the processing of data is stated below.

  •     Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.
European Union

Retention period

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as it is no longer required for the specified processing purposes.
Data is deleted as soon as it is no longer required for the processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection.If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you having any legal recourse.
Below you will find a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

  •     Worldwide

Data recipients

The recipients of the data collected are listed below.

  • Facebook Inc.
  • Facebook Ireland Limited

Click here to read the data processor's privacy policy

https://www.facebook.com/privacy/explanation

Click here to read the cookie policy of the data processor

https://www.facebook.com/policies/cookies/

Stored information

  •     Name: pigeon_state; This is used to unblock Instagram content; Type: cookie; Duration: Session;
  •     Art. 6 para. 1 sentence 1 lit. a GDPR
  •     Worldwide

Stored information

  • Name: PREF; This cookie stores your preferences and other information, in particular preferred language, how many search results should be displayed on your page and whether or not you wish to activate Google's SafeSearch filter; Type: cookie; Duration: 10 years;
  •     Name: VISITOR_INFO1_LIVE; This cookie measures your bandwidth to determine whether you get the new player interface or the old one; Type: cookie; Duration: 6 months;
  •     Name: use_hitbox ; This cookie increases the ‘views’ counter of the YouTube video; Type: cookie; Duration: Session;
  •     Name: YSC; This is set on pages with an embedded YouTube video; Type: cookie; Duration: Session;

  • YouTube Video

Service description

This is a video player service.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data processing purposes

This list shows the purposes of data collection and processing.

  •     Show videos

Technologies used

This list contains all the technologies used by this service to collect data. Typical technologies are cookies and pixels that are placed in the browser.

  • Cookies (if the ‘Privacy-Enhanced’ mode is not activated)

Data collected

This list contains all (personal) data collected by or through the use of this service.

  •     Device information
  •     IP address
  •     Referrer URL
  •     Viewed videos

Legal basis

The required legal basis for the processing of data is stated below.

  •  Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary location where the collected data is processed. If the data is also processed in other countries, you will be informed separately.
European Union

Retention period

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as it is no longer required for the specified processing purposes.
Data is deleted as soon as it is no longer required for the processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you having any legal recourse. Below you will find a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

  •     Worldwide

Data recipients

The recipients of the data collected are listed below

  •     Alphabet Inc.
  •     Google LLC
  •     Google Ireland Limited

Click here to read the data processor's privacy policy

https://policies.google.com/privacy?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to object on all domains of the processing company

https://safety.google/privacy/privacy-controls/

Memory information

  • Maximum limit for the storage of cookies: 10 years

Stored information

  •     Name: PREF; This cookie stores your preferences and other information, in particular preferred language, how many search results you want displayed on your page and whether or not you want to enable Google's SafeSearch filter; Type: cookie; Duration: 10 years;
  •     Name: VISITOR_INFO1_LIVE; This cookie measures your bandwidth to determine whether you receive the new player interface or the old one; Type: cookie; Duration: 6 months;
  •     Name: use_hitbox ; This cookie increases the ‘views’ counter of the YouTube video; Type: cookie; Duration: Session;
  •     Name: YSC; This is set on pages with an embedded YouTube video; Type: cookie; Duration: Session

Duration of data storage

We store your personal data for as long as is necessary to fulfil the purposes stated in each case or for the various storage periods stipulated by law. Once the respective purpose no longer applies or these periods have expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.

Your rights to information, rectification, blocking, erasure, objection and complaint

You have the right to obtain information about your personal data stored by the City of Munich at any time. You also have the right to have your personal data corrected, blocked or, apart from the prescribed data storage for business processing, deleted.

To ensure that data can be blocked at any time, this data must be stored in a lock file for control purposes. You can also request the deletion of the data. You can make changes or withdraw your consent by notifying us accordingly with effect for the future.

You also have the right to lodge a complaint with the competent supervisory authority.

Right to withdraw consent

If you have consented to the collection of data by the City of Munich by means of a corresponding declaration, you can revoke your consent at any time for the future.

Changes to our privacy policy

We reserve the right to amend this privacy policy from time to time so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.

Your rights to information, correction, blocking, deletion and objection remain unaffected by such a change.