Data protection information for users of the MoeWe Data Protection Tool

(Klicken Sie hier für die deutsche Version)

We, the Datenschutzberatung Moers GmbH, Neue Straße 22, 34369 Hofgeismar, 05671 749 25 0, info@dsb-moers.de, would like to explain to you the extent to which we process your data when you use the Data Protection Software by MoeWe GmbH. If you have any questions about data protection, please contact us at datenschutz@dsb-moers.de.

Data Protection Software by MoeWe GmbH

The MoeWe data protection tool is a software solution for data protection documentation from MoeWe GmbH, Neue Straße 22, 34369 Hofgeismar, Germany, https://www.moewe-datenschutz.de. The tool enables us to efficiently manage our customers’ data protection documentation online and, in particular, to carry out digital audits and precisely record processing activities in accordance with Art. 30 GDPR.

We have concluded an order processing agreement with MoeWe GmbH in accordance with Art. 28 GDPR. As our data processor, MoeWe GmbH acts in accordance with our instructions and is subject to the contractual obligation to ensure an appropriate level of data protection during data processing.
Data processing within the tool relates in particular to the recording and assignment of responsibilities and the allocation of authorizations. The name of the processor and the date of the last processing are stored to provide evidence of the adjustments made.

Purpose and legal basis of data processing

The purpose of the data processing is the initiation and fulfilment of contractual obligations on the basis of Art. 6 (1) (b) GDPR.

The primary purpose of data processing in the MoeWe data protection tool is the provision of services and the fulfillment of contracts on the basis of Art. 6 para. 1 lit. b GDPR, in the case of our employees additionally in conjunction with Section 26 FDPA.

In addition, we process personal data in accordance with the following legal bases:

• Art. 6 para. 1 lit. c GDPR for the necessary processing of personal data to fulfill a legal obligation to which we are subject under any applicable law of the EU or under any applicable law of a country in which the GDPR is applicable in whole or in part.

• Art. 6 para. 1 lit. f GDPR for the necessary processing of personal data in order to protect the legitimate interests of us or third parties, unless the fundamental freedoms and rights and interests of the data subject prevail. Legitimate interests are, in particular, our business interest in expanding our offering, information security, the enforcement of our own legal claims and compliance with other legal provisions.

Categories of recipients

As we use service providers for our information technology who are separately bound to confidentiality and data protection, access to personal data cannot be ruled out in this context. Categories of recipients are service providers (MoeWe GmbH) and external consultants.

Data is only passed on to authorities if there are overriding legal provisions. Data will only be transferred if the requirements of Art. 44 et seq. GDPR are fulfilled.

Duration of storage and deletion of data

We only process personal data for as long as necessary to achieve the purpose. If the purpose of processing no longer applies, we delete the data in accordance with the provisions of Art. 17 GDPR. After the purpose of processing no longer applies, we store the data in accordance with the statutory retention periods. Any further storage will only take place if there is an exception in accordance with Art. 17 para. 3 GDPR.

Your data will be stored for the duration of the contract. After the end of the contractual relationship, the data will be made available to our customers and then deleted.

Your right to information, rectification, erasure, objection and data portability

You can exercise your right to information, rectification, and erasure of data at any time. To do so, please contact us using the contact details provided above. If you request data erasure but we are still legally obliged to retain it, access to your data will be restricted (blocked). The same applies in the event of an objection. You can exercise your right to data portability insofar as the technical possibilities are available to the recipient and to us.

Right to lodge a complaint

You have the right to lodge a complaint with a data protection supervisory authority at any time.

Obligation to provide information

It is not possible to execute the contract without correct information from you.

Further data protection information can be found at https://dsb-moers.de/data-protection-information/?lang=en.