Skip to content

Data Protection Policy

Thank you for your interest in our company and your visit to our website.

Data protection has a high priority in our company. Therefore, we process your data on the legal basis of the DS-GVO (General Data Protection Regulation (EU) 2016/679), the BDSG (Data Protection Adaptation and Implementation Act EU Article 1) in the version of June 30, 2017, and on the basis of consents given by you.

This data protection declaration relates to this website and the collection and processing of data associated with it.

The responsible body within the meaning of the GDPR is:

Ibelsa GmbH
Sybelstraße 41
10629 Berlin (Charlottenburg)
+49 30 3119 7400
info@ibelsa.com

If you have any further questions or concerns about data protection or would like to assert your data subject rights under point 10 of this data protection declaration, please contact our data protection officer:

ibelsa GmbH
Data Protection Officer
Saarstraße 133
66265 Heusweiler
+49 30 3119 7400
datenschutz@ibelsa.com

1. Login to the SaaS ibelsa.rooms for existing customers

As a registered user of ibelsa.rooms, you have the option of logging into ibelsa.rooms directly from the homepage. This is done using a form. The entire login process takes place via an encrypted connection on the server in our data center. For information on data protection at ibelsa.rooms, please refer to the data protection information that was provided to you upon conclusion of the contract.

2. Login to SaaS ibelsa.rooms for interested parties

We offer interested customers a 30-day free test account for our software ibelsa.rooms. You can log in using a form directly on our homepage. The entire registration and login process is encrypted. We provide you with the relevant data protection information during the registration process. To register for the test account, we need the following information from you:

  • hotel name
  • First name
  • Name
  • E-Mail-Address

After registering, you will receive an e-mail with further information about the test account at the e-mail address you provided. For information on data protection for customers of ibelsa.rooms, please refer to the data protection information that you received when registering the test account together with the techn. organizational measures, as well as the agreement on processing in the order.

3. Session-Cookies

This site uses so-called session cookies. This is used to enable you to navigate our site accordingly. When you visit our website, a random, unique identification number is generated, the so-called session ID. This is stored in the session cookie. This session cookie also contains information about its origin and the storage period. This session cookie does not store any other data. The session cookie is deleted when you end the session.

You can make the appropriate settings in your web browser to prevent the use of cookies. Please refer to the documentation of your web browser for the procedure.

Deactivating the use of cookies in your browser can mean that you cannot use our website in whole or in part.

4. Real Cookie Banner

ibelsa GmbH uses the tool “Real Cookie Banner” to obtain and document your consent and/or objection to the storage of cookies in accordance with data protection regulations.

Provider

devowl.io GmbH, Tannet 12, 94539 Grafling.

Legal basis

The use of the cookie is based on the legal requirements for obtaining consent for the setting of cookies. The legal basis is Art. 6 para. 1 p. 1 lit. c DSGVO.
When you visit our website, a cookie is stored in your web browser. Your consent and/or objections are stored in this cookie. The data will not be passed on to third parties. To revoke the consents granted and/or the revocations to the setting of certain cookies, simply delete the cookie in your browser.

Detailed information on the data protection provisions of the Real Cookie Banner can be found at: https://devowl.io/de/datenschutzerklaerung/

5. Links to social media providers

Our site contains links to various social media platforms. This is a simple link to these providers. When you visit our website, no data is automatically transmitted to these providers. Only by clicking on the corresponding link will you get to the corresponding platform.

ibelsa GmbH has no influence on whether the operators of these platforms comply with the relevant data protection regulations. This declaration on data protection does not apply to the websites of these providers, even if they are accessed via links on the website. Therefore, please note the respective regulations of these providers on data protection.

6. Contact

 By email

On this page we offer you the opportunity to contact our employees by e-mail. We use your e-mail address and the information you send us exclusively for the purpose of processing your request. A transfer to third parties does not take place. As long as you have not given your consent, we only store your data until your request has been processed, unless there are other statutory retention periods.

Via contact form

On this page we offer you the opportunity to contact ibelsa via a contact form. We collect the following data:

  • Name
  • Hotel or company name
  • Email Address
  • Your message to us

We use your e-mail address and the information you send us exclusively for the purpose of processing your request. A transfer to third parties does not take place. As long as you have not given your consent, we only store your data until your request has been processed, unless there are other statutory retention periods.

7. Hubspot and Hubspot Forms

On our website we use the HubSpot and HubSpot Forms service from HubSpot Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141, USA. HubSpot is an integrated software solution that can be used to cover various online marketing activities. This includes, for example, our website content management, e-mail marketing, social media publishing & reporting, contact management, as well as the provision of any landing pages and contact forms.

Through our registration service, we enable our website visitors to find out more about our company. You can also download content and provide your contact information and other demographic information. This information and the content of our website are stored on the servers of our software partner HubSpot and can be used by us to contact our website visitors. We also use the information to determine which of our company’s services are of interest to you.

We use HubSpot on the basis of your consent in accordance with Article 6 (1) (a) GDPR. We use HubSpot Forms on the basis of our legitimate interest in accordance with Art. 6 Paragraph 1 lit. f) GDPR, whereby our legitimate interest lies in the provision of any contact forms and simplified communication with interested parties. We would like to point out that when using HubSpot Forms, there is no personal tracking as is the case with HubSpot itself.

HubSpot is a software company from the USA. In order to legitimize the data transfer to the USA, HubSpot Inc. relies on EU standard contractual clauses: https://legal.hubspot.com/dpa

Data protection: https://legal.hubspot.com/privacy-policy?__hstc=230861184.3598d40e1d9143da2239066e892e15cd.1551254209362.1551254209362.1551254209362.1&__hssc=230861184.1.1551254209362&__hsfp=554902760

HubSpot information on GDPR: https://legal.hubspot.com/data-privacy?__hstc=230861184.3598d40e1d9143da2239066e892e15cd.1551254209362.1551254209362.1551254209362.1&__hssc=230861184.1.1551254209362&__hsfp=554902760

Cookies used by HubSpot: https://knowledge.hubspot.com/reports/what-cookies-does-hubspot-set-in-a-visitor-s-browser?__hstc=230861184.3598d40e1d9143da2239066e892e15cd.1551254209362.1551254209362.1551254209362.1&__hssc=230861184.1.1551254209362&__hsfp=554902760

8. Data collected by our web host when you visit the homepage
become

When you visit this website, data is collected by our web host (provider) myLoc managed IT AG, Am Gatherhof 44, 40472 Düsseldorf.

The provider collects the following data in the form of an access log file under his own responsibility:

  • IP address of access
  • Called URL
  • User-Agent (Browser)
  • time of access
  • size of the request

You can find more information on the provider’s website.

9. Links to Other Sites

This website contains links to websites of other providers.

As the provider of these websites, ibelsa GmbH is solely responsible for the content of its own online presence. This own content is to be distinguished from the content provided by other providers, for which ibelsa GmbH cannot assume any responsibility and does not adopt their content as its own. ibelsa GmbH has no influence on whether the website operators linked to this site comply with the relevant data protection regulations. This declaration on data protection does not apply to the websites of other providers, even if they are accessed via links on the website. Therefore, please note the respective data protection regulations of the other providers. ibelsa GmbH therefore assumes no liability for the content of third-party websites.

If you notice any violations, please report this to our data protection officer.

10. Vimeo video platform

We offer you help and information videos about our ibelsa.rooms software embedded on our website. These videos are integrated via the platform of Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA. By clicking on the embedded video, you agree to the communication with the aforementioned website and the setting of cookies by this website.

After clicking on the embedded video, the information that you have accessed our website is passed on to the aforementioned website operator and cookies are set on your computer by the aforementioned website. If you are logged in to the aforementioned website during a visit to our website, the transmitted data will be assigned to your respective user account. If you want to prevent a website operator from linking information to your user account in this way, please log out of the aforementioned website before you click on the respective video. Even if you have not registered with the aforementioned website or are not currently logged in, there is a possibility after clicking on the notice that your data will be saved by the operators of the aforementioned website. We have no influence on the setting of cookies by the providers of the aforementioned website, or on the content and scope of the data that this website collects and uses.

Please refer to Vimeo’s privacy policy for more information. The privacy policy can be found athttps://vimeo.com/privacy.

Vimeo uses the analysis service Google Analytics, a web analysis service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, on its platform.

You can prevent Google from storing cookies by setting your browser software accordingly; we would like to point out to you however that in this case you will if applicable not be able to use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading the browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de) and install. Opt-out cookies prevent future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt ​​out on all systems used. If you click here, the opt-out cookie will be set: Disable Google Analytics.

11. MailChimp

 We use the MailChimp platform to send our newsletter and to register for our ibelsa.club. Provider is Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The Rocket Science Group is certified under the Privacy Shield. You can find more information about this under the linkhttps://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG

Rocket Science Group’s privacy policy for the MailChimp tool can be found at the following link:https://mailchimp.com/legal/privacy.

The processing and transmission takes place on the basis of the consent you have given to receive the newsletter and DSGVO Art. 6 Para. 1 lit. f (balancing of interests).

MailChimp stores the following data:

  • IP address and email address

If you register for our newsletter or for ibelsa.family, your e-mail address and your IP address will be temporarily stored at Mailchimp and used to to send you a confirmation email. If you confirm this, your IP and your e-mail address as well as the date of the confirmation will be permanently stored by MailChimp until you revoke the receipt of the newsletter. This serves the purpose of providing evidence in the event of any accusation of unsolicited e-mails being sent. In addition, ibelsa does not use the IP address.

geolocation and time zone

MailChimp uses the email address and the IP address to determine the geolocation data and the time zone. This is done by MailChimp with the help of a geolocation service provider. This is carried out both when subscribing to the newsletter and when opening the newsletter sent by e-mail. This function is used to enable the simultaneous sending of newsletters.

For more information on this, see the linkhttps://mailchimp.com/de/help/about-geolocation/

language version

If you call up the newsletter from a browser, MailChimp determines the language version from this and saves it accordingly in your profile.

Date of the last profile update

If you open the newsletter via the link it contains, you will be automatically redirected to the MailChimp page. Among other things, the web analysis tool Google Analytics is used there. ibelsa GmbH has neither access nor the ability to influence the evaluations that take place there. ibelsa GmbH does not pass this information on to other third parties. As part of the newsletter dispatch, only the data described above is collected.

12. Data protection declaration for the Twitter account of ibelsa GmbH

Both ibelsa GmbH itself and Twitter process personal data via the Twitter account of ibelsa GmbH

Data processed by Twitter

For the short message service offered, ibelsa GmbH uses the technical platform and services of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103 USA. Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland is responsible for the data processing of persons living outside the United States.
We would like to point out that you use the Twitter short message service offered here and its functions at your own risk. This applies in particular to the use of the interactive functions (e.g. sharing, rating).
Information about which data is processed by Twitter and for what purposes can be found in Twitter’s data protection declaration:
https://twitter.com/de/privacy

Twitter Inc. is committed to the principles of the EU-US Privacy Shield. For more information see:https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active

ibelsa GmbH has no influence on the type and scope of the data processed by Twitter, the type of processing and use or the transfer of this data to third parties. Likewise, it has no effective means of control in this respect. By using Twitter, your personal information will be collected, transmitted, stored, disclosed and used by Twitter Inc., regardless of your residency in the United States, Ireland and any other country in which Twitter Inc. does business. transferred and stored and used there.
On the one hand, Twitter processes your voluntarily entered data such as name and username, e-mail address, telephone number or the contacts in your address book if you upload or synchronize it. On the other hand, Twitter also evaluates the content you share to determine which topics you are interested in, stores and processes confidential messages that you send directly to other users and can determine your location using GPS data, information about wireless networks or your Determine IP address in order to send you advertising or other content.
Twitter Inc. may use analysis tools such as Twitter or Google Analytics for evaluation. ibelsa GmbH has no influence on the use of such tools by Twitter Inc. and was not informed of such a potential use. If tools of this type are used by Twitter Inc. for the account of ibelsa GmbH, ibelsa GmbH has neither commissioned nor approved this nor supported it in any way. The data obtained during the analysis is also not made available to him. Only certain, non-personal information about the tweet activity, such as the number of profile or link clicks through a specific tweet, can be viewed by ibelsa GmbH via its account. Furthermore, ibelsa GmbH has no way of preventing or turning off the use of such tools on its Twitter account.
Finally, Twitter also receives information when you view content, for example, even if you have not created an account. This so-called “log data” can be the IP address, the browser type, the operating system, information about the previously accessed website and the pages you accessed, your location, your mobile phone provider, the end device you are using (including device ID and application ID), the search terms you use and cookie information.
Twitter buttons or widgets integrated into websites and the use of cookies enable Twitter to record your visits to these websites and assign them to your Twitter profile. Based on this data, content or advertising tailored to you can be offered.
You have options for restricting the processing of your data in the general settings of your Twitter account and under “Privacy and security”. In addition, you can restrict access from Twitter to contact and calendar data, photos, location data, etc. on mobile devices (smartphones, tablet computers) in the setting options there. However, this depends on the operating system used. More information on these points is available on the following Twitter support pages:

https://support.twitter.com/articles/105576#
https://help.twitter.com/de/search?q=datenschutz

You can find out more about the possibility of viewing your own data on Twitter here:

https://support.twitter.com/articles/20172711#

Information about the conclusions drawn about you by Twitter can be found here:

https://twitter.com/your_twitter_data

Information on the available personalization and data protection setting options can be found here (with further references):

https://twitter.com/personalization

You also have the option of requesting information via the Twitter data protection form or the archive requirements:

https://support.twitter.com/forms/privacy
https://support.twitter.com/articles/20170320#

Data processed by ibelsa GmbH

a) Purpose and Legal Basis
The processing is carried out for the purpose of informing the customers of ibelsa GmbH about updates to the hotel software they use, deploy times and retweets from system providers whose hardware is connected to the software of ibelsa GmbH by the customer (Art. 6 Para. 1 lit f of the GDPR).

b) Recipient
The recipient of the data is initially Twitter, where they may be passed on to third parties for their own purposes and under the responsibility of Twitter. The recipient of publications is also the general public, i.e. potentially everyone.

c) categories of personal data
ibelsa GmbH does not collect any data about your Twitter account.

However, the data you enter on Twitter, in particular your user name and the content published under your account, will be processed by ibelsa GmbH to the extent that ibelsa GmbH may retweet or reply to your tweets or ibelsa GmbH may also compose tweets from them that point to your account. In this way, ibelsa GmbH includes the data that you freely publish and distribute on Twitter in its offering and make it accessible to its followers.

d) Third country transfer
There is an adequacy decision by the EU Commission on the level of data protection in the USA under the conditions of the “EU-US Privacy Shield” (Commission Implementing Decision (EU) 2016/1250 of July 12, 2016 in accordance with Directive 95/46 /EC of the European Parliament and of the Council on the Adequacy of the Protections Provided by the EU-US Privacy Shield, notified under document number C(2016) 4176).

13. Data protection declaration for the Instagram account of ibelsa GmbH

Both ibelsa GmbH itself and Facebook Ireland Limited (“Facebook”) process personal data via the Instagram account of ibelsa GmbH as joint controllers (Article 26 GDPR).

Data processed by Facebook

Instagram provider is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Please note that you use Instagram and its functions at your own risk (in particular the functions share, rate, etc.). Information about which data is processed by Facebook and for what purposes can be found under the following link:https://help.instagram.com/581066165581870

ibelsa GmbH expressly points out that Facebook stores the data of the users of its services (e.g. IP address, personal data, etc.) in its own interest and for its own use. ibelsa GmbH has no influence on the data collected and processed by Facebook in connection with Instagram and its use by Facebook. You can find more information about data processing by Facebook on Instagram under the link:https://help.instagram.com/519522125107875?helpref=page_content.

Data processed by us

The responsible body within the meaning of the GDPR is:

ibelsa GmbH
Sybelstraße 41
10629 Berlin (Charlottenburg)
+49 30 3119 7400
info@ibelsa.com

Data processed exclusively by Facebook

Facebook Ireland Ltd
4 Grand Canal Square
Grand Canal Harbour
Dublin 2
Ireland

Facebook’s data protection officer can be reached via the following link:https://www.facebook.com/help/contact/540977946302970

Data processing when contacting us via the Instagram account

We process your personal data if you record directly via the Instagram service or via the contact form. We process and store this data for the purpose for which you sent it to us. The legal basis for this is the legitimate interest according to Article 6 Paragraph 1 Letter f GDPR. If you transmit this data with the aim of concluding a contract with us, the legal basis is Article 6 (1) (b) GDPR. The data will be deleted by us after the processing of your request has been completed, provided that there are no legal retention periods to the contrary.

Third country transfer

Facebook is certified according to the Privacy Shield. For more information, see the link:https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC

14. Data protection declaration for the LinkedIn account of ibelsa GmbH

For the service offered, ibelsa GmbH uses the technical platform and services provided by the LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”).

When you visit our LinkedIn pages, LinkedIn processes your personal data in accordance with LinkedIn’s privacy policy, which you can find under the following linkhttps://www.linkedin.com/legal/privacy-policy find.

ibelsa GmbH processes the following personal data:

  • Your LinkedIn username
  • Comments and messages that you send to ibelsa GmbH via our LinkedIn pages
  • Information necessary to respond to your requests
  • Information that is necessary to be able to clearly identify you in our systems.
Shared responsibility with LinkedIn

ibelsa GmbH uses the LinkedIn “Analytics” service. This service provides ibelsa GmbH with the following statistical information in an anonymous form:

  • Visit the ibelsa website
  • Information from which cities and countries the visitors of the site come from
  • Scope and nature of interactions
  • Statistics about the work area of ​​the visitors

ibelsa GmbH cannot use this data to draw conclusions about individual visitors to the site. Due to this circumstance, ibelsa GmbH and LinkedIn are jointly responsible within the meaning of the GDPR. ibelsa GmbH has therefore concluded an agreement on joint responsibility with LinkedIn. You can find this under the following link:https://legal.linkedin.com/pages-joint-controller-addendum

15. Data protection declaration for the Facebook account of ibelsa GmbH

For the service offered, ibelsa GmbH uses the technical platform and services operated by Facebook Ltd., 4 Grand Canal Square, Grand Canal Harbour, D2 Dublin, Ireland (“Facebook”). If you visit our Facebook pages, Facebook processes your personal data in accordance with Facebook’s data protection declaration, which you can find under the following linkhttps://www.facebook.com/policy.php find.

ibelsa GmbH processes the following personal data:

  • your Facebook username
  • Comments and messages published on ibelsa’s Facebook page
  • Via the “Facebook Insights” service, activities such as the volume and type of interactions, visits to the page, information from which cities and countries page visitors come from, duration of video playback, statistics on relationships among page visitors.
  • Information that is necessary to be able to clearly identify you in our systems.
Shared responsibility with Facebook

 ibelsa GmbH uses “Facebook Insights”. This service provides ibelsa GmbH with the following statistical information in an anonymous form:

  • Volume and type of interactions, visits to the site, information from which cities and countries visitors to the site come from, duration of video playback, statistics on relationships among visitors to the site, statistics on the gender ratio of visitors

ibelsa GmbH cannot use this data to draw conclusions about individual visitors to the site. You can find more information about the “Facebook Insights” service under the following link: https://www.facebook.com/legal/terms/information_about_page_insights_data

Due to this circumstance, ibelsa GmbH and Facebook are jointly responsible within the meaning of the GDPR. ibelsa GmbH has therefore concluded an agreement on joint responsibility with Facebook. You can find this under the following link:https://www.facebook.com/legal/terms/page_controller_addendum

16. Data protection declaration for the Xing account of ibelsa GmbH

For the service offered, ibelsa GmbH uses the technical platform and services provided by theXING SE, Dammtorstraße 30, 20354 Hamburg, Deutschland (“XING”) is operated. When you visit our Xing pages, Xing processes your personal data in accordance with Xing’s data protection declaration, which you can find under the following linkhttps://privacy.xing.com/en/privacy-policy find.

ibelsa GmbH processes the following personal data:

  • your Facebook username
  • Comments and messages published on ibelsa’s Facebook page
  • Via the “Facebook Insights” service, activities such as the volume and type of interactions, visits to the page, information from which cities and countries page visitors come from, duration of video playback, statistics on relationships among page visitors.
  • Information that is necessary to be able to clearly identify you in our systems.

17. Youtube Channel and Youtube Videos

ibelsa GmbH has integrated components of the YouTube video channel on its website.

provider of the service

YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. This is a subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.

If a page of this website is called up in which a YouTube video is embedded, the browser automatically loads the corresponding YouTube components onto your computer in order to display the embedded content there. It is automatically transmitted to YouTube and Google which page of this website was accessed. For more information, see the link below:https://www.youtube.com/yt/about/de/

If you are logged into YouTube when you visit our homepage, YouTube and Google will receive the information about the visit to our site, regardless of whether you click on the respective video or whether you only see the page on which the video is embedded Yutube and Google assigned to your user account and saved. If you do not want this, please log out of YouTube beforehand.

YouTube’s data protection information can be found under the following link:https://www.google.de/intl/de/policies/privacy/

18. Online meetings, conference calls and webinars via “GoToMeeting”

For the services offered above, ibelsa GmbH uses the technical platform and services provided by theLogMeIn Ireland Limited (Bloodstone Building Block C 70 Sir John Rogerson’s Quay Dublin 2, Ireland), a subsidiary of LogMeIn Inc. (Log-MeIn, 320 Summer Street, Boston, MA 02210, USA) (hereinafter GoToMeeting) is operated.

If you visit the “GoToMeeting” pages or use their app, GoToMeeting will process your personal data in accordance with GoToMeeting’s privacy policy, which you can find under the following linkhttps://www.logmeininc.com/de/legal/privacy find.

ibelsa GmbH is responsible for data processing in direct connection with the implementation of “online meetings”. ibelsa GmbH has concluded a corresponding agreement with GoToMeeting in accordance with Article 28 GDPR. The data is also processed in a third country. An appropriate level of data protection is given by the “Privacy Shield” certification of LogMein Inc. and the conclusion of the EU standard contractual clauses. Information on the Privacy Shield can be found under the following link:https://www.logmeininc.com/de/legal/privacy-shield

The legal basis for the data processing of online meetings in the context of contractual relationships is Article 6 Paragraph 1 lit. b) of the GDPR. If there is no contractual relationship, the legal basis is Article 6 (1) (f) of the GDPR. As far as personal data of employees is concerned, the legal basis is § 26 BDSG (new) 2018.

The scope of the data processed by “GoToMeeting” and the types of data depend, among other things, on the information you provide before or when participating in an online meeting. In order to take part in an online meeting or to enter the so-called “meeting room”, you must at least enter your name. The following personal data are subject to processing:

Meeting Metadata
  • Topic of the meeting
  • description (optional)
  • Devices and hardware information
  • Participant IP addresses
Information about the user
  • First name Last Name
  • phone number (optional)
  • E-mail address (if “single sign-on” is not used)
  • Profile Picture (Optional)
  • Department (Optional)
Recordings (Optional)
  • MP4 files of all video, audio and presentation recordings
  • MP4 files of all audio recordings and text files of the online meeting chat
Dial in by phone
  • start and end time
  • Country of origin information
  • Telephone number (incoming and outgoing)
  • IP address of the device used (if available)
  • connection data
Text, audio and video data

During the online meeting, the microphone and the video camera of your end device are activated for the display of video recordings and for the playback of audio. You have the option to disable both during the meeting. If you make use of the option of using the chat, question or survey function in an online meeting, these entries will be processed in order to display the entries and, if necessary, to log them.

ibelsa GmbH does not pass on personal data from online meetings to third parties and only uses them to the extent necessary to answer your questions that could not be answered during the online meeting. GoToMeeting necessarily receives knowledge of the above data, insofar as this is provided for under the agreement between ibelsa GmbH and GoToMeeting according to Article 28 GDPR.

scope of processing

We use “GoToMeeting” to conduct “Online Training”. If we want to record “online meetings”, we will inform you transparently in advance and – if necessary – ask for your consent. The fact of the recording is also displayed in the “GoToMeeting” app.

If necessary for the purposes of logging results of an online meeting, we will log the chat content. However, this will usually not be the case. In the case of webinars, we can also process the questions asked by webinar participants for the purpose of recording and following up on webinars.

If you are registered with “GoToMeeting” as a user, reports about “online meetings” (meeting metadata, telephone dial-in data, questions and answers in webinars, polling function in webinars) can be stored on “GoToMeeting” for up to 90 days.

19. Webinars via “Microsoft Teams”

 ibelsa GmbH uses Microsoft Teams to conduct its webinars. The following personal data are processed:

  • Communication data (e.g. the email address you provided)
  • Log files, log data
  • Metadata (e.g. IP address, date and time of participation, etc.)
  • Profile data (e.g. the username you have provided)
Microsoft Teams video conference

ibelsa uses Microsoft Teams in Team Meetings mode. No audio or video recordings will be made.

In exceptional cases, a recording can take place under the following conditions. In this case, we will point this out before the start of the recording.

In addition, a reference to this data protection declaration is already given with the invitation. The link to this general data protection information will be made available to the participants on boehringer-ingelheim.de.

The participants will be provided with the following additional data protection information:

  • Specific purpose of recording

Conducting webinars for customers and interested parties of ibelsa GmbH.

  • Responsible for the recording (function, role)

Responsible employee of ibelsa GmbH who conducts the webinar

  • Persons authorized to access the recording or addressees to whom the recording is to be made available

Employees of ibelsa GmbH, customers and interested parties of ibelsa GmbH

  • Storage location and duration of the recording

The videos are published on our Vimeo account and can be accessed via a link on our homepage.

The data is processed on the basis of our legitimate interest in accordance with Art. 6 Para. 1 f) DS-GVO. This reads:

Implementation of webinars to inform customers, prospective customers of ibelsa GmbH. Microsoft Teams is part of Microsoft Office 365.

The software provider is:

Microsoft Ireland Operations Limited
One Microsoft Place
South County Business Park
Leopardstown
Dublin 18
D18 P521
Ireland

Data processing takes place in data centers in the European Union in Ireland and the Netherlands. ibelsa GmbH has concluded an order processing agreement with Microsoft in accordance with Art. 28 GDPR.

We also implemented the “Customer Log Box” function. This means that Microsoft cannot access the data stored there without our authorization.

In the event that remote access by Microsoft is required, this must be requested from us. After the check has been carried out, Microsoft can request access for the purpose of remote maintenance. For such cases and when access is from outside the EU, an additional EU standard contract (standard data protection clauses) has been concluded with Microsoft.

Microsoft reserves the right to process customer data for its own legitimate business purposes. We have no influence on this data processing by Microsoft. To the extent that Microsoft Teams processes personal data in connection with legitimate business purposes, Microsoft is the independent controller for those data processing activities and as such is responsible for compliance with all applicable data protection regulations. If you require information about the processing by Microsoft, please refer to the relevant statement from Microsoft.

20. Webinars via “Google Meets”

 ibelsa GmbH uses the technical platform “Google Meet” to conduct online training courses and demos of the ibelsa.rooms software as well as online application interviews. The operator is Gordon House, Barrow Street Dublin 4, Ireland, a service company of Google LLC based in the USA.

data processing

When using “Google Meet”, the following data is processed (depending on the information you provide). The following personal data are the subject of processing: Information about the user: first name, last name

  • Phone optional)
  • Mail-Address
  • Password (if “single sign-on” is not used)
  • Profile picture (optional)
  • Subscriber IP Addresses
  • Device/Hardware Information

When dialing in by phone:

  • phone number
  • country name
  • start and end time

The provider of “Google Meet” necessarily receives knowledge of the above data. After “Google Meet” is provided by a provider from the USA, the processing of personal data takes place in a third country. We have concluded an order processing contract with the provider of “Google Meet” and concluded the standard contractual clauses. A storage does not take place.

legal basis

The data is processed on the basis of our legitimate interest in accordance with Art. 6 Para. 1 f) DS-GVO. This reads:

Carrying out online training courses for our customers to instruct them in the use of ibelsa.rooms and carrying out software demos for interested parties.

21. Applications

 legal bases

Your data is processed on the basis of the following legal bases:

  • General Equal Treatment Act (AGG)
  • DS-GVO
  • Data Protection Adjustment and Implementation Act Article 1 BDSG (new)
  • To contact you about your unsolicited application
  • Consents You Granted
purpose of processing

We process your data for the following purposes:

  • Implementation of the application process
  • To establish an employment relationship
type of data
  • Contact information (e.g. first and last name, country, email, telephone number).
  • Application documents e.g. curriculum vitae, cover letter, data on professional development, qualifications and language skills).
  • Results of online procedures (e.g. online job interview) Any other references that you provide to us.
recipients of data
  • Employees in the human resources department of ibelsa GmbH
  • Department heads at ibelsa GmbH who are entrusted with the application process.

storage duration

We keep your documents for the duration of the application process. Subsequently, if an employment relationship is not established, for 6 months after the date of the written rejection to you. This storage period is based on the specifications of the data protection authorities with regard to the applicant’s right of appeal granted in the AGG. The documents will only be stored for a longer period of time if you have given us your written consent for this.

22. Analysis tools

Matomo

We use the web analysis service Matomo on our site. We use it to record and analyse how visitors use our site. In doing so, we record:

  • IP address (shortened, anonymised)
  • referrer
  • Browser and operating system used
  • clicks on pages and links on these pages

We use this tool in the legitimate interest on the legal basis Art. 6 para. 1 lit. f DSGVO or with your consent on the basis Art. 6 para. 1 lit. a DSGVO. This consent can be revoked at any time.

We host Matomo exclusively on our own servers. In addition, we have switched on IP anonymisation so that the IP address is shortened and can no longer be assigned to you. Matomo is configured so that no cookies are installed on your computer.

23. Data subject rights

The General Data Protection Regulation grants data subjects extensive rights. Below you will find these rights to which you are entitled.

Revocation of granted consent (Article 7 DS-GVO)

You have the right to revoke your consent at any time for the future, without affecting the legality of the processing carried out on the basis of the consent up to the time of revocation.

Right of appeal (Article 77 GDPR)

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR (Art. 77 GDPR). You can assert this right with a supervisory authority in the member state of your place of residence, your place of work or the place of the alleged infringement. In Berlin, the responsible supervisory authority is: Berlin Commissioner for Data Protection and Freedom of Information, Friedrichstr. 219, 10969 Berlin).

Right to information (Article 15 GDPR)

You have the right to request confirmation from the person responsible as to whether personal data relating to you are being processed; if this is the case, you have a right to information about this personal data and to the information listed in Art. 15 DSGVO.

Right to rectification (Article 16 GDPR)

You have the right to request the person responsible to immediately correct incorrect personal data concerning you and, if necessary, to complete incomplete personal data (Article 16 GDPR).

Right to erasure (Article 17 GDPR)

You have the right to demand that the person responsible delete your personal data immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. B. if the data is no longer required for the purposes pursued (right to erasure).

Right to restriction of processing (Article 18 GDPR)

You have the right to request the person responsible to restrict the processing if one of the conditions listed in Article 18 GDPR is met, e.g. B. if the data subject has lodged an objection to the processing, for the duration of the examination by the person responsible.

Right to object to processing (Article 21 GDPR)

You have the right to object to the processing of your personal data at any time for reasons that arise from your particular situation. The person responsible will then no longer process the personal data unless he can demonstrate compelling legitimate grounds for the processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims (Art. 21 GDPR ).

Right to data portability (Article 20 GDPR)

You have the right to receive the personal data that you have provided to us in a structured, common and machine-readable format, provided that the processing is based on your consent or is necessary for the performance of a contract or for the implementation of pre-contractual measures and with the help of automated procedures. You have the right to have the personal data transmitted directly from us to another person responsible, insofar as this is technically feasible and the rights and freedoms of other persons are not affected.

24. General information on handling passwords and access data

Never give your user data to third parties. Never save your password unencrypted on your computer or on mobile devices. Do not save this in your browser either. If possible, never log in from public computers (e.g. internet café). Always protect your access data in the same way as the data that is to be protected by it. Do not choose any names or words from dictionaries (also foreign languages) as a password or that allow conclusions to be drawn about you. Set a different password everywhere. Change your password regularly.

No employee of ibelsa GmbH will ask you for your access data. If you receive such a request (by phone, email, etc.) do not pass it on. In such a case, you can also contact our data protection officer.

tips: For information on security on the Internet and how to create a secure password, go to the Federal Office for Information Security under the following link:https://www.bsi-fuer-buerger.de/BSIFB/DE/Empfehlungen/Passwoerter/Umgang/umgang.html

 

Back To Top
Cookie Consent with Real Cookie Banner