Thank you for visiting our website. Confidentiality and data protection are very important to us. We respect the privacy of visitors to our website and want you to feel safe and secure here. The website of the Leibniz Institute for Prevention Research and Epidemiology – BIPS GmbH may contain links to websites of other providers to which the following data protection declaration does not apply. In the following, we would like to inform you about how we handle your data in accordance with Article 13 of the General Data Protection Regulation [Datenschutzgrundverordnung (DSGVO)].
Responsibility for the data collection and processing as described below lies with the party named in the imprint.
Saving the IP address
We store the IP address transmitted by your web browser strictly for a specific purpose and for a period of seven days in order to be able to detect, limit and eliminate attacks on our website. After this period, we delete the IP address or anonymize it in accordance with Article 6(1)(f) DSGVO.
When you visit our website, so-called usage data is temporarily stored on our web server in the form of a protocol. This serves statistical purposes in order to improve the quality of our website. This data set consists of
- the page from which the file was requested,
- the name of the file,
- the date and time of the query,
- the amount of data transferred,
- the access status (file transferred, file not found),
- the description of the type of web browser used,
- the IP address of the requesting computer, which is shortened in a way that prevents personal identification.
The log data mentioned are stored anonymously.
Data transmission to third parties
Within the scope of processing according to Article 28 DSGVO, we transfer your data to service providers who support the operation of our website and the execution of the associated processes. Our service providers are strictly contractually bound to our instructions.
Data transfer to third countries
In some cases, we transfer personal data to a country outside the EU. We have always ensured an appropriate level of data protection.
In the case of Google Analytics (USA), an appropriate level of data protection results from the related participation in the Privacy Shield Agreement (Article 45(1) DSGVO).
You have the opportunity to contact us. The data you provide will be recorded and stored electronically. Processing of your data occurs in accordance with Article 6(1)(b) DSGVO. We use your data exclusively to handle your request. Your data will be deleted as soon as your request has been handled.
We take technical and organizational measures in order to protect your data from unwanted access as thoroughly as possible. We use an encryption method on our pages. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can verify this by the fact that the lock symbol in the status bar of your browser is closed and the address line starts with “https://”.
Your rights as a user
For the processing of your personal data, the DSGVO grants you as a website user certain rights:
1. Right to information (Article 15 DSGVO):
You have the right to obtain confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, to obtain access to the personal data and the types of information specified in Article 15 DSGVO.
2. Right to rectification and erasure (Articles 16 and 17 DSGVO):
You have the right to obtain without undue delay the rectification of incorrect personal data concerning you and, if necessary, the completion of incomplete personal data.
You also have the right to request that personal data concerning you be erased without undue delay if one of the reasons specified in Article 17 DSGVO applies, e.g., if the data are no longer necessary in relation to the purposes for which they were collected.
3. Right to restriction of processing (Article 18 DSGVO):
You have the right to request a restriction of processing if one of the conditions set out in Article 18 DSGVO applies, e.g., for the duration of a possible investigation if you have lodged an objection to processing.
4. Right to data portability (Article 20 DSGVO):
In certain cases, which are detailed in Article 20 DSGVO, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transmission of this data to a third party.
5. Right to object (Article 21 DSGVO):
If data are collected on the basis of Article 6(1)(f) (processing for the purposes of the legitimate interests), you have the right to object to the processing at any time on grounds relating to your particular situation. We will then no longer process the personal data unless there are compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or unless there are compelling legitimate grounds for the establishment, exercise or defense of legal claims.
Contact details of the data protection officer
Our company data protection officer will be happy to provide you with information or suggestions on the subject of data protection:
Dr. Uwe Schläger
datenschutz nord GmbH
Last update: June 4, 2018