Privacy policy for the web app "THWi Contact Tracing“
Bild Bühne Web-App THWi Kontaktverfolgung

Privacy policy for the web app "THWi Contact Tracing“

Below you will find the privacy policy for the web app developed by TH Wildau for contact tracking in the event of a SARS Cov2 infection

Privacy policy for the web app "THWi Contact Tracing“

1. Scope of application

This data protection declaration applies to all persons who are present in rooms of the university which are used by several persons, including lecturers, students, employees and guests.

2. Information on data protection

We process your personal data in compliance with the applicable data protection regulations, in particular the EU Data Protection Basic Regulation (DSGVO) and the Brandenburg Data Protection Act (BbgDSG).

3. Purpose of data processing

The presence of persons who are in rooms of the institution of higher education used by several persons is recorded. This is used for contact tracing by the responsible health authorities during the SARS-CoV-2 pandemic.

4. Legal basis for the collection/storage/processing of data

The legal basis is the Ordinance on the Handling of the SARS-CoV-2 virus and COVID-19 in Brandenburg (SARS-CoV-2-UmgV), last amended by the Ordinance of 3 September 2020 (GVBl.II/20, [No. 72]), § 3, para. 2.

5. Responsible body for data processing

Technical University of Applied Sciences Wildau
Hochschulring 1
15745 Wildau


Represented by:

The Technical University of Applied Sciences Wildau is a public corporation. It is represented externally by its President, Prof. Dr. Ulrike Tippe.


Phone: +49 (0) 3375 / 508 - 300


The responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

6. Which data do we use?

All users will have the room they visit and the time of entering and leaving the room stored.

In addition, the account ID, surname and first name are stored for employees, students or lecturers, and for guests the e-mail address or telephone number is stored in addition to surname and first name.

7. Who has access to my data?

Access to the stored data is only granted upon request by the responsible health authority/offices. This is carried out in accordance with the dual control principle by two trusted persons from the university, who forward the relevant data to the requesting authority.

8. Where is the data stored?

Without exception, data is stored on the university's servers.

9. How long is my data stored?

All data will be automatically deleted after 4 weeks in accordance with SARS-CoV-2-UmgV, § 3, paragraph 2.

10. What other data protection rights do I have?

Subject to the respective legal requirements, you have the right to information (Art. 15 DSGVO, § 34 BDSG), correction (Art. 16 DSGVO), deletion (Art. 17 DSGVO, § 35 BDSG), restriction of processing (Art. 18 DSGVO) and data transferability (Art. 20 DSGVO).

Should the above rights be exercised, the controller shall check whether the legal requirements for this are fulfilled.

You also have a right of appeal to the data protection supervisory authority (Art. 77 DSGVO, § 19 BDSG).

Access to the web app: