Jump to content

Data Protection

Data Protection Information

This information provides you with an overview of the processing of your personal data when you visit our website. We inform you about what data we collect from you and how we use it. We also explain your rights under applicable data protection law and tell you who you can contact if you have any questions.

Who is responsible for data processing?

The SPI Foundation is responsible for processing your personal data. The contact details are as follows:

Stiftung SPI, Sozialpädagogisches Institut Berlin “Walter May”
Seestraße 67
13347 Berlin
E-mail: info@stiftung-spi.de

Who can you contact if you have questions about data processing?

You can address questions about the processing of your data to the data protection officer at any time. The contact details of the data protection officer are

datenschutz nord GmbH
Berlin branch
Kurfürstendamm 212
10719 Berlin
E-mail: office@datenschutz-nord.de

What data do we process from you, for what purposes do we process your data and on what legal basis does this take place?

Below we provide you with an overview of the type, scope, purposes and legal bases of data processing when you visit our website.

User Data

When using the website for information purposes only, i.e. if you do not use any of our offers or otherwise transmit information to us, we only process the personal data that your browser transmits to our server. If you wish to view our website, we process the following data, which is technically necessary for us to display our website to you and to ensure stability and security:

- IP address: The server needs this to deliver the data

- Date and time, page accessed/name of the file accessed, amount of data transferred and notification of whether the access/retrieval was successful: This allows us to see how content is accessed.

- Self-disclosure of the browser (type, version, operating system): We need the data to deliver the website so that it can be displayed optimally in your browser.

We store the data for seven days. The data is then deleted.

The legal basis for this processing is § 25 Abs. 2 Nr. 2 TDDDG and Art. 6 Abs. 1 lit. f DSGVO (balancing of interests, based on our interest in providing the content of the website, ensuring a device- and browser-optimized display and ensuring the security of server operation).

Cookies

We use cookies in some areas of our website, e.g. to recognize the preferences of visitors and to design the website accordingly. This facilitates navigation and a high degree of user-friendliness. Cookies also help us to identify particularly popular areas of our website.

Cookies are small text files that are stored in your web browser. They make it possible to store information for a certain period of time and to identify your web browser. We use permanent cookies to improve user guidance and individual performance. We also use so-called session cookies, which are automatically deleted when you close your browser. You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. Important: If you completely exclude the use of cookies, you may not be able to use individual functions of our website.

We only use strictly necessary cookies on our website. These cookies are necessary so that you can move around the website and use its functions, for example when accessing password-protected areas. Without these cookies, we cannot provide you with certain services you have requested. We use strictly necessary cookies to uniquely identify registered users so that they can be recognized during their stay and when they return to the website.

We use these cookies on the basis of § 25 Abs. 2 Nr. 2 TDDDG.

Consent Banner

On our website, we use the consent management platform (consent or cookie banner) Cookiebot from the provider Usercentrics A/S to obtain your consent to the storage or reading of information and to the processing of your data, insofar as this is necessary. The processing in connection with the use of the consent management platform and the logging of the settings you have made is carried out on the basis of Art. 6 Abs. 1 lit. f DSGVO (balancing of interests, based on our interest in displaying content according to your preferences and being able to prove that consent has been given). The settings you have made, the consent you have given and parts of your usage data are stored in a cookie. This means that it is retained for subsequent page requests and your consent can still be tracked.

The provider of the consent management platform works for us as a service provider bound by instructions (processor). An order processing contract in accordance with Art. 28 DSGVO has been concluded.

Visitor Measurement with Matomo

We use the web analysis tool “Matomo” to design our website in line with requirements. We have installed the tool locally on our web server. Matomo creates user profiles based on pseudonyms. For this purpose, permanent cookies are stored on your end device and read by us. In this way, we are able to recognize and count returning visitors. In addition, the data collected with Matomo helps us to better understand how our website is used. Based on this data, we can continuously optimize the design of our website for users.

Data processing takes place on the basis of your consent in accordance with § 25 Abs. 1 TDDDG  and Art. 6 Abs. 1 lit. a DSGVO, provided you have given your consent via our banner. You can withdraw your consent at any time.

How to Contact Us

You have the option of contacting us by letter, e-mail or telephone. We generally process these categories of personal data for the purpose of contacting you: Name, contact details (address, e-mail address, telephone number), request. We use this data on the basis of Art. 6 Abs. 1 lit. f DSGVO to answer your request. We will delete your data if it is no longer required and there are no legal obligations to retain it.

Newsletter

You can subscribe to a newsletter on our website, e.g. our job newsletter, which informs you about new job vacancies at the SPI Foundation. To subscribe to the newsletter, we require certain data (at least your e-mail address).

The newsletter will only be sent if you have given us your express consent. Once you have subscribed, you will receive a confirmation e-mail to the e-mail address you have provided (so-called double opt-in). You can revoke your consent at any time. An uncomplicated way to revoke your consent is, for example, via the unsubscribe link in every newsletter.

To send our newsletter, we use the CleverReach tool from the provider CleverReach GmbH & Co. KG. An order processing contract in accordance with Art. 28 GDPR has been concluded.

When you register for the newsletter, we store further data in addition to the data already mentioned, insofar as this is necessary so that we can prove that you have subscribed to our newsletter. This may include the storage of the full IP address at the time of the order and confirmation of the newsletter as well as a copy of the confirmation email sent by us. The data processing is carried out on the basis of Art. 28 DSGVO in the legitimate interest of being able to account for the legality of the newsletter dispatch.

Map service

We embed a map service on our website that is not stored on our server. When you visit our site with an embedded map service, content from the third-party provider that provides the map services is loaded. As a result, the third-party provider receives the information that you have accessed our site and the usage data technically required in this context.

The embedding takes place on the basis of your consent in accordance with § 25 Abs. 1 TDDDG and Art. 6 Abs. 1 lit. a DSGVO.

If the data is processed outside the EU or the EEA (in particular in the USA), we provide information on the level of data protection in the following table.

Provider Map Service Level of Data Protection

Google Ireland Limited (Irland),
Google LLC (USA)

Google Maps

For transfers to the USA, an adequate level of data protection is guaranteed due
to the provider's certification under the EU-U.S. Data Privacy Framework adequacy decision.

How to donate

You can support us with donations. With your donation, you can support a specific project or the foundation's work in general. When you send us a donation, we process your name, your address if applicable, your account details, the donation amount, the donation date and the purpose of the donation. We process the data for the purposes of processing donations and for issuing and sending donation receipts. Your payment data will be forwarded to our bank to enable us to process your donation.

The legal basis for data processing is Art. 6 Abs. 1 lit. b DSGVO (performance of a contract), Art. 6 Abs. 1 lit. f DSGVO (balancing of interests, based on our interest in processing donations properly, fulfilling our accounting obligations and being able to prove the proper use of donations) and Art. 6 Abs. 1 lit. c DSGVO (compliance with statutory retention obligations).

We generally delete your data after ten years.

Applications

On our website, you can find out about job opportunities and job offers with us. If you apply for a job online, we will inform you separately about the processing of your data that takes place in this context. The legal basis for data processing in connection with the implementation of the application process is Art. 6 Abs. 1 lit. b DSGVO and § 26 Abs. 1 Satz 1 BDSG (decision on the establishment of an employment relationship).

Who has access to your data and for what reason?

Within the SPI Foundation, access to your data is only granted to persons who need it to carry out the tasks assigned to them. In addition, service providers or other persons who support us in the fulfillment of our tasks may have access to your data. These are service providers or persons in the following categories

- Service providers for hosting the website (Mittwald CM Service GmbH & Co. KG)

- Service providers for the provision of the consent management platform Cookiebot (Usercentrics A/S)

- Service provider for the dispatch of our newsletter (CleverReach GmbH & Co. KG)

Service providers used by us must meet special confidentiality requirements. They will only have access to your data to the extent and for the period of time required to fulfill their tasks.

How long will the data be stored?

Unless we have already informed you in detail about the storage period, we delete personal data when it is no longer required for the stated processing purposes and no legitimate interests or other (legal) reasons for storage prevent deletion.

Data Security

We take technical and organizational measures to protect your data from unauthorized access as comprehensively as possible. We use an encryption process on our website. Your data is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the fact that the lock symbol in the status bar of your browser is closed and the address line begins with https://.

What rights do you have?

Right to Information

In accordance with Art. 15 DSGVO, you can request information about your personal data processed by us.

Rectification

If your data is not (or is no longer) accurate, you can request the rectification of your data in accordance with Art. 16 DSGVO. If your data is incomplete, you can request that it be completed.

Erasure

In accordance with Art. 17 DSGVO, you have the right to request the erasure of your data.

Restriction of Processing

In accordance with Art. 18 DSGVO, you have the right to request the restriction of the processing of your data.

Data Portability

In accordance with Art. 20 DSGVO, you have the right to receive personal data that you have provided to us in an electronic format.

Right to Object

In accordance with Art. 21 DSGVO, you have the right to object to the processing of your data on grounds relating to your particular situation. In the event of a justified objection, we will no longer process your data.

Objection to the processing of your data for direct marketing purposes

You have the right to object at any time to the processing of your data for direct marketing purposes. This also applies to profiling in connection with direct advertising. You can address your objection to us informally, preferably using the contact details given above.

Right to Lodge a Complaint

You are entitled to lodge a complaint with a data protection supervisory authority if you do not agree with the processing of your data.

Withdrawal of Your Consent

You have the right to withdraw your consent to the processing of your data that you have given us at any time. The easiest way to withdraw your consent is to send an e-mail to the contact details above. The withdrawal of consent does not affect the lawfulness of the processing of your data up to the time of withdrawal.

Print
Share Share Facebook Twitter
E-Mail: info(at)stiftung-spi.de Phone: 030 459793-0