Data Privacy Statement - idgard
I. Name and address of the responsible party
The controller, responsible for collecting, processing and using your personal data pursuant to the EU General Data Protection Regulation (GDPR), is:
msg systems ag
Robert-Bürkle-Straße 1
85737 Ismaning
Germany
Phone: +49 89 96101-0
E-Mail: info@msg.group
II. Name and address of the data protection officer
Data protection officer of the responsible party is:
Claus Bauer
msg systems ag
Robert-Bürkle-Straße 1
85737 Ismaning
Germany
Fax: +49 89 96101-1113
E-Mail: Datenschutz@msg.group
III. Data processing for idgard guest access
1. Description and scope of data collection
In the section below, we would like to inform you about the processing of personal data in connection with the use of the idgard guest access.
Categories of personal data:
User information: First name, last name, e-mail address, company affiliation, telephone number.
The above data is collected when creating an idgard guest account. The data is available for selection by all licensed idgard users in the msg group, to prevent duplicate guest accounts.
2. Legal basis for data processing
Data collected during planning, is processed on the basis of the consent (Point 1 lit a of Article 6 (1) of the GDPR) or legitimate interest (Point 1 lit f of Article 6 (1) of the GDPR). The legitimate interest is the highly secure data exchange that idgard offers as a platform.
3. Purpose of data processing
Data processing is carried out to enable the exchange of data between employees of msg and its external customers and partners (guests) in idgard.
4. Duration of data retention
The data collected for data exchange will be deleted with the deletion of the idgard guest access and in compliance with legal retention obligations. Otherwise, deletion takes place if the purpose for processing no longer exists.
5. Right of objection
Users are entitled to revoke their declaration of consent to the processing of personal data. If users contact us by e-mail, they can object to the storage of their personal data at any time. In this case, the conversation cannot continue.
In addition, you can send your objection by e-mail or letter to the above address.
All personal data stored in the course of creating an idgard guest account will be deleted in this case.
IV. Rights held by the affected person
Anytime your personal information is processed you are considered an affected person pursuant to the GDPR and you have the following rights in connection with the responsible party:
1. Right to disclosure
You have the right to request information on the scope, origin and recipient of stored information, as well as the purpose of the storage, at no charge to you.
2. Right to correction
You have the right to demand a correction and/or completion from the responsible party should the processed personal information related to you be incorrect or incomplete. The responsible party must make the corrections without delay.
3. Right to deletion
You have the right to request that the responsible party immediately delete any personal information related to you and the responsible party is required to delete said data without delay should any of the following reasons apply:
(1) The personal information related to you is no longer required for the purpose it was collected or processed in any other manner.
(2) You revoke the consent on which the processing was based pursuant to Numeral 6, Para. 1, Item a or Numeral 9, Para. 2, Item a of the General Data Protection Regulation (GDPR) and there is no other legal basis for the processing.
(3) You submit an objection to the processing pursuant to Numeral 21, Para. 1 of the General Data Protection Regulation (GDPR) and no legitimate reasons for the processing that have precedence over your objection exist, or you submit an objection to the processing pursuant to Numeral 21, Para. 2 of the General Data Protection Regulation (GDPR).
(4) The personal information related to you was processed unlawfully.
(5) The deletion of the personal information related to you is necessary in order to meet a legal obligation under Union law or the law of the member states to which the responsible party is subject.
(6) The personal information related to you was collected in relation to services offered by the information company pursuant to Numeral 8, Para. 1 of the General Data Protection Regulation (GDPR).
4. Right to data portability
You have the right to obtain the personal information related to you and which you shared with the responsible party in a structured, commonly used and machine-readable format.
5. Right of objection
You have the right, for reasons arising from your particular situation, to object to the processing of personal information related to you, which was being processed pursuant to Numeral 6, Para. 1, Item e or f of the General Data Protection Regulation (GDPR), at any time; this includes any profiling based on these policies.
The responsible party will cease processing any personal information related to you unless they can provide proof urgent, protection-worthy reasons for the processing that outweigh your interests, rights and freedoms or unless the processing serves the enforcement, exercising or defense of legitimate claims.
You have the right to revoke your privacy consent statement at any time. Revoking your consent shall not affect the legitimacy of the processing that was performed with your consent up to the time your consent was revoked.
6. Right to submit complaint to supervisory body
Notwithstanding other administrative or legal remedy, you will generally have the right to submit a complaint to a supervisory body, specifically in the member state of your place of residence, your place of employment or the location of the alleged breach, if you are of the opinion that the processing of the personal information related to you violates the GDPR.
The supervisory body to which the complaint is submitted shall inform the complainant of the status and results of the complaint, including the option of legal remedy pursuant to Numeral 78 of the GDPR.
