Date Privacy Protection

Privacy policy 

With this privacy policy, we would like to educate you about the nature, scope and purpose of the processing of personal data (hereinafter referred to only as "Data"). Personal data is all data that has a personal connection to you, e..B. name, address, e-mail address or your user behavior. The Data Protection Declaration applies to all data processing operations carried out by us, both in the context of our core activities and for the online media we hold. 
Who is responsible for data processing with us 
Responsible for the data processing is: 
Academy of Music Berlin 
Oliver Schenk 
Karower Straße 15a 
13125 Berlin, Deutschland +491601460277 info@afmberlin.de www.afmberlin.de 
Processing of your data within the framework of the educational and training services provided by us 
If you participate in our educational and training services or are interested in our services, the nature, scope and purpose of the processing of your data depends on the contractual or precontractual relationship between us. In this sense, the data processed by us includes all data that is or has been provided for the purpose of using the contractual or pre-contractual services by you and which is needed for the processing of your request or the contract concluded between us. This includes the performance evaluation and evaluation of our performance as well as the teaching staff. Unless otherwise stated in this Privacy Policy, the processing of your data and its disclosure to third parties shall be limited to those data that are necessary and appropriate to respond to your enquiries and/or to fulfil the contract concluded between you and us, to safeguard our rights and to fulfil legal obligations. We will provide you with the data required for this purpose before or as part of the data collection. Insofar as we use third parties to provide our services, the privacy policy of the respective third-party providers applies. 
Special categories of data 
If you participate in our training and educational services or make an enquiry with us because you are interested in the training and educational services we offer, data processing may also affect socalled special categories of data. This includes, in particular, information on your health, as well as information on your political opinions or religious or ideological beliefs (Art. 9 sec. 1 GDPR). We process this data exclusively for training services, to protect your health, social protection or your vital interests. If we need the aforementioned information for purposes other than those mentioned above, we will inform you in detail before we process this data and then obtain your express consent. 
If it is necessary to fulfil the contract concluded between us, to provide training services, to protect your health, social protection or to protect your vital interests, we may also transfer your data to third parties, such as authorities or tax advisors. 
Data affected: 
• Inventory data (e.g. names, addresses) 
• Payment data (e.g. bank account details, invoices) 
• Contact data (e.g. e-mail address, telephone number, postal address) 
• Contract data (e.g. subject matter of the contract, duration of the contract) 
Special categories of personal data: 
• Health 
• Data showing religious or political beliefs 
Persons concerned: pupils, trainees, students, interested parties, business and contractors 
Purpose of processing: processing of contractual services, communication and answering of contact requests, office and organizational procedures 
Legal basis: Performance of the contract and pre-contractual enquiries, Art. 6 sec. 1 lit.b GDPR, legal obligation, Art. 6 sec. 1 lit.c GDPR, legitimate interest, Art. 
Your rights under the GDPR 
Under the GDPR, you are entitled to the following rights, which you can claim at any time with the controller named in section 1 of this Privacy Policy: 
• Right to information: You have the right to request information from us about whether and what data we process from you. 
• Right to rectification: You have the right to request the correction of inaccurate or complete incomplete data. 
• Right to erasure: You have the right to request the deletion of your data. 
• Right to restriction: In certain cases, you have the right to request that we only process your data to a limited extent. 
• Right to data portability: You have the right to request that we transmit your data to you or another controller in a structured, common and machine-readable format. 
• Right to complain: You have the right to complain to a supervisory authority. The supervisory authority of your usual place of residence, your workplace or our registered office is responsible. 
Withdrawal 
You have the right to revoke your consent to the processing of data at any time. 
Right to object 
You have the right to object at any time to the processing of your data, which we base on our legitimate interest under Art. 6 sec. 1 lit. f GDPR. If you exercise your right to object, we ask you to explain the reasons. We will no longer process your personal data unless we can prove to you that compelling legitimate reasons for data processing outweigh your interests and rights. 
Irrespective of what is stated above, you have the right at any time to object to the processing of your personal data for the purposes of advertising and data analysis. 
Please address your objection to the above-mentioned contact address of the person responsible. 
When do we delete your data? 
We will delete your data when we no longer need it or if you tell us so. This means that - unless otherwise stated in the individual data protection notices of this Privacy Policy - we will delete your data, 
• if the purpose of the data processing has ceased to exist and thus the respective legal basis mentioned in the individual data protection notices no longer exists, i.e. 
o after the termination of the contractual or membership relationships between us (Art. 6 sec. 1 lit. a GDPR) or 
o after the loss of our legitimate interest in the further processing or storage of your data (Art. 6 sec. 1 lit. f GDPR), 
• if you exercise your right of withdrawal and does not interfere with any other legal legal basis for the processing within the meaning of Art. 6 sec. 1 lit.b-f GDPR, 
• if you exercise your right to object and there are no compelling grounds for protection in the event of deletion. 
However, if we (certain parts) still have to keep your data for other purposes, because this requires, for example, tax retention periods (usually 6 years for business correspondence or 10 years for accounting documents) or the assertion, exercise or defence of legal claims arising from contractual relationships (up to four years) or the data is used to protect the rights of another natural or legal person. , we will delete (the part) of your data only after the expiry of these deadlines. However, until these deadlines have expired, we shall limit the processing of this data to these purposes (fulfilment of the retention obligations). 
Cloud services 
We use cloud services in particular 
• for the storage and processing of documents, 
• for sending documents by e-mail or for exchanging files of any kind, 
• for our calendar appointment management, 
• for the preparation and execution of presentations and spreadsheets, 
• for the publication of files of any kind, 
• for internal and external communication via chats, audio and video conferencing. 
The software applications that we use for these purposes are made available to us by the providers mentioned below on their servers. We access these servers via the Internet. Insofar as you provide us with your data in the course of communication with us or in other processes explained by us by means of this data protection declaration, we process this data in the cloud service we use. This means that your data is stored on the cloud service third-party servers. Third-party vendors process usage and metadata to secure their servers and optimize their services. In particular, we process and store your contact, customer and contract data. 
If we make files of any kind publicly available through our website through the cloud service we use, the respective third-party provider of the cloud service may store cookies on your computer system, provided that you access these files. The service provider may process the data collected in order to analyze your browser settings. We would like to point out that, depending on the country of residence of the service provider mentioned below, the data specified below may be transferred and processed to servers outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. If the service provider we use offers the processing of the data exclusively within the EU, we intend - if not already implemented at present - to process your data exclusively there. 
 
Data affected: 
• inventory data (e.g. names, addresses), 
• Contact details (e.g. e-mail addresses, telephone and mobile phone numbers) 
• content data (e.g. photos, videos, texts), 
• Usage data (e.g. times of access, visited internet presences, interest in content), 
• Metadata (e.g. IP address, computer system information) 
Persons affected: interested parties, communication partners, customers, employees (e.g. applicants, current and former employees) 
Processing purpose: Organization of office and administration tasks 
Legal basis: Consent, Art. 6 sec. 1 lit. a GDPR, performance of contracts and pre-contractual enquiries, Art. 6 sec. 1 lit.b GDPR, legitimate interest, Art. 6 sec. 1 lit. f GDPR 
Enacting cloud service providers: 
web hosting 
We use a provider on whose servers our websites are stored and made available for retrieval on the Internet (hosting). In this case, all data transmitted by the browser you use may be processed by the provider, which accrues when using our Internet pages. This includes in particular your IP address, which the provider needs in order to be able to deliver our online offer to the browser you use, as well as all entries made by you via our website. In addition, the provider we use may 
• the date and time of access to our website 
• Time zone difference to Greenwich Mean Time (GMT) 
• Access Status (HTTP Status) 
• the amount of data transferred 
• the Internet service provider of the accessing system 
• the type of browser you are using and its version 
• the operating system you are using 
• the website from which you may have accessed our website 
• the pages or subpages you visit on our website. 
raise. The aforementioned data are stored as log files on the servers of our provider. This is necessary to ensure the stability and safety of the operation of our website. 
Data affected: 
• Content data (e.g. posts, photos, videos) 
• Usage data (e.g. access times, clicked websites) 
• Communication data (e.g. information about the device used, IP address) 
Affected persons: Users of our website 
Purpose of processing: Playing out our internet pages, guaranteeing the operation of our Internet pages 
Legal basis: Eligible interest, Art. 6 sec. 1 lit. f GDPR 
Web hostess commissioned by us: 
IONOS by 1&1 
Service provider: 1&1 IONOS SE, Elgendorfer Str. 57, 56410 MontabaurWebsite: https://www.ionos.de/websites/homepage-erstellen 
Privacy Policy: https://www.ionos.de/terms-gtc/terms-privacy 
Contact 
If you contact us via e-mail, social media, telephone, fax, post, our contact form or otherwise, providing us with personal data such as your name, telephone number or e-mail address, or providing further information about you or your concern, we process this data to answer your request within the framework of the pre-contractual or contractual relationship between us. 
Data affected: 
• Inventory data (e.g. names, addresses) 
• Contact data (e.g. e-mail address, telephone number, postal address) 
• Content data (texts, photos, videos) 
• Contract data (e.g. subject matter of the contract, duration of the contract) 
Affected persons: interested parties, customers, business and contractual partners 
Purpose of processing: communication and answering of contact requests, office and organizational procedures 
Legal basis: Performance of the contract and pre-contractual enquiries, Art. 6 sec. 1 lit.b GDPR, legitimate interest, Art. 6 sec. 1 lit. f GDPR 
Dealing with your data in the application process 
If you apply to us, we process the personal data you provide to us during the application process, such as: Your name, address, place of residence, age, application photo, e-mail and telephone number, career including schools, education, studies. If you send the data by e-mail or via a contact form of our online presence, the processing is done electronically. When sending your application via the contact form, the transmission of your data is encrypted according to the state of the art. If you send your data by e-mail, we would like to point out that the transmission is usually unencrypted. If an employment contract is concluded after the application process, we will store your data for the purpose of processing the employment relationship in compliance with the statutory provisions. 
Data affected: 
• Inventory data (e.g. names, addresses) 
• Payment data (e.g. bank account details, invoices) 
• Contact data (e.g. e-mail address, telephone number, postal address) 
• Contract data (e.g. subject matter of the contract, duration of the contract) 
Persons affected: Applicants 
Purpose of processing: Processing of the application process 
Legal basis: Performance of the contract and pre-contractual enquiries, Art. 6 sec. 1 lit.b GDPR, legal obligation, Art. 6 sec. 1 lit.c GDPR 
Deletion: If an employment contract is not concluded, your data will be deleted after the completion of the application process or at the latest 2 months after its conclusion. This does not apply if legal provisions prevent deletion or the further storage of your data is necessary for the purpose of proving it, for example in proceedings under the General Equal Treatment Act (AGG). The application process is deemed to have been completed when the cancellation is sent to you. 
Online advertising 
We use services for playing internet advertising. Certain user data is collected through a cookie or pixel via the services we use. This includes in particular the information from which website you have reached our website (so-called referrers), which pages of our website you have accessed, how long you have visited our pages and what interactions you have made there. In addition, data about the browser you are using, computer system and the type of device are collected. In addition, demographic information such as age or gender can also be collected as pseudonymous values through such a service. If you have consented to the collection of your location data, these can also be processed, depending on the provider. In order to collect and store this data, the respective service places a cookie or a so-called counting pixel on the terminal device you use, which also collects the IP address associated with you. However, this is shortened by a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. In principle, no clear data such as names or e-mail addresses are stored when using the respective service. This is only the case if you are a member of a social network that offers one of the following services and merges your profile with the aforementioned data. 
The data is evaluated by the service we use in order to produce a report with statistical statements on the number of visitors generated by the advertisement and the success of the advertising measure. Among other things, the reports show the total number of users who have been redirected to our website via our ads. In addition, the reports contain information about the end devices and browsers of the users, where the users were located, and at what times the ad was clicked. However, the reports do not contain any information that could personally identify you as a user of our site. 
We would like to point out that, depending on the location of the service provider, the data collected through the service may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Usage data (e.g. access times, clicked websites) 
• Communication data (e.g. information about the device used, IP address) 
Affected persons: Users of our online offers 
Purpose of processing: range measurement, success control of campaigns, remarketing as well as interest- and behavioral marketing 
Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 sec. 1 lit. a GDPR. In addition, we use the respective service on the basis of our legitimate interest to direct visitor flows to our website, to analyze these visitor flows in order to be able to continuously improve the functions, offers and the user experience, Art. 6 sec. 1 lit. f GDPR. 
We use the following service providers for online advertising: 
Google Ads 
Service provider: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, 
USARegistered in Europe: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, IrelandWebsite:  
https://ads.google.com/home/ 
Privacy Policy: http://www.google.de/intl/de/policies/privacy 
Advertising by e-mail, post or telephone 
We process personal data for our commercial communication by e-mail, post or telephone. You may object to the receipt of our advertising activities at any time or revoke the prior consent to receive our promotional communications at any time. In order to be able to prove that your consent was available even after your objection or revocation in case of doubt, we can store your data for up to 4 years after your objection/revocation. For further purposes, we will no longer use your data after your objection/revocation. If you want us to delete your data beforehand, we will do so after you have confirmed to us that you originally gave us your consent. 
Data affected: 
• Contact details (e.B. e-mail, telephone number, postal address) 
• Inventory data (e.B. names, addresses) 
Affected persons: communication partners 
Purpose of processing: Direct advertising (marketing) by e-mail, post or telephone 
Legal basis: Consent, Art. 6 sec. 1 lit. a GDPR, legitimate interest, Art. 6 sec. 1 lit. f GDPR 
Web analysis and statistics 
In order to record the flow of visitors on our website and to evaluate them statistically, we use web analysis services. Such services collect, among other things, data about which website you have accessed our website (so-called referrers), which pages of our website you have accessed, how long you have visited our pages and what interactions you have made there. In addition, data about the browser you are using, computer system and the type of device are collected. In addition, demographic information such as age or gender can also be collected as pseudonymous values through such a service. If you have consented to the collection of your location data, these can also be processed, depending on the provider. 
In order to collect and store this data, the web analysis service we use usually places a cookie on the terminal device you use, which also collects the IP address associated with you. However, this is shortened by a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. Furthermore, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use knows the identity of visitors to our websites. 
We would like to point out that, depending on the country of residence of the service provider mentioned below, the data collected through the service may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Usage data (e.g. access times, clicked websites) 
• communication data (e.g. information about the device used, IP address). 
Affected persons: Users of our online offers 
Purpose of processing: range measurement, success control of campaigns, remarketing as well as interest- and behavioral marketing 
Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 sec. 1 lit. a GDPR. In addition, we use the respective service on the basis of our legitimate interest, which analyzes the visitor flows of our Internet pages in order to be able to continuously improve the functions, offers and the user experience, Art. 6 sec. 1 lit. f GDPR. 
We use the following web analysis services: 
Google Analytics 
Service providers: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USASeat within the EU: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, 
IrelandWebsite: https://marketingplatform.google.com/intl/de/about/analytics/ 
Privacy Policy: https://policies.google.com/privacy?hl=de 
Opt-Out option:If you do not want your data to be used by GoogleAnalytics, you can set a so-called opt-out plugin that prevents data from being collected from you on our website in the future. You can get this plugin here: https://tools.google.com/dlpage/gaoptout?hl=de 
1&1 IONOS Web Analytics 
Service provider: 1&1 IONOS SE, Elgendorfer Straße 57, 56410 MontabaurWebsite: 
https://www.ionos.de/ 
Privacy Policy: https://www.ionos.de/terms-gtc/terms-privacy/ 
Note: 1&1-IONOS web analytics does not use cookies. Rather, the data is determined either by a pixel or by a log file. Your IP address is transmitted to 1&1-IONOS web analytics when a page retrieval is transmitted, anonymized directly after transmission and processed without personal reference. 
The third-party plugins we use 
We have plugins on our website in the form of. "Social media buttons" of the providers we use. Which plugin belongs to which provider, you can recognize by the respective logo with which the plugin is marked. When you access a page of our online presence on which such a plugin is implemented, a connection between your browser and the provider's servers is automatically established with the respective provider of the plug-in and a cookie is set by the provider's website on the terminal device you are using. Already at this timepunA data transfer can take place even if you do not have an account with the respective operator of the social network or have an account there, but are not logged in there at the moment of visiting our website. In addition, data is transferred to the provider as a result of further interactions with the respective social plugin (e.B. click the "Like-Me button on Facebook, re-tweet button on Twitter"). 
We would like to point out that, depending on the country of residence of the service provider mentioned below, the data specified below may be transferred and processed to servers outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Usage data (e.g. access times, clicked websites) 
• Communication data (e.g. information about the device used, IP address) 
Affected persons: Users of our website 
Purpose of processing: playing out our internet pages, offering content, guaranteeing the operation of our internet pages 
Legal basis: Consent via cookie-consent banner, Art. 6 sec. 1 lit. a GDPR, legitimate interests, Art. 6 sec. 1 lit. f GDPR 
We use the following plugins: 
Facebook 
Service provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USASeat in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, IrelandWebsite: 
https://www.facebook.com/Datenschutzerklärung: https://www.facebook.com/about/privacy/ Privacy Policy for Facebook Pages:  
https://www.facebook.com/legal/terms/information_about_page_insights_data Twitter 
Service Providers: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USAWebsite: https://twitter.com/?lang=de 
Privacy Policy: https://twitter.com/de/privacy 
Our online presences on social networks 
We operate online presences within the social networks listed below. If you visit one of these presences, the data listed below will be collected and processed by the respective provider. As a rule, this data is collected for advertising and market research purposes and hereby create usage profiles. The usage profiles can store data independently of the device you are using. This is especially the case if you are a member of the respective platform and are logged in to it. The usage profiles may 
be used by the providers to serve you interest-based advertising. You have a right of withdrawal against the creation of user profiles. To exercise this, you must contact the respective provider. 
If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behaviour on our website. In order to prevent such a link of your data, you can log out of the service of the provider before visiting our site. 
For what purpose and to what extent data is collected by the provider, you can find the respective data protection declarations of the providers, which are communicated below. 
We would like to point out that, depending on the country of residence of the provider mentioned below, the data collected via its platform may be transferred and processed outside the european union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Inventory and contact details (e.g. name, address, telephone number, e-mail address) 
• Content data (e.g. posts, photos, videos) 
• Usage data (e.g. access times, clicked websites) 
• communication data (e.g. information about the device used, IP address). 
Purpose of processing: communication and marketing, tracking and anaylsis of user behavior 
Legal basis: Consent, Art. 6 sec. 1 lit. a GDPR, legitimate interests Art. 6 sec. 1 lit. f GDPR 
Possibility of objection: We refer to the following linked information of the providers regarding the respective possibilities of objection (opt-out). 
We maintain online presences on the following social networks: 
Facebook 
Service provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USAResidence in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, IrelandWebsite:  
https://www.facebook.com/ 
Privacy Policy: https://www.facebook.com/about/privacy/Privacy Policy for 
Facebook Pages: https://www.facebook.com/legal/terms/information_about_page_insights_data Twitter 
Service Providers: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USAWebsite:  
https://twitter.com/?lang=de 
Privacy Policy: https://twitter.com/de/privacy 
WhatsApp 
Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USAResidence in the EU: Whatsapp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, IrelandParent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USAWebsite:  
 
https://www.whatsapp.com/ 
Privacy Policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy 
Messenger services 
We communicate through Messenger services. Messenger services are chat programs that can be used to send text messages over the Internet, but also to real-time image or video files between users. Messenger services can also be used to transmit emoticons, electronic greeting cards and contacts. In order for messages to be transmitted, participants must be connected to a computer program (called a client) over a network such as the Internet directly or through a server. As a rule, messages can also be sent when the interlocutor is not online - the message is then cached by the service's server and later delivered to the recipient when it is reachable again. Finally, these services can also be used for screen transmission and online games. 
If the service uses end-to-end encryption for the sent content (texts, attachments), only the selected communication partners, but not third parties or the service provider itself, can view the message. In this respect, we recommend that you periodically apply the updates to the service to ensure that the content is encrypted. However, the service provider has the ability to access the metadata of the communication. This includes time and (depending on the setting) location of communication as well as the device you are using. 
We would like to point out that, depending on the country of residence of the provider mentioned below, the data collected via its platform may be transferred and processed outside the european union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Inventory and contact details (e.g. name, telephone number, e-mail address) 
• Content data (e.g. posts, photos, videos) 
• Usage data (e.g. access times, clicked websites) 
• communication data (e.g. information about the device used, IP address). 
Purpose of processing: communication and marketing 
Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 sec. 1 lit. a GDPR. In this respect, we make it clear that we will not transmit your contact details to the service provider for the first time without your consent. If we communicate with you within the framework of a contract initiation or within the framework of an existing contractual relationship via one of the following services, the legal basis consists in the fulfilment or preparation of the contract, Art. 6 sec. 1 lit.b GDPR. In addition, we rely on our legitimate interests in a fast and efficient communication and fulfillment of the needs of our communication partner in the communication of the following services, Art. 6 sec. 1 lit. f GDPR. 
Possibility of objection: You can revoke the consent given to us for the use of the following service at any time. You can also object to communication via the Messanger service at any time. 
We use the following Messenger services: 
Microsoft Teams Messenger 
Service Provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, 
USAWebsite: https://www.microsoft.com/de-de/microsoft-teams/group-chat-software 
Privacy Policy: https://privacy.microsoft.com/de-de/privacystatement 
Skype Messenger 
Service provider: Skype Communications SARL, 23-29 Rives de Clausen, L-2165 Luxembourg, LuxembourgParent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 980526399, USAWebsite:  
 
https://www.skype.com/de/ 
Privacy Policy: https://privacy.microsoft.com/de-de/privacystatement 
WhatsApp 
Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USAResidence in the EU: Whatsapp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, IrelandParent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USAWebsite:  
 
https://www.whatsapp.com/ 
Privacy Policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy 
Online meetings, video conferencing and screen sharing 
We use third-party offers to enable online meetings, conference calls via video and/or audio, and online seminars among employees, as well as with prospects or customers. When you communicate with us through such a service, the data collected in this communication process will be processed by both us and the third party. The data that may arise in such a communication process includes, in particular, your login and contact details, chat window posts, your video and audio posts, and shared screen content. The data processed by the third-party providers used by us primarily includes user data as well as metadata (e.g. IP address, computer system information). Typically, third-party vendors process this data to verify and ensure the security of the service. In addition, insights from data processing will be used to optimize the third-party offer and to carry out appropriate marketing measures. Please refer to the third-party privacy policy. 
We would like to point out that, depending on the country of residence of the service provider mentioned below, the data collected through the service may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Inventory data (e.g. names, addresses) 
• Contact details (e.g. e-mail address, telephone number) 
• Shared content (e.g. photos, videos, texts, audio recordings) 
• User data (e.g. times of access, websites visited, interest in content) 
• Meta- and communication data (e.g. IP address, computer system information) 
Affected persons: interested parties, customers, communication partners 
Purpose of processing: processing of contact requests, internal and external communication with employees as well as interested parties and customers, fulfillment of our contractual services, service offer 
Legal basis: Consent, Art. 6 sec. 1 lit. a GDPR, performance of contracts and pre-contractual enquiries, Art. 6 sec. 1 lit.b GDPR, legitimate interest, Art. 6 sec. 1 lit. f GDPR 
Services we use: 
Microsoft Teams 
Services offered: Videoconferencing, chats, voice conferencingService providers: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USAWebsite: 
https://www.microsoft.com/de-de/microsoft-365/microsoft-teams/group-chat-software Privacy Policy: https://privacy.microsoft.com/de-de/privacystatement 
Skype 
Services offered: Instant messaging, video conferencing, Voice conferencingService provider: Skype Communications SARL, 23-29 Rives de Clausen, L-2165 Luxembourg, LuxembourgParent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USAWebsite: https://www.skype.com/de/ 
Privacy Policy: https://privacy.microsoft.com/de-de/privacystatement zoom 
Services offered: Videoconferencing, Voice Conferencing, ChatsService Provider: Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USAWebsite: https://zoom.us/de-de/meetings.html 
Privacy Policy: https://zoom.us/de-de/privacy.html 
Content services 
We use certain services to play certain content or graphics (videos, images, music, fonts, maps) through our website. The services we use process the IP address assigned to you at the time of your visit to our internet pages, as this is the only way that the respective content can be displayed in the browser you are using. In addition, the providers of these services may place additional cookies on your device, which collect information about your usage behaviour, your interests, the device you use and the browser you use, and the time and duration of your session. Providers regularly use this data for analysis, statistics and marketing purposes. In addition, this information can also be linked to information from other sources. This is especially true if you have an account with the service provider yourself and are logged in there at the time of the meeting. 
We would like to point out that, depending on the country of residence of the service provider mentioned below, the data specified below may be transferred and processed to servers outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be respected and that the enforcement of your rights will not be done or will only be difficult. 
Data affected: 
• Usage data (e.g. access times, clicked websites) 
• Communication data (e.g. information about the device used, IP address) 
Affected persons: Users of our website 
Purpose of processing: playing out our internet pages, offering content, guaranteeing the operation of our internet pages 
Legal basis: Consent via cookie-consent banner, Art. 6 sec. 1 lit. a GDPR, legitimate interests, Art. 6 sec. 1 lit. f GDPR 
We use the following content services: 
Google Maps 
We use Google Maps on our website. Google collects and processes the visitor's IP address. When you visit a website on which Google Maps is integrated, your IP address and your location data (the latter usually not without your consent) will be transmitted to Google regardless of whether the use of Google Maps is actually carried out or you are logged into your Google Account. Your IP address will be assigned to your Google Account if you are logged in there when you visit our website. 
Service provider: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USAHeadquarters in the EU: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, IrelandWebsite:  
https://www.google.de/maps 
Privacy Policy: https://policies.google.com/privacy 
Opt-Out option: https://tools.google.com/dlpage/gaoptout?hl=de 
YouTube 
On this website, we use components of YouTube to integrate videos on our websites so that they can be played through your internet browser when you visit our websites. During your visit to our website, both YouTube and Google will be informed which page or subpage you have accessed by transmitting your IP address to Google's external servers in the USA. This information is transmitted regardless of whether the videos displayed are actually viewed or clicked on or you are logged into your YouTube or Google account. This information is collected and assigned to your Google account, provided you are logged in when you visit our website. 
Service Provider: YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USAWebsite:  
https://www.youtube.com/ 
Privacy Policy: https://policies.google.com/privacy 
Opt-Out Option: https://tools.google.com/dlpage/gaoptout?hl=de 
Security measures 
Furthermore, we take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. 
Up-to-date and amendment of this data protection declaration 
This privacy policy is currently valid and is as of April 2021. Due to changes in legal or regulatory requirements, it may be necessary to amend this data protection declaration 
 


Share by: