This privacy statement informs you as a visitor to our internet pages about the use of personal data which is processed within the central website of ativaa. With this privacy statement, ativaa as the data controller fulfills its obligation to provide information in accordance with Art. 13 of the EU General Data Protection Regulation (EU-GDPR).
On internet pages in which data is collected via forms, additional information is provided on the processing of personal data gathered there.
Contact details of responsible parties
Faculty of Technology, UHG-E0, Projekt ATIVAA
Prof. Dr. Kristian Müller
Phone: +49 521 106-6323
Contact details of the data protection officers
The data protection officers of ativaa can be contacted by post at the above address or as follows:
Phone: +49 521 106-6323
Which data is processed at ativaa?
Storage of browser data
Generally, when you visit a website, information is automatically stored for technical reasons in server log files that your browser transmits to us. This information consists of:
access status (http status code);
amount of data retrieved;
date and time of the server request;
referrer URL (the previously visited page will only be saved in the log in case of an error (Error 404).
These collected data are used for purposes of identification and to detect unauthorized attempts to access the web server and cannot be assigned to a specific individual. A comparison with other databases or a disclosure to third parties does not take place. Data is stored for seven days and erased after it has been used for anonymous evaluation for statistical purposes. Data the further retention of which is required for evidentiary purposes shall be exempted from the deletion until the final clarification of the respective incident.
Forms and web-based services
At some places on the website of ativaa there is the option to share additional personal data by way of forms or through the use of web-based services. For example, a user may request information using a web-form or subscribe to a newsletter. The use of these services takes place on a voluntary basis. Details as to which data are collected and processed in each case are stated in the corresponding forms or web-services. The use of these additional features and the associated input of personal data is undertaken solely on a voluntary basis by the user. The data will be processed exclusively for the purpose stated there. If data is passed on to a third party, this will only be done on the basis of a legal permission or with the informed consent of the data subject.
Your browser also stores so-called “cookies”. Cookies are small files that can be stored by the website provider in the directory of the browser program on the user’s computer. These files contain text information and can be read again by the provider when the page is revisited. The provider can use these cookies, for example, to always deliver pages in the language selected by the user.
The storage of cookies can be switched off in your browser settings or assigned an expiry date. By deactivating cookies, however, you may not be able to use certain functions of the website that are managed via cookies which could have a negative impact upon the usability of the website.
Ativaa collects and processes the above-named data and log files required for the technical operation of the website in order to safeguard the technical security of the systems. It also collects and processes data in the context of web analysis in order to safeguard the legitimate interests of the University in accordance with Art. 6 Para. 1 lit. f. of the General Data Protection Regulation (EU-GDPR). These data are necessary to deliver our online services, for the secure operation of the web servers as well as to improve our website and are only used for the purposes as stated in each case.
The processing of additional data via forms and web-based services shall only be lawful if the data subject has given consent pursuant to Art. 6 para.1 lit. a. of EU GDPR or is necessary for the performance of a task carried out by ativaa pursuant to Art. 6 para. 1 lit. e. in conjunction with the Higher Education Act of the State of North Rhine-Westphalia (HG NRW).
As a matter of principle, we do not pass on personal data which is processed during a visit to ativaa’s internet pages to third parties. In some circumstances, this may be necessary if we are required by law to do so, for example, transmission to criminal prosecution authorities to clarify criminal offences within the framework of the provisions of the German Code of Criminal Procedure (StPO) or for the purpose of asserting claims for damages in the event of copyright infringements. Where technical service providers have access to personal data, this happens on the basis of a contract pursuant to Art. 28 of EU GDPR.
No personal data is transferred to countries outside the European Economic Area and associated countries (no third country transfer). If this should become necessary you will be informed.
Your rights as a data subject
As a data subject, you can assert the rights granted to you by the EU-GDPR at any time, insofar as these apply to the data processing:
the right of access by you as the data subject to obtain confirmation of whether and which data concerning you are being processed (Art. 15 EU GDPR);
the right to request rectification of inaccurate or incomplete data pertaining to you (Art. 16 EU GDPR);
the right to erasure of your personal data in accordance with Art. 17 EU GDPR;
the right in accordance with Art. 18 EU GDPR to obtain restriction of data processing;
the right to object to the future processing of your personal data in accordance with Art. 21 EU GDPR.
In order to operate and maintain the web services of ativaa it is necessary that we collect data and store data in log files. Users may therefore not object to this. Although IP addresses may be regarded as personal data, we do not assign them to individuals. Because of this, we cannot fulfil a request by the user for information as there is no IP address associated with them.
In addition to the aforementioned rights, you have the right to lodge a complaint with the respective data protection supervisory authority (Art. 77 EU GDPR).
Validity of this privacy statement
Built with HTML Website Builder