Privacy policy

Privacy policy

1. Data protection at a glance

General information

The following information provides a simple overview of what happens with your personal data when you visit our website. Personal data is all data, with which you can be personally identified. You can obtain detailed information on data protection from the data protection declaration presented beneath this text.

Data collection on our website

Who is responsible for collecting data on this website?

The website operator processes data on this website. You can take the contact details from this website’s legal notice disclaimer.

How do we collect your data?

Your data is firstly collected when you provide us with this information. This can be data that you enter into a contact form, for example.

Other data is collected automatically by our IT systems when you visit the website. This is technical data, above all (e.g. Internet browser, operating system, and time the website was accessed). This data is collected automatically, as soon as you enter our website.

What do we use your data for?

A part of your data is collected to guarantee the flawless provision of the website. Other data may be used to analyse your usage behaviour.

What rights do you have with respect to your data?

You have the right, at all times, to information about the origin, recipients and reason why your personal data is being stored. You also have the right to ask for this data to be rectified, locked or erased. You can contact us on this matter at any time at the address given in the legal notice disclaimer and on any further questions you may have about data protection. You also have a right to lodge a complaint with the responsible supervisory authority.

Analysis tools and tools from third-party providers

Your surfing behaviour may be analysed statistically when you visit our website. This is carried out, above all, by using cookies and with ‘analysis programs’. Your surfing behaviour is generally analysed anonymously; the surfing behaviour cannot be traced back to you. You may object to this analysis or prevent it by not using certain tools. You will find detailed information about this in the following data protection declaration.

You may object to this analysis. You will be informed about the options for raising an objection in this data protection declaration.

2. General information and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We handle your personal data in confidence and in accordance with the statutory data protection regulations and with this data protection declaration.

A variety of personal data is collected when you use this website. Personal data is data with which you can be personally identified. This data protection declaration explains what data we collect and why we use it. It also explains how this happens and for what purpose.

We point out that transferring data on the Internet (e.g. when communicating by e-mail) can present security loopholes. Seamless protection against access by third parties is not possible.

Information about the party responsible

The party responsible for data processing on this website is:

Technical University of Applied Sciences Wildau
Hochschulring 1
15745 Wildau

Represented by:
The Technical University of Applied Sciences Wildau is a statutory corporation. Its external representative is the President, Prof. Ulrike Tippe.

Tel.: +49 (0) 3375 508 - 300
Email: praesidentin(at)th-wildau.de

The party responsible is the natural person or legal entity, who decides, alone or in conjunction with others, the purpose and means used for processing personal data (e.g. name, e-mail addresses etc.).

Withdrawing your consent for data processing

Many data processing operations are only possible with your explicit consent. You can withdraw your consent that you have already granted at any time. You simply have to notify us informally by e-mail. This shall not affect the lawfulness of any data processing up to the point consent is withheld.

Right to lodge a complaint with the responsible supervisory authority

The affected party has the right to lodge a complaint with the responsible supervisory authority in the event of data protection breaches. The supervisory authority on data protection matters is the state data protection representative for the federal state, in which our company has its offices. You can find a list of data protection representatives and their contact details under the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability

You have the right to arrange for the data, which we process on the basis of your consent or to fulfil a contract, to be handed over to you or to a third party in a common machine-readable format. Should you demand that the data be handed over directly to another responsible party, this will only take place provided it is technically feasible.

SSL and TLS encryption

For safety reasons and to protect confidential content, such as orders or enquiries, which you send to us as the website operator, this website uses SSL or TLS encryption. You can recognise an encrypted link, as the address line of the browser changes from “http://” to “https://” and by the padlock icon in your browser line.

If you have activated SSL or TLS encryption, the data, which you have transmitted to us, cannot be read by third parties.

Information, locking, erasure

With the scope of the applicable statutory provisions, you have the right to free-of-charge information about your personal data we have stored, its origin and recipients and the purpose of data processing, and if applicable, a right to rectify, block or erase such data. You can contact us at any time at the address given in the legal notice disclaimer on this matter and on any further questions you may have about data protection.

Rejecting advertising e-mails

We hereby object to the contact details that we have to provide as part of the legal notice disclaimer being used to send any advertising and information material that has not been explicitly requested. The operators of the website reserve the right to take legal action against any unsolicited sending of advertising information, for example, through spam e-mails.

3. Data protection representative

Legally regulated data protection representative

We have appointed a data protection representative for our university:

Gregor Klar

Email: datenschutz@th-wildau.de

4. Data collection on our website

Cookies

Personal cookies have been deactivated since 10.04.2021. The deactivation can be easily checked with any browser. Tracking cookies that have already been created on user terminals are/were deleted by Matomo Analytics (open source web analysis service) the first time the TH-Wildau page is accessed after 10.04.2021.

The software is set in such a way that IP addresses are not stored in full, but the last two octets of the IP address are masked (e.g.: 192.168.xxx.xxx). In this way, it is no longer possible to assign the shortened IP address to the calling computer. 

Server log files

The provider of the website collects and saves information automatically in ‘server log’ files, which your browser transmits to us automatically.

These are:

  • Type of browser and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data will not be merged with other data sources.

Art. 6(1)f GDPR, which permits data to be processed in order to fulfil a contract or pre-contractual measures, is the basis for data processing.

Contact form

If you send us enquiries using the contact form, your details from the enquiry form, including any contact details you have provided there, will be stored at our company for the purpose of processing the enquiry and in case there are any subsequent questions. We will not forward this data without your consent.

The data entered in the contact form is therefore processed solely on the basis of your consent (Art.6 (1)a. GDPR). You can withdraw this consent at any time. You simply have to notify us informally by e-mail. This shall not affect the lawfulness of any data processing up to the point consent is withheld.

The data you enter in the contact form will remain at our company until you ask us to erase it, withdraw your consent for storage, or the reason for storing the data ceases to apply (e.g. after your enquiry has been processed). This shall not affect mandatory requirements, in particular, retention periods.

Additional registration forms

We also use forms for the purposes of registering at our events. The data entered by you in these forms, as well as any relevant data we received from you over the phone, will be used to confirm registration as well as for the implementation of the respective event or services.

The legal basis for processing data communicated to us via this registration form is Art. 6 para. 1 letter. a, b) GDPR. You can withdraw this consent at any time. You simply have to notify us informally by e-mail. This shall not affect the lawfulness of any data processing up to the point consent is withheld.

The data entered by you in the form shall remain with us until you ask us to delete it, until you revoke your consent for storage, or the purpose for the data storage no longer applies (e.g. after the respective event has occurred). This shall not affect mandatory legal requirements, in particular, retention periods.

5. Plugins and tools

YouTube

We incorporate videos from “YouTube” which is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.
Data protection declaration: https://www.google.com/policies/privacy,
Opt out: https://adssettings.google.com/authenticated.

Vimeo

We incorporate videos from the “Vimeo” platform, offered by provider Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA. Data protection declaration: https://vimeo.com/privacy,

Please note that Vimeo uses Google Analytics. Please note the data protection declaration (https://www.google.com/policies/privacy) as well as the opt out options for Google Analytics (http://tools.google.com/dlpage/gaoptout?hl=de) and Google’s settings for the use of data for marketing purposes (https://adssettings.google.com).

Online presence on social media

We would like to point out that user data may also be processed outside of the European Union. This could result in risks for the users because, for example, it could make the exercising of user rights more difficult. With regard to US providers that are certified under the Privacy Shield, we would like to point out that they are obliged to comply with the data protection standards set by the EU.

As a rule, the data of users will also be processed for the purposes of market research and advertising. User profiles may therefore be created, for example, based on the user behaviour and the resulting user interests. In turn, the user profiles may be used to activate advertisements, for example, within and outside of the platforms, in accordance with the presumed interests of the users. For these purposes, cookies are generally stored on the computers of the users, recording the user behaviour and interests of the users. In addition, data may also be stored in the user profiles, regardless of the devices used by the users (particularly if the users are members of the respective platforms and are logged into them).

The processing of personal data of the users takes place based on our legitimate interests in effective information for the users and communication with the users in accordance with Art. 6(1)(f) GDPR. Should the user be asked by the respective providers for consent to the data processing (in other words, its agreement by ticking a checkbox or confirming by clicking on a button, for example), the legal basis for the processing is Art. 6(1)(a) and Art. 7 GDPR.

For a detailed description of the respective processing and the possibility of withdrawing (opt-out), we refer to the subsequently linked information of the providers.

In the case of information requests and the exercising of user rights, we would like to point out that it is most effective to do this by contacting the providers. Only the providers have access to the respective user data and can take corresponding measures and provide information directly. However, should you require assistance, you can contact us.

Public Relations Platform Mynewsdesk

TH Wildau uses the public relations platform www.mynewsdesk.com for its press relations. The platform's privacy policy is available at https://www.mynewsdesk.com/about/terms-and-conditions/privacy_policy

Social Media Share Buttons

Shariff: Social Media Buttons with Data protection

With Shariff you can use social media without unnecessarily jeopardising your privacy. The Shariff c’t-Project replaces the usual social network share buttons and safeguards your web browsing from prying eyes. For just one single click on the button is enough to share your information with others. You do not need to do anything else – the webmaster has already done it all for you.

Traditional social media buttons transmit this user data every time you view a page on Facebook & Co. and provide the social networks with exact information about your web browsing behaviour (user tracking). You don’t even need to be logged in or a member of the network for this to happen. With the Shariff button, however, direct contact between the social network and the user is only created when the user actively clicks on the share button.

In this way Shariff ensures that you don’t leave a digital trail on every webpage you have visited, and it improves data protection. You can then like, +1 or tweet at your discretion – but the social network won’t receive any more information than that.

The display of “likes” comes from the website operator by way of buttons, thanks to Shariff. Because Shariff is integrated in the webmaster, you don’t need to do anything else as a visitor.

The privacy advantage of Shariff

The widespread share buttons constitute a considerable data protection problem because they go unnoticed in creating contact with the servers of social networks. For example, Facebook sends the number of ‘likes’ directly to the visitor’s browser – thus logging the individual’s web browsing behaviour.

Shariff acts as an intermediary here: instead of the browser, the server of the website operator queries the number of likes – and only once a minute, to limit the traffic. In this case the visitor remains anonymous.

Shariff simplifies and replaces the previous 2-click solution. You can find more information on Shariff in the article Protecting and sharing, available in full online; there is also a topic forum for discussions c't Shariff – 1 click for more data protection.

6. Analysis tools and advertising

Google Ads and Google Conversion Tracking

This website uses Google Ads. Google Ads is an online advertising platform of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland (“Google”).

As part of Google Ads we use “conversion tracking”. Clicking on an advert provided by Google sets a conversion tracking cookie. Cookies are small text files that a web browser stores on the user’s computer. These cookies expire after 30 days and are not used to personally identify the user. If the user visits certain pages on this website and the cookie has not yet expired, then both we and Google are able to determine that the user clicked on the advert and arrived at this website.

Each Ads user receives a different cookie. Cookies cannot be traced across Ads customer websites. Using the information collected by the conversion cookie, conversion statistics are created for Ads customers who have opted to use conversion tracking. Customers receive information about the total number of users that have clicked on their advert and were forwarded to a page with a conversion tracking tag. They do not receive any information that can be used to personally identify the user. If you do not wish to accept tracking cookies, then you may opt out of doing so by simply deactivating the Google conversion tracking cookie from the user settings in your web browser. You will then not appear in the conversion tracking statistics.

Conversion cookies are stored in accordance with Article 6(1)f GDPR. This website operator has a legitimate interest in an analysis of user behaviour in order to optimise its website offerings and its advertising.

You can find more information on Google Ads and Google Conversion Tracking in Google’s data privacy policy: https://www.google.de/policies/privacy.

You can set your browser to notify you if cookies are used and only allow cookies on a case-by-case basis, accept cookies only in certain cases or refuse them altogether as well as activate automatic deletion of cookies upon closing your browser. Deactivating cookies may limit the functionality of this website.

Matomo (previously Piwik) 

This website uses the open source web analytics service Matomo. Personal cookies have been deactivated since 10.04.2021. The deactivation can be easily checked with any browser. Tracking cookies already created on user terminals are/were deleted by Matomo Analytics (open source web analytics service) the first time the TH-Wildau site is accessed after 10.04.2021.

The software is set in such a way that IP addresses are not stored in full, but the last two octets of the IP address are masked (e.g.: 192.168.xxx.xxx). In this way, it is no longer possible to assign the shortened IP address to the calling computer.