The data controller in terms of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:
Stifterverband für die Deutsche Wissenschaft eV
Baedekerstraße 1
D-45128 Essen
Phone: (0201) 84 01-0
Fax: (0201) 84 01-301
E-mail: info@stifterverband.de
Website: www.stifterverband.de
The data protection officer of the data controller is:
TÜV Information Technology GmbH
TÜV NORD Group of Companies
IT Security, Business Security & Privacy
Langemarckstraße 20
45141 Essen
Telephone 0201 - 8999-461
Fax 0201 - 8999-666
E-mail: privacyguard@tuvit.de
Extent of personal data processing
In principle, we only retrieve and use our users' personal data to the extent necessary to provide a functioning website and for our content and services. The retrieval and use of our users' personal data occurs regularly only with the user's consent. An exception applies in those cases where prior consent cannot be obtained for real reasons and the processing of the data is permitted by law.
Legal basis for the processing of personal data
Insofar as we obtain the data subject's consent for the processing of personal data, Art. 6 para. 1 lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis for the processing of personal data.
In the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b of the GDPR serves as legal basis. This also applies to processing operations required to carry out pre-contractual actions.
Insofar as processing of personal data is required to fulfil a legal obligation that is relevant to our company, Art. 6 para. 1 lit. c of the GDPR serves as legal basis.
In the event that vital interests of the data subject or another natural person require processing of personal data, Art. 6 para. 1 lit. d of the GDPR serves as legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not outweigh over the first-mentioned interest, Art. 6 para. 1 lit. f of the GDPR serves as legal basis for processing.
Data deletion and storage duration
A data subject’s personal data will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the data controller is subject. Blocking or deletion of data also occurs when a storage period prescribed by the aforementioned standards expires unless there is a need for further storage of the data for conclusion of a contract or fulfilment of the contract.
Description and scope of data processing
Each time our website is accessed, our system automatically retrieves data and information from the system of the user's computer.
Thereby the following data is retrieved:
Legal basis for data processing
Art. 6 para. 1 lit. f of the GDPR serves as legal basis for the temporary storage of data and log files.
Purpose of data processing
Temporary storage of the IP address by the system is necessary to allow for delivery of the website to the user's computer. To this end, the user's IP address must be stored for the duration of the session.
The storage in log files occurs in order to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of data for marketing purposes does not take place in this context.
Our legitimate interest in data processing, pursuant to Art. 6 para. 1 lit. f of the GDPR, also lies in these purposes.
Duration of storage
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was retrieved. If the data is retrieved for providing the website to the user, it will be deleted when the respective session has ended.
In the case of storing data in log files, it will be deleted after no more than seven days. Storage beyond this is possible. In such a case, the users’ IP addresses are deleted or alienated so that an allocation to the users is no longer possible.
Possibility for objection and deletion
The retrieval of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
Our website uses cookies. Cookies are text files that are stored in the Internet browser or via the Internet browser on the user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic character string that enables a precise identification of the browser when the website is revisited.
We use cookies to make our website more user-friendly. Some elements of our website require that the user's browser can be identified even after a page change.
The following data is stored and transmitted in the cookies:
The data of the users, retrieved for this purpose, are pseudonymised by technical precautions. Therefore, it is no longer possible to allocate the data to the user. The data will not be stored together with other personal data of the users.
When accessing our website, an information banner informs users about the use of cookies for analysis purposes and refers them to this data protection declaration. In this context, there is also a note on how the storage of cookies can be prevented in the browser settings.
When accessing our website, the user is informed about the use of cookies for analysis purposes and his or her consent to the processing of personal data used in this context is obtained. Reference is also made to this data protection declaration.
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f of the GDPR.
In case of the use of technically necessary cookies:
The purpose of using technically necessary cookies is to simplify the website use for users. Some features of our website can not be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change.
We require cookies for the following applications:
Duration of storage, possibility of objection and deletion
Cookies are stored on the user's computer and transferred via the user's computer to our side. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transferring of cookies. Already saved cookies can be deleted at any time. This can also happen automatically. If cookies are disabled for our website, it may not be possible to use all the functions of the website to their full extent.
You can subscribe to a free newsletter on our website. Data from the input mask is transferred to us when registering for the newsletter. We only retrieve the e-mail address of the user.
In addition, the following data is retrieved upon registration:
During the registration process, your consent is obtained for the processing of data and reference is made to this data protection declaration.
In the context of data processing for sending newsletters, no data is passed on to third parties. The data will be used exclusively for sending the newsletter.
Pursuant to Art. 6 para. 1 lit. a of the GDPR, the consent of the user forms the legal basis for data processing after the user has registered for the newsletter.
The retrieval of the user's e-mail address serves to send the newsletter.
The retrieval of other personal data in the context of the registration process serves to prevent misuse of the services or the used email address.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was retrieved. The user’s e-mail address is therefore stored as long as the subscription to the newsletter is active.
The other personal data retrieved during the registration process will, as a rule, be deleted after a period of seven days.
The user can terminate his or her subscription to the newsletter at any time. For this purpose, there is a corresponding link in each newsletter.
This also allows for a withdrawal of the consent to the storage of the personal data retrieved during the registration process.
Third party
We send our newsletter with the newsletter service CleverReach (CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany). CleverReach is a member of the Certified Senders Alliance. We transfer your name and e-mail address to CleverReach solely for the purpose of sending our newsletter to you. Your data will be stored by CleverReach in such a way that other CleverReach customers or third parties will not have access to this data. For more information, please see CleverReach's privacy policy: https://www.cleverreach.com/en/privacy-policy/
On our website, we offer users the opportunity to register by providing personal data. The data is entered into an input mask and transferred to us and then stored. A transfer of data to third parties will not take place without the consent of the respective person/institution.
The following data may be retrieved during the registration process:
At the time of registration, the following data will also be stored:
During the registration process, the user's consent to the processing of this data is obtained.
Legal basis for data processing Pursuant to Art. 6 para. 1 lit. a of the GDPR, the user's consent forms the legal basis for the data processing.
User registration is required for the provision of certain content and services on our website. These include, but are not limited to, organization of events, expressions of interest in participating in the University Forum on Digitalisation (HFD), application for programs of the HFD, registration for the HFD newsletter or participation in the communication platform of the HFD.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was retrieved. For data retrieved during the registration process, this is the case when the registration on our website is cancelled or modified.
As a user you have the option to cancel the registration at any time. You can amend the data stored about you at any time. Please contact us with your amendments or delete requests at info@hochschulforumdigitalisierung.org.
On our website is a contact form, which can be used for contacting us electronically. If a user makes use of this option, the data entered in the input mask will be transferred to us and stored.
This data is:
At the time of sending the message, the following data is also stored:
Alternatively, contact via the provided e-mail address is possible. In this case, the user's personal data transferred by e-mail will be stored.
In this context, no data is shared with third parties. The data is used exclusively for processing the conversation.
Pursuant to Art. 6 para. 1 lit. a of the GDPR, the user's consent forms the legal basis for data processing.
Art. 6 para. 1 lit. f of the GDPR is the legal basis for processing the data transferred in the course of sending an e-mail. If the e-mail contact aims at concluding a contract, then the additional legal basis for the processing is Art. 6 para. 1 lit. b of the GDPR.
Processing of personal data from the input mask only serves for making contact. In the case of making contact via e-mail, this also includes the required legitimate interest in data processing.
Other personal data processed during the sending process prevents the misuse of the contact form and ensures the security of our information technology systems.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was retrieved. For personal data from the contact form's input mask and those sent by e-mail, this is the case once the respective conversation with the user has ended. The conversation has ended when it can be inferred from the circumstances that the facts in question have been finally clarified.
The additional personal data retrieved during the sending process will be deleted after a period of seven days at the latest.
The user has, at any time, the option to withdraw his consent to the processing of personal data. If the user contacts us by e-mail, he may object to the storage of his personal data at any time. In such a case, the conversation cannot be continued. If this is the case, please send an e-mail to info@hochschulforum.org.
All personal data stored in the course of making contact will be deleted in this case.
Description
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses "cookies", text files stored on your computer which enable an analysis of your use of the website. The information generated by the cookie about your use of this website is, as a rule, transferred to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, Google will shorten your IP address within member states of the European Union or in other signatory states to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website usage and internet usage to the website operator.
IP address
The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data.
Storage
You can prevent the storage of cookies by adjusting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all of the website's functions to their full extent. You may also retrieve the data generated by the cookie and related to your use of the website (incl. your IP address) to Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
Anonymization of your IP
This website uses Google Analytics with the extension "anonymizeIp()". As a result, IP addresses are further processed in a shortened form, so that a personal allocation can be ruled out. Insofar as data retrieved about you is assigned a personal reference, it will be immediately excluded and the personal data will be deleted immediately.
Purpose
We use Google Analytics to analyse and continuously improve the use of our website. With the obtained statistics we can improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the US, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for using Google Analytics is Art. 6 para. 1 S. 1 lit. f of the GDPR.
Third Party Information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User Conditions: http://www.google.com/analytics/terms/de.html, overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy declaration: http://www.google.de/intl/de/policies/privacy.
Cross-device analysis
This website also uses Google Analytics for cross-device analysis of visitor traffic conducted through a user ID. You can deactivate the cross-device analysis of your usage via "My data", "Personal data" in your customer account.
This website uses the component Matomo. Matomo is an open source software tool for web analysis. Web analysis is the retrieval, recording and evaluation of data on the behaviour of visitors to Internet sites. Among others, a web analysis tool retrieves data via a website through which a data subject came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. Web analysis is mainly used to optimize a website and cost-benefit analysis of Internet advertising.
The software is operated on the data controller’s server, the data protection-sensitive log files are stored exclusively on this server.
The purpose of the Matomo component is to analyse visitor flow on our website. Among others, the data controller uses the data and information obtained to evaluate the use of this website in order to compile online reports showing the activities on our websites. Amongst other things, we can identify what content is particularly relevant for our users.
Matomo places a cookie on the information technology system of the data subject. What cookies are, has already been explained above. By placing a cookie, we are able to analyse the use of our website. Each time you visit one of the individual pages on this website, the internet browser on the data subject’s information technology system is automatically led by the Matomo component to transfer data to our server for the purpose of online analysis. As part of this technical procedure, we obtain knowledge of personal data, such as the IP address of the data subject, which among other things serves us to trace the origin of visitors and clicks.
Cookies are used to store personal information, such as access time, the location from which access originated and the frequency of visits to our website. Each time you visit our website, this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to our server. This personal data is stored by us. We do not share this personal data with third parties.
The data subject can prevent the placement of cookies through our website, at any time, by means of an appropriate setting of the used Internet browser, as already described above, and thereby permanently objects to the placement of cookies. Such a setting of the used Internet browser would also prevent Matomo from placing a cookie on the data subject's information technology system. In addition, a cookie already placed by Matomo can be deleted at any time via an Internet browser or other software programs.
This website uses Matomo with anonymised IPs. As a result, IP addresses are further processed in a shortened form, so that a personal allocation can be ruled out. Insofar as data retrieved about you is assigned a personal reference, it will be immediately excluded and the personal data will be deleted immediately.
Opt-out
Furthermore, the data subject has the option to object to and prevent the retrieval of data generated by Matomo in connection with the use of this website. For this, the data subject must place an opt-out cookie. If the data subject's information technology system is deleted, formatted or reinstalled at a later date, the data subject must again place an opt-out cookie.
With the placement of the opt-out cookie, however, it is possible that the Internet pages of the data controller may no longer be fully usable by the data subject.
Objection:
Further information and Matomo's applicable privacy policy can be found at https://matomo.org/privacy/.
The data controller has integrated a Shariff component into this website. The Shariff component provides social media buttons that comply with the privacy policy. Shariff was developed for the German computer magazine c't and is published via GitHub, Inc..
Developer of the component is GitHub, Inc. 88 Colin P. Kelly Junior Street, San Francisco, CA 94107, United States.
Usually, the button solutions provided by social networks already transfer personal data to the respective social network when a user visits a website into which a social media button has been integrated. By using the Shariff component, personal data is only transmitted to social networks when the visitor to a website actively clicks on one of the social media buttons. Further information on the Shariff component can be found in the computer magazine c't http: //www.heise.de/newsticker/meldung/Datenschutz-und-Social-Media-Der -... The purpose of using the Shariff component is to protect the personal data of visitors to our website and at the same time to enable us to integrate a button solution for social networks on this website.
For more information and GitHub's current privacy policy, please visit https://help.github.com/articles/github-privacy-policy/.
The data controller has integrated components of the Facebook company into this website. Facebook is a social network.
A social network is an Internet-based social meeting place, an online community that usually enables users to communicate with each other and interact in virtual space. A social network can serve as a platform to exchange views and experiences or enable the Internet community to provide personal or business information. Facebook enables social network users to create private profiles, upload photos and socialize via friend requests.
Each time one of the individual pages of this website, which is operated by the data controller and into which a Facebook component (Facebook plug in) has been integrated, the Internet browser on the data subject's information technology system is automatically prompted by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be retrieved at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook is informed about which specific subpage of our website is visited by the data subject.
If the data subject is logged into Facebook simultaneously, Facebook recognizes with every visit to our website by the data subject and for the entire duration of the respective stay on our website, which of our website's subpages the data subject visits. This information is retrieved by the Facebook component and assigned by Facebook to the data subject's Facebook account. If the data subject activates one of the Facebook buttons integrated into our website, for example the "Like" button, or if the data subject makes a comment, Facebook assigns this information to the data subject's personal Facebook user account and saves this personal data.
Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is logged into Facebook at the same time as accessing our website; this happens regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want such a transfer of this information to Facebook, it can prevent the transfer by logging out of its Facebook account before visiting our website.
The data policy published by Facebook can be found at https://de-de.facebook.com/about/privacy/, and provides information regarding the retrieval, processing and use of personal data by Facebook. It also explains which options Facebook offers to protect the data subject's privacy. In addition, different applications are available, which make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.
Facebook is operated by Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. The data controller responsible for the processing of personal data, if a data subject lives outside the US or Canada, is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.
The data controller has integrated a Google+ button as a component into this website. Google+ is a social network. A social network is an Internet-based social meeting place, an online community that usually enables users to communicate with each other and interact in virtual space. A social network can serve as a platform to exchange views and experiences or enable the Internet community to provide personal or business information. Google+ enables social network users to create private profiles, upload photos and socialize via friend requests.
Google+ is operated by Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
Each time one of the individual pages of this website, which is operated by the data controller and into which a Google+ button has been integrated, the Internet browser on the data subject's information technology system is automatically prompted by the respective Google+ button to download a representation of the corresponding Google+ button from Google. As part of this technical process, Google is informed about which specific subpage of our website is visited by the data subject. More detailed information about Google+ is available at https://developers.google.com/+/.
If the data subject is logged into Google+ simultaneously, Google recognizes with every visit to our website by the data subject and for the entire duration of the respective stay on our website, which of our website's subpages the data subject visits. This information is retrieved by the Google+ button and assigned by Google to the data subject's Google+ account.
If the data subject clicks on one of the Google+ buttons integrated into our website, thereby submitting a Google+1 recommendation, Google assigns this information to the data subject's personal Google+ user account and stores this personal data. Google will store the data subject's Google+1 recommendation and make it publicly available in accordance with the conditions accepted by the data subject. A Google+1 recommendation made by the data subject on this website will be subsequently provided together with other personal data, such as the name of the data subject's Google+1 account and the photo stored in this account in other Google services, for example, the search engine results of the Google search engine, the data subject's Google account or other places, such as on websites or in connection with stored and processed advertisements. Furthermore, Google is able to link the visit to this website with other personal data stored by Google. Google also records this personal information for the purpose of improving or optimizing Google's different services.
Google always receives information via the Google+1 button that the data subject has visited our website if he or she is logged into Google+ at the same time as accessing our website; this happens regardless of whether the data subject clicks on the Google+1 button or not.
If the data subject does not want such a transfer of this information to Google, it can prevent the transfer by logging out of its Google+ account before visiting our website.
Additional information and Google's privacy policy can be found at https://www.google.de/intl/de/policies/privacy/. More information from Google about the Google+1 button can be found at https://developers.google.com/+/web/buttons-policy.
The data controller has integrated a Twitter component into this website. Twitter is a multilingual publicly available microblogging service where users can post and distribute tweets, which are limited to 140 characters. These short messages are available to anyone, including non-Twitter subscribers. The tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow a user's tweets. Twitter also enables you to address a broad audience via hashtags, links or retweets.
Twitter is operated by Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
Each time one of the individual pages of this website, which is operated by the data controller and into which a Twitter component (Twitter button) has been integrated, the Internet browser on the data subject's information technology system is automatically prompted by the respective Twitter component to download a representation of the corresponding Twitter component from Twitter. More information about the Twitter buttons can be found at https://about.twitter.com/de/resources/buttons. As part of this technical process, Twitter is informed about which specific subpage of our website is visited by the data subject. The purpose for integrating the Twitter component is to allow our users to redistribute the contents of this website, to promote this website in the digital world and to increase our visitor numbers.
If the data subject is logged into Twitter simultaneously, Twitter recognizes with every visit to our website by the data subject and for the entire duration of the respective stay on our website, which of our website's subpages the data subject visits. This information is retrieved by the Twitter component and assigned by Twitter to the data subject's Twitter account. If the data subject uses one of the Twitter buttons integrated into our website, the data and information transferred will be assigned to the data subject's personal Twitter user account and stored and processed by Twitter.
Twitter always receives information via the Twitter component that the data subject has visited our website if the data subject is logged into Twitter at the same time as accessing our website; this happens regardless of whether the data subject clicks on the Twitter component or not. If the data subject does not want such a transfer of this information to Twitter, it can prevent the transfer by logging out of its Twitter account before visiting our website.
The applicable privacy policies of Twitter can be found at https://twitter.com/privacy?lang=de.
The data controller has integrated components of the LinkedIn Corporation into this website. LinkedIn is an Internet-based social network that allows users to connect to existing business contacts and make new business contacts. Over 400 million registered people use LinkedIn in more than 200 countries. This makes LinkedIn currently the largest platform for business contacts and one of the most visited Internet sites in the world.
LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. Privacy Policy outside the United States is handled by LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
Each time you visit our website, which has a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the data subject to download a corresponding representation of the LinkedIn component. More information about the LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. As part of this technical process, LinkedIn is informed about which specific subpage of our website is visited by the data subject.
If the data subject is logged into LinkedIn simultaneously, LinkedIn recognizes with every visit to our website by the data subject and for the entire duration of the respective stay on our website, which of our website's subpages the data subject visits. This information is retrieved by the LinkedIn component and assigned by LinkedIn to the data subject's LinkedIn account. If the data subject activates a LinkedIn button integrated into our website, LinkedIn assigns this information to the data subject's personal LinkedIn user account and saves this personal data.
LinkedIn always receives information, via the LinkedIn component, that the data subject has visited our website if the data subject is logged into LinkedIn at the same time as accessing our website; this happens regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want such a transfer of this information to LinkedIn, it can prevent the transfer by logging out of its LinkedIn account before visiting our website.
LinkedIn offers at https://www.linkedin.com/psettings/guest-controls the option to unsubscribe from e-mail, text messages, targeted ads, and manage ad settings. LinkedIn also uses partners like Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, that can place cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. LinkedIn's privacy policy can be found at https://www.linkedin.com/legal/privacy-policy. LinkedIn cookie policy can be found at https://www.linkedin.com/legal/cookie-policy.
The data controller has integrated a Xing component into this website. Xing is an Internet-based social network that allows users to connect to existing business contacts and make new business contacts. The individual users can create a personal profile on Xing. Companies can, for example, create company profiles or publish job offers on Xing.
Xing is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
Each time one of the individual pages of this website, which is operated by the data controller and into which a Xing component (Xing plug-in) has been integrated, the Internet browser on the data subject's information technology system is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. More information about the Xing plug-ins can be found at https://dev.xing.com/plugins. As part of this technical process, Xing is informed about which specific subpage of our website is visited by the data subject.
If the data subject is logged into Xing simultaneously, Xing recognizes with every visit to our website by the data subject and for the entire duration of the respective stay on our website, which of our website's subpages the data subject visits. This information is retrieved by the Xing component and assigned by Xing to the data subject's Xing account. If the data subject presses one of the Xing buttons integrated into our website, for example the "Share" button, Xing assigns this information to the data subject's personal Xing user account and stores this personal data.
Xing always receives information via the Xing component that the data subject has visited our website if the data subject is logged into Xing at the same time as accessing our website; this happens regardless of whether the data subject clicks on the Xing component or not. If the data subject does not want such a transfer of this information to Xing, it can prevent the transfer by logging out of its Xing account before visiting our website.
Xing's data protection regulations can be found at https://www.xing.com/privacy and provide information regarding the retrieval, processing and use of personal data by Xing. Furthermore, at https://www.xing.com/app/share?op=data_protection Xing has privacy policy notes on the XING share button.
The data controller has integrated a YouTube component into this website. YouTube is an Internet video portal that allows for video publishers to post video clips and other users to view, rate and comment on them free of charge. YouTube allows the publication of all types of videos, so that both complete film and television broadcasts, but also music videos, trailers or user-made videos are available via the Internet portal.
YouTube is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
Each time one of the individual pages of this website, which is operated by the data controller and into which a YouTube component (YouTube Video) has been integrated, the Internet browser on the data subject's information technology system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. More information about YouTube can be found at https://www.youtube.com/yt/about/de/. As part of this technical process, YouTube is informed about which specific subpage of our website is visited by the data subject.
If the data subject is simultaneously logged into YouTube, YouTube recognizes which specific subpage the data subject is visiting on our website by calling up a subpage containing a YouTube video. This information is retrieved by YouTube and Google and assigned to the data subject's YouTube account.
YouTube and Google always receive information via the YouTube component that the data subject has visited our website if the data subject is logged into YouTube at the same time as accessing our website; this happens regardless of whether the data subject clicks on a YouTube video or not. If the data subject does not want such a transfer of this information to YouTube and Google, it can prevent the transfer by logging out of its YouTube account before visiting our website.
The privacy policy published by YouTube is available at https://www.google.de/intl/de/policies/privacy/ and provide information regarding the retrieval, processing and use of personal data by YouTube and Google.
This website integrates plug-ins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, NY 10011, USA. Each time you visit a page that offers one or more Vimeo video clips, a direct connection is established between your browser and a Vimeo server in the United States. Information about your visit and your IP address are stored there. Through interactions with the Vimeo plug-ins (e.g. clicking the Start button), this information is also transmitted to Vimeo and stored there.
If you have a Vimeo user account and do not want Vimeo to retrieve information about you from this website and link it to your member data stored at Vimeo, you must log out of Vimeo before visiting this website.
The privacy policy for Vimeo with more detailed information on the retrieval and use of your data by Vimeo can be found at http://vimeo.com/privacy.
This website uses map extracts from OpenStreetMap (https://www.openstreetmap.de/) to show you the route to our organisation and to simplify the planning of your trip.
OpenStreetMap is an open-source mapping tool. In order for the map to be displayed, your IP address will be forwarded to OpenStreetMap. OpenStreetMap's privacy page indicates how it stores your data, see https://wiki.openstreetmap.org/wiki/DE:Datenschutz and https://wiki.openstreetmap.org/wiki/DE:Legal_FAQ.
The use of the aforementioned tools is based on Art. 6 para. 1 lit. f of the GDPR: the data processing is done to improve the user-friendliness on our website and is therefore in our legitimate interest.
If your personal data is processed, you are a data subject in terms of the GDPR and you have the following rights against the data controller:
Right of access to information
You may ask the data controller to confirm if personal data concerning you is processed by us.
If such processing occurred, you can request the following information from the data controller:
(1) the purposes for which the personal data is processed;
(2) the categories of personal data being processed;
(3) the recipients or the categories of recipients to whom the personal data relating to you has been or will be disclosed;
(4) the planned storage duration of your personal data or, if specific information is not available, criteria for determining the storage duration;
(5) the existence of a right to correction and deletion and a right to restrict or object to the data controller's processing of personal data concerning you;
(6) the existence of a right of appeal to a supervisory authority;
(7) all available information on the source of the data if the personal data is not retrieved from the data subject;
(8) the existence of automated decision-making including profiling under Art. 22 para. 1 lit. 4 of the GDPR and – at least in these cases – meaningful information about the logic involved, as well as the scope and intended impact of such processing on the data subject.
You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 of the GDPR in connection with the transfer.
This right of access to information may be limited to the extent that it is likely to make it impossible or seriously impair the realisation of research or statistical purposes and the limitation is necessary for the fulfilment of research or statistical purposes.
Right to correct
You have a right of correction and/or completion against the data controller if your processed personal data are incorrect or incomplete. The data controller must make the correction without delay.
Your right of correction may be limited to the extent that it is likely to render impossible or seriously affect the realization of research or statistical purposes and the limitation is necessary for performing research or statistical purposes.
Right to restrict processing
You may request the restriction of your personal data processing under the following conditions:
(1) if you contest the accuracy of your personal information for a period of time that enables the data controller to verify the accuracy of your personal information;
(2) the processing is unlawful and you refuse the deletion of the personal data and instead demand the restriction of the use of the personal data;
(3) the data controller no longer needs the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims; or
(4) if you have objected to the processing pursuant to Art. 21 para 1. of the GDPR and it is not yet certain whether the legitimate reasons of the data controller outweigh your reasons.
If the processing of personal data concerning you has been restricted, such data may only be processed - apart from being stored - with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or a Member State.
If the processing restriction has been restricted according to the above conditions, you will be informed by the data controller before the restriction is lifted.
Your right to restrict processing may be limited to the extent that it is likely to render impossible or seriously impair the achievement of the research or statistical purposes and the limitation is necessary for the fulfilment of the research or statistical purposes.
Right to delete
Obligation to delete
You may require the data controller to delete your personal information without delay, and the data controller is required to delete that information immediately if one of the following is true:
(1) The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.
(2) You withdraw your consent, on which the processing was based pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a of the GDPR, and there is no other legal basis for the processing.
(3) You file an objection against the processing pursuant to Art. 21 para. 1 of the GDPR and there are no overriding legitimate reasons for the processing, or you submit an objection pursuant to Art. 21 para. 1 of the GDPR.
(4) Your personal data has been processed unlawfully.
(5) The deletion of your personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
(6) Your personal data was collected in terms of Information Society services offered in accordance with Art. 8 para. 1 of the GDPR.
Information to third parties
If the data controller has made your personal data public and is obliged to delete them pursuant to Art. 17 para. 1 of the GDPR, he shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data controller who process personal data, that you as the data subject have requested the deletion of all links to this personal data or copies or replications of this personal data.
Exceptions
The right to delete does not exist if the processing is necessary
(1) to exercise the right to freedom of expression and information;
(2) for the performance of a legal obligation required for processing under the law of the Union or of the Member States to which the data controller is subject or for the performance of a task in the public interest or in the exercise of official authority conferred on the data controller;
(3) for reasons of public interest in the field of public health pursuant to Art. 9 para. 2 lit. h and i as well as Art. 9 para. 3 of the GDPR;
(4) for archival purposes of public interest, scientific or historical research purposes and for statistical purposes pursuant to Art. 89 para. 1 of the GDPR, to the extent that the law referred to in lit. a is likely to render impossible or seriously impair the attainment of the objectives of such processing, or
(5) to assert, exercise or defend legal claims.
Right to information
If you have exercised your right to have the data controller correct, delete or restrict the processing, he or she is obliged to inform all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction on processing, unless this proves impossible or involves a disproportionate effort.
You have the right against the data controller to be informed about these recipients.
Right to data transfer
You have the right to receive your personal data, which you have provided to the data controller, in a structured, common and machine-readable format. In addition, you have the right to pass this data on to another controller without obstruction by the data controller who has been provided with the personal data, provided
(1) that processing is based on a consent pursuant to Art. 6 para. 1 lit. a of the GDPR and Art. 9 para. 2 lit. a of the GDPR or on a contract pursuant to Art. 6 para. 1 lit. a of the GDPR and
(2) the processing is done by automated means.
In exercising this right, you also have the right to request that your personal data be transferred directly from one data controller to another data controller, insofar as this is technically feasible. Freedoms and rights of other persons may not be affected by this.
The right to data transfer shall not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the controller.
Right to object
You have the right to object at any time, for reasons arising from your particular situation, to the processing of your personal data on the basis of Art. 6 para. 1 lit. e or f of the GDPR; this also applies to profiling based on these provisions.
The data controller will no longer processes the personal data concerning you, unless he can substantiate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purposes of such advertising, including profiling, in so far as it is related to such direct marketing.
If you object to the processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
You have the possibility to exercise your right of objection in connection with the use of Information Society services by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.
You also have the right, for reasons that arise from your particular situation, to object to processing of your personal data for scientific or historical research purposes or for statistical purposes pursuant to Art. 89 para. 1 of the GDPR.
This right to object may be limited to the extent that it is likely to make it impossible or seriously impair the realisation of research or statistical purposes and the limitation is necessary for the fulfilment of research or statistical purposes.
Right to withdraw the data protection consent declaration
You have the right to withdraw your data protection consent declaration at any time. Withdrawing consent does not affect the legality of the processing carried out on the basis of the consent until the withdrawal.
Automated decision in individual cases including profiling
You have the right not to be subject to a decision based exclusively on automated processing – including profiling – that has legal consequences for you or significantly impairs you in a similar manner. This does not apply if the decision
(1) is necessary for the conclusion or fulfilment of a contract between you and the person responsible,
(2) is permitted by legal provisions of the Union or of the Member States to which the controller is subject and which contain appropriate measures to safeguard your rights, freedoms and legitimate interests, or
(3) with your express consent.
However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 of the GDPR unless Art. 9 para. 2 lit. a or g applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests.
In the cases referred to in (1) and (3), the controller shall take reasonable measures to safeguard your rights, freedoms and legitimate interests, including at least the right to obtain the intervention of a person by the controller, to state his or her own position and to challenge the decision.
Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State of your residence, place of work or place of suspected infringement, if you believe that the processing of personal data concerning you is contrary to the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Art. 78 of the GDPR.
Das Hochschulforum Digitalisierung möchte Ihre Ideen in die Gestaltung der Website einbeziehen. Dafür bitten wir Sie herzlich, an unserer Umfrage teilzunehmen.Als Dankeschön können Sie einen von drei Hoodies vom Hochschulforum Digitalisierung gewinnen.
Hinweis: Die Umfrage wird über Google Formulare durchgeführt. Durch Klicken auf den Button werden Sie zum Google Formular weitergeleitet.
Jetzt teilnehmen
