We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).
The controller responsible for the described data collection and processing is OFFIS e. V., Escherweg 2, 26121 Oldenburg/Germany.
When you visit our website, the data collected from the use of the website is temporarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:
The listed usage data is stored anonymously. The legal basis for the processing of this personal data is provided for in Art. 6 para. 1 lit. f GDPR.
We do not transfer your personal data to third parties.
To avoid unauthorized access to your data, we have implemented technical and organizational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology. You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with "https://".
For data protection reasons, we do not integrate any social media plugins directly into our website. Therefore, when you access our pages, no data is transferred to social media services such as Facebook, Twitter, XING or Google+. A profiling by third parties is thus excluded.
However, you still have the option of sharing selected pages by clicking on the Facebook, Twitter, XING or Google+ buttons, and you can see how often a page has been shared in the past when you view the post. We use the so-called Shariff solution developed by the German c't Magazine to offer a data protection compliant alternative to the classic social plug-ins.
What's behind it? The Shariff solution means that as a first step, all the data and functions required to display Facebook, Twitter, XING or Google+ buttons are provided by our web server. Only when you decide to share a post via the corresponding button and click on it, does a data transfer to the operator of the respective social media service takes place.
As a website user, the GDPR grants you certain rights when processing your personal data.
1. Right of access (Art. 15 GDPR):
You have the right to obtain confirmation
as to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR.
2. Right to rectification and erasure (Art. 16 and 17 GDPR):
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data
You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.
3. Right to restriction of processing (Art. 18 GDPR):
If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination.
4. Right to data portability (Art. 20 GDPR):
In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.
5. Right to object (Art. 21 GDPR):
If the data is processed pursuant to Art. 6 para. 1 lit. f GDPR (data processing for the
purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.
6. Right to lodge a complaint with a supervisory authority:
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringing data protection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.