Data Protection

Privacy Notice

 

As you use this website, personal data about you will be processed by us as the data controller and stored for as long as necessary to fulfill the specified purposes and legal obligations. Below, we inform you about the types of data involved, how they are processed, and what rights you have in this regard.

Personal data, as defined in Art. 4 No. 1 of the General Data Protection Regulation (GDPR), refers to any information relating to an identified or identifiable natural person.

1 Scope of Application

2 Name and Contact Information of the Controller and the Corporate Data Protection Officer

3 Processing Personal Data and Purposes of Data Processing

4 Transfer of Data

5 Cookies

6 Web Analysis/Tracking

7 Social-Media-Plugins

8 YouTube

9 Rights of the Data Subjects

10 Data Security

11 Timeliness and Amendments to this Data Protection Information

 

1. Scope of Application

This privacy information applies to the data processing on the website https://www.theranova.eu of Fraunhofer-Institut für Translationale Medizin und Pharmakologie, which refers to this privacy information.

 

2. Name and Contact Information of the Controller and the Corporate Data Protection Officer

Fraunhofer-Gesellschaft
for the Advancement of Applied Research e.V.

Hansastraße 27 c
80686 Munich

for its
Fraunhofer-Institut für Translationale Medizin und Pharmakologie ITMP

Theodor-Stern-Kai 7

60596 Frankfurt a. M.

 

(hereinafter Fraunhofer-ITMP)

E-Mail:

info@itmp.fraunhofer.de

Phone: +49 69 6301-80231

Fax: +49 69 6301-7617

 

The data protection officer of Fraunhofer can be reached at the above address in Munich, for the attention of: Data Protection Officer or at datenschutz@zv.fraunhofer.de. You can contact our data protection officer directly at any time with questions regarding data protection law or your rights as a data subject.

Alternatively, our contact person Datenschutzbeauftragter is available at datenschutz@itmp.fraunhofer.de.

 

3. Processing Personal Data and Purposes of Data Processing

When Visiting the Website

When you access our website and retrieve its content, temporary data is stored that may allow identification. The browser used on your device automatically sends the information to the server of our website. The following data is collected:

  • Date and time of access
  • IP address
  • Hostname of the accessing server
  • Website from which our website was accessed
  • Visited page on our website
  • Notification of whether the access was successful
  • Volume of data transferred
  • Information about the browser type and version used
  • Operating system

The temporary storage of data is necessary for establishing the connection and the course of a website visit so that we can provide you with the content on our website.

Further storage in log files occurs to ensure the functionality of the website, the security of the information technology systems, and to enable the uninterrupted provision of our website as well as to track any unlawful attacks if necessary.

If technical data from your device is processed to enable access to our website, this is done because such data is required in accordance with § 25 para. 1 no. 2 TDDDG.

The processing of the IP address is for technical and administrative purposes, for connection establishment and stability, to ensure the security and functionality of our website, and to track any unlawful attacks if necessary. The legal basis is our legitimate interest according to Art. 6 para. 1 lit. f GDPR.

From the processing of the mentioned data in the log file, we cannot draw any direct conclusions about your identity. This is temporarily stored in a so-called log file and deleted after 4 Tage days .

Furthermore, when visiting our website, we may use cookies and analytics services. If this is the case, you will receive further explanations about this in the privacy notice below.

 

When using contact forms

We offer you the opportunity to contact us via a form provided on the website. The following information is required:

  • Title,
  • First and last name, and
  • Email address.

We need your data to determine who the inquiry is from and to respond to and process it.

The data processing is carried out at your request and is based on our legitimate interests in answering a contact inquiry according to Art. 6 Abs. 1 S. 1 lit. f GDPR.

The personal data we collect for using the contact form will be deleted after we have completed your inquiry.

 

When using the comment function

It is possible to publicly comment on articles and blog posts on our website. Your comment will be published with your specified name below the commented post.

In the context of using the comment function, we collect the following mandatory information:

  • Name and
  • Email address

Instead of your name, you can also provide a pseudonym. Your email address is required to submit the comment but will not be published with your comment. We use your email address only to inform you about a response to your comment.

Additionally, when you submit a comment, we store your IP address for 4 Tage, after which we will delete it. This storage is necessary so that we can defend ourselves against liability claims in the event of possible publication of unlawful content.

The data processing is carried out in response to your comment and is justified within the framework of the publication of online contributions with user reactions and our legitimate interest in an exchange of opinions and information according to Art. 6 Abs. 1 S. 1 lit. f GDPR.

The personal data will be processed for the duration of the publication of the online contribution and subsequently deleted.

 

4. Transfer of Data

If we pass on personal data collected through the website to processors, we will inform you about this in this privacy notice for each data processing procedure, naming the specific recipient.

Otherwise, we will only share your personal data if

  • you have given your explicit consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR;
  • this is necessary for the fulfillment of a contract with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR (for example, when passing on data to shipping companies for the purpose of delivering the goods you have ordered or when passing on payment data to payment service providers or credit institutions to carry out a payment transaction);
  • there is a legal obligation for the transfer in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR.

The data passed on may only be used by the recipients for the stated purposes.

 

5. Cookies

General

We use cookies on our site. Cookies are small files that your browser automatically creates and stores on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not harm your device, do not contain viruses, Trojans, or other malicious software.

The cookie stores information that is specific to the device being used. However, this does not mean that we gain direct knowledge of your identity.

Cookies that are not strictly necessary to use a web service you explicitly request will only be set after your consent. You can give this consent through the cookie banner displayed when you visit the website. The legal basis for processing your data is consent according to § 25 TDDDG and Art. 6 para. 1 sentence 1 lit. a GDPR, meaning that this is only done with your consent.

 

Necessary Cookies

The processing of personal data in the context of technically necessary cookies is required for us to provide the web services you requested. The legal basis for this use of necessary cookies is § 25 para. 2 no. 2 TDDDG and Art. 6 para. 1 sentence 1 lit. f GDPR.

Session Cookies

We use so-called session cookies, for example, to enable session control or to store form entries or shopping carts during the session. Session cookies are deleted at the latest when you close your web browser.

Cookies for Personalizing Our Web Offerings

We use temporary cookies to optimize user-friendliness, which are stored on your device. If you visit our site again to use our services, it will be automatically recognized that you have already been with us and what inputs and settings you made, so you do not have to enter them again.

The type and scope of the data processed, the storage duration, and the providers that supply these cookies can be found in the list of cookies we set.

The processing takes place within the scope of the GDPR (EU/EEA). There is no transfer to third countries. The legal basis for this use of non-essential cookies is your consents according to § 25 para. 1 TDDDG and Art. 6 para. 1 lit. a GDPR.

Cookies for Optimizing Our Web Offerings (Statistical Cookies)

On the other hand, we use cookies to statistically record the use of our website and for the purpose of optimizing our offerings for you. These cookies allow us to automatically recognize during a subsequent visit to our site that you have already been with us.

The type and scope of the data processed as well as the providers that supply these cookies can be found in the list of cookies we set.

The processing takes place within the scope of the GDPR (EU/EEA). There is no transfer to third countries. The legal basis for this processing is § 25 para. 1 TDDDG and Art. 6 para. 1 lit. a GDPR.

Right of Withdrawal

You have the option at any time to withdraw your consent for the storage and access to the contents of the cookies with effect for the future in accordance with Art. 7 para. 3 GDPR or to object to the use of non-technically necessary cookies in whole or in part.

If you withdraw your consent or object to the use, a cookie (opt-out cookie) will be set by us that documents your decision and enables us to implement it. The opt-out cookie applies only in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will need to set the opt-out cookie again.

Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or that you receive a notification before a new cookie is created. However, completely disabling cookies may result in you not being able to use all the features of our website. Your withdrawal does not affect the lawfulness of the processing activities we have carried out that are necessary to provide you with the website according to § 25 para. 2 TDDDG and Art. 6 para. 1 sentence 1 lit. f GDPR.

 

6. Web Analysis/Tracking

LeadLab (Wiredminds GmbH)

We use the LeadLab service from Wiredminds GmbH on our website, along with its tracking pixel technology, to analyze user behavior and optimize our site accordingly. In particular, the service allows us to identify which companies have visited our site. We do not receive any information that directly identifies you.

In connection with the use of LeadLab, cookies and tracking pixels are employed, enabling a statistical analysis of the use of this website through your visits. The information is processed by Wiredminds using a pseudonym in a usage profile for analysis purposes and is anonymized whenever possible.

The data obtained in this way will not be used to personally identify you without your separate consent, and the data will not be merged with personal data about you as the holder of the pseudonym.

If IP addresses are collected, they will be anonymized immediately after collection by deleting the last block of numbers.

Information on data protection at Wiredminds can be found on the company's website at https://www.wiredminds.de/datenschutz/.

The data processing is based on our legitimate interest according to Art. 6 Abs. 1 S. 1 lit. f GDPR for the purpose of optimizing our online offerings and our web presence. Wiredminds processes the data on our behalf based on a data processing agreement between us and Wiredminds. This ensures that the data processing on our behalf is carried out in accordance with the General Data Protection Regulation while ensuring the protection of the rights of the data subjects.

 

7. Social-Media-Plugins

We use so-called social media buttons (also social media plugins) on our website. These are small buttons that allow you to publish content from our website on social networks under your profile.

If you activate such a button, a connection will be established between our website and the social network. In addition to the relevant content, the operator of the social network receives further information, some of which may be personal. This includes the fact that you are currently visiting our site.

The integration of the social media buttons is done using the so-called Shariff solution. This solution prevents a connection to a social network from being established simply by visiting a page with a social media button without activating it. This means that information is only transmitted to the social network when you activate the button.

We use the following social media plugins:

 

X Corp. (Formerly Twitter International Company): Sharing on X

Information is sometimes transmitted to the parent company X Inc. (formerly Twitter), based in the USA, to other Twitter companies, and to external partners of Twitter, which may be located outside the European Union. X uses standard contractual clauses approved by the European Commission and relies on your consent for this purpose.

For more information on data protection at X, please refer to X's privacy policy at https://x.com/privacy.

 

LinkedIn Corporation: Sharing on LinkedIn

Information is sometimes transmitted to the parent company LinkedIn Corporation, based in the USA, to other LinkedIn companies, and to external partners of LinkedIn, which may be located outside the European Union. LinkedIn uses standard contractual clauses approved by the European Commission for this purpose.

For more information on data protection at LinkedIn, please refer to their privacy policy at https://www.linkedin.com/legal/privacy-policy.

 

8. YouTube

We integrate components (videos) from the video portal YouTube of the company Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "Google") on our websites. The implementation is based on Art. 6 Abs. 1 S. 1 lit. f GDPR, with our interest being the smooth integration of the videos and the appealing design of our website.

The integration is done using a solution that prevents a connection to Google from being established just because you visit a page with an embedded video without activating the video. This means that information is only transmitted to Google when you click on the video to watch it.

Information is sometimes transmitted to the parent company Google Inc., based in the USA, to other Google companies, and to external partners of Google, which may be located outside the European Union. Google uses standard contractual clauses approved by the European Commission and relies on adequacy decisions issued by the European Commission regarding certain countries.

For more information on data protection in connection with YouTube, please refer to Google's privacy policy at https://policies.google.com/privacy/.

 

9. Rights of the Data Subjects

You have the right to:

•    According to Article 7(3) of the GDPR, withdraw your consent at any time. This means that we may no longer continue processing the data based on that consent in the future;
•    According to Article 15 of the GDPR, request information about your personal data processed by us. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been disclosed or will be disclosed, the planned storage duration, the existence of the right to rectification, erasure, restriction of processing, or objection, the existence of a right to lodge a complaint, the origin of your data, if not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
•    According to Article 16 of the GDPR, request the immediate rectification of inaccurate or completion of your personal data stored with us;
•    According to Article 17 of the GDPR, request the erasure of your personal data stored with us, unless processing is necessary for exercising the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims;
•    According to Article 18 of the GDPR, request the restriction of processing of your personal data, as long as you contest the accuracy of the data, processing is unlawful, but you oppose erasure, and we no longer need the data, but you need it for the establishment, exercise, or defense of legal claims or you have objected to processing according to Article 21 of the GDPR;
•    According to Article 20 of the GDPR, receive your personal data provided to us in a structured, commonly used, and machine-readable format or request the transfer to another controller;
•    According to Article 77 of the GDPR, lodge a complaint with a supervisory authority. In general, you can contact the supervisory authority of your usual residence or workplace or our association's registered office for this purpose.

Information about your right to object under Article 21 of the GDPR

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you, which is based on Article 6(1)(e) of the GDPR (processing in the public interest) and Article 6(1)(f) of the GDPR (processing based on legitimate interests); this also applies to profiling based on this provision as per Article 4(4) of the GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims.

If your objection is directed against the processing of data for direct marketing purposes, we will cease processing immediately. In this case, it is not necessary to specify a particular situation. This also applies to profiling insofar as it is related to such direct marketing.

If you wish to exercise your right to object, it is sufficient to send an email to datenschutzkoordination@zv.fraunhofer.de.

 

10. Data Security

All your personal data are transmitted in encrypted format, using the widely used and secure TLS (Transport Layer Security) standard. TLS is a secure and proven standard that is also used, for instance, in online banking. You will recognize a secure TLS connection by the additional s after http (i.e., https://...) in the address bar of your browser or by the lock icon in the bottom part of your browser window.

In all other regards, we use suitable technical and organizational security measures to protect your data against accidental or intentional manipulations, partial or complete loss, destruction, or the unauthorized access of third parties. We continuously improve our security measures in accordance with the state of the art.

 

11. Timeliness and Amendments to this Data Protection Information

The further development of our website and the products and services offered or changed due to statutory or regulatory requirements, respectively, may make it necessary to amend this data protection information. You may access and print out the latest data protection information at any time from our website.

When you use this website, we process your personal data as data controllers and save them for the duration required to fulfill the defined purposes and legal obligations. The sections below provide further details about the data this involves, how they will be processed and which rights you have in this regard.

Personal data, as defined by Article 4 (1) General Data Protection Regulation (GDPR) include all information related to an identified or identifiable natural person.

1.    Name and Contact Information of Controller and Corporate Data Protection Officer

This data protection information applies to data processing on all websites of the [FhG-Institute] that refer to this data protection information. The controller is:
Fraunhofer-Gesellschaft
zur Förderung der angewandten Forschung e.V.
Hansastraße 27 c
80686 München, Germany
on behalf of its [FhG-Institute]
(hereinafter referred to as “Fraunhofer-[Institute]”)

Email:        [Email address of the Institute]
Telephone:    [Telephone number of the Institute]
Fax:        [Fax number of the Institute]

The corporate data protection officer at Fraunhofer can be reached at the above-mentioned address, c/o Data Protection Officer or at datenschutz@zv.fraunhofer.de.
Please feel free to contact the data protection officer directly at any time with your questions concerning your data protection rights and/or your rights as data subject.

2.  Processing personal data and purposes of processing

a)    When visiting the website

You may access the website www.fraunhofer.dewithout having to disclose any details of your identity. What the browser on your terminal device does automatically is only to send information to the server of our website (e.g. browser type and version, date and time of access) so as to allow a connection with the website. This also includes the IP address of your requesting terminal device. It is temporarily stored in a so-called log file and automatically deleted after 4 days.

The IP address is processed for technical and administrative purposes regarding connection set-up and stability, to guarantee the security and functioning of our website and to be able to track any illegal attacks on the website, if required.

The legal basis for processing the IP address is the first sentence of point (f) of Article 6(1) GDPR. Our legitimate interest ensues from said security interest and the necessity of the unobstructed availability of our website.

We cannot draw any direct conclusions about your identity from processing the IP address and other information in the log file. Moreover, we use tracking pixel and analytics services when you visit our website. For more information on this, please refer to clauses 4 of this Data Protection Information.

 

b)    When registering for events

We offer a variety of events through our website on a regular basis, for which you may register online. When registering for an event, you need to enter the following mandatory data. These include:

  • First name and surname
  • Address
  • Email address

Any other mandatory data are marked as such (e.g. with *). Besides, other data may often be entered voluntarily.

The mandatory data are processed in order to identify the interested persons as participants of the event, to perform the participation contract, and to provide the participants with information pertaining to the event before, during and after the event. The voluntary data allows us to plan and execute the event based on interest and age criteria.

Data processing takes place at the request of the interested participants and is necessary pursuant to the first sentence of point (b) of Article 6 (1) GDPR for the purposes mentioned for the performance of the participation contract and in order to take steps prior to entering into it.

We store the data we collect in the context of event registrations for 6 months unless you have consented to a longer storage period under Art. 6 (1) lit. a GDPR.

For the registration of our events through our web forms, we work in collaboration with the service provider Mailingwork GmbH, Birkenweg 7, 09569 Oederan (“Mailingwork”). The purpose of the collaboration is to professionally manage online registrations. For this purpose, the entered data is stored on the servers of Mailingwork in Germany.

We have concluded an order processing agreement with Mailingwork. By this agreement, Mailingwork assures that it will process the data on our account in accordance with the General Data Protection Regulation and guarantees the protection of rights of the data subjects.

In addition, it may in some cases be necessary within the scope of performance of the contract to transfer your personal data to an external organiser. In connection with an event registration, you will be informed about who the organiser is and whether it is an external organiser. This organiser will process personal data within the scope of the event and especially for the management of participants.

c)  When using the ordering service

We offer an ordering service on our website that allows you to order annual reports or the Fraunhofer magazine free of cost as a single copy or as a subscription. To order these, we collect the following mandatory data

  • Title
  • First name, surname
  • Address
  • Country

You may also voluntarily provide additional data (e.g. title, company, department) and provide specifics for your order.

The collection and further processing of this data takes place in order

  • to be able to identify you as our contractual partner
  • to check the entered data for plausibility
  • to process your order.

Data processing takes place at your request and is necessary pursuant to the first sentence of point (b) of Article 6(1) GDPR for the purposes mentioned for the fulfilment of your order and to take steps prior to entering into the contract.

We work in collaboration with a service provider, Wolanski GmbH, Ernst-Robert-Curtius-Str. 6, 53117 Bonn-Buschdorf, Germany, (“Wolanski”), for processing your order. We manually submit your data to it for your goods to be dispatched. After completion of the order, the service provider will automatically delete the data.

We have concluded an order processing agreement with Wolanski. By this agreement, Wolanski assures that it will process the data on our account in accordance with the General Data Protection Regulation and guarantees the protection of rights of the data subjects.

The personal data we collect for the order is stored with us for as long as is necessary for the performance of the contract and compliance with mandatory statutory legal obligations applicable to us. If you have ordered a subscription, we will store your data until the termination of the subscription. In case of one-time orders, we will delete your personal data after completion of the delivery.

d)  When subscribing to a newsletter

On various occasions, we offer on our website the option to register for a newsletter or press distribution list. If you have expressly given your consent pursuant to the first sentence of point (a) of Article 6(1) GDPR, we will use your email address to regularly send you information corresponding to your selection. To receive the information, an email address and the desired language version is sufficient.

You may provide additional personal data voluntarily (e.g. name, address and telephone number). We use this data to contact you by telephone or post (e.g. for press invitations).

You will then receive a registration notification by email, which you need to confirm to be able to receive the newsletter (so-called double opt-in). This helps us verify that it is actually you who have initiated the registration.

Unsubscribing is possible at any time, e.g. via a link at the end of each press newsletter. Alternatively, you may also send your unsubscribing request to datenschutz@zv.fraunhofer.deby email.

After withdrawing your consent for sending the newsletter, your email address will be deleted immediately.

We send our newsletter by means of the service provider Mailingwork GmbH, Birkenweg 7, 09569 Oederan (“Mailingwork”). The email addresses and data of our newsletter recipients are stored on our behalf on the servers of Mailingwork in Germany.

Mailingwork uses this information to send and evaluate the newsletter on our behalf. For this purpose we have concluded an order processing agreement with Mailingwork. By means of this agreement, Mailingwork assures that it processes the data in accordance with the General Data Protection Regulation and guarantees the protection of rights of the data subjects.

Mailingwork assures that personal data is fully protected against unauthorised access. Mailingwork itself does not use the data of our newsletter recipients to write to them or to transfer the data to third parties. As a reliable email sender, Mailingwork is also certified by the Certified Senders Alliance.

e) When using the contact form for tenders

For queries regarding our tenders, we offer you the option of contacting us directly by means of a contact form provided on the website. The following data are necessary as mandatory data:

  • First name and surname
  • Email address  

We require your data to determine that the query has come from a company and to be able to answer and process it. Additionally you may provide your title, company, department, address, telephone number, fax number and homepage, if required. The data is processed exclusively for processing your query and is not taken into account for any future award procedure.

The processing of data takes place upon your request and is within the framework of answering a contact request supported by our legitimate interest pursuant to the first sentence of point (f) of Article 6(1) GDPR.

The personal data collected by us when you use the contact form will be deleted after completion of your query.

 

f) Fraunhofer Location Map (OpenStreetMap)

On our website www.maps.fraunhofer.de we embed the maps from OpenStreetMap. OpenStreetMap is a project of the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands B72 1JU, Great Britain, which collects public domain geodata and provides them in a database for free use.

When you visit the website, initially no connection to OpenStreetMap’s servers is made. Instead of the embedded maps, you are initially shown only a preview image that we retrieve from our web server.

For any subsequent interaction on this website (such as a search by institute, region, continent, organizational unit) you are connected to the OpenStreetMap Foundation’s servers and data on the OpenStreetMap Foundation are transmitted in order to display embedded maps. Additional information concerning data protection in connection with OpenStreet Map can be found in the Privacy Policy of OpenStreetMap Foundation.

 When connection is established to display the maps, the following data are transmitted to OpenStreetMap’s servers:

  • IP address,
  • user’s browser and device,
  • operating system,
  • web page from which you were directed to the OpenStreetMap Foundation site (referring web page) and
  • date and time the website was visited.

If you have a user account with OpenStreetMap and are logged in when you visit our website, the following additional data will be transmitted to OpenStreetMap’s servers:

  • user ID,
  • email address associated with your account and
  • content blocked by the user and associated messages.

Embedding is done on the basis of Art. 6 (1) lit. f GDPR and with the purpose of making our website more user-friendly and interesting. This may be regarded as a legitimate interest within the meaning of the aforementioned provision.

You may prevent any data transfer to OpenStreetMap’s servers by deactivating  JavaScript in your browser. In that case, however, you cannot use the map display.

Additional information on data protection in connection with OpenStreetMap may be found here.

3. Transfer of personal data to third parties

Except for the aforementioned cases (registration for events, using the ordering service, subscription to a newsletter), we forward your personal data to third parties only if:

  • you have given your express consent pursuant to the first sentence of point (a) of Article 6(1) GDPR,
  • it is necessary for the performance of a contract with you pursuant to the first sentence of point (b) of Article 6(1) GDPR,
  • A statutory obligation exists for transferring pursuant to the first sentence of point (c) of Article 6(1) GDPR.

In the event that personal data is transferred to a third country (outside the EU) or an international organisation, we will provide information accordingly.

 

4. Web analysis through Leadlab (Wiredminds GmbH)

Our website uses the Leadlab service by Wiredminds GmbHand its tracking pixel technology to analyze user behavior and optimize our site accordingly. In particular, this service allows us to identify which companies have visited our site. In doing so we do not obtain any information that may identify you directly.

The use of Leadlab involves tracking pixels that allow statistical analysis of the use of this website based on your visits. Wiredminds uses a pseudonym to process the information in a usage profile for the purpose of analysis. The data are anonymized to the extent possible.

Without your specific permission, we neither use the data collected to identify you personally nor will we combine the data with personal data pertaining to the pseudonym associated with you.

If IP addresses are collected, they are immediately anonymized after collection by deleting the last number block.

For more information about data protection at Wiredminds, please visit the company’s website.

We process statistical data based on our legitimate interest pursuant to Article 6 (1) lit. f GDPR for the purpose of optimizing our online offering and our web presence. Wiredminds processes the data on our behalf based on a data processing agreement between us and Wiredminds. This agreement ensures that the data processing on our behalf is compliant with the General Data Protection Regulation and guarantees the protection of the data subjects’ rights.

 

5. Social plug-ins

We use so-called social media buttons (also called social media plug-ins) on our website. These are small buttons by means of which you may publish the contents of our website in your profile on social networks.

If you activate such a button, a connection is established between our website and the social network. In addition to the contents in question, the operator of the social network also obtains additional, partly personal, information. For instance, it includes the fact that you are currently visiting our site.

The social media buttons are integrated using the so-called Shariff solution. This solution developed by Heise and c’t prevents a connection with a social network from being established just because you access a page with a social media button, without actually activating it. This means that information is sent to the social network only when you press the button.

We use the following social media plug-ins:

a) Meta Platforms Ireland Limited: Sharing on Facebook

Information is partly transferred to the parent company Meta Platforms Inc., headquartered in the USA, to other Meta-companies and external partners of Meta, each of which may be located outside the European Union. Meta utilizes standard contractual clauses approved by the European Commission and relies on the European Commission's adequacy decisions about certain countries.
For the purpose and scope of the data collection, further processing and use of the data by Meta as well as your related rights and configuration options for protecting your private, please refer to the Meta's privacy notice.

b) Twitter International Company: Sharing on X

Information is partly transferred to the parent company X Corp., headquartered in the USA, to other X-companies and external partners of X, each of which may be located outside the European Union. X utilizes standard contractual clauses approved by the European Commission and relies on your consent.

For more information on data protection on X, please refer to the X privacy statement.

c) NEW WORK SE (formerly: XING SE): Sharing on XING

In part, information is transmitted to other NEW WORK-companies and external partners of NEW WORK, each of which may be located outside the European Union. NEW WORK utilizes standard contractual clauses approved by the European Commission or other appropriate safeguards as set forth in article 46 GDPR and relies on the European Commission's adequacy decisions about certain countries as well as your consent.

For the purpose and scope of data collection, further processing and use of data by NEW WORK as well as your related rights and configuration options for protecting your privacy, please refer to the XING's privacy statement.

d) LinkedIn Corporation: Sharing on LinkedIn

Information is partly transferred to the parent company LinkedIn Corporation, headquartered in the USA, to other LinkedIn-companies and external partners of LinkedIn, each of which may be located outside the European Union. LinkedIn utilizes standard contractual clauses approved by the European Commission.

For more information on data protection on LinkedIn, please refer to the LinkedIn privacy statement.

6. YouTube

We embed components (videos) of the video hosting service “YouTube” of the company Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter “Google”) in our websites. We use components (videos) of YouTube, LLC, 901 Cherry Ave., 94066 San Bruno, CA, USA (hereinafter “YouTube”), a company of Google Inc., Amphitheatre Parkway, Mountain View CA 94043, USA, (hereinafter “Google”) on our websites. The implementation is based on Art. 6 (1) lit. f GDPR; our legitimate interest in this case is the smooth integration of the videos and the attractive design of our website.

We use the option of "privacy-enhanced mode” provided by Google.

When you access a page containing an embedded video, a connection to the Google servers is established and the contents are displayed on the Internet page through a notification to your browser.

Pursuant to Google specifications, in the “extended data protection mode” your data - especially which of our Internet pages you have visited as well as device-specific information including the IP address - is sent to the Google servers in the US only when you view the video. By clicking on the video, you give your consent to this transfer.

If you are simultaneously logged on to Google, this information is assigned to your Google member account. You may prevent this by logging out of your member account before visiting our website.

In part, information is transmitted to the parent company Google Inc., headquartered in the USA, to other Google-companies and external partners of Google, each of which may be located outside the European Union. Google utilizes standard contractual clauses approved by the European Commission and relies on the European Commission's adequacy decisions about certain countries.

For more information on data protection in connection with YouTube, please refer to the data protection regulations of Google.

7. Rights of the data subject

You have the right:

  • pursuant to Article 7(3) GDPR, to withdraw the consent given to us at any time. This means that in future we may no longer continue to process the data as based on this consent;
  • pursuant to Article 15 GDPR, to obtain information about your personal data processed by us. More particularly, you may obtain information about the purpose of processing, the category of the personal data, the categories of recipients, to whom your data has been or is disclosed to, the storage period planned, the existence of a right to request from the controller rectification , erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the source of your data if it has not been collected by us, as well as about the existence of automated decision-making including profiling and, if applicable, significant information about its details;
  • pursuant to Article 16 GDPR, to obtain the rectification of inaccurate personal data without undue delay or the completion of your personal data stored with us;
  • pursuant to Article 17 GDPR, to obtain the erasure of your personal data stored with us unless processing is necessary to exercise the right to freedom of expression and information, for compliance with a legal obligation , for reasons of public interest, or to establish, exercise or defend legal claims;
  • pursuant to Article 18 GDPR, to obtain the restriction of the processing of your personal data if you contest the accuracy of the data, the processing is unlawful but you deny its erasure and we no longer need the data while you still require it for establishing, exercising or defending legal claims or if you have objected to processing pursuant to Article 21 GDPR;
  • pursuant to Article 20 GDPR, to receive your personal data that you have provided to us, in a structured, commonly used and machine-readable format or to obtain the transmission to another data controller and
  • pursuant to Article 77 GDPR, to lodge a complaint with a supervisory authority. For this, you may normally contact the supervisory authority of your habitual residence or workplace or our company headquarters.

8. Information on your right to object pursuant to Article 21 GDPR

You have the right to object, on grounds relating from your particular situation, at any time to processing of your personal data, which is based on point (e) of Article 6(1) GDPR (data processing for the performance of a task carried out in the public interest) and on point (f) of Article 6(1) GDPR (data processing for the purposes of the legitimate interests); this is also applicable to profiling pursuant to Article 4(4) GDPR based on this regulation.

If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or unless processing serves the establishment, exercise or defence of legal claims. If your objection is directed against the processing of data for the purpose of direct marketing, we will stop the processing immediately. In this case, citing a special situation is not necessary. This is also applicable to profiling, insofar as it is related to such direct marketing.

If you wish to make use of your right to object, please send an email to datenschutz@zv.fraunhofer.de.

9. Data security

All your personal data is transferred in an encoded manner using the widely used and secure TLS (Transport Layer Security) encryption standard. TLS is a secure and proven standard that is also used for online banking, for instance. You will recognise a secure TLS connection by the additional s after http (i.e., https://..) in the address bar of your browser or from the lock icon in the lower part of your browser, among other things.

Besides, we use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously being improved as the technology advances.

 

10. Timeliness and Amendments to this Data Protection Information

This data protection information as amended in January 2020 is currently applicable.

It may become necessary to change this data protection information due to the further development of our website and its offers or on account of amended legal or official requirements. You may always access and print the latest data protection information on the website at
https://www.fraunhofer.de/en/data-protection-policy.html.