3. Processing personal data and purposes of processing
a) When visiting our websites
When you visit our websites, the web servers temporarily record each instance your terminal accesses the website and stores this information in a log file.
The following data are gathered and saved until their automatic deletion:
- IP address of the computer requesting access
- date and time of access
- name and URL of the retrieved data
- relayed volume of data
- notification as to whether the retrieval was successful
- browser and operating system used
- name of the internet access provider
- websites from which our website was accessed (referrer URL)
This data is processed for the following purposes:
- to enable the use of the website (establish a connection)
- to facilitate the administration of the network infrastructure
- to take appropriate technical and organizational measures for IT system and information security taking the state of the art into account
- to guarantee user friendliness
- to optimize the websites
The legal bases of data processing as stated above are:
- processing for visits to websites in accordance with numbers 1-2, Art. 6 (1) clause 1 letter b GDPR (requirement to fulfill the contractual relationship governing the use of the website),
- processing in accordance with number 3, Art. 6 (1) clause 1 letter c GDPR (legal obligation to implement technical and organizational measures to protect data processing in accordance with Art. 32 GDPR) and Art. 6 (1) clause 1 letter f GDPR (legitimate interests for processing data for the purposes of ensuring network and information security), and
- processing in accordance with numbers 4-5, Art. 6 (1) clause 1 letter f GDPR (legitimate interests). The legitimate interests with regard to our data processing are based on our desire to make our online presence user friendly and as optimal as possible.
The data referred to above are automatically deleted from the web server after a defined 30-day period. If data are processed for a longer period of time for the purposes stated under numbers 2-5, they will be anonymized or erased as soon as storage is no longer necessary for the respective purpose.
Furthermore, we use cookies and analysis services when documenting visits to our website. For more details, please refer to items 4 and 5 of this privacy statement.
b) When registering for our newsletter
If you have given your explicit consent in accordance with Article 6 (1) clause 1 letter a GDPR, we will use your email address to send you our newsletter on a regular basis, keeping you up to date with the work being carried out at our institute and with other Fraunhofer e.V. facilities and events. We have to collect the following information to be able to send out the newsletter:
- email address,
- title,
- first name,
- surname,
- in the case of press mailing lists: also company name and/or press medium.
We need your name and title to be able to address you personally when sending our newsletter.
You are also welcome to volunteer additional personal details such as your address and telephone number. We use this data to contact you by phone or post (e.g. for press invitations or information letters).
Once registered, you will receive a registration notification by email, which you then have to confirm in order to receive the newsletter (so-called double opt-in). This serves as proof that the registration was indeed initiated by you.
You can unsubscribe from the newsletter at any time, e.g. by following the respective link at the end of each newsletter. Alternatively, you are welcome to send an email to datenschutz@izi.fraunhofer.de asking to unsubscribe, or to click the following link: https://newsletter.fraunhofer.de/-optout/20136/23/1/1/cGHPHVWZ
Your email address will be deleted as soon as you withdraw your consent to receive the newsletter.
Our newsletter is distributed by the provider mailingwork GmbH, Birkenweg 7, 09569 Oederan, Germany (“MAILINGWORK”). The email addresses of our newsletter recipients are stored by the MAILINGWORK servers in Germany on our behalf.
MAILINGWORK uses this information to send and evaluate the newsletter for us. To this end, we have concluded an order processing contract with MAILINGWORK. Under this contract, MAILINGWORK assures that it shall process the data in conformity with the General Data Protection Regulation and protect the rights of data subjects.
MAILINGWORK assures that personal data are comprehensively protected against unauthorized access. MAILINGWORK itself will not utilize the data of our newsletter recipients to contact them itself and it will not disclose the data to third parties.
c) When registering for our press mailing list
If you have given your explicit consent in accordance with Article 6 (1) clause 1 letter a GDPR, we will use your email address to send you our press newsletter on a regular basis. We have to collect the following information to be able to send out the press newsletter:
- title,
- surname, first name,
- email address.
You may also volunteer your company name and/or press medium.
We need your name and title to be able to address you personally when sending our press newsletter.
We use your company name and/or press medium to designate you as a member of the press and to send you press invitations by post, as appropriate.
After you have registered, you will receive a registration notification by email, which you then have to confirm in order to receive the press newsletter (so-called double opt-in). This serves as proof that the registration was indeed initiated by you.
You can unsubscribe from the newsletter at any time, e.g. by following the respective link at the end of each press newsletter. Alternatively, you are welcome to send an email to datenschutz@izi.fraunhofer.de asking to unsubscribe.
Your email address will be deleted as soon as you withdraw your consent to receive the newsletter.
d) When using contact forms
You have the opportunity to contact us using a form available on our website. The following information must be provided when completing the form:
- title
- first and last name, and
- email address.
We require your data in order to determine who has sent the request and to be able to answer and process it.
The data are processed at your request; data processing within the context of responding to contact requests is based on our legitimate interests pursuant to Article 6 (1) clause 1 letter f GDPR.
The personal data collected by us to enable the use of the contact form will automatically be deleted as soon as your request has been dealt with in full.