We would like to inform you about the processing of your personal data in connection with the use of "GoToMeeting", "GoToWebinar" and "Zoom" (hereinafter: online meetings).
Purpose of the processing
We use the tools Zoom, GoToMeeting and GoToWebinar to conduct web meetings, video and telephone conferences, webinars and training courses (hereinafter referred to as online meetings) for customers, business partners and interested parties on various topics. We also use these tools for internal communication within the company.
Participation in our online meetings requires registration.
- Zoom" is a service provided by Zoom Video Communications, Inc. with headquarters in the USA
- GoToWebinar/GoToMeeting is a service from LogMeIn Ireland Limited, based in Ireland, a subsidiary of LogMeIn Inc. of Boston, USA
For the registration both providers provide us with a registration link.
Name and contact details of the person responsible
Verantwortliche für die Datenerhebung, Datenverarbeitung und Datennutzung im Sinne der Datenschutzgrundverordnung ist die SerNet Service Network GmbH, Bahnhofsallee 1b, 37081 Göttingen (im weiteren "SerNet" genannt).
Note: If you call up the Internet pages of the above-mentioned providers, the respective provider is responsible for data processing. However, calling up the website is only necessary to download the software for the use of Zoom or GoToWebinar/GoToMeeting.
As far as you call the internet pages of GoToWebinar/GoToMeeting or Zoom, the respective provider is responsible for the data processing.
However, calling up these Internet pages is only necessary for the use of GoToWebinar/GoToMeeting or Zoom in order to download the software for use.
You can also use GoToWebinar/GoToMeeting or Zoom if you enter the respective meeting ID and, if necessary, further access data for the meeting directly into the respective app.
If you cannot or do not want to use the respective app, the basic functions can also be used via a browser version, which you can also find on the web pages.
Which data do we process?
The nature and scope of the data processed depends on the information you provide before and during the participation in an online meeting.
As part of the registration process, first name, last name and e-mail address are processed as mandatory data and, if applicable, other voluntary information about the company such as industry or telephone number. In addition, the date and time of registration are collected.
When dialing in with a telephone, incoming and outgoing telephone number, country name, start and end time and, if applicable, other connection data such as the IP address of the device are stored.
Apart from the types of data that are technically required to provide the online meetings, you as a user are free to determine which data you wish to provide, so that an involuntary communication of information is excluded. In particular, you have the possibility to switch off or mute the camera or microphone of your terminal device at any time.
As a rule, the online meetings are not recorded. This also applies to the chat function. Should we record the online meeting in exceptional cases, this will only be done after we have informed you of this state of affairs in a transparent manner and, where necessary, obtained your consent.
Insofar as it is necessary to record the results of an online meeting, we will record the chat contents. In the case of webinars, the questions asked by webinar participants can also be processed for the purposes of recording and follow-up.
Zoom allows attention tracking to be switched off and SerNet can therefore guarantee that no attention tracking is carried out during webinars and web meetings. If attention tracking cannot be switched off for other services, SerNet guarantees that this data will neither be processed nor stored but deleted as quickly as possible.
Legal basis of the data processing
Insofar as your consent should be required for a recording of the online meeting, the legal basis is Art. 6 para. 1 lit. a DSGVO. This applies equally to your consent within the scope of the registration process.
If personal data is processed by SerNet employees, §26 BDSG is the legal basis for data processing. If, in connection with the use of the online meeting, personal data is not required for the establishment, execution or termination of the employment relationship, but is nevertheless an elementary component of the use of the online meeting, Art. 6 Para. 1 lit. f DSGVO is the legal basis for data processing. In these cases, we are interested in the effective conduct of online meetings.
If the online meetings are held as part of or to initiate contractual relationships, Art. 6 para. 1 lit. b DSGVO is the legal basis. For other participants, Art. 6 para. 1 lit. f DSGVO is the legal basis. Legal basis. Here we are interested in the effective implementation of online meetings.
Recipient / Transfer of data
Personal data processed in connection with participation in online meetings are generally not passed on to third parties, unless they are specifically intended to be passed on. Please note that content from "online meetings" as well as personal meetings are often used to communicate information with customers, interested parties or third parties and are therefore intended for disclosure.
Other recipients are: The providers of "Zoom" and "GoToWebinar/GoToMeeting" necessarily receive knowledge of the above mentioned data, as far as this is provided for in our contract processing agreement.
Data processing outside the European Union
"GoToMeeting", "GoToWebinar" and "Zoom" are services provided by providers from the USA. Personal data is therefore also processed in a third country. We have concluded an order processing contract with the providers that complies with the requirements of Art. 28 DSGVO.
An adequate level of data protection is guaranteed at both Zoom Video Communications, Inc. and LogMeIn, Inc. by the conclusion of the so-called EU standard contract clauses.
Deletion of data
As a matter of principle, we delete personal data when there is no need for further storage. A requirement can exist in particular if the data is still needed to fulfil contractual services, to check and grant or ward off warranty and, if applicable, guarantee claims. In the case of statutory storage obligations, deletion shall only be considered after the expiry of the respective storage obligation.
Every participant can at any time make use of his right to revoke, correct and delete his data and revoke his consent for the future by sending an e-mail to firstname.lastname@example.org.
The SerNet data protection information also applies.