13. Video Conferencing & Streaming Introduction

Video Conferencing & Streaming Privacy Policy Summary:
Affected: Users who use our video conferencing or streaming tool
Purpose: Communication and presentation of content
Processed data: Access statistics the data such as name, address, contact details, e-mail address, telephone number or contain your IP address. You can find more details on this with the video conferencing or streaming tool used.
Duration of storage: depends on the video conferencing or streaming tool
used 
Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests), Article 6 (1). lit. b GDPR (contract)

What are video conferencing & streaming?
We use software programs that enable us to hold video conferences, online meetings, webinars, display sharing and/or streaming. In a video conference or streaming, information is transmitted simultaneously via sound and moving images. With the help of such video conferencing or streaming tools, we can communicate quickly and easily with customers, business partners, clients and employees over the Internet. Of course, we pay attention to the given legal framework when selecting the service provider.

In principle, third parties can process data as soon as you interact with the software program. Third-party providers of video conferences or streaming solutions use your data and metadata for different purposes. The data helps, for example, to make the tool more secure and to improve the service. In most cases, the data may also be used for the third party's own marketing purposes.

Why do we use video conferencing & streaming on our website?
We want to communicate quickly, easily and securely with you, our customers and business partners, also digitally. This works best with video conferencing solutions that are very easy to use. Most of the tools also work directly in your browser and after just a few clicks you are in the middle of a video meeting. The tools also offer helpful additional features such as a chat and screen sharing function or the option to share content between meeting participants.

Which data are processed?
If you participate in our video conference or in a streaming, your data will also be processed and stored on the servers of the respective service provider.
Exactly what data is stored depends on the solution used. Each provider stores and processes different and varying amounts of data. As a rule, however, your name, address, contact details such as your e-mail address or your telephone number and your IP address are stored by most providers. Information about the device you are using, usage data such as which websites you visit, when you visit a website or which buttons you click on can also be stored. Data that is shared within the video conference (photos, videos, texts) can also be saved.

Duration of data processing
We will inform you below about the duration of the data processing in connection with the service used, provided that we have further information on this. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. It may be that the provider stores your data according to their own specifications, over which we have no influence.

Right to object
You always have the right to information, correction and deletion of your personal data. If you have any questions, you can also contact the person responsible for the video conferencing or streaming tool used at any time. Contact details can be found either in our specific data protection declaration or on the website of the relevant provider.
You can delete, disable or manage cookies that providers use for their functions in your browser. Depending on which browser you use, this works in different ways. Please note, however, that not all functions may then work as usual.

Legal basis
If you have agreed that your data can be processed and stored by the video or streaming solution, this consent is the legal basis for data processing (Article 6 (1) (a) GDPR). In addition, we can also offer a video conference as part of our services if this has been contractually agreed with you in advance (Article 6 (1) (b) GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners, but only if you have at least given your consent. Most video or streaming solutions also set cookies on your browser to save data. Therefore we recommend you information on special video conferencing and streaming solutions.

Zoom Privacy Policy
Zoom Privacy Policy Summary
Affected: Users who use Zoom
Purpose: an additional service for our website visitors
Processed data: access statistics, the data such as name, address, contact details, email address, telephone number or your IP address contain. More details can be found below in this data protection
declaration 
Storage period: Data will be stored as long as Zoom needs it for the service
purpose 
Legal basis: Article 6 paragraph 1 lit. a GDPR (consent), Article 6 paragraph 1 lit. f GDPR (legitimate interests), Article 6(1)(b) GDPR (contract)

What is Zoom?
We use the video conferencing tool Zoom from the American software company Zoom Video Communications for our website. The company headquarters are in San Jose, California, 55 Almaden Boulevard, 6th Floor, CA 95113. Thanks to "Zoom", we can easily hold a video conference with customers, business partners, clients and employees without installing any software. In this data protection declaration, we go into more detail about the service and inform you about the most important aspects relevant to data protection.

Zoom is one of the world's most popular video conferencing solutions. With the "Zoom Meetings" service, we can, for example, hold an online video conference with you, but also with employees or other users via a digital conference room. In this way, we can very easily get in touch digitally, exchange views on various topics, send text messages or even make phone calls. You can also use Zoom to share the screen, exchange files and use a whiteboard.

Why do we use Zoom on our website?
It is important to us that we can communicate with you quickly and easily. And this is exactly what Zoom offers us. The software program also works directly via a browser. That means we can simply send you a link and start the video conference. Of course, additional functions such as screen sharing or exchanging files are also very practical.

What data is stored by Zoom?
If you use Zoom, data will also be collected from you so that Zoom can provide its services. On the one hand, this is data that you consciously make available to the company. This includes, for example, your name, telephone number or your e-mail address. However, data is also automatically transmitted to Zoom and stored. This includes, for example, technical data from your browser or your IP address. Below we go into more detail about the data that Zoom may collect and store from you:
If you provide data such as your name, username, email address or telephone number, this data will be stored at Zoom. Content that you upload while using Zoom is also saved. This includes, for example, files or chat logs.
In addition to the IP address mentioned above, the technical data that Zoom automatically saves also includes the MAC address, other device IDs, device type, which operating system you are using, which client you are using, camera type, microphone and speaker type. Your approximate location is also determined and saved. Furthermore, Zoom also stores information about how you use the service. For example, whether you are “zooming” via desktop or smartphone, whether you are using a phone call or VoIP, whether you are participating with or without video, or whether you are requesting a password. Zoom also records so-called metadata such as duration of the meeting/call, start and end of meeting participation, meeting name and chat status.
Zoom mentions in its own privacy policy that the company does not use advertising cookies or tracking technologies for its services. These tracking methods are only used on our own marketing websites such as https://explore.zoom.us/docs/de-de/home.html . Zoom does not sell personal data and does not use it for advertising purposes.

How long and where is the data stored?
Zoom does not announce a specific time frame in this regard, but emphasizes that the data collected will be stored for as long as is necessary to provide the services or for its own purposes. The data will only be stored longer if this is required for legal reasons.
In principle, Zoom stores the data collected on American servers, but data can arrive at different data centers worldwide.

How can I delete my data or prevent data storage?
If you do not want data to be saved during the Zoom meeting, you must forgo the meeting. However, you always have the right and the option to have all your personal data deleted. If you have a Zoom account, see https://support.zoom.us/hc/en-us/articles/201363243-How-Do-I-Delete-Terminate-My-Account for instructions on how to delete your account can delete.
Please note that when using this tool, your data may also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data may not simply be transferred to unsafe third countries, stored there and processed unless there are suitable guarantees (such as EU standard contractual clauses) between us and the non-European service provider.

Legal basis
If you have agreed that your data can be processed and stored by the video or streaming solution, this consent is the legal basis for data processing (Article 6 (1) (a) GDPR). In addition, we can also offer a video conference as part of our services if this has been contractually agreed with you in advance (Article 6 (1) (b) GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners, but only if you have at least given your consent.
Zoom also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks for the legality and security of data processing.

As the basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or data transfer there, Zoom uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. With these clauses, Zoom undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. 

You can find the decision and the relevant Standard Contractual Clauses here, among others:https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

We hope to have given you an overview of data processing by Zoom. Of course, it can always happen that the data protection guidelines of the company change. We therefore recommend that you also read Zoom's data protection declaration at https://explore.zoom.us/de/privacy/?tid=112295071 for more information on the data processed and the standard contractual clauses .