Privacy Policy
Data Privacy Statement
Thank you for visiting our website.
AHK Myanmar (Delegation of German Industry and Commerce in Myanmar) takes the protection of your personal data (hereafter: data) very seriously. We want you to know in which cases we collect data and how we use them.
AHK Myanmar is committed to your digital security and privacy and has ensured that we and third parties will follow the General Data Protection Regulation (GDPR). Below you may find information on how data is collected and used while you are visiting our website and using our services.
In order to improve and develop our website and technologies as well as our services to you it is possible that this privacy policy may change. We recommend that you occasionally read this privacy policy carefully.
1. Name and Address of the controller
The controller in the sense of the General Data Protection Regulation and other national data protection laws of the Member States as well as other provisions pertaining to data privacy and protection laws is:
Delegation of German Industry and Commerce in Myanmar
- represented by the Delegate Dr. Martin Krummeck -
84 Pan Hlaing Street, Sanchaung TS,
11111 Yangon
Myanmar
Tel.: (+95) 9 4506 293 64
E-Mail: martin.krummeck(at)myanmar.ahk.de
Website: myanmar.ahk.de
2. Representative in the EU according to article 3 paragraph 2 in conjunction with article 27 GDPR
Association of German Chambers of Commerce and Industry (DIHK e.V.)
Breite Straße 29
10178 Berlin
Germany
Phone: +49 (0)30 20308-0
Email: info(at)dihk.de
Website: www.dihk.de
3. General information on the processing of data
I. Scope of the processing
In general, we collect and use data of our users (data subjects) only to the extent required to provide a functioning website as well as for our content and services. The processing of data of our users only takes place to the extent permitted by law - especially if the collection and use of data is necessary for the fulfillment of a contract with the data subject or if he or she has given his or her consent.
II. Legal basis for the processing
To the extent that we obtain consent from the data subject for the processing of data, Article 6 paragraph 1 lit. a GDPR serves as legal basis for the processing. The processing of data required to execute a contract whose contractual party is the data subject is based on Article 6 paragraph 1 lit. b GDPR. This also applies to a processing that is necessary for the implementation of pre-contractual measures. The processing is based on Article 6 paragraph 1 lit. f GDPR if it is necessary for the purpose of a legitimate interest pursued by us or a third party and if the interests or fundamental rights and freedoms of the data subject do not predominate.
III. Data deletion and duration of storage
Data of the data subject will be erased or the processing will be restricted once the purpose of storage is no longer applicable. However, data can be stored longer for compliance with laws, regulations and other legal obligations by the EU or by the national legislator. Data of the data subject will then be erased or the processing will then be restricted, if the prescribed storage period expires unless a further storage of data is necessary for entering into a contract or for performing a contract.
4. Provision of the website and creation of logfiles
I. Description and scope of the processing
At every visit to our website, our system automatically collects data and information from the system of the accessing computer. The following data are collected in the process:
(1) Information regarding the browser type and the version used
(2) The operating system of the user
(3) The internet service provider of the user
(4) The IP address of the user
(5) Date and time of access
(6) Websites that are accessed by the system of the user via our website
II. Legal basis for the processing
Data and logfiles can be stored temporarily pursuant to Article 6 paragraph 1 lit. f GDPR.
III. Purpose of processing
The temporary storage of the IP address by the system is necessary to ensure the display of the website on the computer of the user. To do so, the IP address of the user must remain stored during the session.
Logfiles must be stored to ensure the functionality of the website. In addition, such data helps us to optimize the website and to ensure the security of our information technology systems. An analysis of such data for marketing purposes will not be carried out in this context.
IV. Storage period
Data will be erased once the purpose of its collection is no longer applicable. In the event that data is collected in order to provision the website, this is the case whenever the respective session ends.
In the event that data is stored in logfiles, data will be erased after seven days at the latest. A further storage is not permitted. In this event, the IP address of the user is erased and encrypted so that the accessing client can no longer be allocated.
V. Possibility to objection and removal
In order to provide the services of the website, the collection of data and the storage of data in logfiles is mandatory. Therefore, the user cannot object to the processing of this data.
5. Use of cookies
a) Description and scope of the processing
We use cookies to make our website more user-friendly. Some elements of our website require that the accessing browser can be identified even if the webpages are changing. No personal data is collected in the process.
To do so, the following files are stored and transferred to the cookies:
(1) fonts = standard cookie variable used by us to reload the fonts in the browser after a page is refreshed.
(2) fullcss = standard cookie variable used by us to reload the CSS file in the browser after a page is refreshed.
Maximum cookie lifetime: 730 days
In addition, we use on our website cookies that enable an analysis of the surfing behaviour of users.
When visiting our website, the users are informed via web banner about the use of cookies for analytical purposes and referred to this data privacy statement. In this context, it is also pointed out how the storing of cookies can be disabled in the browser settings. This service is provided via the Consent Manager of the Piwik PRO Analytics Suite.
Analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus constantly optimize our offer.
We use cookies of the Piwik PRO Analytics:
_pk_id = Used to recognize visitors and hold their various properties. Expires after: 13 months if user consents; expires after 30 minutes if user does not consent
_ppms_privacy = Stores visitor’s consent to data collection and usage. Expires after: 365 days
_pk_ses = Shows an active session of the visitor. Expires after: 30 minutes
b) Legal basis for the processing
Legal basis for the processing of personal data while using technically required cookies is Section 6 Subsection 1 lit. f GDPR.
Legal basis for the processing of personal data while using cookies for analytical purposes is Section 6 Subsection 1 lit. a GDPR if the respective consent of the user is on hand.
c) Purpose of processing
The purpose of using technically required cookies is to facilitate the use of the website for the users. Some functions on our website cannot be provided without the use of cookies. For such it is necessary that the browser can also be identified if the webpages are changing.
We need cookies for the following applications:
(1) fonts = standard cookie variable used by us to reload the fonts in the browser after a page is refreshed.
(2) fullcss = standard cookie variable used by us to reload the CSS file in the browser after a page is refreshed.
Maximum cookie lifetime: 730 days
User data collected via technically required cookies is not used to create user profiles.
The use of analytical cookies also serves to improve the quality of our website and its content. From analytical cookies we gain knowledge of how the website is used; we are then able to constantly optimize our services.
We use cookies of the Piwik PRO Analytics:
_pk_id = Used to recognize visitors and hold their various properties. Expires after: 13 months if user consents; expires after 30 minutes if user does not consent
_ppms_privacy = Stores visitor’s consent to data collection and usage. Expires after: 365 days
_pk_ses = Shows an active session of the visitor. Expires after: 30 minutes
d) Storage period, possibility to object
Cookies are stored on the computer of the user and are transferred from such to our website. Therefore, the user has full control over the use of cookies. By changing your browser settings, you may disable or limit the transfer of cookies. Cookies that already have been stored can be deleted at any time. This can also be done by automated means. If cookies have been disabled on our website, it is possible that not all functions of the website may be used to the full extent.
6. Newsletter
I. Description and scope of the processing
You may subscribe to a free newsletter on our website. During the registration for the newsletter, data from the input mask is transferred to the service provider CleverReach which is an email marketing software provider that we have commissioned.
The following data are collected:
- Email address
- Title
- First name
- Last name
Furthermore, the following data is collected upon registration:
- Date and time of registration
For the processing of data, in line with the registration process, we obtain your consent and refer to this data privacy statement.
In connection with the processing of data for the sending of newsletters, with the exception of the provider of email marketing software, data is not forwarded to third parties. Such data is only used for the newsletter to be sent to you.
II. Legal basis for the processing of data
If the user has given its consent, the processing of data after the subscription for the newsletter is based on Article 6 paragraph 1 lit. a GDPR .
In case the newsletter is sent as part of the membership whereas the data are registered in our database, the legal basis is Article 6 paragraph 1 lit. b GDPR.
III. Purpose of data processing
The email address of the user is collected in order to be able to send the newsletter.
IV. Storage period
Data will be erased once the purpose of its collection is no longer applicable. Therefore, the email address of the user is stored as long as the newsletter subscription is active.
V. Newsletter tracking
To optimize our newsletter offer, we use personalized newsletter tracking. In this context, besides the email address, our service provider CleverReach also collects activities related to the newsletter dispatch (click behaviour).
VI. Possibility for objection and removal
The user may object to the storage of his data at any time or withdraw its consent at any time (whereas the withdrawal of consent shall not affect the lawfulness of the prior processing). Therefore, a newsletter subscription may be cancelled by the respective user at any time. A special link is provided in every newsletter for this purpose. Alternatively, you may also send an email to info(at)myanmar.ahk.de .All data that has been stored in the context of the newsletter subscription will be erased in this case.
7. Registration
I. Description and scope of data processing
On our web page we give our users the option to register while providing personal data. In the process, data is entered into an input mask, transmitted to us and stored. Forwarding of such data to third parties is not effected.
The following data is collected in line with the registration process:
Here, the respective data should be listed.
At the time of registration, also the following data is stored:
- Date and time of registration
- Used browser
- Operating system
In line with the registration process, consent is obtained from the user for processing of such data.
II. Legal basis for the processing of data
Legal basis for the processing of data is Section 6 Subsection 1 lit. a GDPR if the consent of the user is on hand. If the registration serves the execution of a contract whose contractual party is the user, or the execution of pre-contractual measures, the additional legal basis for the processing of data is Section 6 Subsection 1 lit. b GDPR.
III. Purpose of data processing
A registration of the user is required for the execution of a contract with the user, or for the execution of pre-contractual measures. Your registration may be an application for membership or an event registration.
More information can be found in our information requirements:
- Information requirements for event registration (Firstname, Last Name, Email, Company, Title Position, Phone)
IV. Duration of storage
Data is deleted as soon as it is no longer required to fulfill the purpose of its collection. This is the case for data collected during the registration process for the execution of a contract or for the execution of pre-contractual measures if such data is no longer required for the execution of the contract. Even after having entered into a contract, the requirement to store personal data of the contractual partner may remain in existence to fulfill contractual or statutory requirements.
V. Option for objection and removal
As user, you have at any time the option to cancel the registration. Your stored personal data can be amended at any time. To amend or delete your data, please contact info@myanmar.ahk.de
If the data is required for the execution of a contract or the execution of pre-contractual measures, a premature deletion of such data is only possible to the extent that contractual or statutory requirements do not preclude deletion.
8. Email contact and contact form
I. Description and scope of the data processing
We have a contact form on our website which can be used for contacting us electronically. In this case, the data entered in the input mask are transferred to us and stored. In addition, at the time of sending the message, the following data are stored:
- date and time of registration
- the browser in use
- the operating system
You may also contact AHK Myanmar via the provided email addresses. In this case, the data of the user which are being transferred in the email are stored.
In this context, such data is not forwarded to third parties. Such data is only used for the processing of the conversation.
II. Legal basis for the data processing
The processing of data that are transferred while using the contact form or sending an email is based on Article 6 paragraph 1 lit. f GDPR. If the purpose of the contact is to conclude a contract, the legal basis for processing is also Article 6 paragraph 1 lit. b GDPR.
III. Purpose of the data processing
The processing of personal data from the input mask only helps us to process the contact that was established and the communication that was sent by you. If contact is established via email, our required legitimate interest is also in the processing of such data. Other personal data processed during the sending process only serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
IV. Storage period
Data is deleted as soon as it is no longer required to fulfill the purpose of its collection. This is the case for personal data from the input mask of the contact form and for data sent via email if the respective conversation with the user is finished. The conversation is finished if it can be deduced from the circumstances that the respective matter is clarified in a concluding fashion. Other personal data collected during the sending process will be deleted after a period of three months at the latest.
V. Option to objection and removal
The user may object to the storage of its data at any time. In this case, the conversation cannot be continued. You may send your objection in writing via email to info@myanmar.ahk.de.All data that has been stored while contacting us will be erased in this case.
9. Transfer of data to third parties
I. Website operators
Where processing is to be carried out on behalf of us as a controller in accordance with article 28 GDPR, data is forwarded to the agency commissioned to run the website, to the technical service provider, to our email marketing software provider CleverReach for our monthly tender newsletter and our event management provider GlueUp, Zoom and Microsoft. The processing by a processor is regulated in a corresponding agreement.
II. Third-party content
If you have given your consent to the display of third-party content in the consent management, we will integrate content from other websites and providers on our website, each of which is responsible for the data processing thereby taking place in accordance with Art. 4 No. 7 DSGVO. Your end device establishes a direct connection to the server of the respective provider, whereby the provider at least collects and processes your IP address to establish the connection and play out the content. Insofar as this is a process requiring permission under data protection law, the legal basis is your consent to the display of the content. We have no knowledge of whether and, if so, to what extent further processing takes place. The providers may, for example, monitor your behaviour and also create usage profiles, possibly also outside the EEA. You can decide at any time not to display third-party content in the future ("revocation") by setting the corresponding setting in the consent management.
The possibly integrated content providers are:
II. Social media sharing button
General notice: Social media plugins usually lead to the fact that every visitor to a website is immediately captured by such services by means of his IP address and that his subsequent browser behavior is logged. This can also occur if you do not press the button. To prevent this, we use the Shariff method. Here, our social media buttons only establish direct contact between the social network and you only if you click on the respective sharing button. If you are already logged in with a social network, this is done without an extra window for Facebook and Google+. Twitter displays a pop-up window in which the text of the tweet can still be edited. This way, you may publish our content in social networks without such networks being able to compile complete surfing profiles.
III. YouTube videos
In some instances, we have embedded YouTube videos on our website that are stored on the servers of the provider YouTube and that are playable by our website via such embedding. Embedding of the videos is carried out with the activated option for advanced data privacy settings. If you play these videos, YouTube cookies and DoubleClick cookies are stored on your computer, and data is potentially transmitted to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland, as the operator of YouTube.
When playing videos stored by YouTube, according to current information, at the very minimum the following data is transmitted to Google Inc. as operator of YouTube and operator of the DoubleClick network: IP address and cookie ID, the specific address of our accessed page, system date and time of access, your browser ID. Transmission of such data is carried out independent of whether you have a Google user account via which you are logged in or you do not have a user account. If you are logged in, such data is potentially directly allocated to your account by Google. If you do not want such allocation to your profile, you have to log out prior to activating the playback button for the video.
YouTube or Google Inc. store such data as usage profiles and, if applicable, use such for purposes of marketing, market research and/or for the demand-driven design of their websites. Such an analysis is carried out in particular (also for users who are not logged in) to provide demand-driven advertising and to inform other users about your activities on our website. You have the right to object to the creation of such usage profiles; to exercise your right, you will have to contact Google as the operator of YouTube.
IV. LinkedIn
Our website uses the LinkedIn share plugin of the social network LinkedIn, LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. By clicking the button, your browser connects to LinkedIn to carry out the functions of the plugin. In this context, no personal data is stored by LinkedIn, and your use is also not recorded via a cookie. More information can be found in the data privacy statement of LinkedIn at www.linkedin.com/legal/privacy-policy. Regarding the general handling with and the disabling of cookies, we also always refer to our general description in this data privacy statement.
V. Website Analysis with Piwik PRO
We use Piwik PRO Analytics Suite as our website/app analytics software and consent management tool. We collect data about website visitors based on cookies. The collected information may include a visitor’s IP address, operating system, browser ID, browsing activity and other information. See the scope of data collected by Piwik PRO.
We calculate metrics like bounce rate, page views, sessions and the like to understand how our website/app is used. We may also create visitors’ profiles based on browsing history to analyze visitor behavior, show personalized content and run online campaigns.
We host our solution on Microsoft Azure in Germany, and the data is stored for 25 months.
The purpose of data processing: analytics and conversion tracking based on consent. Legal basis: Art. 6 (1)(a) GDPR.
Piwik PRO does not send the data about you to any other sub-processors or third parties and does not use it for its own purposes. For more, read Piwik PRO’s privacy policy.
10. Events and Conferences
I. Description and scope of the processing
If you register for one of our events or conferences and participate, we process the data provided by you in order to organise the event or conference and especially for participant identification. Without your data we are unable to process your registration.
II. Legal basis for the processing
Your data is processed on the basis of art. 6 paragraph 1 lit. b GDPR.
III. Purpose of processing
Your data is collected for the purpose of processing your registration to an event or conference.
Please keep in mind that while attending an event or conference we may take pictures and/or videos. Pictures and/or videos may be used for publishing purposes (print, online, social networks etc.).
IV. Storage period
Your data will be stored until the event or conference conclusively ends. Statutory retention periods may make it necessary to store the data longer.
V. Recipients or categories of recipients of the data
In order to process your registration and organise the event or conference, the responsible manager and the responsible administrator will receive your data. Your data will not be transferred to third parties outside the Delegation unless it is a joint event or conference.
VI. Transfer of data to a third country
It is not intended to transfer your data to a third country or to an international organisation.
If you use the electronic registration form, your data is made available via a web application on the internet. The confidentiality, integrity, authenticity and availability of data cannot therefore be ensured.
VII. Option for objection and removal
You may object to the storage of your data at any time. In this case, your registration may not be successful, and you may not participate in the event or conference.
You may send your objection in writing via email to info@myanmar.ahk.de.
All data that has been stored in the context of your registration will be erased in this case.
11. Rights of the data subject
As a subject of the processing of personal data, you have the following rights arising from Articles 7 and 15 to 22 of the GDPR. You are entitled to:
- According to Art. 7 DSGVO: a right to revoke the processing, provided that it is based on your consent according to Art. 6. para. 1a). Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected. Please also note that we may have to retain certain data for different periods of time in order to comply with legal requirements, e.g. for accounting obligations.
- According to Art. 15 DSGVO: a right to information about the processed data and to a copy,
- According to Art. 16 DSGVO, a right of rectification if we process incorrect data about you,
- According to Art. 17 DSGVO, a right to erasure, unless exceptions still apply as to why we are still storing the data, for example, retention obligations or limitation periods,
- According to Art. 18 DSGVO, a right to restriction of processing,
- According to Art. 19 DSGVO, the right to be informed about correction, deletion or restriction of processing of your personal data. We will inform you as a data subject if you request it.
- According to Art. 20 DSGVO, a right to data portability,
- according to Art. 21 DSGVO, a right to object to processing in the public or legitimate interest, unless exceptions apply why we need to continue processing the data, for example due to legal requirements and obligations.
You may contact the supervisory authority pursuant to Art. 77 DSGVO if you find that we are not processing your data properly. The Berliner Beauftragte für Datenschutz und Informationsfreiheit (Berlin Commissioner for Data Protection and Freedom of Information (https://www.datenschutz-berlin.de/) is responsible for us.
For appeals pertaining to data privacy laws, you may contact the respective supervisory authority: (State supervisory authority for the respective AHK location) / Alternatively: you may contact the competent supervisory authority.