Data Protection Policy

Statement of Data Protection Conditions for the Internet

When using this website, your personal data will be processed by us as the data controller and stored for as long as is necessary for the fulfilment of the purposes specified and statutory requirements. Below, we will provide information about which data this involves, how it will be processed and to which rights you are entitled to in this regard.

Personal data, as defined by Article 4(1) General Data Protection Regulation (GDPR) includes any information relating to an identified or identifiable natural person.

1. Name and contact data of the data controller and of the corporate Data Protection Officer

2. Processing personal data and purposes of processing

3. Cookies

4. Web analysis and tracking

5. Social Plug-ins

6. You tube

7. Right of the data subject

8. Information on your right to object pursuant to Article 21 GDPR

9. Data security

10. Timeliness and Amendments to this Data Protection Information

11. Severability clause

 

 

1. Name and contact data of the data controller and of the corporate Data Protection Officer

 

This data protection information is applicable to data processing on the www.emb.fraunhofer.de website by the controller:

Fraunhofer-Gesellschaft
zur Förderung der angewandten Forschung e.V.
Hansastraße 27 c
80686 München

for the Fraunhofer-EMB (hereinafter „EMB“)
Mönkhofer Weg 239 a
23562 Lübeck

Email:               info@emb.fraunhofer.de
Telephone:        0451-384448-11
Fax:                  0451-384448-12

  •  

2. Processing personal data and purposes of processing

a) When visiting the website

When you visit our website, the web server of our website temporarily stores every access of your end device in a log file. The following data is recorded and stored until it is automatically deleted:

· IP address of the requested computer

· Date and time of access

· Name and URL of the data accessed

· Amount of data transferred

· Message whether the call was successful

· Browser and operating system used

· Name of the internet access provider

Website from which access is made (referrer URL)

This data is processed for the following purposes

1. Enabling the use of the website (establishing a connection)

2. Administration of the network infrastructure

3. Appropriate technical-organizational measures for IT system and information security taking into account the state of the art

4. Guarantee user-friendliness of use

5. Optimization of the website

Legal bases for the above processing are for processing for visiting the website according to numbers 1-2 Art. 6 Para. 1 S.1 lit. b (necessity for the fulfillment of the website usage contract),

· For the processing according to number 3, art. 6 para. 1 sentence 1 lit. c GDPR (legal obligation to implement technical and organizational measures to ensure data processing in accordance with Art. 32 GDPR) and Art. 6 Para. 1 S.1 lit. f GDPR (legitimate interests in data processing for network and information security) and for

· The processing according to numbers 4-5 art. 6 para. 1 sentence 1 lit. f GDPR (legitimate interests). The legitimate interests of our data processing consist in making our offer user-friendly and optimizing it.

The above-mentioned data is automatically deleted from the web server after a defined time, which is 7 days. If data is processed longer for purposes according to numbers 2-5, anonymization or deletion takes place if the storage is no longer necessary for the respective purpose.

We also use cookies and analysis services when you visit our website. You can find more detailed explanations under sections 3 and 4 of this data protection information.

b) When registering for events

General remark

We regularly offer all kinds of events on our website, for which you can register online.

When registering for an event, some mandatory information must be provided. This includes

·        First and Last Name
·        Address
·        E-mail address

Any other mandatory information is marked as such (e.g. using *). In addition, other information can often be provided voluntarily.

The processing of the mandatory information is carried out in order to identify you as a participant of the event, to reserve the place to participate as well as to establish or implement the contract for participation with you and to provide you with information about the event before, during and after the event to provide, which should enable you an optimal participation and enables us to plan and ensure a smooth process. Providing the voluntary data enables us to plan and implement the event in a way that is appropriate to the interests and age.

The data processing is carried out on request of the interested participants and is in accordance with Art. 6 Para. b GDPR required for the stated purposes for the fulfillment of the participant contract and the pre-contractual measures.

The personal data we collect for the event will be stored by us for a period of up to 6 months, unless you have saved it in a further storage according to Art. 6 Para. 1 S. 1 lit. a GDPR.

Image, sound and video rights

We would like to point out that we take photos and films at the event and then use the pictures and videos (social media, press, printed products). By participating in the event, you give us your consent, which is irrevocable and valid indefinitely.

When taking pictures that focus on individuals, you always have the right and the opportunity to inform the photographer or videographer that you do not want to be recorded. In this case, please send your declaration of cancellation to:

Fraunhofer facility for Marine Biotechnology and Cell Technology (EMB)
Mönkhofer Weg 239 a
23562 Luebeck

chargeable events

As part of the registration for the symposium for industrial cell technology, we collect the following mandatory information:

· Surname, first name, company
· Address / billing address
· E-mail address
· Student ID as proof of study

The processing of the mandatory information takes place in order to be able to identify you as a participant of the event, to check the entered data for plausibility, to reserve the place of participation and to justify or implement the contract for participation with you and you before, during and afterwards to provide the event with information about the event that should enable you to participate optimally and enable us to plan and ensure that everything runs smoothly.

We need the payment data to settle the participation fee.

Providing the voluntary data enables us to plan and implement the event in a way that is appropriate to the interests and age.

Data processing is carried out at your request and is in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR required for the stated purposes for the fulfillment of the participant contract and the pre-contractual measures.

The personal data we collect for the event will be stored and deleted until the end of the regular limitation period of 3 years after the end of the year in which the event took place, unless we have done so in accordance with Article 6 (1) sentence 1 lit. c GDPR due to legal storage and documentation obligations (especially § 147 AO) are obliged to store them for a longer period of time or you are required to store them in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR. In the event of long-term storage, data processing is only carried out to the extent that a retention obligation dictates this or your consent determines this. Otherwise the data will be blocked for further processing.

As part of the event registration via our web forms, we work with the service provider Lübecker Musik- und Kongreßhallen GmbH, Willy-Brandt-Allee 10, D-23554 Lübeck ("MUK"). The purpose of the collaboration is the professional administration of online registrations. For this purpose, the data entered is saved on the servers of MUK in Germany.

We have concluded an order processing contract with MUK. MUK assures that it processes the data on our behalf in accordance with the General Data Protection Regulation and guarantees the protection of the rights of the data subjects.

c) When using contact forms

We offer you the opportunity to contact us using the form provided on the website. The following information is required as mandatory information:

• Salutation

• First and last name and

• E-mail address.

We need your data to determine who the request comes from and to be able to answer and process it.

The data processing takes place upon your request and is within the scope of answering a contact request to our legitimate interests. Art. 6 para. 1 sentence 1 lit. f GDPR.

The personal data we collect for the use of the contact form will be deleted after your request has been dealt with.

 

3. Cookies

 

We use cookies on our website. These are small files that your browser automatically creates and that are saved on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain viruses, Trojans or other malware.

Information is stored in the cookie, which results in connection with the specific device used. However, this does not mean that we are immediately aware of your identity.

The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to enable session control, e.g. to save form entries or shopping carts during the session. Session cookies are deleted at the latest when you close your web browser.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your device for a specific period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you (see section 3). These cookies enable us to automatically recognize when you visit our site again that you have already been with us. These cookies are deleted after 90 days.

The data processed by cookies are for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR required.

Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or that a message always appears before a new cookie is created. However, the complete deactivation of cookies can mean that you cannot use all functions of our website.

 

4. Web analysis and tracking

 

LeadLab (wiredminds GmbH)

We use the Leadlab service from Wiredminds GmbH and its tracking pixel technology on our website to analyze usage behavior and optimize our site based on it. In particular, the service allows us to recognize which companies have visited our site. We do not receive any information that directly identifies you.

In connection with the use of Leadlab, cookies and tracking pixels are used, which enable a statistical analysis of the use of this website by your visits. Information - including personal information - about your visitor behavior is stored in the cookie and transmitted to Wiredminds or collected directly by Wiredminds. Wiredminds processes the information using a pseudonym in a usage profile for the purpose of analysis and anonymizes it where possible.

The data obtained will not be used to identify you personally without your separate consent and the data will not be combined with personal data about you as the bearer of the pseudonym.

Insofar as IP addresses are collected, they are anonymized immediately after collection by deleting the last number block.

You can find information on data protection at Wireminds on their website.

Data processing is based on our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR on the optimization of our online offer and our website. Wiredminds processes the data on our behalf and we have concluded an order processing contract with Wireminds. This ensures that data processing on our behalf is carried out in accordance with the General Data Protection Regulation and guarantees the protection of the rights of the data subjects.

If you do not wish to record and analyze your user behavior, you can object to this using an opt-out cookie. An opt-out cookie is set which prevents the future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you have to set the opt-out cookie again.

 

5. Social Plug-ins

 

We use so-called social media buttons (also social media plugins) on our website. These are small buttons that you can use to publish the content of our website on social networks under your profile.

If you activate such a button, a connection will be established between our website and the social network. In addition to the relevant content, the operator of the social network receives further, partly personal information. This includes the fact that you are currently visiting our website.

The social media buttons are integrated using the Shariff solution. This solution prevents a connection to a social network from being established just because you access a page with a social media button without activating it. This means that information is only transmitted to the social network when you use the button.

We use the following social media plugins:

a) Facebook parts of Facebook Ireland Limited

Some of the information is transmitted to the parent company Facebook Inc., based in the USA. This complies with the data protection regulations of the "US Privacy Shield" and is registered with the "US Privacy Shield" program of the US Department of Commerce.

For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights and setting options for protecting your privacy, please refer to Facebook's data protection information.

b) Twitter parts of the Twitter International Company

In some cases, information is transmitted to the parent company Twitter Inc., based in the USA. This complies with the data protection regulations of the "US Privacy Shield" and is registered with the "US Privacy Shield" program of the US Department of Commerce.

Further information on data protection on Twitter can be found in Twitter's data protection declaration.

c) Google+ share with Google LLC

Google complies with the data protection regulations of the "US Privacy Shield" and is registered with the "US Privacy Shield" program of the US Department of Commerce.

Further information on data protection at Google can be found in Google's data protection declaration.

d) Xing share the Xing SE

Further information on data protection at Xing can be found in XING's data protection declaration.

e) Pinterest share of Pinterest Europe Ltd.

Further information on data protection at Pinterest can be found in Pinterest's data protection declaration.

 

6. You tube

 

On our website, we use consent based on Art. 6 Para. 1 S. 1 lit. f GDPR components (videos) of the company YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA (hereinafter: “YouTube”), a company of Google Inc., Amphitheater Parkway, Mountain View, CA 94043, USA ( Hereinafter: "Google"), a.

We use the "extended data protection mode" option provided by YouTube.

When you call up a page that has an embedded video, a connection to the YouTube servers is established and the content is displayed on the website by notifying your browser.

According to the information provided by YouTube, your data will only be transmitted to the YouTube server in the USA in the "extended data protection mode" - in particular which of our Internet pages you have visited and device-specific information including the IP address - when you watch the video. By clicking on the video, you consent to this transmission.

If you are logged into YouTube at the same time, this information will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website.

Google complies with the data protection regulations of the "US Privacy Shield" and is registered with the "US Privacy Shield" program of the US Department of Commerce.

Further information on data protection in connection with YouTube can be found in Google's data protection regulations.

 

7. Right of the data subject

 

You have the right:

to revoke your consent given to us at any time in accordance with Art. 7 Para. 3 GDPR. As a result, we can no longer continue the data processing based on this consent in the future;

to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or opposition, the existence of a Right to lodge a complaint, the origin of your data, unless it was collected by us, and the existence of automated decision-making, including profiling and, if necessary, meaningful information about its details;

to request the correction of incorrect or incomplete personal data stored by us without delay in accordance with Art. 16 GDPR;

According to Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing for exercising the right to freedom of expression and information, for fulfilling a legal obligation, for reasons of public interest or for asserting, exercising or defending legal claims is required;

to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR, provided that the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or need to defend legal claims or you have objected to processing in accordance with Art. 21 GDPR;

in accordance with Art. 20 GDPR to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another person responsible and

to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

 

8. Information on your right to object pursuant to Article 21 GDPR

 

 

You have the right, for reasons that arise from your particular situation, at any time against the processing of your personal data, which is based on Article 6 paragraph 1 letter e GDPR (data processing in the public interest) and Article 6 paragraph 1 letter f GDPR ( Data processing is based on a balance of interests), to object; this also applies to profiling based on this provision of Article 4 No. 4 GDPR.

If you file an objection, we will no longer process your personal data, unless we can demonstrate compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

If your objection is directed against the processing of data for the purpose of direct advertising, we will stop processing immediately. In this case, it is not necessary to specify a special situation. This also applies to profiling insofar as it is connected to such direct advertising.

If you would like to exercise your right to object, please send an email to datenschutz@zv.fraunhofer.de.

 

9. Data security

 

All of the data you personally transmit is encrypted using the generally accepted and secure TLS (Transport Layer Security) standard. TLS is a safe and proven standard that e.g. also used in online banking. You can recognize a secure TLS connection by the appended s at http (i.e. https: // ..) in the address bar of your browser or by the lock symbol in the lower area of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

10. Timeliness and Amendments to this Data Protection Information

 

This data protection information is currently valid and was last updated in May 2018.

Due to the further development of our website and offers about it or due to changed legal or official requirements, it may become necessary to change this data protection information. The current data protection information can be viewed and printed out at any time on the website at https://www.emb.fraunhofer.de/de/datenschutzerklaerung.html

 

11. Severability clause

 

If individual provisions of this data protection declaration are or become ineffective or impracticable in whole or in part, this does not affect the effectiveness of the remaining provisions. The same applies in the case of gaps.