In the following we would like to inform you about data processing when using the video conferencing tool Cisco Webex Meetings (hereinafter referred to as Webex). Webex is a service offered by Cisco Systems Inc. (hereinafter referred to as Cisco), headquartered in San José California, USA. A contract for commissioned processing according to Art. 28 GDPR and standard contractual clauses according to Art. 46 GDPR have been concluded between Chr. Mayr GmbH + Co.KG (hereinafter referred to as mayr) and the company Cisco. An additional applicable Privacy Notice by Cisco can be found here:
Cisco Online Privacy Statement
Responsible entity
Chr. Mayr GmbH + Co. KG
Eichenstrasse 1
PO Box 11 11
D-87665 Mauerstetten (Germany)
Phone: +49 (0)8341 804-0
Email: public.mayr@mayr.de
Contact details for the Data Protection Officer
Thomas Huber
Chr. Mayr GmbH + Co. KG
Eichenstraße 1
D-87665 Mauerstetten (Germany)
Phone: +49 (0)8341 - 804-0
Email: datenschutz@mayr.de
Please note
If you visit the Cisco website, the provider of “Cisco Webex Meetings” is responsible for data processing. However, accessing the website is only necessary to download the software for “Cisco Webex Meetings”. You can also use “Cisco Webex Meetings” by directly entering the respective meeting ID and, if necessary, further access data for the meeting in the "Webex" app. If you do not wish to, or cannot use the “Webex” app, then the basic functions can be operated via a browser version, which you can also find on Cisco's website.
Type, Scope and Purpose of Data Processing
When using the Webex service provided by mayr for conducting online webinars, the following data is processed:
The following registration information is processed for registration and use of the service:
- First name, surname
- Company
- Email address
- ZIP code
- Address (optional)
- City (optional)
- Country (optional)
- Phone number (optional)
The following host and usage information is processed for use of the service and for diagnostics regarding technical issues:
- IP address
- Meeting password
- User agent identification
- Hardware type
- OS type and version
- Client version
- IP addresses along the network path
- MAC address of the endpoint (if applicable)
- Service version
- Actions taken
- Information on the meeting (title, date and time, frequency, average and actual duration, number, quality, network activity and network connectivity)
- Number of meetings
- Number of screen sharing and non-screen sharing meetings
- Number of participants
- Host name
- Screen resolution
- Join method
- Information on performance, troubleshooting and diagnosis
The following information on TAC supprt is processed for provision of support, for checking the quality of the support service and for conducting an analysis of the service solution
- First name, surname
- Email address
- Phone number of the employee who was asked to open the service request
- Authentication information (without passwords)
- Information regarding the state of the system
- Registration data on software installations and hardware configurations
- Error tracking files
Following the Webex webinar, mayr will process the following data for customer acquisition, consultation and support; for sending general information relating to mayr (e.g. newsletters); for sending invitations to trade fairs, professional events and seminars as well as information and offers for the purpose of advertising; for follow-up of the webinar and for CIP for the webinar
- First name, surname
- Company
- Email address
- ZIP code
- Address (optional)
- City (optional)
- Country (optional)
- Phone number (optional)
Thanks to the data protection-friendly default settings that mayr selected when configuring webex, the following personal data cannot be viewed by the participants: Participant list, chat, desktop sharing and camera. The functions are deactivated by default and cannot be activated independently by the participants. Chatting is only possible between the participant and the facilitator, not between participants.
Frankfurt/Main is the only server location configured for Cisco webex.
Participation in the mayr-webinars is only possible using the mayr invitation link (sent by email).
Deletion and storage
Your personal data shall only be stored by mayr for as long as is necessary to meet the above-mentioned purposes. Deviating from this, the storage period for webex has been set to a maximum of 360 days. This applies to webex webinar data that is processed by webex.
Legal basis
The legal basis is Art. 6 para. 1 lit. b) in the case of participants who are employees of a company or sole traders. The purpose of the processing is the provision of product and/or application-specific specialist knowledge as a service, provided by mayr as a pre-contractual measure. The aim is to acquire new customers for mayr products or to strengthen and consolidate existing customer relationships.
The legal basis is Art. 6 para. 1 lit. f) for participants who are not employees of a company or sole traders. The purpose of the processing is the provision of product and/or application-specific specialist knowledge as a service provided by mayr.
Art 6 para 1 lit. f) shall apply as a legal basis for the processing taking place after the webex-webinar, unless the processing is already covered by Art 6 para 1 lit.b). The purpose of the processing is to constantly improve the mayr webex webinar offer, to acquire participants as future customers and to consolidate existing customer relations.
Data processing outside the European Union
Cisco Systems Inc. is headquartered in the USA. However, data processing takes place in a member state of the European Union. In the event of a malfunction, data may also be processed outside the European Union for analysis purposes. Mayr and Cisco Systems Inc. have agreed on standard contractual clauses that provide suitable guarantees for the protection of your personal data in accordance with Art. 46 of the GDPR, which correspond to the European level of data protection. The transfer of data takes place on the basis of a contract in accordance with Art. 28 GDPR.
Rights of data subjects
As a data subject, you may exercise the rights granted to you by the GDPR at any time:
- the right to information as to whether and which of your data is being processed (Art. 15 GDPR);
- the right to request the correction or completion of the data concerning you (Art. 16 GDPR);
- the right to the deletion of the data concerning you in accordance with Art. 17 GDPR;
- the right to request restrictions on the processing of the data in accordance with Art. 18 GDPR;
- the right to data transfer in accordance with Art. 20 GDPR;
- the right to object to future processing of data concerning you in accordance with Art. 21 GDPR
Furthermore, you have the right to file a complaint with the supervisory authority responsible for data protection matters (Art. 77 GDPR):
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
PO Box 1349
91504 Ansbach
Germany
Email: poststelle@lda.bayern.de
https://www.lda.bayern.de/de/kontakt.html
Validity of the Privacy Notice
This Privacy Notice is reviewed by mayr regularly in order to adapt it, if applicable, to any changes in relevant laws or regulations or to better meet your needs.