MobiChord GmbH is committed to protecting your privacy. We feel, it is important for you to know how we handle the information we receive from you in connection with our contractual relationship.
Regarding the processing of your personal data as described in sec. 2 hereinafter, MobiChord GmbH serves as “controller” in the sense of Art. 4 No. 7 GDPR. Our contact details are
Phone: +1 (801) 895-4180
Authorized representative person: Herbert Uhl
You can contact our data protection officer by sending an email to firstname.lastname@example.org
- Type and extent of data processing
If you enter into a business relationship with us, we collect personal data from you as follows:
- Email address
- Postal Address
- Telephone number
- Mobile phone number
We use this data for the following purposes:
- Identifying you as our contractual partner;
- Exercising our contractual rights and fulfilling our respective obligations;
- Correspondence with you;
- Invoicing our fees;
- Asserting possible claims in connection with our business relationship.
- Providing information about our products and services.
This data processing is based on a contract with you and is required for the mutual fulfillment of obligations under this contract. We are therefore obliged to process such data pursuant to Art.6 (1) lit. b GDPR.
The personal data collected by us for the conduct of the business relationship will be stored for the duration of the contract and deleted 24 months thereafter, unless we are obliged by law (especially tax and commercial law) to store the data for a longer period, Art. 6 (1) lit. c GDPR or you have consented to a longer storage, Art. 6 (1) lit. a GDPR.
Furthermore, we will use your contact details (name, address, email address, telephone number, mobile phone number) to provide you with information regarding any goods distributed by us and any services rendered by us or one of our subsidiaries. If required by the applicable law, we will ask for your consent before sending you such information. In this case we are entitled to use your data for this purpose according to Art. 6 (1) lit. a GDPR. If we are allowed to provide you with information without your prior consent, the basis is Art. 6 (1) lit. f GDPR due to our legitimate interest to promote our goods and services to our customers. We will delete this data if you revoke your consent or if the legal basis for providing you with information without your consent ceases to be fulfilled.
- Disclosure and onward transfer
As part of our contractual relationship it might be necessary to transfer and disclose personal data to the following categories of recipients who reasonably need to know such data for the purpose of the contract between us and you:
- Network operators
- Accounts receivables
- Technology partners, in particular ServiceNow, Inc. and Amazon Web Services, Inc.
In this regard and in accordance with Art. 6 (1) b GDPR personal data will especially be made available to MobiChord Inc. which acts as processor on our behalf and has its place of business in the United States of America.
MobiChord Inc. complies with the EU-US Privacy Shield Principles as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from customers in the European Union member countries. MobiChord Inc. has certified that it adheres to the Privacy Shield Principles of notice, choice, accountability for onward transfer, security, data integrity and purpose limitation, access, recourse, enforcement and liability. To learn more about the Privacy Shield program, and to view MobiChord Inc.’s certification page, please visit https://www.privacyshield.gov/
- Obligation to provide data
There is no legal or contractual obligation for you to provide us with personal data. However, if you do not provide us with the data which is mandatory for the performance of our contractual services, this may result in us not being able to render our services.
- Your rights
In connection with the different types of processing, you have a number of rights described hereinafter. These rights can be exercised free of charge. However, where requests from a data subject are evidently unfounded or excessive, in particular because of their repetitive character, we may either
- charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested; or
- refuse to act on the request.
A. Withdrawal of consent
You have the right to withdraw your consent to processing your personal data for the future at any time. The withdrawal will not affect the lawfulness of processing based on consent before your withdrawal (Art. 7 (3) GDPR).
B. Right of confirmation and right of access
You have the right to obtain from us the confirmation as to whether or not personal data concerning you is being processed, and, where this is the case, access to the personal data and additional information under the conditions of Art. 15 GDPR.
C. Rectification and erasure
You have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning you and the right to have incomplete personal data completed (Art. 16 GDPR). Further you have the right to obtain from the controller the erasure of personal data concerning you under the conditions of Art. 17 GDPR.
D. Right to restriction of processing
You have the right to obtain from the controller restriction of processing under the conditions of Art. 18 GDPR.
E. Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data which is based on point (e) or (f) of Art. 6 (1) GDPR, including profiling based on those provisions. In this case, we will no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
F. Right to data portability
You have the right, to receive your personal data which you have provided to us in a structured, commonly used and machine-readable format and to transmit this data to another controller without hindrance from us under the conditions of Art. 20 GDPR.
This right, however, shall not adversely affect the rights and freedoms of others.
- Lodge of a complaint
If you believe that we are failing to properly comply with privacy obligations, you may lodge a complaint with a Supervisory Authority which can be reached as follows:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Version: May 2018