Therefore, compliance with the legal requirements for data protection has a particularly high priority for us.
On principle, it is possible to use the SKZ websites without supplying any personal information. However, if a data subject wishes to make use of specific services of our company via our website, processing of personal data may become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, the data subject generally has to consent to us processing their data.
The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation and the applicable national data protection regulations. In this privacy notice, our company would like to inform the public about the type, scope and purpose of the personal data that we collect, use and process. This privacy notice will also inform data subjects of their rights.
The SKZ as the data controller has implemented numerous technical and organisational measures in order to ensure that all personal data processed via this website is protected as comprehensively as possible. Nevertheless, internet-based transferral of data is in principle subject to security vulnerabilities, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.
1.1 Personal data
Personal data means any information relating to an identified or identifiable natural person (hereinafter referred to as the "data subject"). Identifiable refers to a person who can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
1.2 Data subject
The data subject is any identified or identifiable person, whose personal data is processed by the data controller.
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
1.4 Restriction of processing
Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future.
1.5 Controller or data controller
Controller or data controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of processing personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Recipient means a natural or legal person, public authority, agency or any other body to which the personal data are disclosed, whether they constitute a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.
1.8 Third party
Third party means any natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Consent of the data subject means any freely given, specific, informed and unambiguous indication of the wishes of the data subject by which he / she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him / her.
2 Name and Address of the data controller
The responsible body within the meaning of the General Data Protection Regulation, other data protection laws in the Member States of the European Union and other provisions of a data protection character is:
|FSKZ e. V. |
Phone: +49 931 4104-0
|Established: 20.01.1961 |
Association Register No.: VR 375
Value Added Tax Identification Number as per Section 27 (a)
VAT Identification Number: DE134183863
CEO: Prof. Dr. Martin Bastian
3 Name and address of the data protection officer
The controller's data protection officer is:
WUQM Consulting GmbH
Bürgerbräu 02 Sudhaus
Frankfurter Straße 87 | 97082 Würzburg
Tel. +49 931 780 970-19
firstname.lastname@example.org | www.wuqm.de
Should you have any questions regarding data protection laws or your data subject rights, you can directly contact our data protection officer at any time.
4 Regulatory body
On the SKZ website we use "cookies," which are small text files that are stored on your hard drive to identify you for the duration of your visit. Cookies do not harm your computer and do not contain any viruses.
The use of these cookies is intended to make our services more individual, user-friendly, effective and safe. If you do not wish this, you can set your browser to delete cookies from your hard drive, to block all cookies or to receive a warning before any cookie is stored. Under certain circumstances, deleting the cookies may mean that you cannot use all the offered services without restrictions.
6 Collection of general data and information
The SKZ website collects a series of general data and information every time a person or an automated system accesses the website. This general data and information is stored in the server's log files.
In doing so, the following data conveyed by your browser to us are temporarily stored in a log file:
The SKZ will not draw any conclusions about the data subject from this general data and information. This information is necessary
This anonymously collected data and information is therefore evaluated by SKZ statistically with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data processed by us. The anonymous data of the server log files is stored separately from all personal data provided by a data subject.
7 Links to websites of other providers
Our website contains links to other websites - so-called external links. The contents of the targets of these external links are beyond our influence; therefore, we do not take any responsibility for such contents. The responsibility rests with the respective operators of external sites. At the time of creating the external links, no violations were found. Permanent monitoring of external content for legal violations without concrete evidence cannot be reasonably expected from us. Should we become aware of any violations, we will remove the external links immediately.
8 Collection and processing of personal data
Personal data is only collected if you provide it on your own accord, for example, when using the following services:
8.1 Membership application / becoming a member of the network
The following data are collected in our membership form for the purpose of membership management and for building an information network:
Company name, company address, annual turnover for the determination of contribution rates, company e-mail address.
Contact person within the company, including first name, last name, phone number and e-mail address.
Periodically, you will be informed about news, research results, seminars and events.
Furthermore, newsletters are distributed on a regular basis.
8.2 Registration for conferences and courses
We offer regular meetings and courses of various kinds on our website, for which you can register online. When registering for a meeting or a course, some mandatory information has to be entered.
These include company name, company address and company e-mail address.
Subscriber information is collected on an individual basis, including the following data:
First name, last name, phone number, department, and email address.
When registering, you will receive information on your booked meeting or course.
In addition, your data will be used to create a contract and for invoicing your participation; participants are also supplied with event-related information before, during and after the event.
In addition, we use your personal data within the applicable legal limits to inform you about offers of the SKZ, which are similar to the services you already use.
In addition, we will save your contact information for communications via e-mail or print mailings.
As part of the cooperation with various training institutes, lecturers, mailing services, etc it may be necessary to disclose your data to third parties (see: “Transfer of Personal Data to Third Parties”)
8.3 Email enquiries
When sending enquiries by e-mail to us, your company name, company address, company email address, company phone/fax will be collected as well as data of personal contact persons including first name, last name, email address, phone number and your concerns.
8.4 Newsletters and flyers
When subscribing to the SKZ Newsletter, your company name, company address, company email address, company phone/fax will be collected as well as data of personal contact persons including first name, last name, email address, phone number and your concerns.
When registering, you will receive information on the latest meetings, seminars and events at regular intervals.
You will receive a periodical newsletter with information about new features, materials and research results.
As part of the information distribution of newsletters and flyers it may be necessary to disclose your data to third parties (see “Transfer of Personal Data to Third Parties").
You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you may send your unsubscription request at any time to email@example.com
The data controller collects and processes applicants' personal data for the purpose of handling the application procedure. Processing may also be carried out electronically. This is particularly the case if an applicant sends corresponding application documents to the controller by electronic means, for example by email or via a web form on the website.
9 Transfer of Personal Data to Third Parties
Except in the above cases (registration to conferences*, courses*, newsletters** and flyers**) we will only give your personal information to third parties if:
*If you have signed up for a meeting or a course, it may be necessary as part of the contract that your personal data must be sent to an external organizer.
**For sending newsletters, flyers and information material, cooperation has been set up with Seubert Lettershop.
10 Transfer of Personal Data to Third Countries
If we process data in a third-party country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of the use of third-party services or disclosure or transfer of data to third parties, this only takes place if it occurs for the fulfilment of our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation, or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or leave the data in a third country only if the particular requirements of Art. 44 ff. GDPR are met. This means, for example, processing is carried out on the basis of special guarantees such as a data protection level officially recognised as being equal to that within the EU, or compliance with officially recognised special contractual obligations (called "standard contractual clauses").
11 How We Use Your Personal Data and Information
The personal data collected during your visit of the website will only be stored and processed by SKZ for the above-mentioned purposes.
12 User rights pursuant to the GDPR
12.1 Right of information
Pursuant to Art. 15 of the GDPR you may request information on the personal data processed by us. When requesting this information, you should specify your concerns to help us assemble the required data. Please note that your right to obtain information under certain circumstances as required by law (in particular Section 34 BDSG and Section 10 of the BayDSG) may be limited.
12.2 Right of rectification
If the stored information is not or no longer valid, you can request rectification pursuant to Art. 16 of the GDPR. If your data is incomplete, you can request completion.
12.3 Right to erasure
You may request deletion of your personal data under the terms of Art. 17 of the GDPR. Your right to erasure depends on, among other things, whether the data concerning you are still required to comply with our statutory duties.
12.4 Right to restriction of processing
You have the right to demand restriction of the processing of the data concerning you under the provisions of Art. 18 of the GDPR.
12.5 Right to data portability
Each data subject whose personal data is processed shall have the right granted by the European issuer of directives and regulations to receive personal data relating to him/her, and provided by the data subject to a controller, in a structured, current and machine-readable format.
12.7 Right of appeal
If you believe that we have ignored data protection laws when processing your data, you can file a complaint with the competent authority.
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
13 Right of appeal according to Art. 21 of the GDPR
You have the right, for reasons arising from your particular situation, to enter an objection at any time against personal data concerning you being processed on the basis of Article 6.1 (e) of the GDPR (data processing in the public interest) or Article 6.1 (f) of the GDPR (data processing on the basis of a balancing of interests).
If you lodge your objection, the data controller will no longer process the personal data that concerns you, unless we can prove compelling legitimate reasons for the processing, which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise, or defend legal claims.
If your objection concerns the processing of data for the purpose of direct marketing, we will stop processing immediately. In this case, the specification of a particular situation is not necessary.
If you wish to exercise your right of objection, simply send an e-mail to firstname.lastname@example.org
14 Data protection provisions concerning the application and use of Google Analytics (with anonymisation function)
The data controller has integrated the Google Analytics component (with anonymisation function) on this website. Google Analytics is a web analytics service. Web analysis is surveying, collecting and analysing data about the behaviour of visitors to websites. A web analysis service collects, among other things, data on the website from which a data subject has accessed a website ("referrer"), which sub-pages of the website have been accessed or how often and for how long a sub-page has been viewed. A web analysis is mainly used to optimise a website and for cost-benefit analysis of Internet advertising.
Operating company of Google Analytics component is the Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.
The data controller uses the suffix "gat.anonymizeIp" for web analysis via Google Analytics. Using this addition, Google shortens and anonymises the IP address of the data subject when accessing our Internet pages from a Member State of the European Union or from another signatory state to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Among other things, Google uses the data and information obtained to evaluate the use of our website, to compile online reports showing us the activities on our websites, and to provide other services related to the use of our website.
Google Analytics places a cookie on the information technology system of the person in question. Cookies have already been explained above. The placement of this cookie enables Google to analyse the use of our website. Each time one of the individual pages of this website is accessed, which is operated by the data controller and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which is used by Google, among other things, to trace the origin of visitors and clicks and subsequently enable commission settlements.
Cookies are used to store personal information, such as the time of access, the location from which access came and the frequency of visits to our website by the data subject. Whenever you visit our website, this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may disclose such personal data collected through the technical process to third parties.
The data subject can prevent cookies being set by our website at any time, as already described above, by using an appropriate setting of the Internet browser used and therefore permanently object to cookies being set. Setting the Internet browser used in this way would also prevent Google from placing a cookie on the information technology system of the data subject. In addition, a cookie already placed by Google Analytics can be deleted at any time via the Internet browser or other software programmes.
Furthermore, it is possible for the data subject to object to and prevent the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on via the link tools.google.com/dlpage/gaoptout
15 Use of Google Maps
16 Data protection provisions on the use and application of Facebook
The controller has integrated components of the company Facebook on this website. Facebook is a social network.
A social network is a social meeting place operated on the Internet, an online community that generally enables users to communicate and interact with each other in virtual space. A social network can serve as a platform for exchanging opinions and experiences or enables the internet community to provide personal or company-related information. Among other things, Facebook allows users of the social network to create private profiles, upload photos and network via friend requests.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside the USA or Canada, the controller of personal data is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
By each call of one of the individual pages of this website, which is operated by the data controller and on which a Facebook component (Facebook plug-in) has been integrated, the internet browser on the information technology system of the data subject is automatically caused by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook.
A complete overview of all Facebook plug-ins can be found at developers.facebook.com/docs/plugins/. Within the scope of this technical procedure, Facebook receives information about which specific sub-page of our website is visited by the data subject.
If the data subject is logged in to Facebook at the same time, Facebook recognises which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the data subject. If the data subject activates one of the Facebook buttons integrated on our website, for example the "Like" button, or if the data subject posts a comment, Facebook assigns this information to the personal Facebook user account of the data subject and stores this personal data.
Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is logged into Facebook at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook, he or she can prevent the transmission by logging out of his or her Facebook account before accessing our website.
The data policy published by Facebook, which can be accessed at de-de.facebook.com/about/privacy/, provides information on the collection, processing and use of personal data by Facebook. It also explains which setting options Facebook offers to protect the privacy of the data subject. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.
17 Data protection provisions on the use and application of LinkedIn
The controller has integrated components of the LinkedIn Corporation on this website. LinkedIn is an Internet-based social network that allows users to connect with existing business contacts and to make new business contacts. Over 400 million registered people use LinkedIn in more than 200 countries. This makes LinkedIn currently the largest platform for business contacts and one of the most visited websites in the world.
With each individual call-up of our website that is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the person concerned to download a corresponding representation of the component from LinkedIn. Further information on LinkedIn plug-ins can be found at developer.linkedin.com/plugins. As part of this technical procedure, LinkedIn receives information about which specific sub-page of our website is visited by the data subject.
If the data subject is logged in to LinkedIn at the same time, LinkedIn recognises which specific sub-page of our website the data subject is visiting with each call-up of our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the data subject. If the data subject activates a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.
LinkedIn always receives information via the LinkedIn component that the data subject has visited our website if the data subject is simultaneously logged into LinkedIn at the time of calling up our website; this takes place regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, he or she can prevent the transmission by logging out of his or her LinkedIn account before accessing our website.
18 Data protection provisions on the use and application of Xing
The controller has integrated components of Xing on this website. Xing is an Internet-based social network that allows users to connect with existing business contacts and to make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.
The operating company of Xing is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
Each time one of the individual pages of this website operated by the controller is called up and on which a Xing component (Xing plug-in) has been integrated, the internet browser on the information technology system of the data subject is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on the Xing plug-ins can be found at dev.xing.com/plugins. Within the scope of this technical procedure, Xing receives information about which specific sub-page of our website is visited by the data subject.
If the data subject is logged in to Xing at the same time, Xing recognises which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Xing component and assigned by Xing to the respective Xing account of the data subject. If the data subject activates one of the Xing buttons integrated on our website, for example the "Share" button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data.
Xing always receives information via the Xing component that the data subject has visited our website if the data subject is simultaneously logged into Xing at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Xing component or not. If the data subject does not want this information to be transmitted to Xing, he or she can prevent the transmission by logging out of his or her Xing account before accessing our website.
The data protection provisions published by Xing, which can be accessed at www.xing.com/privacy, provide information on the collection, processing and use of personal data by Xing. Furthermore, Xing has published data protection information for the XING Share button at www.xing.com/app/share;
19 Duration for which the personal data will be stored
The criterion for the duration for which the personal data will be stored is the statutory retention period in question. After the deadline, the corresponding data will be routinely deleted if it is no longer required to fulfil the contract or for initiating a contract.
20 Legal or contractual provisions to provide the personal data
We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). In some cases, it may be necessary for a contract to be concluded if a data subject provides us with personal data which must subsequently be processed by us. For example, the person concerned is obliged to provide us with personal data if our company enters into a contract with him/her. Failure to provide personal data would mean that the contract with the data subject could not be concluded. Prior to the provision of personal data by the data subject, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of personal data is required by law or contractually or is required for the conclusion of the contract, whether there is an obligation to provide the personal data, and about what consequences failure to provide the personal data would have.
21 Further information and contacts
Your trust is important to us. Therefore, we invite you, if you have questions or suggestions regarding "Data Protection at SKZ", to send an e-mail or mail to our data protection officer:
Frankfurter Straße 15-17