We process your personal data for the following purposes:
Your data is usually processed within the European Union (EU). In some cases, personal data is processed outside of the EU. Some of our suppliers, group entities, and cooperation partners are also located outside of the EU or provide these services outside of the EU. The regulations in these countries do not always offer the same protection of personal data as the European regulations. To ensure that your personal data is still safe, we take measures by concluding agreements on the security of personal data just as we do within the EU. We refer to this as the “EU model contract”.
We have taken appropriate technical and organizational measures to protect personal data against loss or any unlawful form of processing. Various measures have been taken in this context, including data encryption, encrypted communication, and treatment of the data as confidential information. People who have access to your data on our behalf are subject to a duty of confidentiality.
We require the same technical and organizational measures from the parties who process data on our behalf and have laid down this in processing agreements.
We have not appointed a Data Protection Officer (DPO).