Data Protection Policy

1.**Privacy Policy at a Glance**

 

**General Information**

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data with which you could be personally identified. Detailed information on data protection can be found in our privacy policy listed below this text.

 

**Data Collection on This Website**

Who is responsible for the data collection on this website?

The data processing on this website is carried out by the website operator. You can find their contact details in the „Information on the Responsible Party“ section of this privacy policy.

 

How do we collect your data?

Your data is collected in two ways: data that you provide us (e.g., through a contact form) and data collected automatically or with your consent when you visit the website (e.g., technical data such as internet browser, operating system, or time of page access). This data collection occurs automatically when you enter this website.

 

What do we use your data for?

Some data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior.

 

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke it at any time for the future. Additionally, under certain circumstances, you have the right to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the relevant supervisory authority.

 

For further questions about data protection, you can always contact us.

 

**Analysis Tools and Third-Party Tools**

Your browsing behavior on this website may be statistically evaluated, primarily through analysis programs. Detailed information on these analysis programs can be found in the following privacy policy.

 

**Hosting**

Hosting with All-Inkl

We host our website with All-Inkl. The provider is ALL-INKL.COM – Neue Medien Münnich, Inh. René Münnich, Hauptstraße 68, 02742 Friedersdorf (hereinafter: All-Inkl). Details can be found in All-Inkl’s privacy policy: [link to All-Inkl privacy policy].

 

The use of All-Inkl is based on Article 6(1)(f) of the General Data Protection Regulation (GDPR). We have a legitimate interest in a reliable presentation of our website. If consent has been requested, the processing is based exclusively on Article 6(1)(a) of the GDPR; consent can be revoked at any time.

 

**General Information and Mandatory Information**

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

 

Please note that data transmitted via the internet (e.g., via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.

 

Responsible Party

The responsible party for data processing on this website is:

 

Michael Theumert

Sebastian-Kneipp-Straße 41

60439 Frankfurt am Main

 

Phone: +49-89-41155784

Email: hello@SECaaS.IT

 

The responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

 

Storage Duration

Unless a specific storage period is specified in this privacy policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you make a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, the deletion will occur after these reasons cease to apply.

 

Note on Data Transfer to the USA and Other Third Countries

We use tools from companies based in the USA or other countries without adequate data protection laws. If these tools are active, your personal data may be transferred to and processed in these third countries. We would like to point out that in these countries, a level of data protection comparable to that in the EU cannot be guaranteed. For example, U.S. companies are obligated to hand over personal data to security authorities without you as the data subject being able to take legal action against this. It can, therefore, not be ruled out that U.S. authorities (e.g., intelligence services) process, evaluate, and permanently store your data on U.S. servers for monitoring purposes. We have no influence on these processing activities.

 

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

 

Right to Object to the Collection of Data in Special Cases and Direct Marketing (Article 21 GDPR)

IF DATA PROCESSING IS CARRIED OUT BASED ON ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21(1) GDPR).

 

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ARTICLE 21(2) GDPR).

 

Right to Lodge a Complaint with the Supervisory Authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state where they usually reside, work, or where the alleged violation occurred. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.

 

Right to Data Portability

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.

 

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from „http://“ to „https://“ and by the

 

 lock symbol in your browser line.

 

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

 

Information, Deletion, and Correction

Within the framework of applicable legal provisions, you have the right to free information about your stored personal data, their origin and recipient, and the purpose of data processing and, if necessary, a right to correct or delete this data. For further questions about personal data, you can always contact us.

 

Right to Restrict Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this. The right to restrict processing exists in the following cases:

 

– If you contest the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.

– If the processing of your personal data was/is unlawful, you can demand the restriction of data processing instead of deletion.

– If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.

– If you have filed an objection pursuant to Article 21(1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests outweigh the interests of both parties, you have the right to request the restriction of the processing of your personal data.

– If you have restricted the processing of your personal data, these data – apart from their storage – may only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

 

**Data Collection on this Website**

 

**Cookies**

Our website uses so-called „cookies.“ Cookies are small text files that do not harm your device. They can be either temporary for the duration of a session (session cookies) or permanent (persistent cookies) and are stored on your device. Session cookies are automatically deleted after your visit. Permanent cookies remain on your device until you delete them yourself or your web browser automatically deletes them.

 

In some cases, cookies from third-party companies may also be stored on your device when you enter our site (third-party cookies). These cookies enable us or you to use specific services of the third-party company (e.g., cookies for processing payment services).

 

Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or displaying videos). Other cookies are used to analyze user behavior or display advertisements.

 

Cookies that are necessary for the electronic communication process (necessary cookies) or for providing certain functions requested by you (functional cookies, e.g., for the shopping cart function) or for optimizing the website (e.g., cookies for measuring web audience) are stored based on Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. If consent for storing cookies has been requested, the processing of the relevant cookies is based exclusively on this consent (Art. 6(1)(a) GDPR); the consent can be revoked at any time.

 

You can configure your browser to notify you about the setting of cookies and allow cookies only on a case-by-case basis, exclude the acceptance of cookies for certain cases or in general, and enable the automatic deletion of cookies when you close your browser. Disabling cookies may limit the functionality of this website.

 

If cookies are used by third-party companies or for analytical purposes, we will inform you separately in this privacy policy and, if necessary, ask for your consent.

 

**Consent with Cookiebot**

Our website uses the Cookiebot consent technology to obtain your consent for storing certain cookies on your device or for using certain technologies and to document this in compliance with data protection regulations. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter „Cookiebot“).

 

When you enter our website, a connection to the Cookiebot servers is established to obtain your consents and other declarations regarding cookie usage. Cookiebot then stores a cookie in your browser to associate the consents granted or their revocation. The data collected in this way will be stored until you request us to delete it, delete the Cookiebot cookie yourself, or the purpose for data storage no longer applies. Mandatory statutory retention periods remain unaffected.

 

The use of Cookiebot is intended to obtain the legally required consents for the use of cookies. The legal basis for this is Art. 6(1)(c) GDPR.

 

**Data Processing on Behalf**

We have entered into a contract for order processing (AVV) with the provider mentioned above. This is a data protection contract required by law, which ensures that this provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

 

**Server Log Files**

The provider of the pages automatically collects and stores information in server log files, which your browser automatically transmits to us. These are:

 

– Browser type and browser version

– Operating system used

– Referrer URL

– Hostname of the accessing computer

– Time of the server request

– IP address

 

These data will not be combined with other data sources.

 

The collection of these data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be recorded.

 

**Contact Form**

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this information without your consent.

 

The processing of these data is based on Art. 6(1)(b) GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if it was obtained.

 

The data entered in the contact form will remain with us until you request deletion, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory statutory provisions – especially retention periods – remain unaffected.

 

**Inquiries by Email, Telephone, or Fax**

If you contact us by email, telephone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of processing your request. We will not share this information without your consent.

 

The processing of these data is based on Art. 6(1)(b) GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6(1)(a) GDPR) and/or on our legitimate interests (Art. 6(1)(f) GDPR), as we have a legitimate interest in the effective processing of the inquiries addressed to us.

 

The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory statutory provisions – especially statutory retention periods – remain unaffected.

 

**Calendly**

On our website, you have the opportunity to schedule appointments with us. We use the Calendly tool for appointment booking. The provider is Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter „Calendly“).

 

To make an appointment, you enter the requested data and the desired date in the provided mask. The entered data is used for planning, conducting, and possibly for post-processing the appointment. The appointment data will be stored for us on Calendly’s servers, the privacy policy of which you can view here: [Calendly Privacy Policy](https://calendly.com/de/pages/privacy).

 

The data you enter will remain with us until you request deletion, revoke your consent for storage, or the purpose for data storage no longer applies. Mandatory statutory provisions – especially retention periods – remain unaffected.

 

The legal basis for data processing is Art. 6(1)(f) GDPR. The website operator has a legitimate interest in a straightforward appointment scheduling process with interested parties and customers. If consent has been requested, Art. 6(1)(a) GDPR is the legal basis for data processing; consent can be revoked at any time.

 

The data transfer to the USA is based on the standard contractual clauses of the European Commission. Details can be found here: [Calendly DPA](https://calendly.com/pages/dpa).

 

**Order Processing**

We have entered into

 

 an order processing contract (AVV) with the provider mentioned above. This is a data protection contract required by law, which ensures that this provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

 

**Hubspot CRM**

We use Hubspot CRM on this website. The provider is Hubspot Inc., 25 First Street, Cambridge, MA 02141 USA (hereinafter „Hubspot CRM“).

 

Hubspot CRM allows us, among other things, to manage existing and potential customers as well as customer contacts. With the help of Hubspot CRM, we can capture, sort, and analyze customer interactions via email, social media, or phone across various channels. The personal data collected in this way can be evaluated and used for communication with potential customers or for marketing measures (e.g., newsletter mailings). With Hubspot CRM, we can also capture and analyze the user behavior of our contacts on our website.

 

The use of Hubspot CRM is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in efficient customer management and customer communication. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; consent can be revoked at any time.

 

Please refer to Hubspot’s privacy policy for more details: [Hubspot Privacy Policy](https://legal.hubspot.com/de/privacy-policy).

 

The data transfer to the USA is based on the standard contractual clauses of the European Commission. Details can be found here: [Hubspot Data Privacy](https://www.hubspot.de/data-privacy/privacy-shield).

 

**Order Processing**

We have entered into an order processing contract (AVV) with the provider mentioned above. This is a data protection contract required by law, which ensures that this provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

 

**Social Media**

**eRecht24 Safe Sharing Tool**

The content on this website can be shared on social networks such as Facebook, Twitter & Co. in compliance with data protection regulations. This page uses the eRecht24 Safe Sharing Tool for this purpose. This tool establishes direct contact between the networks and users only when the user actively clicks on one of these buttons. Clicking on the button constitutes consent within the meaning of Art. 6(1)(a) GDPR. This consent can be revoked at any time with effect for the future.

 

This tool does not automatically transfer user data to the operators of these platforms. If the user is logged into one of the social networks, an information window appears when using the social buttons of Facebook, Twitter & Co., in which the user can confirm the text before it is sent.

 

Our users can share the content of this page in social networks in a data protection-compliant manner without creating complete surfing profiles by the operators of the networks.

 

**Analysis Tools and Advertising**

**WP Statistics**

This website uses the WP Statistics analysis tool to statistically evaluate visitor access. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, UAE ([Veronalabs](https://veronalabs.com)).

 

With WP Statistics, we can analyze the use of our website. WP Statistics records log files (IP address, referrer, used browser, user’s origin, used search engine) and actions that website visitors have taken on the page (e.g., clicks and views).

 

The data collected with WP Statistics is stored exclusively on our own server.

 

The use of this analysis tool is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior to optimize both our website offering and our advertising. If consent has been requested (e.g., consent to store cookies), processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; consent can be revoked at any time.

 

**IP Anonymization**

We use WP Statistics with IP anonymization. Your IP address is shortened so that it cannot be directly associated with you anymore.

 

7. Newsletter

Newsletter­daten

Wenn Sie den auf der Website angebotenen Newsletter beziehen möchten, benötigen wir von Ihnen eine E-Mail-Adresse sowie Informationen, welche uns die Überprüfung gestatten, dass Sie der Inhaber der angegebenen E-Mail-Adresse und mit dem Empfang des Newsletters einverstanden sind. Weitere Daten werden nicht bzw. nur auf freiwilliger Basis erhoben. Für die Abwicklung der Newsletter nutzen wir Newsletterdiensteanbieter, die nachfolgend beschrieben werden.

MailChimp

Diese Website nutzt die Dienste von MailChimp für den Versand von Newslettern. Anbieter ist die Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

MailChimp ist ein Dienst, mit dem u.a. der Versand von Newslettern organisiert und analysiert werden kann. Wenn Sie Daten zum Zwecke des Newsletterbezugs eingeben (z. B. E-Mail-Adresse), werden diese auf den Servern von MailChimp in den USA gespeichert.

Mit Hilfe von MailChimp können wir unsere Newsletterkampagnen analysieren. Wenn Sie eine mit MailChimp versandte E-Mail öffnen, verbindet sich eine in der E-Mail enthaltene Datei (sog. web-beacon) mit den Servern von MailChimp in den USA. So kann festgestellt werden, ob eine Newsletter-Nachricht geöffnet und welche Links ggf. angeklickt wurden. Außerdem werden technische Informationen erfasst (z. B. Zeitpunkt des Abrufs, IP-Adresse, Browsertyp und Betriebssystem). Diese Informationen können nicht dem jeweiligen Newsletter-Empfänger zugeordnet werden. Sie dienen ausschließlich der statistischen Analyse von Newsletterkampagnen. Die Ergebnisse dieser Analysen können genutzt werden, um künftige Newsletter besser an die Interessen der Empfänger anzupassen.

Wenn Sie keine Analyse durch MailChimp wollen, müssen Sie den Newsletter abbestellen. Hierfür stellen wir in jeder Newsletternachricht einen entsprechenden Link zur Verfügung.

Die Datenverarbeitung erfolgt auf Grundlage Ihrer Einwilligung (Art. 6 Abs. 1 lit. a DSGVO). Sie können diese Einwilligung jederzeit widerrufen, indem Sie den Newsletter abbestellen. Die Rechtmäßigkeit der bereits erfolgten Datenverarbeitungsvorgänge bleibt vom Widerruf unberührt.

Die von Ihnen zum Zwecke des Newsletter-Bezugs bei uns hinterlegten Daten werden von uns bis zu Ihrer Austragung aus dem Newsletter bei uns bzw. dem Newsletterdiensteanbieter gespeichert und nach der Abbestellung des Newsletters aus der Newsletterverteilerliste gelöscht. Daten, die zu anderen Zwecken bei uns gespeichert wurden, bleiben hiervon unberührt.

Die Datenübertragung in die USA wird auf die Standardvertragsklauseln der EU-Kommission gestützt. Details finden Sie hier: https://mailchimp.com/eu-us-data-transfer-statement/ und https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.

Nach Ihrer Austragung aus der Newsletterverteilerliste wird Ihre E-Mail-Adresse bei uns bzw. dem Newsletterdiensteanbieter ggf. in einer Blacklist gespeichert, um künftige Mailings zu verhindern. Die Daten aus der Blacklist werden nur für diesen Zweck verwendet und nicht mit anderen Daten zusammengeführt. Dies dient sowohl Ihrem Interesse als auch unserem Interesse an der Einhaltung der gesetzlichen Vorgaben beim Versand von Newslettern (berechtigtes Interesse im Sinne des Art. 6 Abs. 1 lit. f DSGVO). Die Speicherung in der Blacklist ist zeitlich nicht befristet. Sie können der Speicherung widersprechen, sofern Ihre Interessen unser berechtigtes Interesse überwiegen.

Näheres entnehmen Sie den Datenschutzbestimmungen von MailChimp unter: https://mailchimp.com/legal/terms/.

Auftragsverarbeitung

Wir haben einen Vertrag über Auftragsverarbeitung (AVV) mit dem oben genannten Anbieter geschlossen. Hierbei handelt es sich um einen datenschutzrechtlich vorgeschriebenen Vertrag, der gewährleistet, dass dieser die personenbezogenen Daten unserer Websitebesucher nur nach unseren Weisungen und unter Einhaltung der DSGVO verarbeitet.

8. Plugins und Tools

MyFonts

Diese Seite nutzt zur einheitlichen Darstellung von Schriftarten so genannte Web Fonts von MyFonts Inc., 600 Unicorn Park Drive, Woburn, Massachusetts 01801 USA (nachfolgend: MyFonts). Hierbei handelt es sich um Schriftarten, die beim Aufrufen unserer Website in Ihren Browser geladen werden, um ein einheitliches Schriftbild bei der Webseitendarstellung zu gewährleisten.

Die Fonts sind lokal installiert. Eine Verbindung zu Servern von MyFonts findet dabei nicht statt. Der Einsatz der Fonts erfolgt auf Grundlage unseres berechtigten Interesses an einer einheitlichen Darstellung unserer Website (Art. 6 Abs. 1 lit. f DSGVO).

9. eCommerce und Zahlungs­anbieter

Verarbeiten von Daten (Kunden- und Vertragsdaten)

Wir erheben, verarbeiten und nutzen personenbezogene Daten nur, soweit sie für die Begründung, inhaltliche Ausgestaltung oder Änderung des Rechtsverhältnisses erforderlich sind (Bestandsdaten). Dies erfolgt auf Grundlage von Art. 6 Abs. 1 lit. b DSGVO, der die Verarbeitung von Daten zur Erfüllung eines Vertrags oder vorvertraglicher Maßnahmen gestattet. Personenbezogene Daten über die Inanspruchnahme dieser Website (Nutzungsdaten) erheben, verarbeiten und nutzen wir nur, soweit dies erforderlich ist, um dem Nutzer die Inanspruchnahme des Dienstes zu ermöglichen oder abzurechnen.

Die erhobenen Kundendaten werden nach Abschluss des Auftrags oder Beendigung der Geschäftsbeziehung gelöscht. Gesetzliche Aufbewahrungsfristen bleiben unberührt.

10. Audio- und Videokonferenzen

Datenverarbeitung

Für die Kommunikation mit unseren Kunden setzen wir unter anderen Online-Konferenz-Tools ein. Die im Einzelnen von uns genutzten Tools sind unten aufgelistet. Wenn Sie mit uns per Video- oder Audiokonferenz via Internet kommunizieren, werden Ihre personenbezogenen Daten von uns und dem Anbieter des jeweiligen Konferenz-Tools erfasst und verarbeitet.

Die Konferenz-Tools erfassen dabei alle Daten, die Sie zur Nutzung der Tools bereitstellen/einsetzen (E-Mail-Adresse und/oder Ihre Telefonnummer). Ferner verarbeiten die Konferenz-Tools die Dauer der Konferenz, Beginn und Ende (Zeit) der Teilnahme an der Konferenz, Anzahl der Teilnehmer und sonstige „Kontextinformationen“ im Zusammenhang mit dem Kommunikationsvorgang (Metadaten).

Des Weiteren verarbeitet der Anbieter des Tools alle technischen Daten, die zur Abwicklung der Online-Kommunikation erforderlich sind. Dies umfasst insbesondere IP-Adressen, MAC-Adressen, Geräte-IDs, Gerätetyp, Betriebssystemtyp und -version, Client-Version, Kameratyp, Mikrofon oder Lautsprecher sowie die Art der Verbindung.

Sofern innerhalb des Tools Inhalte ausgetauscht, hochgeladen oder in sonstiger Weise bereitgestellt werden, werden diese ebenfalls auf den Servern der Tool-Anbieter gespeichert. Zu solchen Inhalten zählen insbesondere Cloud-Aufzeichnungen, Chat-/ Sofortnachrichten, Voicemails hochgeladene Fotos und Videos, Dateien, Whiteboards und andere Informationen, die während der Nutzung des Dienstes geteilt werden.

Bitte beachten Sie, dass wir nicht vollumfänglich Einfluss auf die Datenverarbeitungsvorgänge der verwendeten Tools haben. Unsere Möglichkeiten richten sich maßgeblich nach der Unternehmenspolitik des jeweiligen Anbieters. Weitere Hinweise zur Datenverarbeitung durch die Konferenztools entnehmen Sie den Datenschutzerklärungen der jeweils eingesetzten Tools, die wir unter diesem Text aufgeführt haben.

Zweck und Rechtsgrundlagen

Die Konferenz-Tools werden genutzt, um mit angehenden oder bestehenden Vertragspartnern zu kommunizieren oder bestimmte Leistungen gegenüber unseren Kunden anzubieten (Art. 6 Abs. 1 lit. b DSGVO). Des Weiteren dient der Einsatz der Tools der allgemeinen Vereinfachung und Beschleunigung der Kommunikation mit uns bzw. unserem Unternehmen (berechtigtes Interesse im Sinne von Art. 6 Abs. 1 lit. f DSGVO). Soweit eine Einwilligung abgefragt wurde, erfolgt der Einsatz der betreffenden Tools auf Grundlage dieser Einwilligung; die Einwilligung ist jederzeit mit Wirkung für die Zukunft widerrufbar.

Speicherdauer

Die unmittelbar von uns über die Video- und Konferenz-Tools erfassten Daten werden von unseren Systemen gelöscht, sobald Sie uns zur Löschung auffordern, Ihre Einwilligung zur Speicherung widerrufen oder der Zweck für die Datenspeicherung entfällt. Gespeicherte Cookies verbleiben auf Ihrem Endgerät, bis Sie sie löschen. Zwingende gesetzliche Aufbewahrungsfristen bleiben unberührt.

Auf die Speicherdauer Ihrer Daten, die von den Betreibern der Konferenz-Tools zu eigenen Zwecken gespeichert werden, haben wir keinen Einfluss. Für Einzelheiten dazu informieren Sie sich bitte direkt bei den Betreibern der Konferenz-Tools.

Eingesetzte Konferenz-Tools

Wir setzen folgende Konferenz-Tools ein:

Microsoft Teams

Wir nutzen Microsoft Teams. Anbieter ist die Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Details zur Datenverarbeitung entnehmen Sie der Datenschutzerklärung von Microsoft Teams: https://privacy.microsoft.com/de-de/privacystatement.

Auftragsverarbeitung

Wir haben einen Vertrag über Auftragsverarbeitung (AVV) mit dem oben genannten Anbieter geschlossen. Hierbei handelt es sich um einen datenschutzrechtlich vorgeschriebenen Vertrag, der gewährleistet, dass dieser die personenbezogenen Daten unserer Websitebesucher nur nach unseren Weisungen und unter Einhaltung der DSGVO verarbeitet.

 

 

Kontaktieren Sie uns!

Sie möchten mehr über Security as a Service erfahren?
Hinterlassen Sie Ihre E-Mail Adresse. Wir kontaktieren Sie gerne.

SECaaS – Security as a Service

XaaS Enterprise GmbH Sebastian-Kneipp-Straße 41 60439 Frankfurt am Main