Information on data protection
This data protection notice informs you about how we handle your personal data and about your rights under the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). AWA AUSSENWIRTSCHAFTS-AKADEMIE GmbH (hereinafter referred to as “we” or “us”) is responsible for data processing.
Contents
I. General information
II Data processing on our website
III. data processing on our social media pages
IV. Data processing in connection with the seminars
V. Further information for data subjects in Switzerland
VI. further data processing
I. General information
1. Contact
If you have any questions or suggestions regarding this information or would like to contact us to assert your rights, please send your request to
AWA AUSSENWIRTSCHAFTS-AKADEMIE GmbH
Königsstr. 46
48143 Münster
Phone +49 251 83 275 60
E-mail info@awa-seminare.de
2. Legal basis
The data protection term “personal data” refers to all information relating to an identified or identifiable person. We process personal data in compliance with the relevant data protection regulations, in particular the GDPR and the BDSG. Data processing by us only takes place on the basis of legal permission. We only process personal data with your consent (Section 25 (1) TDDDG or Art. 6 (1) (a) GDPR), to fulfill a contract to which you are a party or at your request to carry out pre-contractual measures (Art. 6 (1) (b) GDPR), to fulfill a legal obligation (Art. 6(1)(c) GDPR) or if processing is necessary for the purposes of our legitimate interests or the legitimate interests of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of personal data (Art. 6(1)(f) GDPR).
3. Duration of storage
Unless otherwise stated in the following information, we only store the data for as long as is necessary to achieve the purpose of processing or to fulfill our contractual or legal obligations. Such statutory retention obligations may arise in particular from commercial or tax law regulations. From the end of the calendar year in which the data was collected, we will retain such personal data contained in our accounting data for ten years and retain personal data contained in commercial letters and contracts for six years. In addition, we will retain data in connection with consents requiring proof and with complaints and claims for the duration of the statutory limitation periods. We will delete data stored for advertising purposes if you object to processing for this purpose.
4. Categories of recipients of the data
We use processors in the context of processing your data. The processing operations carried out by such processors include, for example, hosting, e-mail dispatch, maintenance and support of IT systems, customer and order management, order processing, accounting and billing, marketing measures or file and data carrier destruction. A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. Processors do not use the data for their own purposes, but carry out the data processing exclusively for the controller and are contractually obliged to guarantee suitable technical and organizational measures for data protection. We may also transfer your personal data to bodies such as postal and delivery services, your bank, tax consultants/auditors or the tax authorities. Further recipients may result from the following information.
5. Data transfer to third countries
Our data processing may involve the transfer of certain personal data to third countries, i.e. countries in which the GDPR is not applicable law. Such a transfer is permitted if the European Commission has determined that an adequate level of data protection is required in such a third country. If there is no such adequacy decision by the European Commission, personal data will only be transferred to a third country if there are suitable guarantees in accordance with Art. 46 GDPR or if one of the requirements of Art. 49 GDPR is met.
If there is no adequacy decision and nothing else is specified below, we use the EU standard data protection clauses as suitable guarantees for the transfer of personal data to third countries. You have the option of obtaining or viewing a copy of these EU standard data protection clauses. Please contact us at the address given under Contact.
If you consent to the transfer of personal data to third countries, the transfer takes place on the legal basis of Art. 49 para. 1 letter a GDPR.
6. Processing when exercising your rights
If you exercise your rights in accordance with Art. 15 to 22 GDPR, we process the personal data transmitted for the purpose of implementing these rights by us and to be able to provide proof of this. We will only process data stored for the purpose of providing information and its preparation for this purpose and for the purposes of data protection monitoring and otherwise restrict processing in accordance with Art. 18 GDPR.
This processing is based on the legal basis of Art. 6 para. 1 lit. c GDPR in conjunction with. Art. 15 to 22 GDPR and § 34 para. 2 BDSG.
7. Your rights
As a data subject, you have the right to assert your data subject rights against us. In particular, you have the following rights:
In accordance with Art. 15 GDPR and Section 34 BDSG, you have the right to request information as to whether or not we process personal data relating to you and, if so, to what extent.
You have the right to request that we rectify your data in accordance with Art. 16 GDPR.
You have the right to demand that we erase your personal data in accordance with Art. 17 GDPR and Section 35 BDSG.
You have the right to have the processing of your personal data restricted in accordance with Art. 18 GDPR.
In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to transmit those data to another controller.
If you have given us separate consent to data processing, you can revoke this consent at any time in accordance with Art. 7 para. 3 GDPR. Such a revocation does not affect the legality of the processing that was carried out on the basis of the consent until the revocation.
If you believe that the processing of your personal data violates the provisions of the GDPR, you have the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR.
8. Right to object
In accordance with Art. 21 (1) GDPR, you have the right to object to processing based on the legal basis of Art. 6 (1) (e) or (f) GDPR on grounds relating to your particular situation. If we process personal data about you for the purpose of direct marketing, you can object to this processing in accordance with Art. 21 (2) and (3) GDPR.
9. Data protection officer
E-mail: dsb_awa-seminare@datenschutzkanzlei.de
Herting Oberbeck Datenschutz GmbH
Hallerstr. 76, 20146 Hamburg
https://www.datenschutzkanzlei.de
II Data processing on our website
When you use the website, we collect information that you provide yourself. In addition, certain information about your use of the website is automatically collected by us during your visit to the website. Under data protection law, the IP address is also considered personal data. An IP address is assigned to every device connected to the Internet by the Internet provider so that it can send and receive data.
1. Processing of server log files
When using our website for purely informational purposes, general information that your browser transmits to our server is initially stored automatically (i.e. not via registration). By default, this includes: browser type/version, operating system used, page accessed, the previously visited page (referrer URL), IP address, date and time of the server request and HTTP status code.
The processing is carried out to protect our legitimate interests and is based on the legal basis of Art. 6 para. 1 letter f GDPR. This processing serves the technical administration and security of the website. The stored data will be deleted after seven days unless there is a justified suspicion of unlawful use based on concrete evidence and further examination and processing of the information is necessary for this reason. We are not in a position to identify you as a data subject on the basis of the stored information. Art. 15 to 22 GDPR therefore do not apply in accordance with Art. 11 para. 2 GDPR, unless you provide additional information that enables your identification in order to exercise your rights set out in these articles.
2. Contact options and inquiries
Our website contains contact forms that you can use to send us messages. The transfer of your data is encrypted (recognizable by the “https” in the address line of the browser). All data fields marked as mandatory are required to process your request. If you do not provide this data, we will not be able to process your request. The provision of further data is voluntary. Alternatively, you can also send us a message via the contact e-mail. We process the data for the purpose of answering your request.
If your request is aimed at the conclusion or execution of a contract with us, Art. 6 para. 1 letter b GDPR is the legal basis for data processing. Otherwise, we process the data on the basis of our legitimate interest in contacting inquiring persons. The legal basis for data processing is then Art. 6 para. 1 letter f GDPR.
3. Booking of seminars
You have the option of booking our seminars either on our website or by telephone for yourself or for third parties by providing personal data. When booking on our website, all data fields marked as mandatory are required to process your booking. Failure to provide this data means that we will not be able to process your booking. We process the data for the purpose of providing our seminar services.
The legal basis for the processing is Art. 6 para. 1 letter b GDPR if you make the booking in your own name, or our legitimate interest pursuant to Art. 6 para. 1 letter f GDPR if the booking is made for a third party or on behalf of a company. The processing then serves our legitimate interest in the fulfillment of the contract with the third party or the company.
The provision of further data is voluntary. We process such voluntarily provided data on the basis of Art. 6 para. 1 letter f GDPR.
4. AWA customer account
You have the option of creating an AWA customer account on our website by registering. If you have registered for a customer account, your stored data will be automatically entered in the order form when you book a seminar and other AWA offers. It is not necessary to register for a customer account to book a seminar or other AWA offers on our website.
The information required for registration can be seen in the input mask. It is mandatory to provide the information marked as mandatory in order to complete the registration process. A password is required for registration. The processing of the data provided as part of the registration and use of the customer account is based on the legal basis of Art. 6 para. 1 letter b GDPR.
5. Request for information material
You can request information material on various topics on our website. In order to send you the material, we require personal data such as your name and e-mail address. All data fields marked as mandatory are required to process your request. If you do not provide this data, we will not be able to process your request. The provision of further data is voluntary.
If your request is aimed at the conclusion or execution of a contract with us, Art. 6 para. 1 letter b GDPR is the legal basis for data processing. Otherwise, we process the data on the basis of our legitimate interest in informing inquiring persons about the requested topics. The legal basis for data processing is then Art. 6 para. 1 letter f GDPR.
6. Newsletter
On our website, we offer you the opportunity to subscribe to our newsletter. After registration, we will inform you regularly about the latest news on our offers. A valid e-mail address is required to register for the newsletter. To verify your e-mail address, you will first receive a registration e-mail, which you must confirm via a link (double opt-in). If you subscribe to the newsletter on our website, we process personal data such as your e-mail address and your name on the basis of the consent you have given. The processing is based on the legal basis of Art. 6 para. 1 letter a GDPR. You can revoke your consent at any time with effect for the future, for example via the “unsubscribe” link in the newsletter or by contacting us via the above-mentioned channels. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
When registering for the newsletter, we also store the IP address and the date and time of registration. The processing of this data is necessary in order to be able to prove that consent has been given. The legal basis arises from our legal obligation to document your consent (Art. 6 para. 1 letter c in conjunction with Art. 7 para. 1 GDPR).
We also analyze the reading behavior and opening rates of our newsletter. For example, we evaluate the data generated when our emails are delivered and retrieved in aggregated and anonymized form (delivery rate, opening rate, click rates, unsubscribe rate, bounce rate, visits, completions) in order to measure the use and success of the emails.
On the other hand, we also evaluate the data generated when you access and use these e-mails (time of opening, hyperlinks clicked on, documents downloaded) in order to provide you with personalized information on this basis in the future, which takes your interests and needs into account in the best possible way. We use the anonymous and personal data collected to provide you with personalized content and individualized information in our advertising emails. For this purpose, we include tracking pixels and links in the newsletter email that are stored on your device and record this device data under a randomly generated ID number on our servers. Such technically unnecessary storage and access of the information on your device as well as the described data processing will only be carried out with your express consent (§ 25 para. 1 TTDSG and Art. 6 para. 1 letter a GDPR). You can revoke your consent at any time with effect for the future, for example via the unsubscribe link in the newsletter or by contacting us via the above-mentioned channels.
7. Satisfaction surveys
We use your e-mail address and any other information you have given us about yourself for the purpose of conducting a satisfaction survey. The data you provide will be collected by a service provider and analyzed and evaluated by us. We will send you a separate request for this in a confirmation e-mail. The evaluations will be made unrecognizable for us by the service provider and deleted at the time the order is completed.
Your data is processed on the basis of Art. 6 para. 1 letter f GDPR in conjunction with § Section 7 (3) UWG and is based on our legitimate interest in obtaining feedback on our offer and improving our offer on this basis. You can object to this processing at any time using the contact options given above without incurring any costs other than the transmission costs according to the basic rates.
We use the service LimeSurvey GmbH (Germany) to create and conduct satisfaction surveys. Further information on data protection at LimeSurvey can be found in the data protection information at https://www.limesurvey.org/privacy-notice.
8. Job exchange
On our website you have the opportunity to submit a job offer or a job search for your company. To process your submission, we need the contact details of your company's contact person. The processing of personal data is based on our legitimate interest in getting in touch with your company's contact persons to process the submission. The legal basis for data processing is then Art. 6 para. 1 letter f GDPR.
9. Cookies
We use cookies and similar technologies (“cookies”) on our website. Cookies are small data records that are stored by your browser when you visit a website. This identifies the browser used and can be recognized by web servers. You have full control over the use of cookies through your browser. You can delete cookies at any time in the security settings of your browser. You can object to the use of cookies through your browser settings in principle or for certain cases.
The use of cookies is in part technically necessary for the operation of our website and is therefore permitted without the user's consent. We may also use cookies to offer special functions and content and for analysis and marketing purposes. These may also include cookies from third-party providers (so-called third-party cookies). We only use such technically unnecessary cookies with your consent in accordance with Section 25 (1) TDDDG and, if applicable, Art. 6 (1) (a) GDPR. Information on the purposes, providers, technologies used, stored data and the storage duration of individual cookies can be found in the cookie settings of our Consent Management Tool.
You can adjust your personal cookie settings at any time using the fingerprint icon at the bottom left of the screen on the AWA home page. Simply click on the icon to open the Privacy Preference Center and change your preferences.
10. Consent management tool
This website uses a consent management tool from the provider Usercentrics GmbH (Germany) to control cookies and the processing of personal data.
The consent banner enables the users of our website to give their consent to certain data processing procedures or to revoke their consent. By confirming the “Accept all” button or by saving individual cookie settings, you consent to the use of the associated cookies.
The legal basis under data protection law is your consent within the meaning of Art. 6 para. 1 letter a GDPR.
The banner also helps us to be able to provide evidence of the declaration of consent. For this purpose, we process information about the declaration of consent and other log data relating to this declaration. Cookies are also used to collect this data. The processing of this data is necessary in order to be able to prove that consent has been given. The legal basis arises from our legal obligation to document your consent (Art. 6 para. 1 letter c in conjunction with Art. 7 para. 1 GDPR).
You can revoke your consent for cookies here: Go to the AWA home page and click the fingerprint icon at the bottom left of the screen. The Privacy Preference Center will then open and you can revoke your consent for cookies.
11. Google Analytics
We use the Google Analytics service provided by Google Ireland Limited (Ireland, EU) on our website.
Google Analytics is a web analytics service that enables us to collect and analyze data about the behavior of users on our website. Google Analytics enables us to measure interaction data from different devices and from different sessions. This allows us to put individual user actions into context and analyze long-term relationships.
Google Analytics uses cookies for this purpose, which enable us to analyze the use of our website. Personal data in the form of IP addresses, device identifiers and information about interaction with our website is also processed. Some of this data is information that is stored on the device you are using. In addition, further information is stored on your device via the cookies used.
Google Ireland will process the data collected in this way on our behalf in order to evaluate the use of our website by users, to compile reports on the activities within our website and to provide us with further services associated with the use of our website and the use of the Internet. Pseudonymous user profiles of the users can be created from the processed data.
The setting of cookies and the further processing of personal data described here takes place with your consent. The legal basis for data processing in connection with the Google Analytics service is therefore Article 6(1)(a) GDPR. You can revoke this consent at any time via our Consent Management Tool with effect for the future.
We only use Google Analytics with activated IP anonymization. This means that the IP address of users is shortened by Google Ireland within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The IP address transmitted by the user's browser is not merged with other data. The IP address is truncated on servers in the EU.
The data on user actions is stored for a period of 2 months and then automatically deleted. Data whose storage period has expired is automatically deleted once a month.
12. Google Ads
We use the online advertising program Google Ads from Google Ireland Limited (Ireland, EU) on our website, through which we place advertisements on the Google search engine. If you reach our website via a Google ad, Google places a cookie on your end device (“conversion cookie”). A different conversion cookie is assigned to each Google Ads customer so that the cookies are not tracked across the websites of different Ads customers. The information collected with the help of the cookie is used to create conversion statistics. This tells us the total number of users who have clicked on one of our Google ads so that we can display targeted ads (remarketing). However, we do not receive any information with which users can be personally identified.
Your data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.
Cookies are set with your consent, which you can revoke at any time with effect for the future via the Consent Management Tool. When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. Further information on data protection at Google can be found in Google's privacy policy at https://policies.google.com/privacy#infocollect.
13. Google Tag Manager
We use the Google Tag Manager of the provider Google Ireland Limited (Ireland, EU) on our website. The Google Tag Manager is used to manage our website tags via an interface. The Google Tag Manager is a cookie-free domain to which the IP address is transmitted for technical reasons. The Google Tag Manager merely triggers other tags, which in turn may collect data without accessing this data themselves. If deactivation has been carried out at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.
Your data is processed on the basis of Art. 6 para. 1 letter f GDPR and is based on our legitimate interest in the optimization and economic operation of our website as well as the administration of our website services and the triggering of tags.
Further information on data processing can be found at: https://support.google.com/tagmanager/answer/7157428
14. Microsoft Advertising
We use the Microsoft Advertising service (formerly Bing Ads) from Microsoft Ireland Operations Limited (Ireland, EU) on our website. Microsoft Advertising is an online marketing service that uses the Universal Event Tracking (UET) tool to help us display targeted advertisements via the search engines Microsoft Bing, Yahoo, Aol, other search partners (e.g. Ecosia, DuckDuckGo) and the Microsoft Audience Network. Microsoft Advertising uses cookies for this purpose.
Microsoft Advertising collects data via UET, which we use to create conversion statistics, i.e. we record how many users have reached one of our websites after clicking on an ad. This tells us the total number of users who clicked on our ad and were redirected to our website. However, we do not receive any information that can be used to personally identify users.
The information is also used to track target groups thanks to remarketing lists. For this purpose, a cookie is stored on the end device used when you visit our website. This enables Microsoft Advertising to recognize that our website has been visited and to display an advertisement when the above-mentioned services are used at a later date.
Your data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.
Cookies are set with your consent, which you can revoke at any time via our Consent Management Tool with effect for the future. When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. Further information on data protection at Microsoft can be found in Microsoft's privacy policy at https://www.microsoft.com/en-gb/privacy/privacystatement.
15. Shariff
We use social media buttons on our website using the so-called Shariff solution. Shariff displays the buttons as HTML links and prevents data from being transmitted to the respective social media provider as soon as the website is accessed. Only when you click on the social media button and log in to the respective social media platform via the pop-up window will your data be transmitted to the social media provider. The data protection provisions of the respective social media provider then apply.
The data processing is carried out in each case to protect our legitimate interests in increasing the awareness and reach of our website and is based on the legal basis of Art. 6 para. 1 letter f GDPR.
III Data processing on our social media pages
We are represented on the LinkedIn social media platform of LinkedIn Ireland Umlimited Company (Ireland, EU), hereinafter referred to as “LinkedIn”, with a company page. In this way, we would like to offer further opportunities for information about our company and for exchange.
If you visit our profile on the social media platform or interact with it, personal data about you may be processed. The information associated with the social media profile used also regularly constitutes personal data. This also includes messages and statements made using the profile. In addition, certain information is often automatically collected during your visit to a social media profile, which may also constitute personal data.
1. Visiting our social media page
When you visit our social media page, which we use to present our company or individual products from our range, certain information about you is processed. The sole controller for this processing of personal data is LinkedIn. Further information on the processing of personal data can be found in LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.
LinkedIn collects and processes event data and profile data and provides us with statistics and insights for our pages in anonymized form, with the help of which we gain knowledge about the types of actions that people take on our site (so-called “page insights”). These Page Insights are created on the basis of certain information about people who have visited our site. This processing of personal data is carried out by LinkedIn and us as joint controllers. The processing serves our legitimate interest in evaluating the types of actions taken on our site and improving our site based on these findings. The legal basis for this processing is Article 6(1)(f) GDPR.
We cannot assign the information obtained via the Page Insights to individual user profiles that interact with our pages. We have entered into joint controllership agreements with LinkedIn, which set out the allocation of data protection obligations between us and LinkedIn. Details on the processing of personal data for the creation of Page Insights and the agreement concluded between us and LinkedIn can be found at https://legal.linkedin.com/pages-joint-controller-addendum.
You also have the option of asserting your rights against LinkedIn. You can find more information on this at https://www.linkedin.com/help/linkedin/ask/PPQ?lang=en.
We have agreed with LinkedIn that the Irish Data Protection Commission is the lead supervisory authority overseeing the processing for Page Insights. You always have the right to lodge a complaint with the Irish Data Protection Commission (see www.dataprotection.ie) or any other supervisory authority.
2. Communication via social media pages
We also process information that you have provided to us via our company page on LinkedIn. Such information may include the username used, contact details or a message to us. This processing is carried out by us as the sole controller. We process this data on the basis of our legitimate interest in contacting inquiring persons. The legal basis for data processing is Article 6(1)(f) GDPR. Further data processing may take place if you have given your consent (Art. 6 para. 1 letter a GDPR) or if this is necessary to fulfill a legal obligation (Art. 6 para. 1 letter c GDPR).
IV. Data processing in connection with the seminars
1. Organization of the seminars
We process the personal data of seminar participants for the purpose of conducting the seminars, sending information material and issuing participant certificates. The name and contact details of the participants may also be transmitted to the speakers in the course of this. The legal basis for the processing is Art. 6 para. 1 letter b GDPR if the participation takes place in your own name, or is based on our legitimate interest pursuant to Art. 6 para. 1 letter f GDPR if the participation takes place on behalf of a company. The processing then serves our legitimate interest in the fulfillment of the contract with the company.
2. Holding seminars in cooperation with HZA
For selected seminars, we cooperate with HZA Hamburger Zollakademie GmbH (hereinafter referred to as “HZA”) and process the personal data collected from seminar participants in joint responsibility with HZA.
In accordance with the requirements of Art. 26 GDPR, we have concluded an agreement with HZA on processing as joint controllers, in which the distribution of data protection obligations is defined.
Accordingly, HZA is responsible for the processing of the personal data collected by it and we are responsible for the data collected by us. Both HZA and we ensure compliance with the information obligations under Art. 13 and 14 GDPR. Each party shall take the necessary technical and organizational measures to ensure that the rights of the data subjects, in particular in accordance with Art. 12 to 22 GDPR, can be or are guaranteed at all times within the statutory periods.
In addition, we have agreed with HZA that data subjects can assert their rights under Art. 15 to 22 GDPR against both contracting parties. Further information on asserting your rights against HZA can be found at: https://www.hza-seminare.de/datenschutz.
3. Recording of webinars
We sometimes record webinars. We cannot rule out the possibility that personal data of the seminar participants will be recorded. The recording then takes place exclusively with the consent of the seminar participants and takes place on the legal basis of Art. 6 para. a GDPR. Consent is voluntary. You have the right to withdraw your consent at any time with effect for the future.
4. Microsoft Teams
We use Microsoft Teams, a service of Microsoft Ireland Operations Limited (Ireland/EU), to conduct our webinars. This involves Microsoft processing your personal data on our behalf (such as your IP address, text, audio and video data and, where applicable, Microsoft access data).
The legal basis for the processing is Art. 6 (1) (b) GDPR if participation takes place in your own name, or our legitimate interest pursuant to Art. 6 (1) (f) GDPR if participation takes place on behalf of a company. The processing then serves our legitimate interest in fulfilling the contract with the company. In addition, we have a legitimate interest in the effective implementation of our webinars in accordance with Art. 6 para. 1 letter f GDPR.
Further information on the processing of personal data by Microsoft Ireland Operations Limited can be found in their privacy policy: https://learn.microsoft.com/en-gb/microsoftteams/privacy/location-of-data-in-teams.
5. Zoom
To conduct our webinars, we sometimes use Zoom, a service provided by Zoom Video Communications, Inc (USA). Zoom processes your personal data on our behalf (such as your IP address, text, audio and video data and, if applicable, access data).
The legal basis for the processing is Art. 6 (1) (b) GDPR if participation takes place in your own name, or our legitimate interest pursuant to Art. 6 (1) (f) GDPR if participation takes place on behalf of a company. The processing then serves our legitimate interest in fulfilling the contract with the company. In addition, we have a legitimate interest in the effective implementation of our webinars in accordance with Art. 6 para. 1 letter f GDPR.
When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. Further information on the processing of personal data by Zoom can be found in their privacy policy: https://www.zoom.com/en/trust/privacy/.
6. GoToWebinar
To conduct our webinars, we also use GoToWebinar, a service provided by GoTo Technologies Ireland Unlimited Company (Ireland, EU). GoTo processes your personal data on our behalf (such as your IP address, text, audio and video data and, if applicable, access data).
The legal basis for the processing is Art. 6 (1) (b) GDPR if participation takes place in your own name, or our legitimate interest pursuant to Art. 6 (1) (f) GDPR if participation takes place on behalf of a company. The processing then serves our legitimate interest in fulfilling the contract with the company. In addition, we have a legitimate interest in the effective implementation of our webinars in accordance with Art. 6 para. 1 letter f GDPR.
Further information on the processing of personal data by GoTo Technologies Ireland Unliited Company can be found in their privacy policy: https://www.goto.com/company/legal/privacy/us.
7. Further marketing measures
We also process participant data for evaluation and marketing purposes.
Your data is processed on the basis of Art. 6 para. 1 letter f GDPR and is based on our legitimate interest in analyzing and further developing our services.
We may also use the email address you provide when booking to inform you about our own similar products and services. The legal basis is Art. 6 para. 1 lit. f GDPR in conjunction with. § Section 7 para. 3 UWG.
You can object to these marketing measures at any time without incurring any costs other than the transmission costs according to the basic rates.
V. Further information for data subjects in Switzerland
If you are a data subject within the scope of the Swiss Federal Act on Data Protection, the information under this point also applies.
The legal references made in this data protection information are aimed at data subjects in Switzerland in accordance with the comparable provisions of the Federal Act on Data Protection. This applies in particular to the applicable rights of data subjects in accordance with Art. 25-29, 32 FADP.
We guarantee an appropriate level of data protection. This is ensured by
an established adequate level of data protection in accordance with Art. 16 para. 1 FADP for the recipient country;
standard data protection clauses that the FDPIC has approved, issued or recognized in advance, in particular the standard contractual clauses of the European Commission;
certification in accordance with the principles of the Data Privacy Framework between Switzerland and the USA, if the data processing is carried out by a certified organization in the USA;
a contract under international law in which an appropriate level of data protection is regulated.
VI. Further data processing
1. Job applications
If you apply to our company, we will process your application data exclusively for purposes related to your interest in current or future employment with us and the processing of your application. Your application will only be processed and acknowledged by the relevant contact persons at our company. All employees entrusted with data processing are obliged to maintain the confidentiality of your data. If we are unable to offer you employment, we will retain the data you have submitted for up to six months after any rejection for the purpose of answering questions in connection with your application and rejection. This does not apply if statutory provisions prevent deletion, if further storage is necessary for the purpose of providing evidence or if you have expressly consented to longer storage.
The legal basis for data processing is § 26 para. 1 sentence 1 BDSG or Art. 6 para. 1 letter b GDPR. If we store your applicant data for longer than six months and you have expressly consented to this, we would like to point out that this consent can be freely revoked at any time in accordance with Art. 7 para. 3 GDPR. Such a revocation does not affect the legality of the processing that was carried out on the basis of the consent until the revocation.
2. Contacting us by e-mail, telephone or post
If you contact us by telephone, send us a message or a letter using the contact details provided, we will process the data transmitted for the purpose of responding to your inquiry. We process this data on the basis of our legitimate interest in contacting inquiring persons.
The legal basis for data processing is Art. 6 para. 1 letter f GDPR.
Status: [1.0, 08.11.2024]