Data protection information
for webinars via Zoom

Data protection information for webinars via Zoom
Our company attaches great importance to the protection of personal data and respects your wish for privacy. In the following, we inform you about the collection of personal data when using our webinar events, conducted via Zoom. If you have any further questions regarding the handling of your personal data, please do not hesitate to contact our data protection officer.

I. Responsible body
Responsible for the processing of your personal data is the

COMPIRICUS GmbH
Graf-Adolf-Platz 6
40213 Düsseldorf
Germany

T +49 211 64949-300
F +49 211 64949-599

info@compiricus.de
www.compiricus.de

II. Data protection officer

The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions related to data protection is:

x1F GmbH

Nymphenburger Straße 1

80335 Munich

If you have any questions, you can contact us by email at experience@x1f.one or by phone on +49 89 589395-600.

If you have any questions about this data protection declaration, please contact our data protection officer at datenschutz@x1f.one or by post at

x1F GmbH

Sebastian Raguse | Data Protection Officer

Nymphenburger Straße 1

80335 Munich

III. Conduct of the webinar
We use “Zoom” to conduct our online webinars. “Zoom” is a service provided by Zoom Video Communications, Inc. located at 55 Almaden Blvd, San Jose, CA 95113 in the United States.

Our webinars are offered via the Zoom app and additionally via the web application in the web browser. The installation of the Zoom app is required for the use via app.

Note: If you access the “Zoom” website, the provider of “Zoom” is responsible for data processing.

IV. Your personal data
Personal data within the meaning of the General Data Protection Regulation is any information relating to an identified or identifiable natural person (hereinafter “data subject”).

As part of your webinar registration, we process the following personal data provided by you:

  • First and last name
  • Valid email address (professional or private)
  • Professional information, such as professional position in the company (optional)

We have marked optional details both in the registration form and here.

Different types of data are processed when using “Zoom”. The following personal data may be processed in the course of the webinars:

  • When using the chat: Your messages
  • Your response to a survey conducted in Zoom
  • Time of attendance (time of entry and exit)
  • User details (displayed username, e-mail address if applicable, optional profile picture, preferred language)
  • Webinar metadata (e.g. date, time, meeting ID, telephone numbers, location, duration of the call)

Data protection is very important to us, which is why we do not publish any video or audio recordings of you on our portals.

V. Purposes of the data processing
We process your personal data for the following purposes and based on the following legal grounds:

  • To carry out the webinars you have booked and enable your participation, Art. 6 (1) p. 1 lit. b GDPR (necessity for fulfilment of contract).
  • To facilitate communication with our webinar participants, Art. 6 (1) p. 1 lit. a GDPR (your consent).
  • To send invitations to webinars to enable you to participate and to enable us to keep track of participants, Art. 6 (1) p. 1 lit. a GDPR (your consent) or, in some cases, Art. 6 (1) p .1 lit. f GDPR (our legitimate interest in achieving well-attended webinars).
  • For the proper guarantee and IT security of our IT systems, Art. 6 (1) p. 1 lit. f GDPR (our legitimate interest in the protection, availability, and functionality of our systems).
  • To facilitate communication and improve the webinar results through active participation, you can write chat messages. These are only visible to us and the sender, not to other webinar participants and also not as part of any recording. The legal basis for the processing of your personal data in the context of the chat messages is your consent given by voluntarily writing and sending them in accordance with Art. 6 p. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by not writing any more chat messages.

There is no automated decision-making in the sense of Art. 22 GDPR.

VI. Recipients of your data
Personal data that is processed in connection with participation in webinars will not be passed on to third parties unless it is intended to be passed on.

Other recipients: The provider of “Zoom” necessarily receives knowledge of the above-mentioned data (see IV), insofar as this is provided for in the context of our order processing contract with “Zoom”.

VII. Data processing outside the EU
“Zoom” is a service provided by a provider from the USA. Personal data is therefore also processed in a country outside the EU/EEA. We have therefore ensured that an appropriate level of data protection comparable to the standards within the EU is guaranteed at the recipient before your personal data is transferred. The standard contractual clauses of the EU Commission have been concluded for this purpose.

You can find more information on data processing by “Zoom” at https://explore.zoom.us/de/privacy/

VIII. LinkedIn
If you visit our LinkedIn company page and use it to register for a webinar from us, we are jointly responsible with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (https://www.linkedin.com/help/linkedin/solve) for processing your personal data.

We operate our LinkedIn page to inform and communicate with you as a user and interested party of our offer. In accordance with LinkedIn’s terms of use, which each user has agreed to as part of creating a LinkedIn profile, we may

  • Identify the subscribers to the site
  • and their profiles
  • as well as other shared information from them.

For example, your LinkedIn name and profile picture are visible to us (and other LinkedIn users) when you visit our site or comment on posts by us.

When you register for our webinar offers, which we advertise on our LinkedIn page, we collect the data required for this purpose, as already described in section III. As a matter of principle, we only collect the personal data that we need to fulfil our purposes as described in section IV. We only collect additional data on a voluntary basis, i.e. with your consent.

LinkedIn uses cookies, i.e. small text files that are stored on the various end devices of the users, to store and further process the data. According to LinkedIn, the cookies used by LinkedIn are for authentication, security, preferences, features and services, personalised advertising, and analysis and research. Details of the cookies used by LinkedIn can be viewed here: https://de.linkedin.com/legal/cookie-policy.

The privacy policy of LinkedIn contains further information on data processing. Further data protection information on our data processing within LinkedIn can be found here.

The operation of the LinkedIn page including the processing of the users’ personal data is carried out on the basis of Art. 6 (1) p. 1 lit. f GDPR to protect our legitimate interest in timely communication and interaction with our users and visitors.

The legal basis for the processing of your data via our LinkedIn page when registering for one of our webinars is your consent pursuant to Art. 6 (1) sentence 1 lit. a GDPR and, insofar as the processing is necessary to fulfil the webinar contract, Art. 6 (1) sentence 1 lit. b GDPR.

IX. Storage period and deletion
When you register for a webinar, we store your personal data during the contractual relationship and beyond for as long as we need the data or we are legally obliged to do so (e.g. possible obligation to retain data for tax reasons). A requirement for storage may exist in particular if the data is still needed to fulfil contractual services and to be able to check or grant/refuse warranty and possibly guarantee claims.

After the respective retention period has expired or the legal basis for retaining your data no longer applies, we delete it immediately.

X. Record
We regularly record our webinars and publish them on our website and on YouTube.

The recording does not contain any personal data of our webinar participants:

This is because we do not allow video and/or audio recordings due to the deactivation of corresponding functions and also because the chat (question window) is only visible to us, but is not included in the recording.

Chat messages are regularly read out during the webinar and are therefore also part of the recording. However, when we read out the chat messages, we do not mention any data that could be used to identify you personally. For example, we do not mention the name of the sender or the sender’s company affiliation. We exclude all information that would allow us to identify you personally when we read out the messages.

As the recording does not contain any of your personal data, we are able to record and publish the recording without any legal basis in relation to you.

XI. Logging of chat content

If it is necessary for the purposes of logging the results of a webinar, we will log the chat content independently of any recording. However, this will not usually be the case.

XII. Whitepaper

After the webinar, you will receive a white paper from us with the content of the webinar. The Whitepaper will also include chat messages that we received during the webinar, if we consider them worth mentioning, interesting or important.

The chat messages reproduced in the Whitepaper do not contain any personal data. Data that would allow conclusions to be drawn about the senders of the chat messages are not published in the Whitepaper.

The Whitepaper also does not contain any other personal data of our webinar participants.

XIII. Your rights

We will be happy to provide you with information on whether personal data relating to you is being processed; if this is the case, you have a right to information on this personal data and to the information listed in detail in Art. 15 GDPR. In addition, you have the right to rectification (Art. 16 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to erasure (Art. 17 GDPR) and the right to data portability (Art. 20 GDPR) under the respective legal conditions.

You have the right to object to the processing under the legal conditions (Art. 21 GDPR):

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6 (1) sentence 1 lit. e or f GDPR; this also applies to profiling based on these provisions. We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

If personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is related to such direct marketing. In the event of your objection to processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

To exercise your above rights, please contact us by e-mail at datenschutz@compiricus.de or by post at COMPIRICUS GmbH, Graf-Adolf-Platz 6, 40213 Düsseldorf. The exercise of your above rights is free of charge for you.

Without prejudice to these rights and the possibility of seeking any other administrative or judicial remedy, you may at any time exercise your right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes data protection rules (Article 77 of the GDPR).

The supervisory authority responsible for us is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen,
Kavalleriestraße 2-4,
40213 Düsseldorf

XIV. Is there an obligation to provide your personal data?
There is no obligation to provide your personal data. However, if you do not agree to the data processing that takes place within the framework of the webinar and Zoom, you cannot use the services provided.

Processing that requires consent is exempt from this; it is always subject to consent, so you can participate in the webinar without consenting to the relevant processing that requires consent (e.g. you can also participate in the webinar without sending chat messages).