Data Protection Notice for Business Partners and Contact Persons

Data Protection Notice for Business Partners and Contact Persons

You would like to know if we, a data protection company, comply with the regulations for, i.e. the right to information? But of course!

We collect and process personal data on our business partners and contact persons. We would like to inform you about this in accordance with Artt. 13 and 14 GDPR:

fox-on DatenschutzThe following entity is responsible for this data processing:
fox-on Datenschutz GmbH
Pollerhofstr. 33a
51789 Lindlar, Germany
E-Mail: info@fox-on.com
Phone: +49 2266 – 90 15 920

The Data Protection Officer can be reached with the same contact details or directly at ds@fox-on.com.

We process your data for the following purposes:

More detailed data protection notices for data processing for specific purposes are available (e.g. for Online Data Protection Training and for the documentation tool foxondo).

The legal basis for processing this data is Art. 6 Para. 1 Letter f GDPR: Our legitimate interests are the execution of the contract and the maintenance of the business relationship with your employer. We may also be required by law to process data, for example under the Whistleblower Protection Act in Germany. If we process any additional personal data, this is based on your consent (Art. 6 Para. 1 Letter a GDPR), which you can revoke at any time with effect for the future.

We process the following categories of data: Your name and your professional contact data, which we receive from you or your via your employer. In addition, data from communication (e.g., conversation and e-mail data) and from online meetings may be processed (e.g. video image, authentication data, protocol data, metadata such as IP address, time of participation, etc.) as well as data processing based on whistleblowers, reports, for example.
We process further data if you share this voluntarily.

We do not share your information with third parties unless you consent to this or there is a legal basis for doing so. Service providers who provide or maintain our IT infrastructure can get access to this information, but they are separately obliged to maintain confidentiality (such as our e-mail provider, our service provider for video conferencing). 
Under certain circumstances, the data may be processed in the USA, where it is protected on the basis of the Transatlantic Data Privacy Framework or on the basis of concluded EU Standard Contractual Clauses.

The storage period depends on the purposes mentioned above and, if applicable, on the statutory retention periods.

As the data subject you have the following rights, provided the legal conditions are fulfilled:

  • Right to information, Art. 15 GDPR
  • Right to rectification of incorrect data, Art. 16 GDPR
  • Right to erasure of data, Art. 17 GDPR
  • Right to restriction of processing, Art. 18 GDPR
  • Right to data portability, Art 20. GDPR
  • Right to objection, Art. 21 GDPR

Provided the data processing is based on your consent, you may revoke it at any time, with effect on the future.

If the data processing is based on our legitimate interests, you can assert your right to object by providing us with the reasons for the objection.

You also have the right to lodge a complaint regarding the data processing with a data protection supervisory authority. We would be pleased if, in case of doubt, you would contact us first.

Further statements about the handling of your personal data in other contexts can be found on our overview page “Privacy Notice”.

If you have any further questions on how and for what purpose we process your data, please get in touch. After all, we are a data protection company and are of course happy to provide information.