Privacy Policy

We are very delighted that you have shown interest in our enterprise. Data protection is of a particularly high priority for the management of the Storyclash GmbH ("Storyclash", "we", "us"). In this privacy statement we explain how we obtain and use your personal data. We always handle your data with great responsibility and in accordance with EU data protection law and applicable national provisions.

As the Controller, we have implemented numerous technical and organizational measures to ensure the protection of personal data processed by us.

Where this Privacy Policy uses terms defined in the General Data Protection Regulation (GDPR), those terms have the same meaning as in the GDPR.

1.Information on the Controller

The controller for all processing of your personal data described below is:

Storyclash GmbH
Energiestraße 1
4020 Linz / Austria
office@storyclash.com
www.storyclash.com

2.Processing Activities

Storyclash undertakes to collect and process personal data in a fair and lawful manner, for the following precise and legitimate purposes and by respecting the rights of the Users and Influencers.

Storyclash uses the personal data of the Users and Influencers for:

• The normal use of our website. Connection data is automatically collected and stored in server logfiles to deliver the requested content and ensure the security and proper functioning of our systems. This processing is based on our legitimate interests. Logfiles are automatically deleted after 10 days unless a longer retention is required for security purposes.
• The constitution of the database of the Influencers (including the Influencers not registered on the Platform whose profile is public on social networks). Storyclash processes, in this case, the Personal Data of the Influencers based on its legitimate interest which consists of enriching its database with public information.
• The delivery of personalized newsletter. If you subscribe to our newsletter, Storyclash will process Personal Data to send you updates about our products and services, and to analyse newsletter performance. This processing is based on your consent, and you may withdraw your consent at any time via the unsubscribe link in each newsletter or by contacting us directly.
• The management of customer requests and contacts. When you contact us via our website or other channels with questions, suggestions, or complaints, we process your contact details and the content of your request to respond to your enquiry. This processing is based on our legitimate interest in maintaining customer relationships. Your data is retained for the duration necessary to handle your request, or up to 7 years where required by statutory retention obligations.
• The management of the application process. When you apply for a position through our website or other channels, we process Personal Data to conduct the application process and potentially establish an employment relationship. This processing is based on pre-contractual measures; or where special categories of data are processed, based on obligations in the field of employment and social security, or medicinal purposes. Your data is retained for 6 months after the conclusion of the application process, or longer if you consent to inclusion in our applicant pool.
• The management of web analytics and personalized advertising. We use third-party services to collect connection data about how visitors interact with our website, to analyse website performance, improve our services, and display content tailored to your preferences. This processing is based solely on your consent, and you may withdraw your consent at any time via cookie settings.

3.Personal Data Processed by Storyclash

Within the framework of the Platform, Storyclash collects the following Personal Data:

For Influencers:

• Identification data: name, first name, date of birth, nickname/alias, age, nationality, contact information, photographs, videos, sound and physical description if applicable;
• Professional life data: social networks and/or sites used for professional activities, publications posted on social networks, lifestyle habits for professional purposes;
• Data related to professional life*: CV, types of services, profession; if applicable, the VAT number, the identity of the company's legal representative and information on the mission carried out for customers;
• Economic and Financial Information: Remuneration and/or Influencer estimate for partnerships;
• Connection data*: navigation data (cookies), IP address, browser type and access times;
• If Influencers log into their Account from another social network's account (such as Instagram, TikTok or X), the social network may disclose to Storyclash the Influencer's profile information as well as any information the Influencer has authorized to be disclosed.

For Users:

• Identification data: first name, surname, residence, and, if applicable, photograph;
• Work-related data: professional e-mail address, employer (Client), title, professional phone number;
• Connection data: navigation data (cookies), and IP address;
• Any other information the User transmits on the Platform.

Storyclash collects Personal Data either directly from Users and/or Influencers (during exchanges, including telephone, or via the forms of the Site) or indirectly through third parties (Customer, websites, social networks, third party cookies, etc.).

The Personal Data identified by an asterisk are mandatory for the use of the Platform.

The Users and Influencers are required to provide Storyclash with their data in a sincere, accurate, and true manner and to update them as soon as necessary.

4.Legal Bases

According to the processing identified above, it is reminded that Storyclash's legal bases for processing Personal Data are systematically the following:

• Performance of the contract between us (general terms of use or general terms of subscription);
• Legal obligation;
• Legitimate interest;
• Consent (if applicable for cookies).

5.How Long Does Storyclash Keep the Personal Data?

Storyclash keeps the Personal Data of the Users and Influencers while they use the Platform.

Storyclash then keeps the Personal Data on a restricted-access basis for five (5) years, or, in case of litigation, for the duration of the litigation.

6.Obligation to Provide Personal Data

In general, you are under no legal or contractual obligation to provide us with personal data. However, certain processes cannot be carried out if no data is provided to us. This applies in particular to the performance of a contract to which you are party or in order to take steps at your request prior to entering into a contract, to answering your requests and other processes.

7.What Are the Transfers of Personal Data Made by Storyclash?

Within the framework of the management of the platform, Storyclash can transmit the Personal Data of the Users and Influencers to several recipients, in particular to its service providers and partners. The recipients of the Personal Data of the Users and Influencers are the following:

• Users may receive Personal Data from Influencers, while Influencers may receive Personal Data from Users when the latter wishes to contact them;
• IPAX GmbH for the management of webservers, logfiles, and providing the servers where data is stored, located in Vienna. This provider implements data processing aligned with Storyclash data protection standards and according to their own privacy policy, accessible here: Allgemeine Geschäftsbedingungen - IPAX;
• Hubspot for the provision of personalized newsletters and management of customer requests and contacts via the website. Chili Piper and Intercom are also recipients of Personal Data for supporting the management of customer requests and contacts, which implements data processing according to their own privacy policy, accessible here: HubSpot Privacy Policy, Privacy Policy | Chili Piper, Privacy Policy | Intercom;
• Meta Platforms, Google and LinkedIn for the provision of web analytics and personalized advertising.
  • Google is also a recipient of Personal Data when syncing the Gmail account to Storyclash. In this case, Storyclash's use and transfer to any other application of information received from Google APIs will comply with the Google API Services User Data Policy, including the limited use requirements.
• ChargeBee and Stripe for the management of payment accounts, enabling the Influencer to receive payment for missions carried out on the Platform. Such services implement data processing according to their privacy policy accessible via the following links: Privacy Policy - Chargebee Inc and https://stripe.com/privacy.

If Storyclash is the object of a merger-acquisition or merger-absorption by a third company, the Personal Data will be transmitted to it. In this case, Storyclash will inform the Users and the Influencers.

Storyclash has ensured the compliance with the GDPR of the processing carried out by its subcontractors. Storyclash has put in place the necessary measures with regard to the sensitivity of the data processed to ensure their security and avoid, in particular, its disclosure to unauthorized third parties.

If applicable within the framework of tools we use, your data may be transferred outside the European Union. The transfer of your data in this context is secured using the following tools:

• Either the data is transferred to a country that has been the subject of an adequacy decision by the European Commission, in accordance with Article 45 of the GDPR: in this case, this country ensures a level of protection deemed sufficient and adequate to the provisions of the GDPR;
• Or the data is transferred to a country whose level of data protection has not been recognized as adequate to the GDPR: in this case such transfers are based on appropriate safeguards indicated in Article 46 of the GDPR, tailored to each provider, including but not limited to the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules or under an approved certification mechanism;
• Or the data is transferred on the basis of one of the appropriate guarantees described in Chapter V of the GDPR.

To administer the customer relationship, Storyclash may share your Personal Data with the team.blue Group, led by team.blue N.V. Storyclash is part of the team.blue Group and has a joint controllership with team.blue N.V. The team.blue Group consisting of several brands and subsidiaries, can improve coordination and resource allocation by sharing data internally. This allows for more efficient collaboration on product, campaign, and customer service improvements. Customer data such as contact, user, billing, and purchase information may be shared with team.blue N.V for marketing statistics, internal administration, and reporting purposes, but only to the extent necessary for the intended use and with proper protective measures in place to prevent unauthorized access or disclosure.

Moreover, we are subject to numerous legal regulations. In certain cases, we may be legally obliged to disclose Personal Data of our customers to courts or other authorities upon their request. In any case, we will make sure that the protection of your data is maintained.

8.Data Security

Storyclash implements the appropriate administrative, physical, technical, and organizational measures to protect the Personal Data in order to guarantee their confidentiality and a level of security appropriate to the risks of accidental, unauthorized, or illegal access, disclosure, alteration, loss, or destruction of Personal Data.

In the event that Storyclash becomes aware of an illegal access or a violation of the Personal Data stored on our servers or those of our providers, or of an unauthorized access resulting in the realization of high risks for the rights and fundamental freedoms of the Users and Influencers, Storyclash will take the necessary measures to limit the damage that may result, will notify the Austrian Data Protection Authority (Österreichische Datenschutzbehörde), and will inform the Users and Influencers.

9.Your Rights

Users can exercise their rights by writing to dpa@storyclash.com.

Finally, Users and Influencers have the right to file a complaint with the Austrian Data Protection Authority Österreichische Datenschutzbehörde (DSB) (https://www.dsb.gv.at).

10.Cookies

A cookie is a file that can be saved on the hard disk of your terminal when the User consults the Site. These small files may contain, for example, the language of the browser and the User's preferences.

Storyclash may place cookies on the terminals of Users to enable them to navigate in optimal conditions on the Site and restore their preferences when they are connected via their usual terminal as well as to create statistics.

For more information on the cookies we use, visit our Cookie Policy.

11.Modifications

We may modify this policy at any time, in particular in order to comply with any regulatory, legal, editorial or technical developments. These modifications will apply as of the effective date of the modified version. You are therefore invited to consult the latest version of this policy on a regular basis. Nevertheless, we will keep you informed of any significant changes to this privacy policy.