Privacy Policy EBF Contacts
The following notes provide a simple overview of what happens to your personal data when you use our EBF Contacts application (hereinafter referred to as the “Application” and “App”). Personal data is any information that relates to an identified or identifiable living individual. For detailed information on data protection, please refer to the Privacy Policy below.
I. Who is responsible?
The party responsible within the context of the General Basic Data Protection Regulation and other national data protection laws of the member states as well as other provisions of data protection law is the:
EBF-EDV Beratung Föllmer GmbH (hereinafter referred to as “EBF”)
Gustav-Heinemann-Ufer 120-122
50968 Cologne
Germany
Tel.: +49 221 47455-0
Fax: +49 221 47455-111
E-Mail: moc.f1716291538be@of1716291538ni1716291538
Website: www.ebf.com
II. Name and address of the data protection officer
Alexander Teutloff
Gustav-Heinemann-Ufer 120-122
50968 Cologne
Germany
Tel.: +49 221 47455-322
E-Mail: moc.f1716291538be@zt1716291538uhcsn1716291538etad1716291538
Website: www.ebf.com
III. Which personal data is processed?
- Username (input on Exchange server login)
- Other fields from Exchange server:
- id
- displayName
- givenName
- surname
- userPrincipalName
- jobTitle
- department
- businessPhones (List of numbers)
- mobilePhone
IV. Purpose and legal basis
All data you provide is stored to provide functionality, error analysis, and reporting.
The data is processed according to Art. 6 (1) lit. f GDPR based on our legitimate interest in improving the stability and functionality of the app.
V. Data Recipients
Recipient of the data is just the user of the application. The personal data is fetched from customer’s systems (MS Exchange server) and stored encrypted on the user’s device. Data will not be transferred to EBF or other third parties.
VI. Storage period
The personal data will only be stored as long as the intended purpose is given. Data will be deleted from the device upon uninstallation of the application.
Since, due to your use of the application, a contractual relationship exists between you and the EBF, we may be subject to the statutory retention periods.
VII. Which data protection rights do you have?
You have the right to receive information about all your personal data at any time. You also have the right to have your personal data corrected, blocked, or, apart from the statutory provisions on data storage for business purposes, deleted. If you have questions on this, please contact EBF GmbH’s data protection officer. For information, correction, blocking or deletion of your personal data please contact the administrator of your Exchange servers.
You may change or revoke consent by notifying your administrator with effect for the future.
You may at any time complain to the supervisory authority responsible for you. Your responsible supervisory authority depends on the federal state of your residence, your work, or the presumed violation. A list of supervisory authorities (for the non-public sector) including address can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
If you would like more detailed information about your personal data with us, our data protection officer will be happy to answer any questions you may have regarding the protection of our data.
VIII. Data security
We only process personal data to the extent that this is possible under the provisions of data protection law. All necessary technical and organizational security measures are taken to ensure that your personal data is adequately protected against unauthorized access and misuse at all times.
Various encryption methods (e.g. SSL via HTTPS) are used to protect the security of your data when it is transmitted. Data is encrypted on the device.
All of our employees are obligated to observe the regulations of the GDPR and the BDSG (“Bundesdatenschutzgesetz”: German Federal Data Protection Act) when handling personal data.
IV. Amendments to the data protection provisions
We reserve the right to adapt this data protection statement as necessary to ensure that it always complies with the current legal requirements, or to implement changes to our services in the data protection statement, e.g. when introducing new services as part of the application. At all times, the most recent version of the data privacy policy shall apply.
