- At a glance
- Who is responsible within the meaning of the GDPR?
Responsible within the meaning of the GDPR is the natural or legal person, over the purposes
and means of processing personal data (co-) decides. This is:
The European Heritage Project
Alter Hof 5
Telefon: +49 (0) 89 552758-0
Telefax: +49 (0) 89 552758-199
How do we collect your data and for what purposes do we process it?
- We collect your data on the one hand, by you informing us about it – for example by logging in to a Newsletter, an e-mail or via a contact form. Others, especially technical, Data is collected automatically when visiting the website through our IT systems. The latter possibly happens through cookies and serves in particular to ensure a faultless provision of the website. Other data may be used to analyze your user behavior.
5. Data processing by visiting our website
When you visit our websites, it is technically necessary that through your internet browser the following data is transmitted to our web server:
• Validated domain
• Date and time of request
• page from which the file was requested
• Access status (file transfer, file not found, etc.)
• Used web browser and operating system used
• IP address of the requesting computer
• Transmitted amount of data
We collect this information during an ongoing connection in order to ensure a smooth connection of the website and to facilitate a comfortable use of our website by the users. In addition, the log file serves the evaluation of system security and stability as well as administrative purposes. The legal basis for the temporary storage of data or log files is Art. 6 para. 1 lit. f DSGVO. For reasons of technical security, in particular to ward off attacks on our web server, this data may be temporarily stored by us. A conclusion to individual persons is not possible on the basis of this data. After seven days at the latest, the data is anonymized by shortening the IP address at the domain level, so that it is no longer possible to establish a link to the individual user. There is no evaluation of this data except for statistical purposes in anonymous form. A combination of this data with data from other data sources will not be done.
Our Websites use so-called Cookies. Cookies are small Text Files stored on Your Device. You do not harm your Device and do not contain Viruses. Cookies are designed to make our Offer more user-friendly, effective and secure.
Unless so-called “session cookies” are, which are automatically deleted after the End of Your Visit, cookies will remain stored on Your Device until You delete them. These Cookies allow us to recognize Your Browser the next Time you visit. You can set Your Browser so that You are informed about the Setting of Cookies and allow Cookies only on a Case-by-case basis, the Acceptance of Cookies for certain Cases or in General
If You would like to obtain the Newsletter offered on The Website, we need an E-mail address from you as well as information that allows us to Verify that You are the Owner of the e-mail address provided and when Receiving the Newsletter Agree. Further Data will not be collected or will only be collected on a voluntary Basis. We use This Data only for The Sending of the requested Information and does not disclose it to Third parties.
The Data entered into the Newsletter Registration form is Based on Your Consent (Article 6 (1) lit. a GDPR). You can Revoke the Consent given for The storage of the Data, The E-mail address and its Use to Send the Newsletter at any time, for example via the “Austragen ” link in the Newsletter. The Legality of the Data processing Operations that have already taken place remains unaffected by The Revocation. The Data you have stored with us for the purpose of the Resign Newsletter will be stored by us until You have Been published from the Newsletter and deleted after The Newsletter has been registered. Data stored with us for other Purposes (e.g. E-mail addresses for the Member area) remains unaffected.
Contact Form and E-mail contact
If you send us inquiries via contact Form, Your Details from the Request form, including the contact details provided there, will be stored with us for the purpose of processing the request and in the event of follow-up requests. We will not share this data without your consent.
The data entered into the contact form is therefore only based on your consent (Article 6 (1) lit. a GDPR). You can revoke this consent at any time. To do this, a informal message by E-Mail to us is enough. The legality of the data processing processes carried out until the revocation remains unaffected by the revocation. In addition, the legal basis for processing your data may be our legitimate interest in answering your request in accordance with article 6 (1) lit. F GDPR and, if applicable, Article 6 (1) lit. (GPR) if your request is aimed at concluding a contract.
The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to the storage or the purpose of storing the data is omitted (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.
The statements in this section apply accordingly to your contact by e-mail.
5. Involvement of persons other than the person responsible pursuant to Section 2
A transfer of your personal data to persons other than those responsible within the meaning of the GDPR does not take place unless you (1) have given your express consent, (2) there is no other legal reason for transmission or (3) something else is described below.
a. external serviceprovider
If necessary, we use external service providers for the processing of our services, whom we have carefully selected and commissioned in writing. With these service providers – as far as necessary – order processing contracts acc. Art. 28 GDPR closed. They are bound by our instructions and are regularly monitored by us. These service providers are responsible for web hosting, the sending of e-mails as well as maintenance and care of our IT systems. Such service providers are not “third parties” within the meaning of the GDPR and will not pass your data on to third parties.
b. LinkedIn plugin
Our website uses features of the LinkedIn network. Provided by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States. Each time you visit one of our pages that contains LinkedIn features, it connects to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn’s “Recommend Button” and are logged in to your LinkedIn account, LinkedIn will be able to associate your visit to our website with you and your user account. We point out that we as the provider of the pages have no knowledge of the content of the transmitted data and their use by LinkedIn.
For more information, see the LinkedIn privacy statement at: https://www.linkedin.com/legal/privacy-policy.
6. Duration of storage of personal data
The duration of the storage of your data, please refer to the respective sections to the data. After expiry of the respective period or omission of the storage purpose, the corresponding data are routinely deleted. If data is required to fulfill the contract or to initiate an agreement or if we have a legitimate interest in the re-storage, the data will be deleted if you are no longer required for these purposes or if you make use of your right of revocation or objection. In some circumstances, relevant statutory retention periods (eg, commercial law and tax law) may require longer retention.
7. Your rights
You have the right at any time to receive information about the origin, recipient and purpose of your stored personal data free of charge. You also have a right to request the correction, blocking or deletion of this data. You may also be entitled to data transfer. For further information on data protection, please contact us at any time under point 2. Furthermore, you have a right of appeal to the competent supervisory authority.
a. Right to revoke granted consent
According to Art. 7 (3) GDPR, you have the right to revoke your consent to the processing of data once at any time with future effect. In the case of withdrawal, we will delete the data concerned immediately, as far as further processing can not be based on a legal basis for non-consensual processing. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
b. Right to objection
Insofar as your personal data are processed by us on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO are processed, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, to the extent that this occurs for reasons that arise from your particular situation. Insofar as the opposition is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement of specifying a particular situation. If you would like to exercise your right of revocation or objection, it is sufficient to send an e-mail to the e-mail address specified in Section 2.
c. Right to information, blocking, deletion
You have the right to free information on your stored personal data, their origin and recipients and the purpose of the data processing within the scope of the valid legal regulations at any time. In addition, you may be entitled to correct incorrect or complete information, or to delete or suspend your data (processing restrictions). For further information on personal data, please contact us at any time at the address given in section 2.
d. Right to data portability
You have the right to have data that we process on the basis of your consent or in fulfillment of a contract automatically, in itself or to a third party in a standard, machine-readable format. If you require the direct transfer of the data to another person in charge, this will only be done to the extent technically feasible.
8. Right of appeal to the competent supervisory authority
In the case of violations of data protection law, the person concerned has the right of appeal to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found on the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_linksnode.html.