1. Data protection at a glance – general information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be found in our data privacy statement below.
Brandenburg Memorials Foundation
Heinrich Grüber Platz
Phone: +49 (0)3301 810912
Data Protection Officer:
Dr. Enrico Heitzer
2. General information and mandatory information – data protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. When you use this website, various personal data are collected. Personal data are data with which you can be personally identified. This data protection declaration explains which data we collect and what we use it for. It also explains how and for what purpose this is done. We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible. Access data / server log files The provider (or his web space provider) collects data about every access to the offer and saves it (server log files). The access data include: name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting one Provider. The provider uses the log data for statistical evaluations and for the purpose of operation (security and optimization of the offer). However, the provider reserves the right to retrospectively check the log data if, based on specific indications, there is a legitimate suspicion of illegal use.
3. Access data / server log files
The provider (or his web space provider) collects data about every access to the offer and saves it (server log files). The access data include: name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting one Provider. The provider uses the log data for statistical evaluations and for the purpose of operation (security and optimization of the offer). However, the provider reserves the right to retrospectively check the log data if, based on specific indications, there is a legitimate suspicion of illegal use.
4. Affected Rights
You have the right to obtain information about the personal data we have stored at any time. You also have the right to portability, correction or deletion and restriction of the processing of your data. You can also raise an objection to the processing of your data at any time. For this in detail:
1.) According to Art. 15 GDPR, you have the right to request confirmation from us as to whether personal data relating to you is being processed. If this is the case, you also have the right to information about this personal data and information on the processing purpose, the category of personal data that is processed, the recipients or categories of recipients to whom the personal data has been disclosed or is still being disclosed the planned duration for which the personal data will be stored, the right to correct or delete your data or to restrict processing or a right to object to this processing, the right to lodge a complaint with a supervisory authority and, if the personal Data was not collected from you, based on all available information about the origin of the data.
2.) According to Art. 16 GDPR, you also have the right to immediately request the correction or completion of incorrect personal data concerning you.
3.) According to Art. 17 GDPR, you also have the right to demand that personal data relating to you be deleted immediately.
4.) Under the conditions of Art. 18 GDPR, you have the right to request that the processing of your data be restricted.
5.) According to Art. 20 GDPR, you have the right to receive your personal data in a structured, common and machine-readable format, and the right, provided the requirements of Art. 20 GDPR are met, to transfer them to another person responsible. In this context, you have the right to have your personal data transmitted directly to the other responsible parties.
6.) According to Art. 21 GDPR, if your personal data are processed on the basis of legitimate interests in accordance with Art. 6 Para. 1 S. 1 lit. to insert personal data if there are reasons for doing so that arise from your particular situation. If you would like to make use of your right of objection, it is sufficient to send an e-mail to firstname.lastname@example.org.
7.) If you believe that the processing of your data violates data protection law or that your data protection claims have been violated in any other way, you can complain to the responsible supervisory authority.
5. Social media: Youtube
Our offer uses plugins from the YouTube website. The operator of the website is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. The plugin establishes a connection to the YouTube servers. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. Furthermore, YouTube can save various cookies on your device after starting a video. With the help of these cookies, YouTube can receive information about visitors to our website. The cookies remain on your device until you delete them. After the start of a YouTube video, further data processing operations are triggered over which we have no influence. YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit.f GDPR. You can find more information about data protection at YouTube in their data protection declaration at: https://policies.google.com/privacy?hl=de.
6. Liability notice
Despite careful content control, we assume no liability for the content of external links. The operators of the linked pages are solely responsible for their content.
Data protection information for online meetings, telephone conferences and webinars via “Zoom” by the Brandenburg Memorials Foundation
We would like to inform you below about the processing of personal data in connection with the use of “Zoom”.
Purpose of processing
We use the “Zoom” tool to hold telephone conferences, online meetings, video conferences and / or webinars (hereinafter: “Online Meetings”). “Zoom” is a service provided by Zoom Video Communications, Inc., which is based in the United States.
The Brandenburg Memorials Foundation is responsible for data processing that is directly related to the implementation of “online meetings”.
Note: If you access the “Zoom” website, the “Zoom” provider is responsible for the data processing. Calling up the website is only required to use “Zoom” in order to download the software for using “Zoom”.
You can also use “Zoom” if you enter the respective meeting ID and, if necessary, additional access data for the meeting directly in the “Zoom” app.
If you do not want to or cannot use the “Zoom” app, the basic functions can also be used via a browser version, which you can also find on the “Zoom” website.
Which data are processed?
Different types of data are processed when using “Zoom”. The scope of the data also depends on the details of the data you provide before or when participating in an “online meeting”.
The following personal data are processed:
User information: first name, last name, telephone (optional), email address, password (if “single sign-on” is not used), profile picture (optional), Department (optional)
Meeting metadata: topic, description (optional), participant IP addresses, device / hardware information
For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of the online meeting chat.
When dialing in with the phone: information on the incoming and outgoing phone number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be saved.
Text, audio and video data: You may have the option of using the chat, question or survey functions in an “online meeting”. In this respect, the text entries you make are processed in order to display them in the “online meeting” and, if necessary, to record them. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and any video camera on the terminal device are processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time using the “Zoom” applications. In order to take part in an “online meeting” or to enter the “meeting room”, you must at least provide information about your name.
Scope of processing
We use “Zoom” to conduct “online meetings”. If we want to record “online meetings”, we will inform you transparently in advance and – if necessary – ask for your consent. The fact of the recording is also displayed in the “Zoom” app.
If necessary for the purpose of logging the results of an online meeting, we will log the chat content. However, this will usually not be the case.
In the case of webinars, we can also process the questions asked by webinar participants for the purpose of recording and following up webinars. If you are registered as a user with “Zoom”, reports on “Online Meetings” (meeting metadata, data on telephone dial-in, questions and answers in webinars, survey function in webinars) can be saved in “Zoom” for up to one month. Automated decision-making within the meaning of Art. 22 GDPR is not used.
Legal basis for data processing
Insofar as personal data is processed by employees of the Brandenburg Memorials Foundation, Section 26 BDSG is the legal basis for data processing. If, in connection with the use of “Zoom”, personal data are not required for the establishment, implementation or termination of the employment relationship, but are nevertheless an elementary part of the use of “Zoom”, Article 6 (1) lit. f) GDPR is applicable the legal basis for data processing. In these cases, we are interested in the effective implementation of “online meetings”.
Otherwise, the legal basis for data processing when conducting “online meetings” is Article 6 (1) (b) GDPR, insofar as the meetings are carried out in the context of contractual relationships.
If there is no contractual relationship, the legal basis is Art. 6 Paragraph 1 lit. f) GDPR. Here, too, we are interested in the effective implementation of “online meetings”.
Recipient / transfer of data
Personal data that are processed in connection with participation in “online meetings” are generally not passed on to third parties unless they are intended to be passed on. Please note that content from “online meetings”, as well as from personal meeting meetings, is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on.
Other recipients: The provider of “Zoom” necessarily receives knowledge of the above data, insofar as this is provided for in our order processing contract with “Zoom”.
Data processing outside the European Union
“Zoom” is a service that is provided by a provider from the USA. Processing of personal data also takes place in a third country. We have concluded an order processing contract with the provider of “Zoom”, which meets the requirements of Art. 28 GDPR.
Data protection officer
We have appointed a data protection officer. You can reach it as follows:
Brandenburg Memorials Foundation
Phone: +49 (0) 3301 810912
Data protection officer:
Dr. Enrico Heitzer
Your rights as a data subject
You have the right to information about your personal data. You can contact us at any time for information.
In the event of a request for information that is not made in writing, we ask for your understanding that we may request evidence from you that proves that you are the person you claim to be. Furthermore, you have the right to correction or deletion or to restriction of processing, insofar as you are legally entitled to do so.
Finally, you have the right to object to processing within the framework of the legal requirements.
A right to data portability also exists within the framework of data protection regulations.
Deletion of data
We generally delete personal data if there is no need for further storage. A requirement can exist in particular if the data is still required to fulfill contractual services, to check warranty and, if applicable, guarantee claims and to be able to grant or defend them. In the case of statutory retention requirements, deletion can only be considered after the respective retention requirement has expired.
Right to lodge a complaint with a supervisory authority
You have the right to complain to a data protection supervisory authority about the processing of personal data by us. Changes to this data protection notice We revise this data protection information in the event of changes in data processing or other occasions that make this necessary. The current version can always be found on this website.
As of date 01/18/2022