Surveys
Responsibility
Controller
The company within the Bitkom Group conducting the survey is responsible for processing your personal data. The contact details are as follows:
Bitkom Servicegesellschaft mbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@bitkom-service.de
Bitkom e.V.
Albrechtstraße 10
10117 Berlin
E-Mail: bitkom@bitkom.org
DFA Digital für alle gGmbH
Albrechtstraße 10
10117 Berlin
E-Mail: info@digitaltag.eu
(hereinafter jointly referred to as "we")
Contact details of the data protection officer
You can address questions about the processing of your data to the data protection officer at any time:
datenschutz nord GmbH
Standort Berlin
Kurfürstendamm 212
10719 Berlin
E-Mail: office@datenschutz-nord.de
Purposes and legal basis of data processing
Participation in a survey
We conduct surveys to analyse current developments in companies in the digital and overall economy, gather opinions on digitalisation and various digital topics in everyday life, better understand the needs of our members, and develop well-founded positions. Below, we provide an overview of the type, scope, purposes, and legal basis of data processing when you participate in a survey.
We use your contact details to invite you to participate in a survey. We process your contact details (name, email address, telephone number, company/authority, position, function, address) and survey data (answers, opinions and, if applicable, demographic information, if requested) in order to conduct the survey and evaluate the results statistically. For online surveys, we process technically necessary usage data (e.g. IP address, information about the device/browser used, time of access) for the duration of the survey in order to enable the survey to function technically and to ensure system security.
We collect the data directly from you as the data subject or from our member and contact database (based on your membership). If necessary, we generate telephone numbers randomly (random digit dialling), including those that have not yet been assigned or are not publicly listed. This is particularly relevant for population surveys in order to obtain a representative sample.
The legal basis for the data processing described is Art. 6 para. 1 lit. f) GDPR (safeguarding legitimate interests, based on our interest in fulfilling the statutory purposes of Bitkom e.V., performing our tasks and gaining insights into relevant topics in the digital economy).
Further information on the processing of your data
Access to personal data
Within the companies of the Bitkom Group, only persons who need your data to perform the tasks assigned to them will have access to it. In addition, service providers or other persons who support us in performing our tasks may also have access to your data. These are service providers or persons in the following categories:
- Hosting service providers for the operation of our servers
- Service providers for the operation of our CRM system
- Service providers for the provision of survey software
- Service providers for conducting surveys
- Email delivery service providers for sending emails
- Other companies in the Bitkom Group for internal administrative purposes
Service providers used by us must meet special confidentiality requirements. They only have access to your data to the extent and for the period of time necessary to perform their tasks.
We publish survey results exclusively in anonymised and aggregated form, so that no conclusions can be drawn about your person.
Data processing outside the European Union
To process your data, we use Microsoft Corporation (USA), a service provider located in a third country outside the European Union. Countries outside the European Union handle the protection of personal data differently than countries within the European Union. We have therefore taken special measures to ensure that your data is processed just as securely in third countries as it is within the European Union. Microsoft Corporation is certified in accordance with the EU-U.S. Data Privacy Framework. This ensures an appropriate level of data protection when data is processed by Microsoft in the USA.
Storage duration
We generally delete your contact details after the survey has been completed and evaluated, unless they are still required for other purposes (e.g. administration of your membership). We delete or anonymise your survey data after the survey has been completed and the survey results have been quality assured. We generally delete the technical usage data for online surveys after seven days, unless security incidents require longer storage. Anonymised survey results can be stored indefinitely for statistical purposes and long-term analysis, as they no longer contain any personal references.
Rights of the data subject
Information
You can request information about your personal data processed by us in accordance with Art. 15 GDPR.
Correction
If your data is not (or is no longer) correct, you can request the correction of your data in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.
Deletion
In accordance with Art. 17 GDPR, you have the right to request the erasure of your data.
Restriction of processing
In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of your data.
Contradiction
In accordance with Art. 21 GDPR, you have the right to object to the processing of your data on grounds relating to your particular situation. In the event of a justified objection, we will no longer process your data.
Objection to the processing of your data for direct marketing purposes
You have the right to object at any time to the processing of your data for direct marketing purposes. This also applies to profiling in connection with direct advertising. You can address your objection to us informally, preferably using datenschutz@bitkom.org.
Right of appeal
You are entitled to lodge a complaint with a data protection supervisory authority if you do not agree with the processing of your data.
Data portability
In accordance with Art. 20 GDPR, you have the right to receive personal data that you have provided to us in an electronic format.
Revocation of your consent
You have the right to withdraw any consent you have given us to process your data at any time. The easiest way to withdraw your consent is to send an e-mail to datenschutz@bitkom.org. Withdrawal of consent does not affect the lawfulness of the processing of your data up to the time of withdrawal.
