Responsibility
The Bitkom Group company organizing the raffle is responsible for processing your personal data in connection with participation in a raffle. The contact details are as follows:
Bitkom Servicegesellschaft mbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@bitkom-service.de
Bitkom e.V.
Albrechtstraße 10
10117 Berlin
E-Mail: bitkom@bitkom.org
DFA Digital für alle gGmbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@digitaltag.eu
(hereinafter jointly referred to as "we")
You can address questions about the processing of your data to the data protection officer at any time:
datenschutz nord GmbH
Standort Berlin
Kurfürstendamm 212
10719 Berlin
E-Mail: office@datenschutz-nord.de
Purposes and legal basis of data processing
If you take part in one of our raffles, we will process your data in order to carry out the raffle. The type and scope of data processing depends on the raffle in which you participate. We generally process these categories of personal data in order to run a raffle: Name, e-mail address (private or business), telephone number (private or business), company, position, address (private or business). Without the data required for participation in the raffle, we will not be able to carry out the raffle. We process your data for these purposes in particular:
The data processing described is carried out on the basis of Art. 6 para. 1 lit. b GDPR (fulfillment of contract, execution of the raffle) and Art. 6 para. 1 lit. f GDPR (protection of legitimate interests based on our interest in carrying out the raffle and ensuring that it runs smoothly).
Further information on the processing of your data
Within the companies of the Bitkom Group, only persons who need your data to carry out the tasks assigned to them will have access to it. In addition, service providers or other persons who support us in the fulfillment of our tasks may have access to your data. These are service providers or persons in the following categories:
Service providers and speakers employed by us must meet special confidentiality requirements. They will only have access to your data to the extent and for the period of time required to fulfill their tasks.
To process your data, we use Microsoft Corporation (USA), a service provider located in a third country outside the European Union. Countries outside the European Union handle the protection of personal data differently than countries within the European Union. We have therefore taken special measures to ensure that your data is processed just as securely in third countries as it is within the European Union. Microsoft Corporation is certified in accordance with the EU-U.S. Data Privacy Framework. This ensures an appropriate level of data protection when data is processed by Microsoft in the USA.
We store your data until the purposes described in this data protection notice have been fulfilled, unless a longer retention period is required by law. As a rule, we delete your data after these periods or determine the period for deletion of your data according to these criteria:
Rights of the data subject
You can request information about your personal data processed by us in accordance with Art. 15 GDPR.
If your data is not (or is no longer) correct, you can request the correction of your data in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.
In accordance with Art. 17 GDPR, you have the right to request the erasure of your data.
In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of your data.
In accordance with Art. 21 GDPR, you have the right to object to the processing of your data on grounds relating to your particular situation. In the event of a justified objection, we will no longer process your data.
Objection to the processing of your data for direct marketing purposes
You have the right to object at any time to the processing of your data for direct marketing purposes. This also applies to profiling in connection with direct advertising. You can address your objection to us informally, preferably using datenschutz@bitkom.org.
You are entitled to lodge a complaint with a data protection supervisory authority if you do not agree with the processing of your data.
In accordance with Art. 20 GDPR, you have the right to receive personal data that you have provided to us in an electronic format.
You have the right to withdraw any consent you have given us to process your data at any time. The easiest way to withdraw your consent is to send an e-mail to datenschutz@bitkom.org. The withdrawal of consent does not affect the lawfulness of the processing of your data up to the time of withdrawal.