/Data Protection Statement
Data Protection Statement2018-09-12T16:17:30+00:00

Data Protection Statement

Data Protection Statement

Person in charge

Center ÜBERLEBEN gGmbH
Dr. Mercedes Hillen (CEO)
Turmstr.21, 10559 Berlin

Tel.: +49 (0)30 30 39 06 0
Fax.: +49 (0)30 30 61 43 71
E-Mail:info@ueberleben.org

DATA PROTECTION

The operator of this site, Center ÜBERLEBEN gGmbH, takes the protection of your personal data very seriously. We treat your personal data as strictly confidential under statutory data protection regulations and this data protection declaration.

We would like to provide you with information about our work on our website and to which we refer you as the legal basis for this processing in order to safeguard our legitimate interests pursuant to Art. 6 (1). 1 lit. f GDPR.

Where personal data (such as your name, address or e-mail address) is collected on our website, this will always be done on a voluntary basis as far as possible. This information shall not be disclosed to third parties without your explicit consent.

Please note that data transmitted via the Internet (e.g. via e-mail communication) may be subject to security breaches. The complete protection of data against access by third parties is impossible.

SERVER LOG-FILES

When you visit our website, the provider stores data in so-called server log files, which your Internet browser automatically transmits to the provider, in particular:

  • date and time of the server query;
  • description of the type of browser used
  • operating system in use;
  • referrer URL (page from which the file was requested)
  • name of the file requested
  • amount of data transmitted
  • access status (file transferred, file not found, etc.)
  • IP address of the accessing device

This data is stored for a period of seven days. The IP address is made anonymous immediately after processing and before it is stored (only the first two octets of the IP address are stored). This data will not be combined with data from other sources. We reserve the right to retrospectively examine this log data if there is concrete evidence of illegal activity.

CONTACT

If you contact us (for example via contact form or e-mail), the user’s details will be stored for the purpose of processing the enquiry and in the event of follow-up questions. We will not share this data without your permission. We delete queries if they are no longer necessary. We continuously check necessity; furthermore, the legal retention periods apply.

SSL ENCRYPTION

This site uses SSL encryption for security reasons and for the protection of the transmission of confidential content, such as the queries you send to us as the site operator. You can recognise an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar. If SSL encryption is activated, the data which you transfer to us cannot be read by third parties.

COOKIES

When using this website, one or more cookies are stored on your computer. These are transferred to and stored on your computer by your browser. A cookie is a small file in which different kinds of data can be stored.

A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after his/her visit to a website.

Temporary cookies, or “session cookies”, is the name given to cookies that are deleted after a user leaves a website and closes his/her browser. For example, the contents of a shopping cart in an online shop, language settings or a login status can be stored in this type of cookie.

Cookies are referred to as “permanent” or “persistent” if they remain saved even after the browser has been closed. This makes it possible, for example, to save a user’s login status for his/her next visit to a website. Likewise, users’ interests can be stored in this type of cookie and used for range measurements or marketing purposes.

“Third-party cookies” are cookies that are offered by providers other than the data controller who operates the website (otherwise, if only the data controller’s cookies are used, they are referred to as “first-party cookies”).The website can also be used without cookies. Users can disable the storage of cookies in their browser, limit storage to specific websites or adjust their browser so that it notifies them before a cookie is saved. Most browsers are configured to automatically accept cookies. In this case, the functions and user-friendliness of the offer may be limited.

USE OF GOOGLE MAPS

This website uses the Google Maps service to display geographical information. This service is provided by Google LLC,1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When using Google Maps, the user’s IP address is transmitted to Google servers for technical reasons. The processed data may additionally include user location, which, however, is not collected without users’ consent (generally through the settings of their mobile devices). Furthermore, data on the use of map functions can also be collected, processed and used by Google. The data may be processed in the USA. Google has become subject to the Privacy Shield agreement, thereby offering a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI). For more information on data processing by Google, please see the Google Privacy Policy at https://policies.google.com/privacyYou can customise your personal privacy settings in the Google settings at https://myaccount.google.com/intro.

INTEGRATION OF TWITTER

The functions and contents of the Twitter service, offered by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated into our website. This may include, for example, content such as images, videos or texts and buttons which users can use to express their appreciation of content or subscribe to the authors of the content or our posts. If users are members of the Twitter platform, Twitter can assign the retrieval of the above content and functions to the users’ profiles there. The data may be processed in the USA. Twitter is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). For further information on data protection on Twitter, see https://twitter.com/de/privacy. Opt-out: https://twitter.com/personalization.

SUBSCRIPTION TO PRESS RELEASE 

You have the possibility to subscribe to our press releases on our website. In the press releases, which appear at irregular intervals, we inform you about the work of the Center ÜBERLEBEN.

If you wish to subscribe to press releases, we need you to provide a name and a valid e-mail address. Optionally, you can also name the medium for which you work. This simplifies our administration.

In order to verify that the person registering is actually the owner of the e-mail address provided, we use the “double opt-in” procedure. Registration only becomes effective when you click on the activation link contained in the confirmation e-mail. When you register for press releases, we save your IP address and date of registration. This serves solely as proof in the event that a third party abuses an e-mail address and registers without the knowledge of the person entitled to receive the press release.

We use the data that you transmit to us exclusively for sending the press release.

We use statistical analysis tools to measure your interest in our press releases. If you open the press release and the load external content function is activated in your e-mail programme, we record that the press release has been opened. We use this information solely to improve the content of our press releases.

The press release can also be used without the recording of statistics. Press release recipients can deactivate the reloading of external content in their e-mail programme. The reloading of external content is usually deactivated by default. If the reloading of external content is deactivated, the press release may only be displayed to a limited extent and thus user-friendliness may be restricted.

We use rapidmail to send the press releases. Your data will therefore be transmitted to rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg im Breisgau, Germany. It is forbidden for rapidmail GmbH to use your data for other purposes than for sending the mailings/press releases. rapidmail GmbH is not permitted to pass on or sell your data. rapidmail is a certified newsletter/mailing software provider from Germany, and was carefully selected according to the requirements of GDPR and the BDSG. You can view rapidmail’s privacy policy at https://www.rapidmail.de/datenschutz.

You may withdraw your consent to your data and e-mail address being stored, as well as to these being used to send the press release, at any time. Withdrawal can be made via a link in the newsletter itself or by sending a message to pr@ueberleben.org.

SUBSCRIPTION TO E-MAIL NEWSLETTER

In our newsletter we inform you about therapy, integration, human rights claims of survivors of torture and war violence, refugees and migrants*, as well as about the latest developments at the Center ÜBERLEBEN.

To register, we need you to provide a valid e-mail address. Optionally, you can also enter your first and last name, which simplifies administration for us. In order to verify that the person registering is actually the owner of the e-mail address provided, we use the “double opt-in” procedure. Registration only becomes effective when you click on the activation link contained in the confirmation e-mail. When you register for the newsletter, we save your IP address and date of registration. This serves solely as proof in the event that a third party abuses an e-mail address and registers without the knowledge of the person entitled to receive the newsletter.

We use the data that you transmit to us exclusively for sending the newsletter.

We use statistical analysis tools to measure your interest in our newsletter. If you open the newsletter and the load external content function is activated in your e-mail programme, we record that the newsletter has been opened. We use this information solely to improve the content of our newsletters.

The newsletter can also be used without the recording of statistics. Newsletter recipients can deactivate the reloading of external content in their e-mail programme. The reloading of external content is usually deactivated by default. If the reloading of external content is deactivated, the newsletter may only be displayed to a limited extent and thus user-friendliness may be restricted.

We use rapidmail to send the newsletter. Your data will therefore be transmitted to rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg im Breisgau, Germany. It is forbidden for rapidmail GmbH to use your data for other purposes than for sending the newsletter. rapidmail GmbH is not permitted to pass on or sell your data. rapidmail is a certified newsletter software provider from Germany, and was carefully selected according to the requirements of GDPR and the BDSG. You can view rapidmail’s privacy policy at https://www.rapidmail.de/datenschutz.

You may withdraw your consent to your data and e-mail address being stored, as well as to these being used to send the newsletter, at any time. Withdrawal can be made via a link in the newsletter itself or by sending a message to pr@ueberleben.org.

DONATE ONLINE

On our website we offer users the opportunity to make donations online. If a user selects this option, the data entered in the corresponding form will be transmitted to us and stored. The form is provided by Bank für Sozialwirtschaft AG (“BFS”). The data entered is therefore forwarded directly to the BFS and to the technical service providers used by the BFS to provide the form in order to execute the donation order using an encrypted SSL connection. This data is not be transferred to third parties. The following data is gathered in the form:

  • Full name (surname, first name) and title (title and company name optional)
  • Address (street, house number, town, postcode, country)
  • E-mail address
  • Bank data (IBAN)
  • Donation data (recipient, amount, donation/purpose, donation receipt desired)
  • Additionally for donations via credit card: card type, card number, CVV/CVC check number, validity period of credit card

If a donation receipt is requested, we process the data in order to issue and send a corresponding donation receipt.

The collected data is required for the execution and realisation of the donation order. The user’s e-mail address is required to confirm receipt of the donation order. The data is not used for any other purpose. The legal basis for processing is your consent under Art. 6 para. 1 b GDPR.

The IP address of the user is also stored at the time the form is sent. We use the IP address to prevent misuse of the donation form. The IP address is used for fraud prevention and to prevent unauthorised transactions to the detriment of third parties. The legal basis for processing the IP address is Art. 6 para. 1 lit. f GDPR.

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. With the bank data, this is the case immediately after the donation amount has been collected. Once a donation receipt has been created and sent (if required), the address data is stored in the same way as all other data entered due to fiscal storage obligations, but is blocked for any other use. The additional IP address collected during the sending process is deleted after a period of no more than seven days.

The user has the option to object to the processing of data at any time. Please note, however, that in the event of an objection, the donation order can no longer be executed as desired.

YOUR RIGHTS AS A USER

When processing your personal data, the GDPR grants you certain rights as a website user:

Right to information (Art. 15 GDPR):

You have the right to request confirmation as to whether your personal data is processed; if this is the case, you have a right to access this personal data and the information specified in Art. 15 GDPR.

Right to correction and deletion (Art. 16 and 17 GDPR):

You have the right to immediately request the correction of incorrect personal data and, if necessary, the completion of incomplete personal data.

You also have the right to request that your personal data be deleted immediately if one of the reasons listed in Article 17 GDPR applies in detail, e.g. if the data is no longer required for the relevant purposes.

Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g., if you have lodged an objection against the processing pursuant to Art. 21 GDPR, for the duration of any inquiry as to whether our legitimate interests outweigh yours.

Right to data portability (Art. 20 GDPR)

In certain cases, which are detailed in Article 20 GDPR, you have the right to receive your personal data in a structured, common and machine-readable format or to request the transmission of this data to a third party.

Right of objection (Art. 21 GDPR):

If data is collected on the basis of Art. 6 para. 1 lit. f (data processing for the protection of legitimate interests), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling reasons for processing, which are in need of protection and which outweigh the interests, rights and freedoms of the data subject, or if  the processing serves to assert, exercise or defend legal claims.

QUESTIONS AND COMMENTS

If you have any questions, suggestions or comments on the subject of data protection, please contact our data protection officer:

Center ÜBERLEBEN gGmbH

Keyword „Data protection request
Attn: Richard Grünberg
Turmstraße 21, 10559 Berlin

Tel.: +49 (0)30 30 39 06 0
Fax: +49 (0)30 30 61 43 71
E-Mail:datenschutz@ueberleben.org

RIGHT TO LODGE A COMPLAINT WITH A SUPERVISORY AUTHORITY

Pursuant to and in accordance with Article 77 of the GDPR, you have the right of appeal to a supervisory authority if you believe that the processing of data concerning you violates data protection regulations. The right of appeal may be exercised in particular before a supervisory authority in the Member State in which you are staying or working, or in which the suspected violation took place.

The data protection authority responsible for us is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Maja Smoltczyk
Friedrichstr. 219, 10969 Berlin
Telefon: +49 (0)30 13 88 90
E-Mail: mailbox@datenschutz-berlin.de

OBJECTION TO MARKETING E-MAILS

We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator expressly reserves the right to take legal action in the event that unsolicited marketing material, such as spam e-mail, is received.

CHANGES TO THIS DATA PROTECTION DECLARATION 

We reserve the right to adapt the contents of this declaration if necessary. Please always take note of the most current version of our privacy policy.

Version: June 2018.