General Privacy Policy Business Partners

DATA CATEGORIES, PURPOSE OF PROCESSING AND LEGAL BASIS

In the context of cooperation with business partners, EDRO processes personal data for the following purposes:

• Communication with business partners about products, services and projects, e.g. to process inquiries from the business partner;
• Initiation, processing and management of (contractual) business relationships and maintenance of business relationships between EDRO and the business partner, e.g. to process the ordering of products and services, to collect payments, for accounting, billing and debt collection purposes and to carry out deliveries, maintenance work or repairs ;
• Conducting customer surveys, marketing campaigns, market analysis, sweepstakes, contests or similar promotions and events;

• Maintaining and protecting the security of our products and services and our websites, preventing and detecting security risks, fraudulent activities or other criminal or malicious activities;
• Compliance with (i) legal requirements (e.g. tax and commercial law retention requirements), and (ii) EDRO guidelines;
• Settling legal disputes, enforcing existing contracts and asserting, exercising and defending legal claims.

• professional contact information, such as name, professional contact address, professional phone number, or email address;
• Payment Data, such as information required to process payments or prevent fraud, including credit card information and card security numbers;
• Information collected from publicly available sources, information databases or credit bureaus;
• other personal data whose processing is necessary for the initiation, processing and management of (contractual) business relationships and maintenance of business relationships or which you provide voluntarily, such as orders placed, order details, inquiries made or project details, correspondence, other data about the cooperation ;

The processing of personal data is necessary to achieve the above-mentioned purposes, including the fulfillment of a contractual relationship or a pre-contractual activity with the business partner.

Unless expressly stated otherwise, the legal basis for data processing is Article 6 Para. 1 lit a (if consent has been given) or Article 6 Para. 1 lit b and f of the General Data Protection Regulation (GDPR):

• the processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures;
  the processing is necessary to protect the legitimate interests of the person responsible or a third party.

If the personal data mentioned is not provided or not provided to the required extent or if EDRO cannot collect it, the individual purposes described may not be provided or the request(s) made may not be processed. Please note that this would not constitute a breach of contract on our part.

Right to information, correction, deletion or restriction of your personal data, right of objection, right to data portability and revocation of a given consent

• In accordance with Article 15 GDPR, you have the right to request confirmation as to whether personal data is being processed by the person responsible and the right to information about this data. This right does not exist in the case of Section 34 (1) BDSG.
• In accordance with Article 16 GDPR, you have the right to immediately request the correction of incorrect data concerning you and/or the completion of incomplete personal data.
• In accordance with Article 17 GDPR, you have the right to have your personal data deleted. This right does not exist in the case of Section 35 (1) BDSG; in its place then comes the right to restriction of processing.
• According to Art. 18 you have the right to restriction of processing. This right is supplemented by § 35 Para. 2 BDSG.

• According to Art. 20 GDPR you have the right to data transfer.
• In accordance with Article 21 GDPR, you have the right to object to data processing.
• Ultimately, you have the opportunity to lodge a complaint with the supervisory authority.
• If your data is processed on the basis of your consent, you have the right to revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent up to the point of revocation.