Participation in Raffles
Responsibility
Controller
The Bitkom Group company organizing the raffle is responsible for processing your personal data in connection with participation in a raffle. The contact details are as follows:
Bitkom Servicegesellschaft mbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@bitkom-service.de
Bitkom e.V.
Albrechtstraße 10
10117 Berlin
E-Mail: bitkom@bitkom.org
DFA Digital für alle gGmbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@digitaltag.eu
(hereinafter jointly referred to as "we")
Contact details of the data protection officer
You can address questions about the processing of your data to the data protection officer at any time:
datenschutz nord GmbH
Standort Berlin
Kurfürstendamm 212
10719 Berlin
E-Mail: office@datenschutz-nord.de
Purposes and legal basis of data processing
Execution of the raffle
If you take part in one of our raffles, we will process your data in order to carry out the raffle. The type and scope of data processing depends on the raffle in which you participate. We generally process these categories of personal data in order to run a raffle: Name, e-mail address (private or business), telephone number (private or business), company, position, address (private or business). Without the data required for participation in the raffle, we will not be able to carry out the raffle. We process your data for these purposes in particular:
- Implementation of the raffle
- Notification of winners
- Delivery of winnings
The data processing described is carried out on the basis of Art. 6 para. 1 lit. b GDPR (fulfillment of contract, execution of the raffle) and Art. 6 para. 1 lit. f GDPR (protection of legitimate interests based on our interest in carrying out the raffle and ensuring that it runs smoothly).
Further information on the processing of your data
Access to personal data
Within the companies of the Bitkom Group, only persons who need your data to carry out the tasks assigned to them will have access to it. In addition, service providers or other persons who support us in the fulfillment of our tasks may have access to your data. These are service providers or persons in the following categories:
- Hosting service provider for the operation of our servers
- E-mail dispatch service provider for sending e-mails in connection with your participation in the raffle and for sending mailings
Service providers and speakers employed by us must meet special confidentiality requirements. They will only have access to your data to the extent and for the period of time required to fulfill their tasks.
Data processing outside the European Union
To process your data, we use Microsoft Corporation (USA), a service provider located in a third country outside the European Union. Countries outside the European Union handle the protection of personal data differently than countries within the European Union. We have therefore taken special measures to ensure that your data is processed just as securely in third countries as it is within the European Union. Microsoft Corporation is certified in accordance with the EU-U.S. Data Privacy Framework. This ensures an appropriate level of data protection when data is processed by Microsoft in the USA.
Storage duration
We store your data until the purposes described in this data protection notice have been fulfilled, unless a longer retention period is required by law. As a rule, we delete your data after these periods or determine the period for deletion of your data according to these criteria:
- We will delete your raffle participation data three months after the end of a raffle.
- We will delete newsletter data after you withdraw your consent.
Rights of the data subject
Information
You can request information about your personal data processed by us in accordance with Art. 15 GDPR.
Correction
If your data is not (or is no longer) correct, you can request the correction of your data in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.
Deletion
In accordance with Art. 17 GDPR, you have the right to request the erasure of your data.
Restriction of processing
In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of your data.
Contradiction
In accordance with Art. 21 GDPR, you have the right to object to the processing of your data on grounds relating to your particular situation. In the event of a justified objection, we will no longer process your data.
Objection to the processing of your data for direct marketing purposes
You have the right to object at any time to the processing of your data for direct marketing purposes. This also applies to profiling in connection with direct advertising. You can address your objection to us informally, preferably using datenschutz@bitkom.org.
Right of appeal
You are entitled to lodge a complaint with a data protection supervisory authority if you do not agree with the processing of your data.
Data portability
In accordance with Art. 20 GDPR, you have the right to receive personal data that you have provided to us in an electronic format.
Revocation of your consent
You have the right to withdraw any consent you have given us to process your data at any time. The easiest way to withdraw your consent is to send an e-mail to datenschutz@bitkom.org. The withdrawal of consent does not affect the lawfulness of the processing of your data up to the time of withdrawal.
