Privacy Policy

With this Privacy Policy, we would like to inform you about the nature, scope, and purpose of the processing of personal data (hereinafter also referred to simply as “data”). Personal data includes all data that can be related to you personally, e.g., name, address, email address, or your user behavior. This Privacy Policy applies to all data processing activities carried out by us, both within the scope of our core business and in relation to our online services.

Data Controller

The entity responsible for data processing is:

MyPlace – Active English Community e.K.
Natalie Lo Cicero
Emser Straße 63
56076 Koblenz
Germany
Phone: +49 261 28 74 21 64
Email: talk@myplacekoblenz.de
Website: http://dev.myplacekoblenz.de/impressum.html

Data Processing in the Context of Our Educational and Training Services

If you participate in our educational or training services or express interest in them, the type, scope, and purpose of data processing depend on the contractual or pre-contractual relationship between you and us.
The data we process includes all information you provide for the purpose of using our services or that is required to handle your inquiry or fulfill a contract. This also includes performance assessments and evaluations of our services and teaching staff.
Unless otherwise stated in this Privacy Policy, we process and share your data with third parties only to the extent necessary to:

  • respond to your inquiries,
  • fulfill contractual obligations,
  • protect our rights, or
  • comply with legal obligations.

We will inform you about which data is required before or during data collection. If we use third-party providers to deliver our services, their respective privacy policies apply.

Special Categories of Data

When participating in our services or making inquiries, special categories of personal data (Art. 9(1) GDPR) may be processed. This may include health data, data revealing political opinions or religious or philosophical beliefs.
We process such data exclusively for providing training services, protecting your health, social protection, or safeguarding your vital interests.
If we need this data for any other purpose, we will inform you in advance and obtain your explicit consent.
Where necessary, we may share such data with third parties (e.g., authorities or tax advisors) for the purposes mentioned above.

Categories of Data

Processed data:

  • Master data (e.g., name, address)
  • Payment data (e.g., bank details, invoices)
  • Contact data (e.g., email address, phone number)
  • Contract data (e.g., subject matter, duration)

Special categories:

  • Health data
  • Data revealing religious or political beliefs

Data subjects:
Students, trainees, prospective clients, business partners, and contractual partners

Purpose of processing:
Contract execution, communication, responding to inquiries, administrative processes

Legal basis:

  • Contract performance and pre-contractual measures (Art. 6(1)(b) GDPR)
  • Legal obligations (Art. 6(1)(c) GDPR)
  • Legitimate interests (Art. 6(1)(f) GDPR)

Your Rights Under the GDPR

You have the following rights at any time:

  • Right of access: Request information about whether and which data we process about you.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure: Request deletion of your data.
  • Right to restriction: Request limitation of processing in certain cases.
  • Right to data portability: Request transfer of your data in a structured, commonly used, machine-readable format.
  • Right to lodge a complaint: You may lodge a complaint with a supervisory authority in your place of residence, workplace, or our company’s registered office.

Right to Withdraw Consent

You have the right to withdraw your consent to data processing at any time.

Right to Object

You have the right to object at any time to the processing of your data based on our legitimate interests (Art. 6(1)(f) GDPR). Please provide reasons for your objection. We will then stop processing your data unless we can demonstrate compelling legitimate grounds that override your interests. You may also object at any time to the processing of your data for marketing and data analysis purposes. Please address your objection to the contact details provided above.

Data Retention

We delete your data when it is no longer required or when you request deletion, unless legal obligations require otherwise.

This means we delete data when:

  • the purpose of processing no longer applies,
  • contractual relationships have ended,
  • legitimate interests no longer apply,
  • you withdraw consent,
  • or you object and no overriding legal grounds exist.

However, we may retain data where necessary for legal retention obligations (typically 6 years for business correspondence, 10 years for accounting records), legal claims (up to 4 years), or protection of legal rights. During this period, processing is restricted to these purposes.

Web Hosting

We use a hosting provider to make our website available online. The provider processes all data transmitted via your browser, including:

  • IP address,
  • date and time of access,
  • time zone difference (GMT),
  • access status (HTTP status),
  • data volume transferred,
  • internet service provider,
  • browser type and version,
  • operating system,
  • referring website,
  • visited pages.

This data is stored in server log files to ensure stability and security.

Data categories:

  • Content data (e.g., posts, media)
  • Usage data (e.g., access times, pages visited)
  • Communication data (e.g., IP address, device info)

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR)

Hosting provider:
STRATO AG, Pascalstraße 10, 10587 Berlin, Germany
Website: https://www.strato.de/hosting/
Privacy Policy: https://www.strato.de/datenschutz/

Online Meetings and Video Conferencing

We use third-party services to conduct online meetings, video/audio conferences, and webinars.
During such communication, data may be processed by both us and the provider, including:

  • registration and contact data,
  • chat content,
  • audio and video data,
  • shared screen content,
  • metadata (e.g., IP address, device information).

Providers may process this data for service security, optimization, and marketing purposes. Please refer to their privacy policies for details.
Data may be transferred outside the EU, where GDPR-level protection may not be guaranteed.

Legal basis: Consent (Art. 6(1)(a) GDPR), Contract performance (Art. 6(1)(b) GDPR), Legitimate interest (Art. 6(1)(f) GDPR)

Services used:

Microsoft Teams

Services provided: Video conferencing, chat, and voice conferencing
Service provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Website: https://www.microsoft.com/microsoft-365/microsoft-teams/group-chat-software
Privacy Policy: https://privacy.microsoft.com/privacystatement

Skype

Services provided: Instant messaging, video conferencing, and voice conferencing
Service provider: Skype Communications SARL, 23–29 Rives de Clausen, L-2165 Luxembourg, Luxembourg
Parent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Website: https://www.skype.com/
Privacy Policy: https://privacy.microsoft.com/privacystatement

Zoom

Services provided: Video conferencing, voice conferencing, and chat
Service provider: Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA
Website: https://zoom.us/meetings.html
Privacy Policy: https://zoom.us/privacy.html

Security Measures

We implement appropriate technical and organizational measures to protect your data against loss, misuse, or unauthorized access, in accordance with current legal requirements.

Updates to This Privacy Policy

This Privacy Policy is current as of October 2023. We reserve the right to update it in response to legal or regulatory changes.