Data Protection Information

Data Protection Information

Data protection information in accordance with Art. 13 and 14 GDPR

Information pursuant to Art. 13 GDPR for online meetings, conference calls and webinars via Microsoft Teams

  1. Designation of the processing activity
  2. Name and contact details of the responsible person
  3. Contact details of the data protection officer of microfluidic ChipShop GmbH
  4. Purpose of the processing
  5. Legal bases of data processing
  6. Recipients or recipients categories of the personal data
  7. Transfer of personal data outside the EU
  8. Duration of the storage of personal data
  9. Rights of data subjects
  10. Amendment of this data protection notice
  1. Designation of the processing activity

This information is provided in connection with the processing of personal data in connection with the use of “Microsoft Teams”.

  1. Name and contact details of the responsible person

microfluidic ChipShop GmbH
Dr. Claudia Gaertner
Stockholmer Str. 20
07747 Jena
Germany
Email: Info@microfluidic-ChipShop.com
Phone: +49 (0) 3641 347050

  1. Contact details of the data protection officer of microfluidic ChipShop GmbH

DataCo GmbH
Dachauer Str. 65
80335 München
Germany
Email: datenschutz@dataguard.de
Phone.: +49 (0) 89 7400 458 40

  1. Purpose of the processing

We use the “Microsoft Teams” tool to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: “online meetings”). “Microsoft Teams” is a service of Microsoft Corporation.

We use “Microsoft Teams” to conduct “online meetings”. If we want to record “online meetings”, we will inform you in advance in a transparent manner and – if necessary – ask for your consent.

If it is necessary for the aim of an online meeting to document outcomes, we will log the chat content. However, this will not usually be the case.

Processing of your personal data

Various types of data are processed when using “Microsoft Teams”. The extent of the data also depends on the data you provide before or when participating in an “online meeting.

 The following personal data is subject to processing:

User details, e-mail address, profile picture, preferred language.

Meeting metadata: Date, time, meeting ID, phone numbers, location

Text, audio and video data: You may have the option of using the chat function in an “online meeting”. In this respect, the text entries you make are processed in order to display them in the “online meeting”. In order to enable the display of video and the playback of audio, the data from the microphone of your end device and from any video camera of the end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time via the “Microsoft Teams” applications.

Automated decision-making within the meaning of Art. 22 GDPR is not used.

  1. Legal bases of data processing

As far as personal data of employees of microfluidic ChipShop GmbH are processed, § 26 BDSG is the legal basis for data processing. If, in connection with the use of “Microsoft Teams”, personal data is not required for the establishment, implementation or termination of the employment relationship, but is nevertheless an essential part of the use of “Microsoft Teams”, Art. 6 para. 1 lit. f) GDPR is the legal basis for data processing. In these cases, our interest lies in the effective conduct of “online meetings”.

Otherwise, the legal basis for data processing when conducting “online meetings” is Art. 6 para. 1 lit. b) GDPR, provided that the meetings are conducted within the framework of contractual relationships.

If there is no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) GDPR. In this case, too, we have an interest in the effective conduct of online meetings.

  1. Recipients or recipients categories of the personal data

Personal data that is processed in connection with participation in “online meetings” is not passed on to third parties unless it is specifically intended to be passed on. Please note that content from “online meetings”, as with face-to-face meetings, is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on, such as suppliers, dealers, authorities, cooperation partners, situational processors, etc.

Other recipients: The provider of “Microsoft Teams (Microsoft Ireland Operations Limited)” necessarily receives knowledge of the above-mentioned data, as far as this is provided for in the context of our order processing contract with “Microsoft Teams”.

  1. Transfer of personal data outside the EU

Data processing outside the European Union (EU) does not take place, as we have limited our storage location to data centers in the European Union.

The data is encrypted during transport over the Internet and thus protected against unauthorized access by third parties.

  1. Duration of the storage of personal data

We generally delete personal data when there is no need for further storage. A requirement may exist in particular if the data is still needed to fulfill contractual services, to check and grant or defend against warranty and guarantee claims. In the case of statutory archiving obligations, deletion will only be considered after expiry of the respective archiving obligation.

  1. Rights of data subjects

According to the EU General Data Protection Regulation, you have the following rights:

If your personal data is processed, you have the right to obtain information on the personal data stored about you (Art. 15 GDPR).

If incorrect personal data is processed, you have the right to rectification (Art. 16 GDPR).

If the legal requirements are met, you can request the deletion or restriction of the processing and object to the processing (Art. 17, 18 and 21 GDPR).

If you have consented to the data processing or a contract for data processing exists and the data processing is carried out using automated procedures, you may have a right to data transferability (Art. 20 GDPR).

You also have the right to submit a complaint to a supervisory authority (Art. 77 GDPR). The supervisory authority responsible for us is the Thuringian State Office for Consumer Protection (Thüringer Landesamt für Verbraucherschutz). You can contact them at:

Thüringer Landesamt für Verbraucherschutz
represented by the chairman
Tennstedter Straße 8/9
99947 Bad Langensalza
Germany
Phone: +49 (0)361 57-3815 000
Fax: 49 (0)361 57-3815 010
E-Mail: Poststelle@tlv.thueringen.de

To exercise your rights, please contact the authoritative data protection officer.

In the event of complaints under data protection law, you can contact a supervisory authority, e.g. the State Commissioner for Data Protection of Thuringia:

The State Commissioner for Data Protection and Freedom of Information of Thuringia
P.O. Box 90 04 55
99107 Erfurt
Germany

Häßlerstrasse 8, 99096 Erfurt, Germany
E-Mail: poststelle@datenschutz.thueringen.de
Tel.: +49 361 57-3112900

Consent

If you have consented to the processing by the controller by means of a corresponding declaration, you can withdraw your consent at any time for the future. The lawfulness of the data processing carried out on the basis of the consent until the withdrawal is not affected by this.

  1. Amendment of this data protection notice

We will revise this data protection information in the event of changes to data processing or other events that make such revision necessary. You will always find the current version on this website

Status: 12/2023