1 Responsible Body
SynFlex Elektro GmbH,
Auf den Kreuzen 24,
as the responsible body would like to explain below which of your data we process and how.
DATA PROTECTION OFFICER
For questions concerning data protection, please do not hesitate to contact our Data Protection Officer, Mr. Thomas Werning, who is available at:
32791 Lage, Germany
Below you will find information about which personal data (this is all data that identifies or makes you identifiable as a natural person, such as name, address, e-mail address or even user behavior) we collect during your visit to our website and how this data is used. Affected persons are the visitors of our website and users of our online services.
At this point, we summarize the general rights to which you are entitled under the GDPR with regard to your personal data processed by us. For an explanation of the legal terms, we refer to the applicable definitions in the GDPR (see Article 4 there). If anything remains incomprehensible, please feel free to ask us.
- You may revoke any consent given to us to process or share your data at any time for the future (Article 7(3) DSGVO).
- Should the legal basis for processing your data be a legitimate interest pursuant to Article 6(1)(f) DSGVO, you may lodge an objection to the data processing pursuant to Article 21 DSGVO. Insofar as the relevant data processing is direct marketing, you do not have to justify your objection in any way; in all other cases, you would have to provide reasons for your objection that arise from your particular situation.
- If we have stored incorrect information about you, you can request us to correct your data (Article 16 DSGVO).
- You can request information from us about which of your data we process (Article 15 DSGVO, Section 34 BDSG).
- You can demand that we delete your data or restrict its processing, provided that your request does not conflict with any higher-ranking retention obligations (Article 17 or 18 DSGVO, Section 35 BDSG).
- You may request that we provide you with the data you have provided to us yourself in a machine-readable format for disclosure to third parties (Article 20 DSGVO).
- You may complain to a supervisory authority for data protection, e.g. the Hamburg Data Protection Commissioner, about data protection issues with us.
Any form of processing of personal data requires a legal basis that allows us to do so. The legal basis is primarily derived from the purpose for which the data is processed. The lawfulness within a legal basis is regularly measured according to the specific scope of the data processing and the measures we have taken to protect your data.
Legal bases for data processing arise from Article 6(1) DSGVO and for data requiring special protection, such as health data, from Article 9(2) DSGVO. These two regulations name the preparation or fulfillment of contractual, legal or even social obligations as the most important legal bases for data processing. In addition, many data processing operations are carried out in our legitimate interest, unless, in view of the specific circumstances, the interests of the data subjects prevail. If one of the previously mentioned types of legal basis is relevant, the processing does not require any further consent from you.
In addition, data processing may be carried out on the basis of consent from you (Article 7 of the GDPR) or for persons under 16 years of age when using information society services (e.g. websites, online games, social media platforms) by the children or adolescents in conjunction with the consent of a legal guardian (Article 8 of the GDPR).
At this point, we expressly point out that none of our offers are directed at persons under the age of 16.
In part, our obligation to ask you for your consent does not or not solely result from the GDPR but from the stricter law under the EU ePrivacy Directive of 2002 (often called the „Cookie Directive“). The provisions of this directive apply in Germany via the German Telemedia Act (TMG) and the Unfair Competition Act (UWG). We have taken into account the obligations arising from these laws without expressly referring to them below.
If a data transfer to a state outside the European Economic Area (EEA) takes place, we ensure that data protection in the sense of Articles 44 – 49 DSGVO is secured.
Cookies are text files that are stored by your browser on your device when you visit a website. Different information can be stored in a cookie. In some cases, a cookie only stores a yes or no („true“ or „false“), in other cases a character string is stored that enables the browser to be uniquely identified when the website is called up again (a so-called cookie ID).
The right to set cookies is not determined solely by the GDPR, but also by the EU ePrivacy Directive and Section 15 of the German Telemedia Act (TMG). The ePrivacy Directive distinguishes between cookies that are absolutely necessary (essential) for the operation of the online offer and those that are not. Essential cookies may also be set without consent, but non-essential cookies always require consent – even if this is not required under the GDPR (and, for example, there is a legitimate interest as a legal basis).
Before we store non-essential cookies on your terminal device, we ask for your consent in accordance with the requirements of the ePrivacy Directive.
The purpose of each cookie and the legal basis for its use under the GDPR can be found in the following description of the individual data processing.
There are various ways for you to prevent the acceptance of cookies on your device:
The standard case is likely to be that you decide which cookies you allow and which you do not allow via our consent manager when you call up one of our websites. In some cases, we can only offer you a blanket acceptance or rejection of all cookies or cookie groups.
In principle, you can set your browser so that it never accepts cookies. By such a complete exclusion, you will most likely lose functions that are based on cookies and that you would actually like to allow or that do not require consent at all.
You can access Internet pages in the private mode of your browser. Private mode also blocks the setting of cookies in your browser memory or automatically deletes all cookies at the end of the session.
Some browsers or browser plug-ins offer you the possibility to make more differentiated default settings as to which cookies you generally want to accept by default and which you do not.
A special case: Google offers a browser plug-in that prevents the setting of the various cookies from Google. You can find the corresponding plug-in here: https://tools.google.com/dlpage/gaoptout?hl=de
5 Concrete data processing
Description: In order to visit a virtual room or event provided by us, you must create a user account.
Data categories: Login data (name, title, email address, password), status data (organization/company, job title, own website), activity history (timestamp, browser actions).
Data recipient (third country transfer, if applicable): Our service provider for hosting the user database, which is bound to data protection via an order processing agreement, is located in the EEA. The service provider is part of an international group of companies with headquarters in the USA and further subcontractors in various third countries. The resulting data transfer outside the EEA is secured by the conclusion of EU standard data protection clauses.
Purpose + legal basis: The operation of your user account serves the fulfillment of our corresponding user agreement. The legal basis is accordingly the fulfillment of our contractual obligations to you.
5.1.2 Providing the virtual rooms
Description: In order for a web server to make our virtual rooms available to your browser as Internet pages, the server must collect technical data about the device you are using for this purpose, your browser and your Internet access. This is called the logfile or weblog. This is the same data that you necessarily leave behind with every Internet page that you call up. At the center is the IP address from which you call up our pages. To this Internet address, the web server sends you the data you want to see.
Data categories: IP address from which our site was accessed; date and time of access; objects on our website accessed in the browser; type and version of Internet browser; type and version of operating system.
Data recipient (third country transfer, if applicable): Our service provider for hosting the user database, which is bound to data protection via a contract processing agreement, is located in the EEA. The service provider is part of an international group of companies with headquarters in the USA and further subcontractors in various third countries. The resulting data transfer outside the EEA is secured by the conclusion of EU standard data protection clauses.
In the event of attacks on our pages, transfer to forensic experts and investigative authorities commissioned by us. A transfer to third countries does not take place in this case.
Purpose + legal basis: Provision of our website as well as investigations in the event of unlawful access to our websites (e.g. a hacker attack). Legal basis is a legitimate interest, as the operation of a website is not possible without the collection of the weblog. In the specific case of an attack on our website, we have a legitimate interest in being able to provide investigators with circumstantial evidence of how the attack took place.
Storage period: 7 days
5.1.3 Cookie management
Description: For all cookies requiring consent, we ask for your consent before storing them in your browser cache. The decisions you make will in turn be stored in a cookie on your device, so that we do not have to ask for your consent again when you visit our web pages again. You can revise your decision at any time by deleting the corresponding cookie from your device via your browser settings.
Data categories: Consent status (yes/no)
Data recipients (third country transfer, if applicable): None.
Purpose + legal basis: legally compliant consent management for cookies. Legal basis is a legitimate interest, as storing the cookie decision only slightly restricts the rights of visitors and at the same time simplifies the use of the pages on repeated visits. This cookie may also be set without your consent according to the ePrivacy Directive, as the language choice is considered an essential function.
Storage period: until the corresponding cookie is deleted from your browser cache or until the cookie expiration date is reached.
Description: We use the web analysis service Matomo on the web pages for our virtual rooms. On our behalf, Matomo uses the information collected to create statistical reports about the activities on our website, the regional origin of visitors and technical key data of the devices used to visit our pages.
We have set Matomo in such a way that IP addresses are only processed in abbreviated form in order to limit direct personal reference. Through IP anonymization, the end of your IP address is replaced by zeros immediately after collection.
We have set Matomo in such a way that Matomo stores cookies in your browser when you call up our website in order to be able to assign your activities on our website to a user. This gives us the possibility to determine the quota of returning visitors or to be able to trace usage paths within our internet pages. The cookie does not allow us to identify who you are. The cookie assigns you to a cookie ID as a pseudonym.
We do not pass on the data from Matomo to any third parties. In particular, we do not merge the data with data from advertising networks or use it in any other way for marketing purposes.
You can recognize Matomo’s analytics cookies by the abbreviation pk in their name (Matomo used to be called Piwik).
For more information about Matomo, please visit https://matomo.org/matomo-cloud-privacy-policy/.
Data categories: IP address via which the device goes online; location or country linked to the IP address as well as Internet service provider for Internet access; date and time of access; objects on our website called up (clicked on) in the browser; type and version of Internet browser; type and version of operating system; Internet pages clicked on before and next; Matomo ID stored in the cookie.
Data recipient (third country transfer if applicable): InnoCraft Ltd, 7 Waterloo Quay PO625, 6140 Wellington, New Zealand. InnoCraft (the operator of Matomo Cloud) is obligated to us to observe data protection via an order processing contract. The information collected by the cookies is transferred to servers in the EEA and stored there, so that technically no third country transfer takes place. Legally, the third country transfer to InnoCraft as a New Zealand company is secured via the EU adequacy decision for New Zealand.
Purpose + legal basis: The purpose of this usage analysis is to enable us to further improve our Internet offering based on the analysis findings.
The legal basis is a legitimate interest arising from the fact that the personal reference of the collected data is greatly reduced, for example, by anonymizing the IP addresses, that the data is not combined by us with other data collections. Regardless of this, with regard to the requirements of the ePrivacy Directive, we ask for your consent for the setting of Matomo cookies via our cookie manager.
Storage period: 14 months (Reason: This storage period allows us to export annual reports).
5.1.5 Video Streaming (YouTube)
Description: In some cases, films are shown in our virtual spaces via a video player from YouTube, a subsidiary of Google. When you call up a page equipped with a YouTube player, a connection to YouTube’s servers is established and cookies from Google are set in your browser. This tells Google which of our pages you have visited and which film you have watched. Google sets the following cookies via the YouTube player, for example: CONSENT, GPS, Visitor_Info1_Live, YSC, IDE.
We do not receive any data about your usage behavior with regard to this data collection from Google.
If you are logged into your YouTube or Google account while visiting our site, you enable Google to associate your usage behavior directly with your personal profile. You can prevent this by logging out of your account.
Data categories: IP address from which our site was accessed; date and time of access; films accessed; sharing functions used to recommend the film; type and version of internet browser; type and version of operating system; Google ID stored in cookies.
Data recipient (if applicable, third country transfer): Google LLC, for us as a European organization addressable via Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. The data collected as part of the YouTube use is transferred to Google servers in the USA and processed there. The resulting data transfer outside the EEA is secured by the conclusion of EU standard data protection clauses.
Purpose + legal basis: We use the YouTube player to provide you with powerful video streaming. The legal basis for the data transfer to Google is your cookie consent for the YouTube player.
Storage period: The storage period is the responsibility of Google. It is not possible to delete data from us, as we do not collect any data from you through the use of YouTube.
Description: You can contact us or other organizations in our virtual spaces via online chat. The chat function of tawk.to as a cloud provider is integrated into our website. To start the chart, click on the chat widget. This is a standalone program that is launched in your browser window for the chat.
Tawk.to sets cookies after your appropriate consent, so that a continuous conversation with you can be secured: __tawkuuid (6 months), TawkConnectionTime (session).
Details about data protection at tawk.to can be found here: https://www.tawk.to/privacy-policy/
Data categories: Time of the chat; IP address; browser type/version, operating system; URL of the website from which the chat is started; contents of the chat (e.g. name, email address, questions and answers discussed).
Data recipient (if applicable, third country transfer): Tawk.to as cloud provider for the chat widget, which is obligated to data protection via an order processing agreement, is located in the USA. The resulting data transfer outside the EEA is secured by the conclusion of EU standard data protection clauses.
Purpose + legal basis: Provision of an online chat as a communication channel. The legal basis is your consent, which you grant as part of the cookie consent.
Storage period: (variable, depending on the settings of the exhibitor’s user account. Please contact the respective exhibitor).
Description: To enable an individual design of the virtual spaces, we use so-called web fonts. Your browser loads these fonts from the Internet to display our pages if the fonts have not yet been loaded in your browser’s memory from a previous visit to a page with this font.
In some cases, fonts are available directly on our own server. In this respect, it is not an independent processing that goes beyond the processing „providing the virtual spaces“. In some cases, we use fonts from Google (Google Fonts). Google enables an outstandingly fast provision of the font files and guarantees the provision of the currently optimal font set.
For the download of the fonts from the Google font servers (gstatic.com), your IP address must be transmitted to Google, as otherwise a transmission of the data package is not possible. Google does not receive any other data from you in connection with this processing.
Data categories: IP address from which your device accesses the Internet, time.
Data recipient (if applicable, third country transfer): Google LLC, for us as a European organization addressable via Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. The data collected within the scope of Google Fonts is transferred to Google servers in the USA and processed there. The resulting data transfer outside the EEA is secured by the conclusion of EU standard data protection clauses.
Purpose + legal basis: Provision of Google Fonts in a fast and up-to-date form. The legal basis is a legitimate interest, as only the IP address of your device is transferred as part of this processing, without any further references to your use of the Internet.
Storage period: The storage period is the responsibility of Google. It is not possible to delete data from us, as we do not collect any data from you through the use of Google Fonts.
5.1.8 Contact form
Description: Our virtual rooms have contact forms. You can use them to send messages to us or to the specific organizations presented in the virtual space. Your voluntary input will technically be sent to the recipient as an e-mail. If you write to another organization in the virtual space, that organization becomes the recipient of your data for further processing.
Data categories: See the processing operations „Provision of virtual spaces“ and „E-mail communication“.
Data recipients (if applicable, third country transfer): See the processing operations „Providing the virtual rooms“ and „E-mail communication“.
Purpose + legal basis: providing a contact form as an additional way to contact us or other organizations in the virtual space. The legal basis is, depending on the content of your contact, the preparation of a contract performance or a legitimate interest.
Storage period: See the processing operations „Provision of a website“ and „E-mail communication“.
5.2 Additional processing
Please see our regular privacy policies https://virtual-coil-show.com/en/privacy-policy
Last updated: January 2021