Status 2nd of January 2021
Data protection is important to congreet GmbH and the legal data protection regulations are therefore always implemented and complied with in an up-to-date manner.
Therefore, we also explain here our handling of your personal data when using our online platform for events and communities.
Responsible party in the sense of the data protection laws is
Represented by Franz Wenzel
Collection and storage of personal data and type and purpose of their use
congreet offers event organizers and their visitors, or members, an Internet-based matchmaking solution (“matchmaking”) to provide participants at events or communities with the opportunity to be matched as potential conversation partners in the respective context and to establish contact. Furthermore, various additional services such as online surveys, questions to speakers (at events) or marketplaces are offered. To make this possible, personal data is collected and processed. Personal data is stored and processed exclusively for this purpose.
The congreet GmbH requires as a minimum data set the first name, last name and a valid e-mail address of a participant. Without a consent to this of the corresponding participant, a use of the congreet platform solution is not possible.
Handling personal data
The congreet GmbH stores the personal data of the participant and does not disclose them to third parties, unless the participant has registered at an event or community of a corresponding provider, within the congreet platform.
If the participant has registered at an event or community of another organizer, the entry of further personal data by the participant is possible here. Only data entered by the participant will be stored and, in case of deletion, also permanently deleted. The event or community organizer has full access to this data and has contractually committed to congreet GmbH to comply with all regulations of the DSGVO. The participant has a contractual relationship with the provider of the event or community and congreet is only the order data processor of the provider. The provider and the participant may conclude further agreements regarding the use of personal data.
The employees of congreet GmbH are obligated to observe the regulations of the BDSG and the DSGVO as well as the various relevant state laws on data protection when handling data.
To protect the security of your data during transmission, we use encryption methods (e.g. SSL) via HTTPS. Our servers are secured by means of firewall and virus protection. Back-up and recovery as well as role and authorization concepts are a matter of course for us.
Data transfer to third countries
Data processing and storage take place on hosting systems in Germany. The congreet GmbH does not transfer any data to third countries on its own initiative. Since the congreet system is a system operating on the Internet, the data can be accessed in any third country within the scope of proper use. However, this is only possible within the same framework as it would be possible in Germany.
Duration of data storage
We comply with the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes stated herein or as stipulated by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data will be routinely blocked or deleted in accordance with the statutory provisions.
Every participant has the right to delete his/her data within the congreet platform immediately, without residue and irrevocably. This can be done by the participant within the platform itself.
Rights to information, correction, blocking, deletion and objection
The participants are entitled to various legal rights, these are in particular:
- Right of objection
Participants may object to processing of your personal data based on Art. 6 (1) (f) EU-DSGVO.
- Right to information
Upon request, participants will receive information about the processing of their personal data.
- Right of correction
Participants have the right to have incorrect personal data corrected by congreet GmbH or the organizer of the event/community.
- Right of deletion
Participants can delete their personal data themselves, but also have the right to have them deleted by congreet GmbH or the organizer of the event/community, as long as there are no legal regulations against this (e.g. storage of invoice data).
- Right to data portability
Data information requested by participants can also be transferred to third parties.
- Right of revocation in the case of consent
Participants may revoke their consent to data processing at any time.
- Right of appeal
Participants are free to complain to a supervisory authority.