Responsible handling of personal data is a priority for the Project Management Jülich (PTJ). We want our users to know when the Project Management Jülich is collecting what data and for what purpose.The Project Management Jülich operates a website hosted on the www.wissen-digital-ewb.de domain. This website serves to provide information about PTJ activities and to give the public easy access to information.We do not process personal data beyond what is necessary. What data we will need and process on what basis and for what purpose will much depend on the type of service you are using, and on the purpose for which the data is required.We have taken technical and organisational measures to ensure that both we as well as external service providers comply with the provisions governing data protection.The processing of personal data at the NCP is handled in accordance with the Europäischen General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG).
Basic Informaion
Responsible and Data Protection Officer
Controller for the purposes of the General Data Protection Regulation (GDPR),other data protection laws applicable in Member states of the European Union and other provisions related to data protection is: Forschungszentrum Jülich GmbH Wilhelm-Johnen-Strasse 52428 Jülich Deutschland
Phone: +49-2461-61-0
Email: info@fz-juelich.de
Website: www.fz-juelich.de
The Data Protection Officer of the controller is:
Frank Rinkens
Forschungszentrum Jülich GmbH
Wilhelm-Johnen-Strasse
52428 Jülich
Deutschland
Phone: +49-2461-61-9005
Email: DSB@fz-juelich.de
Website: www.fz-juelich.de
Any data subject may, at any time, contact our Data Protection Officer directly with all questions and suggestions concerning data protection.
Personal data
Of course, the Technical University of Berlin observes the legal provisions on data protection and other legal regulations and requirements.
We do everything we can to ensure that you can trust us with your personal information. The transmission of personal and sensitive data is encrypted. In addition, our websites are protected by technical measures against damage or unauthorized access.
Data processing in connection with the visit of this website
Data collection
-
Every time a user accesses our internet service and every time a file is retrieved, data about this process is temporarily processed in a log file. Specifically, the following data is stored for each access/retrieval:
-
the IP address of your device,
-
the date and time of the page view,
-
the page accessed or the name of the file accessed,
-
the amount of data transferred,
-
der "User Agent-String" Ihres Webbrowsers,
-
website from which you accessed the current page or file
-
and the status message as to whether the access or retrieval was successful.
These non-anonymized log data are automatically deleted after two weeks, are not archived and are used exclusively for non-commercial purposes. They are only viewed manually when necessary and are required for error analysis, optimization or investigation of cases of misuse or performance bottlenecks. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f EU GDPR. A right to object according to Article 21 EU GDPR is not possible due to a lack of technical feasibility.
Data collected from visits to the PTJ web resources and stored on log files is transmitted to third parties only when required by law, or if attacks on thel communications technology system make it necessary to forward such data for purposes of legal action or criminal prosecution. Data will not be transferred for any other reason.The PTJ does not collate these data with data from other sources.
-
In order to best protect your transmitted data, we use SSL encryption for all data transmission. You can recognize such encrypted connections by the prefix “https://” in the page link in the address bar or by the green/closed lock symbol in your browser. Unencrypted pages are identified by “http://” or an open or red lock symbol. All data that you transmit to this website - such as inquiries or logins - cannot be read by third parties thanks to SSL encryption.
Session Cookies
Cookies
On our site and when displaying banners, we use various cookies that are partly only valid during your visit and partly exist beyond that. This is necessary for technical reasons to provide the functions and ensure correct display of the content.
We use the following cookies on our domain wissen-digital-ewb.de:
igonesSplashWindow
HTTPOnly: False, Secure: False, SameSite: None, validity period: 1 day (until end of session or max. 1 day).This cookie is used to control certain display elements (such as a splash window) during your visit and is therefore only valid for a short time.
csrftoken
HTTPOnly: False, Secure: False, SameSite: Lax, validity period: 10 months.This longer-lasting cookie sets a CSRF protection token to increase the security of your sessions and prevent malicious actions.
sessionid
HTTPOnly: True, Secure: True, SameSite: Strict, Validity: 1 day. This cookie contains a randomly generated session ID.
These cookies cannot store any data other than the information required for operation (e.g., session ID, CSRF token, display settings). The session ID allows for a statistic to be kept on the number of page views per day. It is used to prevent duplicate counts from the same device.
You can use any internet browser to be informed whenever a cookie is set and to see what information is stored in it. For more detailed information, visit the websites of the Federal Commissioner for Data Protection and Freedom of Information and of the Federal Office for Information Security. There are also persistent cookies, which allow a provider to remember visitors even if they do not return until after a longer period of time. These cookies are stored as a text file on the hard drive of the user's computer. We do not use this type of cookie on our website. Most browsers' default settings will result in cookies being accepted automatically. It is, however, possible to disable the use of cookies or to change your browser settings to 'session cookies only', which means that all cookies are deleted as soon as you disconnect from the internet.
Third Party Social Media Providers
Social media links
On our websites we refer to PTJ-specific presences or social network profiles of the third-party providers listed below or offer the option of sharing our web offerings in the social networks of the third-party providers listed below. The integration takes place via a linked graphic of the respective network, which prevents a connection to the respective server of the social network from being automatically established when our websites with such social media content are accessed, for example to view a post from the respective network itself to represent. Only when you actively click on the corresponding graphic will you be directed to the service of the respective social network. The legal basis is Article 6 Paragraph 1 Letter a EU GDPR.
The respective network then collects information about you. This initially includes data such as the IP address of your device, date, time and page visited. It cannot be ruled out that the data collected in this way will be processed in the USA. If you are logged in with your user account for the respective network, the network operator may be able to assign the information collected from your specific visit to your personal account. If you interact using a “Share” button on the respective network, this information can be saved in your user account and, if necessary, published. If you want to prevent the collected information from being directly assigned to your user account, you must log out before clicking on the graphic. It is also possible to configure your user accounts accordingly.
YouTube
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 USA
Data protection: https://policies.google.com/privacy?hl=de
YouTube
In order to display video content, our website uses, among other things, a plugin to integrate YouTube videos. The provider of the video portal is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you access a page with an integrated YouTube plugin, a connection to the YouTube servers is not immediately established. Instead, a local image (“thumbnail”) is loaded to announce the video and points to YouTube as a third-party provider. Users must actively start the YouTube video. Only then will YouTube find out the IP address of your device and the page with the YouTube video that you have just accessed, even if you are not logged in to the video portal or do not have an account there.
YouTube can assign your surfing behavior directly to your personal profile if you are logged into your YouTube account. You can prevent this by logging out beforehand.
The use of YouTube only takes place with your consent by actively starting the video within the meaning of Art. 6 Para. 1 lit. a EU GDPR.
Details on how to handle user data can be found in YouTube’s privacy policy at:
https://www.google.de/intl/de/policies/privacy
Location of storage and intended use of data
We collect, process and store your personal data exclusively internally (usually on our own servers) only for the purpose for which you provided it to us and thus observe the principle of appropriate data use. Your personal data will not be passed on to third parties without your express consent, unless this is necessary to provide the service or to execute the contract. The transmission to government institutions and authorities requesting information only takes place within the scope of the statutory information obligations or if we are obliged to provide information by a court decision.
We also take internal university data protection of our employees and ourselves very seriously. We require the service companies we commission to maintain confidentiality and compliance with data protection laws regulations.
Your rights
You have the following rights with regard to the personal data concerning your person:
Right of access, Art. 15 GDPRThe right of access confers on the data subject a comprehensive right of access to the data concerning his/her person and to certain important information-related criteria,such as the purposes for which it is processed or the duration for which it will be stored. The exceptions to this right regulated in Section 34 Federal Data Protection Act apply.
Right to rectification, Art. 16 GDPRThe right of rectification includes the possibility for the data subject to have inaccurate personal data corrected.
Right to erasure, Art. 17 GDPRThe right to erasure includes the possibility for the data subject to have data deleted by the party responsible.However, this is only possible if the personal data concerning his/her person are no longer needed, are processed unlawfully or if the relevant consent has been revoked. The exceptions to this right regulated in Section 35 Federal Data Protection Act apply.
Right to restriction of processing, Art. 18 GDPRThe right to restrict the processing includes the possibility for the data subject to prevent further processing of personal data concerning his/her person for the time being.A restriction particularly occurs pending verification of the exercise of other rights of the data subject.
Right to object to collection, processing and/or use, Art. 21 GDPRThe right to object includes the possibility for data subjects to object, in a particular situation, to the further processing of their personal data, insofar as this is justified by the exercise of public functions or of public or private interests. The exceptions to this right regulated in Section 36 Federal Data Protection Act apply.
Right to data portability, Art. 20 GDPRThe right to data portability includes the possibility for the data subject to obtain the personal data concerning his/her personfrom the person responsible in a standard, machine-readable format, in order to be able to forward them to another person responsible if necessary. According to Art. 20 (3) sentence 2 GDPR, however, this right does not apply if the data processing serves the performance of public tasks.
Right to revoke consent, Art. 13 and 14 GDPR2If personal data is processed on the basis of consent, the data subject may revoke such consent at any timefor the purpose for which it was given. The lawfulness of the processing undertaken on the basis of this consent remainsunaffected until receipt of the revocation.
You can assert the aforementioned rights in writing using the contact details specified in Section 1.
In addition, according to Art. 77 GDPR, you have the right to lodge a complaint with the data protection supervisory authority, the Federal Commissioner for Data Protection and Freedom of Information.
Right of appeal
If you see any indications that we are not handling your data in accordance with data protection regulations, you can contact the data protection team at the Technical University of Berlin or the supervisory authority at any time.
Of course, you also have the right to contact the supervisory authority:
Berlin Commissioner for Data Protection and Freedom of Information
Alt–Moabit 59–61
10555 Berlin
Phone: +49 30 13889-0
Fax: +49 30 2155050
E-Mail: mailbox@datenschutz-berlin.de
Final Notes
Please note that data protection regulations and data protection practices can change continuously, so it is necessary to stay abreast of changes in legal regulations and keep informed about company practices.