Oct. 16, 2020, 2:56 p.m.
The following information provides an overview of what happens to your personal data when you consult our website. The term “personal data” applies to all data by means of which you can be personally identified. For more information on data protection, please refer to our data protection policy below.
Who is responsible for collecting data on our website?
The data collected on this website is processed by the website owner (under the GDPR, the “data controller”), whose contact details are to be found in the imprint.
First, your data is stored whenever you communicate with us, for instance when filling out a contact form.
Second, data is collected automatically by our IT systems when you visit our website. This data consists mainly of technical data, such as your Internet browser, operating system or the timestamp of your visit. This data is collected immediately you call up our website.
Some of the data is collected to ensure that the website runs error-free. Other data may be used to analyse user behaviour.
You are entitled at all times and without cost to be given details of the origin, recipients and use of your personal data. You also have the right to demand that your data be corrected, deactivated or erased. Should you have any further questions regarding data protection, please contact us at the address listed in the imprint. Moreover, you have the right to submit complaints to the competent supervisory authority.
The owner of these pages (under the GDPR, the “data controller”) takes the protection of your personal data very seriously. We handle your personal data confidentially, in line with the statutory data protection legislation and this data protection policy.
When you use this website, data about you - i.e. personal data - is collected. The term “personal data” applies to all data by means of which you can be personally identified. The data protection policy explains which data we collect and what we use it for. It also explains how this is done and for what purpose.
Please note that there may be security gaps when transferring data in Internet (e.g. sending an email). It is impossible to rule out your data being read by third parties.
The data controller for this website is:
Prof. Dr. Stefan Siedentop & Michael Paul
ILS – Institut für Landes- und Stadtentwicklungsforschung gGmbH
Tel.: +49 (0)231 9051-0
The term “data controller” refers to the natural or legal person which, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).
Many data processing processes require your explicit consent. You may at any time withdraw such consent by simply sending us an email to this effect. All data processing done prior to your withdrawing your consent is considered to be lawful.
In the event of a data protection breach, you may submit a complaint to the competent supervisory authority, in the case of Germany the state data protection officer (Landesdatenschutzbeauftragter) of the German federal state in which the organisation has its registered office. A list of data protection officers and their contact details can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html (in German).
You have the right to obtain from us, in a structured, commonly used and machine-readable format, data processed automatically by us with your consent or in fulfilment of a contract. You also have the right to have this data transmitted directly to another data controller, insofar as this is technically feasible.
For security reasons and to protect the transfer of confidential data (for example customer orders or inquiries sent to us as data controller), this page uses SSL- / TLS-encryption. You can easily recognise encryption through the use of “https://” instead of “http://” in your browser's address bar, accompanied by a lock symbol. When such encryption is activated, data sent by you to us cannot be read by third parties.
Under the applicable statutory provisions, you have the right to request information at any time on your stored personal data, where it originated, to whom it has been sent and the purpose of its processing, as well as the right to have the data rectified or erased or for access to it to be restricted. Should you wish to make use of these rights or should you have any further questions, please contact us at the address listed in the imprint.
You have the right to obtain from the controller restriction of processing where one of the following applies:
(1) the accuracy of the personal data is contested by you, for a period enabling the controller to verify the accuracy of the personal data;
(2) the processing is unlawful and you oppose the erasure of your personal data, instead requesting that its use be restricted;
(3) the controller no longer needs the personal data for the purposes of the processing, but its required by you for the establishment, exercise or defence of legal claims;
(4) have objected to processing pursuant to GDPR Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
Where processing has been restricted by you, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. When processing has been restricted (as described above), you shall be informed by the controller before the restriction of processing is lifted.
The controller shall communicate any rectification or erasure of personal data or restriction of processing carried out in accordance with the above rights to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. Should you request such, the controller shall inform you about those recipients.
We hereby formally object to the contact data provided in the imprint being used for mailing unsolicited marketing and info material. The data controller specifically reserves the right to take legal steps in the event of the unsolicited mailing of marketing material, for instance via spam emails.
Statutory data protection officer
The following organisation has been designated data protection officer (DPO) by the controller:
TÜV Informationstechnik GmbH
Unternehmensgruppe TÜV NORD
Business Security & Privacy
Tel: 0201 - 8999-899
Fax: 0201 - 8999-666
Many of our web pages use so-called cookies. Cookies cause no harm to your computer and are virus-free. Cookies are used to make our Internet offering more user-friendly, more effective and more secure. Cookies are small text files which are stored on your computer by your web browser.
Most of the cookies used by us are so-called “session cookies” which are automatically when you leave the website. Other (“permanent”) cookies remain stored on your device until you delete them. These cookies allow us to recognise you and your browser the next time you visit our website.
You can configure your browser to inform you when cookies are being used, to only allow cookies with your consent, to reject cookies either always or in specific cases or to automatically delete cookies when you close your browser. In the event of you deactivating cookies, the functions available on this website may be restricted.
Cookies needed for electronic communications or to provide functions requested by you (e.g. shopping cart functions) are stored pursuant to GDPR Art. 6 (1) f. The data controller has a legitimate interest in storing cookies in order to ensure optimised and technically error-free services. Insofar as other cookies (e.g. cookies for analysing your browsing habits) are stored, these are specifically handled in this data protection policy.
The provider of the pages automatically collects and stores data in so-called server log files. These are automatically transmitted to us. These are:
The legal basis for processing the data is GDPR Art 6 (1) b, which allows processing for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
You can register for additional functions on this website. The data entered by you for this purpose is used solely in connection with the offering or service for which you have registered. Other registered members may view and use data to make contact with you. Any profile images used are managed and additionally stored on the website https://de.gravatar.com/. The mandatory data requested on registration must be entered in full, as otherwise we will reject your registration.
In the event of any important changes for example to the scope of an offering or of necessary technical changes, we will use the email address entered by you on registering to inform you thereof.
The processing of the data entered at registration is performed with your consent (GDPR Art. 6 (1) a. You may withdraw your consent at any time, just by sending us an email. Any processing done prior to you withdrawing your consent is deemed to be lawful. The data entered at registration is stored by us as long as you remain registered on our website. Once this is no longer the case, it is deleted. Statutory retention periods remain unaffected.