Privacy policy

Privacy policy for www.cais.nrw

The English version of the privacy policy is provided as a courtesy. Only the German version of the policy is valid.

1. Name and contact details of the data controller and the company data protection officer

This data privacy information applies to data processing by:

Controller: Center for Advanced Internet Studies (CAIS) Ltd (hereafter: CAIS)
Universitätsstraße 104
44799 Bochum
Germany
E-mail: info@cais.nrw
Telephone: +49 234 544 96 285
Represented by Prof. Dr. Michael Baurmann and Tim Pfenner (Managing Director).

The data protection officer at CAIS can be contacted at the following address:

Patrick Grihn
dsb@cais.nrw
DSB Ruhr
nextindex GmbH & Co. KG
Grabenstr. 12
44787 Bochum

If you have any questions regarding processing, security, or a request for information, you can contact Patrick Grihn directly, and your questions will be treated in confidence.

2. Collection and storage of personal data, as well as means and purpose of their use

a) When visiting the website

When you visit our website www.cais.nrw, the browser used on your end device automatically sends information to our website’s server. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatically deleted:

  • IP address of the computer making the request
  • date and time of access
  • name and URL of the retrieved file
  • website from which the access takes place (referrer URL)
  • the browser used and, where applicable, the operating system of your computer and the name of your access provider

We process these data for the following purposes:

  • to ensure a smooth connection to the website
  • to ensure that our website can be used comfortably
  • to assess system security and stability
  • for further administrative purposes

The legal basis for data processing is Art. 6 Para. 1 sentence 1 point f GDPR. Our legitimate interests follow from the purposes of data collection listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.

When you visit our website, we also make use of cookies and analytics services.

More detailed explanations are available under points 4 and 5 of this privacy policy.

b) When registering for our newsletter

If you would like to receive the newsletter offered on the website, you will need to provide us with an e-mail address and information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter.

In order to ensure that the newsletter is sent by mutual agreement, we use the so-called double opt-in procedure, which allows the potential recipient to be added to a distribution list. The user then receives a confirmation e-mail to confirm registration in a legally binding manner. The address is actively added to the distribution list only once confirmation has been received.

We use these data only for the purposes of sending the requested information and information on our services.

As newsletter software, we use Newsletter2Go, and your data are transmitted to Newsletter2Go Ltd. Newsletter2Go is not allowed to sell your data or use them for any other purpose than sending newsletters.

Newsletter2Go is a certified provider in Germany that was selected according to the requirements of the General Data Protection Regulation and the Federal Data Protection Act. Further information is available at: https://www.newsletter2go.de/informationen newsletter-empfäenger/.

You can withdraw your consent to the storage of your data, your e-mail address, and its use for sending the newsletter at any time – for example, by using the “unsubscribe” link at the end of each newsletter. Alternatively, you can send your request to cancel your subscription at any time by e-mail to dsb@cais.nrw.

The privacy measures are always subject to technical innovations. For this reason, we ask you to inform yourself regularly about such measures by consulting our privacy policy.

3. Disclosure of data

Your personal data is not transmitted to third parties for purposes other than those listed below. We only disclose your personal data to third parties where:

  • you have given your express consent to do so in accordance with Art. 6 Para. 1 sentence 1 point a GDPR
  • in accordance with Art. 6 Para. 1 sentence 1 point f GDPR, disclosure is necessary for the assertion, exercise or defense of legal claims, and there are no grounds to assume that you have an overriding interest worthy of protection in not disclosing your data
  • in the event that there is a legal obligation to disclose the data in accordance with Art. 6 Para. 1 sentence 1 point c GDPR
  • this is legally permissible and required for the performance of a contractual relationship with you in accordance with Art. 6 Para. 1 sentence 1 point b GDPR
4. Cookies

We use cookies on our site. These are small files that are automatically created by your browser and stored on your end device (e.g. laptop, tablet, smartphone) when you visit our site. Cookies do not cause any damage to your end device, and do not contain viruses, trojans, or other malware.

Information is stored in the cookie that is related to the specific end device used. This does not mean, however, that we obtain direct knowledge of your identity.

The use of cookies helps us to make what we offer you more appropriate to your needs. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These cookies are automatically deleted when you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness; these cookies are stored on your end device for a certain defined period of time. If you visit our site again in order to use our services, we will automatically recognize that you have already been with us, and what entries and settings you have made so that you do not have to enter them again.

We also use cookies to record the use of our website statistically, and to evaluate it for the purpose of optimizing what we can offer you (see point 5). These cookies enable us to recognize automatically that you have already been on our site when you visit it again, and they are automatically deleted after a defined period of time.

The data processed by cookies are required for the purposes mentioned above to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Par. 1 sentence 1 point f GDPR. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. Completely deactivating cookies may mean, though, that you cannot use all the functions of our website. You can also activate automatic deletion of cookies when you close your browser or delete cookies manually at any time. The exact procedure can be found in the user instructions of your browser.

When you visit our website for the first time, you will automatically be informed about the use of cookies.

5. Analytics tools

a) Tracking Tools

The tracking measures that we use are listed below and are based on Art. 6 Para. 1 sentence 1 point f GDPR. We use these measures to ensure that our website is designed according to needs and undergoes continuous optimization. We also use the tracking measures to gauge the use of our website statistically and to evaluate it for the purpose of optimizing what we offer you. These interests can be deemed legitimate in line with the regulation mentioned above.

The purpose of data processing and category of data in each case can be found in the relevant tracking tools.

b) Google Analytics

We use on our website the service Google Analytics of the provider Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. This is a company registered and operated under Irish law (registration number: 368047).

Google services are only used once you have given your informed consent on the basis of Art. 6. Para. 1 point a GDPR.

Google uses cookies in the context of its services and functions; these cookies can be stored on your end device. It is possible that personal data are transferred to the USA; in which case, a sufficient level of data privacy cannot be guaranteed, and authorities in the USA in particular might access the data. Transference takes place on the basis of Art. 49 Para. 1 point a GDPR (consent).

You can object to the processing of your data by Google by withdrawing your consent in the cookie setting.

For more information on the purpose and scope of data collection and processing, please see the Google Privacy Policy (https://policies.google.com/privacy?hl=de&gl=de).

6. Twitter

We are represented on the Twitter platform, which we integrate directly. When you click on the Twitter icons, Twitter’s terms of use and data privacy apply.
At no time is there any obligation to register with Twitter to receive information or to contact us. Instead, there are various ways to contact us (phone, mail).

7. YouTube

We have integrated YouTube videos of the provider Google into what we provide online; these are stored on https://www.YouTube.com and can be played directly from our website. These are all integrated in the “extended data privacy mode”, meaning that no data about you as a user are transferred to YouTube if you do not play the videos. Only when you play the videos will data be transferred. We have no influence on this data transfer. Use of YouTube is on the basis of Art. 6 Para. 1 point a GDPR (consent) and Art. 6 Para. 1 point f GDPR (legitimate interests). If you play YouTube videos, then it is possible that personal data may be transferred to the USA; in which case, a sufficient level of data privacy cannot be guaranteed, and authorities in the USA in particular might access the data. Transference takes place on the basis of Art. 49 Para. 1 point a GDPR (consent).

8. E-mail contact

You can contact us via the e-mail addresses provided. In this case, we store the user’s personal data transmitted with the e-mail.

We process the respective personal data for the purpose of processing the conversation (contact, answer) on the basis of legitimate interests in accordance with Art. 6. Para. 1 point f GDPR.

9. Rights of the data subject

You have the right

  • in accordance with Art. 15 GDPR to obtain information about your personal data that we process, and in particular the purposes of the processing, the categories of personal data concerned, the categories of recipient to whom your data have been or will be disclosed, the envisaged storage period, the existence of the right to rectification or erasure of personal data, or restriction of processing, or the right to object to such processing, the existence of the right to lodge a complaint, the source of your data (where not collected by us), and the existence of automated decision-making, including profiling and, where applicable, meaningful information on the decision-making
  • in accordance with Art. 16 GDPR, to obtain without undue delay the rectification of inaccurate personal data and the completion of incomplete personal data that we store
  • in accordance with Art. 17 GDPR, to obtain the erasure of your personal data that we store, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defense of legal claims
  • in accordance with Art. 18 GDPR, to obtain restriction of the processing of your personal data where you contest the accuracy of the data, the processing is unlawful and you oppose the erasure of the data, we no longer need the data, but you require them for the establishment, exercise or defense of legal claims, or you have objected to the processing in accordance with Art. 21 GDPR
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided us with in a structured, commonly used and machine-readable format, or to request that they be transmitted to another controller
  • in accordance with Art. 7, Para. 3 GDPR, to withdraw your consent at any time, with the effect that we may no longer continue the data processing based on this consent
  • in accordance with Art. 77 GDPR, to lodge a complaint with a supervisory authority, which as a rule is located where you have your habitual residence or place of work, or where our office is
10. Right to object

If your personal data are processed on the basis of legitimate interests in accordance with Art. 6 Para. 1 sentence 1 point f GDPR, you have the right in accordance with Art. 21 GDPR to object to the processing of your personal data, provided that there are grounds for doing so relating to your particular situation or if the objection is directed against direct marketing purposes. In the latter case, you have a general right to object, which we will implement without your having to specify a particular situation.

If you wish to make use of your right to withdraw or object, it is sufficient to send an email to dsb@cais.nrw.

11. Data security

We also make use of suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. We continuously improve our security measures in line with technological developments.

12. Topicality and amendment of this privacy policy

This privacy policy is currently valid (status: October 2020). Due to the further development of our website and of what we offer, or due to changed legal or administrative requirements, it may become necessary to change this privacy policy. You can access and print out the current policy at any time on the website at www.cais.nrw/datenschutz.