(This is an English translation provided for your convenience. For legal reasons, the actual Privacy Policy is in German, and available here.)
1. Privacy at a Glance
General Information
The following information provides a brief overview of what happens to your personal data when you visit our website. Personal data includes all data that can personally identify you. For detailed information on data protection, please refer to our privacy policy listed below this text.
Data Collection on My Website
Who is responsible for data collection on this website?
Vivian Dittmar, Biedersteinerstraße 4a, 80802 München, team[at]viviandittmar.net.
How do we collect your data?
Your data is collected, on the one hand, by you providing it to us. This can, for example, be data that you enter into a contact form.
Other data is automatically collected by our IT systems when you visit the website. These are primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Some of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction, blocking, or deletion of this data. For this purpose, as well as for further questions regarding data protection, you can contact us at any time using the address provided in the legal notice. Furthermore, you have a right to lodge a complaint with the competent supervisory authority.
Analysis Tools and Third-Party Tools
When you visit our website, your surfing behavior may be statistically evaluated. This is primarily done with cookies and so-called analysis programs. The analysis of your surfing behavior is usually anonymous; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.
Google Tag Manager
This website uses Google Tag Manager. This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags. This means that no cookies are used and no personal data is collected. The Google Tag Manager triggers other tags that may collect data. However, the Google Tag Manager does not access this data. If deactivation has been made at the domain or cookie level, it remains in effect for all tracking tags implemented with Google Tag Manager.
2. General Information and Mandatory Information
Data Protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is any data that can personally identify you. This privacy policy explains what data we collect and for what purpose. It also explains how and for what purpose this happens.
We point out that data transmission over the Internet (e.g., communication by e-mail) may have security vulnerabilities. A complete protection of the data against access by third parties is not possible.
Controller Information
The controller for data processing on this website is:
Vivian Dittmar
Biedersteinerstr. 4a
80802 Munich
+49 (0)80 519676171
team[at]viviandittmar.net
The controller is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g., names, e-mail addresses, etc.).
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your express consent. You can revoke a previously given consent at any time. For this purpose, an informal notification by e-mail to me is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to Lodge a Complaint with the Competent Supervisory Authority
In the case of violations of data protection law, the data subject has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to Data Portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done to the extent that it is technically feasible.
SSL/TLS Encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the website operator, this site uses SSL/TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Encrypted Payment Transactions on this Website
If, after the conclusion of a fee-based contract, there is an obligation to provide us with your payment data (e.g., account number for direct debit authorization), this data is required for payment processing.
Payment transactions using common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL/TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
With encrypted communication, your payment data that you transmit to us cannot be read by third parties.
Information, Blocking, Deletion
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if necessary, a right to correction, blocking or deletion of this data. For this purpose and for further questions regarding personal data, you can contact us at any time using the address provided in the legal notice.
Objection to Promotional Emails
The use of contact data published within the framework of the imprint obligation for the purpose of sending unsolicited advertising and information materials is hereby rejected. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam e-mails.
3. Data Collection on Our Website
Cookies
Our websites use so-called cookies. Cookies do not harm your computer and do not contain viruses. They are designed to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can configure your browser to notify you about the setting of cookies, allow cookies only in specific cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
Cookies that are necessary for the execution of the electronic communication process or for the provision of certain functions you desire (e.g., shopping cart function) are stored based on Art. 6(1)(f) DSGVO. The website operator has a legitimate interest in storing cookies for the technically flawless and optimized provision of its services. If other cookies (e.g., cookies for analyzing your surfing behavior) are stored, they are treated separately in this privacy policy.
Server Log Files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:
– Browser type and browser version
– Operating system used
– Referrer URL
– Hostname of the accessing computer
– Time of the server request
– IP address
These data will not be merged with other data sources.
The basis for data processing is Art. 6(1)(f) DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
Contact Form
If you submit inquiries to us via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and for potential follow-up questions. We will not disclose this data without your consent.
The processing of the data entered into the contact form is based exclusively on your consent (Art. 6(1)(a) DSGVO). You can revoke this consent at any time. An informal notification by email to us is sufficient for this purpose. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data entered by you in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after completing the processing of your inquiry). Mandatory legal provisions, especially retention periods, remain unaffected.
Processing of Data
Recordings
In this privacy policy, I would like to inform you about how your personal data is processed in the context of the on-site events offered by me, possibly with an online accompanying program. Personal data includes all data that can be personally related to you, such as your name, address, or email address.
1) Who is responsible for data processing, and who can you contact?
Responsible according to Art. 4 No. 7 EU General Data Protection Regulation (GDPR) is:
Vivian Dittmar,
Biedersteinerstraße 4a
80802 Munich
+49 (0)80 519676171
team[at]viviandittmar.net
You can contact me regarding data protection issues at datenschutz[at]viviandittmar.net.
2) Initiation and Implementation of On-Site Events possibly with an Online Accompanying Program
I collect, store, and process your data when you provide me with this information during the registration for my on-site events or during the on-site events themselves. This includes your contact details such as first and last name, address, telephone number, email address, and date of birth. If you provide me with additional data during registration or during on-site seminars, I will also process this data.
The aforementioned data is processed by me and by my employees contractually obliged to confidentiality for the following purposes:
– Planning and implementation of on-site events
– Contact within the scope of contract processing with you
– Provision of information you request
– Billing (invoices, reminders, etc.)
– Optimization of administrative processes
– If necessary, transfer to our professionally obligated service providers (lawyers/accountants). The legal basis for processing this data is Art. 6(1)(b) GDPR, as data processing is necessary for the initiation and performance of a contract with you.
3) Recording of On-Site Events
During on-site events, either I or my representatives (photographers, etc.) may take photo, audio, and video recordings (collectively referred to as “recordings”) in publicly accessible areas of the event venue. As a participant in one of my events, you may be visible and/or audible in these recordings. Recordings are made only if you have separately given your consent.
The recordings may be used, in whole or in part, for my public relations and marketing purposes. For this purpose, the recordings may be:
– Stored
– Shared with service providers for data processing (e.g., image and sound editing). I have concluded contracts for order processing with all service providers, binding them to the provisions of the GDPR.
– Published on my websites, in detail www.viviandittmar.net, www.viviandittmar.com, www.lebensweise.net
– Used in future online courses
– Published on my social media channels, in detail AuthorVivianDittmar on Facebook
– Published on my YouTube channels, in detail viviandittmar and viviandittmareng
– Used in other media for my public relations, such as newsletters.
The legal basis for this data processing is your consent pursuant to Art. 6(1)(a) GDPR.
4) Duration of Data Storage
I store your data for as long as the purpose of the respective data processing requires or as long as legal obligations require. Data is regularly deleted when it is no longer necessary for the fulfillment of contractual or legal obligations.
If you have revoked your consent for a specific data processing, I will immediately cease processing the relevant data. However, your consent declaration will still be retained for the period of the regular statute of limitations.
5) Your Rights as a Data Subject
As a data subject, you have several data protection rights. You can request information about your processed data under Art. 15 GDPR, request the correction or completion of your data under Art. 16 GDPR, request the deletion of your stored data under Art. 17 GDPR under the conditions specified there, request the restriction of data processing under Art. 18 GDPR under the conditions specified there, receive your data provided to us in a structured, common, and machine-readable format under Art. 20 GDPR or request the transfer to another responsible party, and lodge a complaint with the competent supervisory authority under Art. 77 GDPR.
In the case of data processing, such as video, audio, and photo recordings, which are carried out exclusively based on your consent, you can revoke your consent at any time without stating reasons, according to Art. 7(3) GDPR. A simple email to datenschutz[at]viviandittmar.net is sufficient for this purpose. Your revocation means that I can no longer continue this data processing in the future.
If your data is processed by us based on legitimate interests under Art. 6(1)(f) GDPR, you can object to the processing of your data under Art. 21 GDPR, provided there are reasons arising from your particular situation. You can send the objection by email to datenschutz[at]viviandittmar.net.
I reserve the right to change or adapt this privacy policy at any time in compliance with applicable data protection laws.
Personal Data
We only collect, process, and use personal data to the extent necessary for establishing, shaping the content of, or changing the legal relationship (inventory data). This is done on the basis of Art. 6(1)(b) GDPR, which allows the processing of data for the performance of a contract or pre-contractual measures. We only collect, process, and use personal data about the use of our websites (usage data) to the extent necessary to enable the user to use the service or to bill for the service.
The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.
Health-related Data (Applies Only to the Lebensweise Annual Training)
In the context of the (online) registration process for the Lebensweise Annual Training, some information about the health of interested parties is requested. This includes, for example, information about whether the interested party is currently in psychotherapeutic treatment, which diagnostic code is relevant, and whether the interested party is taking psychotropic drugs and/or other medications at the time of registration.
This information is requested and stored in the customer file so that Vivian Dittmar and her team can assess whether participation in the Lebensweise Annual Training is currently advisable for the interested party for health reasons. The data collection is necessary to assess possible risks that may arise for both Vivian Dittmar and the interested party through participation in the Lebensweise Annual Training.
I hereby consent to Vivian Dittmar, Biedersteinerstraße 4a, 80802 Munich, and her team processing my personal data and health-related data to the extent mentioned above. My consent also applies to all other health-related data that I disclose to Vivian Dittmar and her team.
I provide this declaration voluntarily with knowledge of the data protection information, including my right of revocation.
Your Rights: Right to information (Art. 15 GDPR), right to correction (Art. 16 GDPR) or deletion (Art. 17 GDPR), right to restriction of processing (Art. 18 GDPR), right to object to processing (Art. 21 GDPR), right to data portability (Art. 20 GDPR). If you wish to exercise your rights, please contact us at the above-mentioned contact details. You also have the right to complain to a data protection supervisory authority about the processing of your personal data.
The purpose of data processing is to assess possible risks that may arise for both Vivian Dittmar and the interested party through participation in the Lebensweise Annual Training. The legal basis for data processing is your consent pursuant to Art. 6(1)(a) GDPR.
Storage Period
Your data will only be stored for as long as necessary for the purpose described above. This is not tied to a specific date. If, as a result of your registration, you participate in the Lebensweise Annual Training, the storage period for the consent declaration after the end of the training is 3 years in accordance with § 195 BGB (regular statute of limitations).
Revocation
You can revoke this consent at any time. Such a revocation does not affect the permissibility of processing your personal data after you have expressed it to me. To revoke, please use the contact details above.
4. Plugins and Tools
YouTube
Our website uses plugins from the YouTube page operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This informs the YouTube server about which of our pages you have visited.
If you are logged into your YouTube account, you allow YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
The use of YouTube is in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
For more information on how user data is handled, please refer to YouTube’s privacy policy at: https://www.google.com/intl/en/policies/privacy.
Vimeo
Our website uses plugins from the Vimeo video portal. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to the Vimeo servers is established. This informs the Vimeo server about which of our pages you have visited. Vimeo also obtains your IP address. This also applies if you are not logged in to Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to the Vimeo server in the USA.
If you are logged into your Vimeo account, you allow Vimeo to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your Vimeo account.
For more information on how user data is handled, please refer to Vimeo’s privacy policy at: https://vimeo.com/privacy.
Google Web Fonts
This page uses so-called web fonts provided by Google for the uniform display of fonts. When you access a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
For this purpose, the browser you use must connect to Google’s servers. This gives Google knowledge that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
If your browser does not support web fonts, a standard font will be used by your computer.
For more information about Google Web Fonts, please visit https://developers.google.com/fonts/faq and Google’s privacy policy: https://www.google.com/policies/privacy/.
Google Maps
This page uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this page has no influence on this data transfer.
The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the locations we have indicated on the website. This represents a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
For more information on how user data is handled, please refer to Google’s privacy policy: https://www.google.com/intl/en/policies/privacy/.
Font Awesome
This page uses web fonts provided by Fonticons, Inc., 6 Porter Road, Apartment 3R, Cambridge, MA 02140, United States, for the uniform display of symbols and comparable design elements. When you access a page, your browser loads the required web fonts into your browser cache to correctly display symbols (icons).
For this purpose, the browser you use must connect to the servers of Fonticons, Inc. This gives Fonticons, Inc. knowledge that our website has been accessed via your IP address. The use of web fonts is in the interest of a consistent and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
If your browser does not support web fonts, placeholder symbols may be used on your computer, or empty spaces may appear at the corresponding locations.
For more information about Font Awesome, please visit https://fontawesome.com/help and Fonticons, Inc.’s privacy policy: https://fontawesome.com/privacy/help.
5. Social Media Presence
We maintain online presences within social networks and platforms to communicate with active customers, interested parties, and users and to inform them about our services.
Please note that user data may be processed outside the European Union. This may pose risks to users, as, for example, the enforcement of user rights could be made more difficult. Regarding US providers certified under the Privacy Shield, we point out that they commit to complying with EU data protection standards.
Furthermore, user data is usually processed for market research and advertising purposes. For instance, user profiles can be created from user behavior and resulting interests. These profiles can, in turn, be used to display advertisements within and outside the platforms that presumably match the users’ interests. For these purposes, cookies are usually stored on users’ computers, storing user behavior and interests. Additionally, data may be stored in user profiles independently of the devices used by users (especially if users are members of the respective platforms and are logged in).
The processing of users’ personal data is based on our legitimate interests in effective user information and communication with users according to Art. 6(1)(f) GDPR. If users are requested by the respective providers to give consent to data processing (i.e., express their consent, e.g., by checking a checkbox or confirming a button), the legal basis for processing is Art. 6(1)(a), Art. 7 GDPR.
For a detailed presentation of the respective processing and options for objection (opt-out), please refer to the linked information provided by the providers below.
Even in the case of information requests and the assertion of user rights, we point out that these can be most effectively asserted with the providers. Only the providers have access to users’ data and can take direct measures and provide information. If you still need assistance, you can contact us.
– Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) – Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.
– Google/YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) – Privacy Policy: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
– Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy/Opt-Out: http://instagram.com/about/legal/privacy/.
– Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Privacy Policy: https://twitter.com/de/privacy, Opt-Out: https://twitter.com/personalization, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.
– Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) – Privacy Policy/Opt-Out: https://about.pinterest.com/de/privacy-policy.
– LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) – Privacy Policy https://www.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.
– Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) – Privacy Policy/Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.
Section 5 was created with the Datenschutz-Generator.de by RA Dr. Thomas Schwenke.
6. Newsletter Newsletter Data
If you wish to subscribe to the newsletter offered on the website, we require your email address and information that allows us to verify that you are the owner of the provided email address and agree to receive the newsletter. Further data is not collected or is collected on a voluntary basis only. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered into the newsletter registration form is based exclusively on your consent (Art. 6(1)(a) GDPR). You can revoke your consent to store the data, the email address, and its use for sending the newsletter at any time, for example, via the “Unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter, and it will be deleted after unsubscribing. Data that has been stored by us for other purposes remains unaffected.
7. Community Platform & Online Courses Comments
When visitors leave comments on the website, we collect the data shown in the comment form, the visitor’s IP address, and the user-agent string (which identifies the browser) to help with spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to check if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After your comment is approved, your profile picture is visible to the public in the context of your comment.
Media
If you are a registered user and upload photos to this website, you should avoid uploading photos with embedded location data (EXIF GPS). Visitors to this website could download and extract location data from images on the website.
Cookies
If you leave a comment on our site, you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me,” your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after one day.
Embedded content from other websites
8. Online Meetings, Phone Conferences, and Webinars via “Zoom”
We would like to inform you about the processing of personal data in connection with the use of “Zoom.”
Purpose of Processing
We use the “Zoom” tool to conduct phone conferences, online meetings, video conferences, and/or webinars (hereinafter referred to as “Online Meetings”). “Zoom” is a service provided by Zoom Video Communications, Inc., based in the USA.
Controller
The organizer of the meeting is the controller for data processing directly related to the conduct of “Online Meetings.”
Note: When you access the “Zoom” website, “Zoom” is responsible for data processing. However, accessing the website is only necessary to download the software for using “Zoom.”
You can also use “Zoom” by entering the respective meeting ID and, if necessary, additional access data directly into the “Zoom” app.
If you do not want or cannot use the “Zoom” app, the basic functions are also available through a browser version, which you can find on the “Zoom” website.
Which Data is Processed?
Various types of data are processed when using “Zoom.” The extent of the data processing also depends on the information you provide before or during participation in an “Online Meeting.”
The following personal data is subject to processing:
User information: First name, last name, telephone (optional), email address, password (if “Single Sign-On” is not used), profile picture (optional), department (optional)
Meeting metadata: Topic, description (optional), participant IP addresses, device/hardware information
In case of recordings (optional): MP4 file of all video, audio, and presentation recordings, M4A file of all audio recordings, text file of the online meeting chat.
In case of phone dial-in: Information about the incoming and outgoing phone number, country name, start and end time. Additional connection data such as the device’s IP address may be stored.
Text, audio, and video data: You may have the option to use the chat, question, or survey functions in an “Online Meeting.” In this case, the text entries you make will be processed to display them in the “Online Meeting” and, if necessary, to log them. To enable the display of video and audio playback, data from your device’s microphone and any video camera on your device are processed during the meeting. You can turn off the camera or microphone at any time using the “Zoom” applications.
To participate in an “Online Meeting” or enter the “Meeting Room,” you must provide at least your name.
Zoom’s GDPR compliance statement: https://zoom.us/de-de/gdpr.html
Scope of Processing
We use “Zoom” to conduct “Online Meetings.” If we want to record “Online Meetings,” we will inform you transparently in advance and, if necessary, ask for your consent. The fact of the recording will also be displayed to you in the “Zoom” app.
If it is necessary for the purpose of logging the results of an “Online Meeting,” we will log the chat contents. However, this will generally not be the case.
In the case of webinars, we may process questions from webinar participants for the purpose of recording and follow-up.
If you are registered as a user with “Zoom,” reports on “Online Meetings” (meeting metadata, data for telephone dial-in, questions and answers in webinars, survey function in webinars) may be stored with “Zoom” for up to one month.
The software-based “Attention Tracking” feature in “Online Meeting” tools like “Zoom” is disabled.
Automated decision-making within the meaning of Art. 22 GDPR is not used.
Legal Basis for Data Processing
If personal data of Vivian Dittmar is processed, § 26 BDSG is the legal basis for data processing. If personal data in connection with the use of “Zoom” is not necessary for the establishment, implementation, or termination of the employment relationship but is an essential part of using “Zoom,” Art. 6(1)(f) GDPR is the legal basis for data processing. In these cases, our interest is in the effective conduct of “Online Meetings.”
Otherwise, the legal basis for data processing when conducting “Online Meetings” is Art. 6(1)(b) GDPR, insofar as the meetings are conducted as part of contractual relationships.
If there is no contractual relationship, the legal basis is Art. 6(1)(f) GDPR. Again, our interest is in the effective conduct of “Online Meetings.”
Recipient/Transfer of Data
Personal data processed in connection with participation in “Online Meetings” is generally not disclosed to third parties unless it is specifically intended for disclosure. Please note that content from “Online Meetings,” as with personal face-to-face meetings, is often used to communicate information to customers, prospects, or third parties and is therefore intended for disclosure.
Other recipients: The provider of “Zoom” necessarily becomes aware of the above data as far as this is provided for in our data processing agreement with “Zoom.”
Data Processing Outside the European Union
“Zoom” is a service provided by a U.S.-based provider. As a result, the processing of personal data also takes place in a third country. We have concluded a data processing agreement with the provider of “Zoom” that complies with the requirements of Art. 28 GDPR.
Adequate data protection is guaranteed, on the one hand, by the “Privacy Shield” certification of Zoom Video Communications, Inc., and, on the other hand, by the conclusion of the so-called EU standard contractual clauses.
Data Protection Officer
You can contact the responsible person as follows: datenschutz@viviandittmar.net
Your Rights as a Data Subject
You have the right to information about the personal data concerning you. You can contact us at any time for information.
For non-written requests for information, we ask for your understanding that we may require evidence from you to prove that you are the person you claim to be.
Furthermore, you have
the right to correction or deletion or restriction of processing, to the extent provided for by law.
Finally, you have the right to object to processing within the scope of legal requirements.
There is also a right to data portability within the framework of data protection regulations.
Deletion of Data
We generally delete personal data when there is no longer a need for further storage. A need may exist, in particular, if the data is still needed to fulfill contractual services, check and grant or defend warranty and, if applicable, guarantee claims. In the case of legal retention obligations, deletion is only considered after the respective retention obligation has expired.
Right to Lodge a Complaint with a Supervisory Authority
You have the right to complain to a data protection supervisory authority about the processing of personal data by us.
Changes to these Data Protection Notices
We revise these data protection notices when there are changes in data processing or for other reasons that make this necessary. The current version can always be found on this website.
Last Updated: 25.01.2022