Data protection

Data protection declaration and information

You are here :   Start

Data protection

Data protection declaration and information

Data protection declaration

Saarland University considers the protection of personal data to be an essential component of its own digitalisation strategy. The protection of the right to informational self-determination of those affected is therefore a major concern when handling personal data. This data protection declaration relates to the websites operated by Saarland University. Should further processing take place on Saarland University websites beyond the procedures described below, this will be explained on the relevant websites.

Name and address of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

University of the Saarland
represented by the President of the University
Campus
66123 Saarbräcken
Phone: 0681 302-0
postzentrale(at)uni-saarland(dot)de

Contact details of the data protection officer

Meerwiesertalweg 15
66123 Saarbrücken
Phone: 0681 302-2813
datenschutz(at)uni-saarland(dot)de
www.uni-saarland.de/datenschutz

Java script must be activated to be able to retrieve all information correctly and completely.

General information on data processing

Purposes and scope of the processing of personal data

Saarland University processes the personal data of website users only insofar as this is necessary to provide a functional website and the content of the website and to offer services. The processing of users' personal data only takes place regularly with the user's consent. An exception applies in those cases in which prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

Legal basis for the processing of personal data

Insofar as Saarland University obtains the consent of the data subject for the processing of personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis. When processing personal data that is necessary for the fulfilment of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures. Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis. Insofar as Saarland University is required to fulfil its statutory tasks in research and teaching, the legal basis for processing results from Article 3(13) of the Saarland Higher Education Act. If the processing is necessary to safeguard a legitimate interest of Saarland University or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.

Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. The data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

  • Provision of the website and creation of log files
  • Description and scope of data processing
  • Every time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer in order to make the website available. The following data is collected:
  • The IP address of the user
  • Date and time of access
  • Websites from which the user's system accesses our website
  • Size of the data transmitted
  • http error code (error log)

The data is also stored in the log files of our system. This does not affect the user's IP addresses or other data that allows the data to be assigned to a user. The IP addresses are shortened by the last two octets (e.g.: 192.168.xxx.xxx). This data is not stored together with other personal data of the user.

Legal basis for data processing

The legal basis for the temporary storage of data is Article 6(1)(f) GDPR.

Use of cookies

The Internet pages use so-called "session cookies", also known as "session cookies", in several places. These are deleted as soon as the web browser is closed. Until then, they are only stored temporarily and are not restored after the browser is closed. They are used to make our website more user-friendly, attractive and effective. Session cookies do not collect any information from your computer. The information collected is linked to an anonymous „session ID“ that cannot be assigned to a specific person.

Cookies do not cause any damage to your computer, they are not a programme and do not contain viruses. You can determine whether cookies can be collected by setting your browser individually so that you are informed before a cookie is saved, accept or refuse acceptance in principle, and storage only takes place if you expressly accept this.

Cookies can be used, for example, to recognise that your PC has already had a connection to a website (persistent cookies) or to save recently viewed offers (session cookies). We recommend that you allow the acceptance of cookies for our website.

Für our evaluation of access to our website no Javascript tracking forür Google Analytics is used. We will inform you of this when you visit our website for the very first time and ask for your consent to the use of session cookies, without which this CMS will not function properly.

However, completely deactivating cookies and JavaScript will inevitably lead to a very specific user experience with functional failures and incomplete displays or completely empty pages, depending on the case. We advise against this and recommend agreeing to session cookies. Nevertheless, we recommend that you use information pages such as this one. Thank you for your attention.

Further information on the use of cookies and on deactivating cookies can be found on pages such as http://www.meine-cookies.org.

External links

Our website contains links to external third-party websites over whose content we have no influence. Therefore, we cannot accept any liability for this. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal contents were not recognisable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete evidence of an infringement. If we become aware of any legal infringements, we will remove such links immediately.

Matterport

We use the 3D data platform Matterport as an external link to our website for the spatial representation of the canteen dining hall, which is opened in a separate window. In addition to text information, this 3D model of the canteen also contains multimedia and audiovisual content. Soundcloud and Vimeo are used for their integration, which we have expressly pointed out.

The service provider is the American company Matterport, Inc, 352 E. Java Dr., Sunnyvale, CA 94089, USA. Matterport also processes your data in the USA. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This may entail various risks for the legality and security of data processing. Matterport uses so-called standard contractual clauses (= Art. 46 para. 2 and 3 GDPR) as the basis for data processing with recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or data transfer to these countries. Standard Contractual Clauses (SCCs) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to and stored in third countries (such as the USA). Through these clauses, Matterport undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oi?locale=de
You can find more information on the standard contractual clauses at Matterport at
https://matterport.com/standard-contractual-clauses.
You can find out more about the data that is processed through the use of Matterport in the privacy policy at https://matterport.com/de/node/44

Soundcloud

In the Mensa Matterport model, SoundCloud is essential for us to be able to connect and play sound files within the Matterport model. We use functions of the social media network SoundCloud from SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany, in connection with the Matterport model. By using functions such as playing music, data is transmitted to SoundCloud, stored and analysed.

What data is stored on SoundCloud? As soon as you visit the Mensa Matterport model and a SoundCloud audio file is embedded, your browser also connects to a SoundCloud server. Your data can be transferred to SoundCloud, managed and stored there. For example, SoundCloud learns your IP address and which page (in this case ours) you visited and when. If you have a SoundCloud account and are logged in while browsing our website, the data collected will be assigned directly to your account/account. You can only prevent this by logging out of SoundCloud during your visit to our website. In addition to the information mentioned above, data about your user behaviour is also stored in the cookies. For example, whenever you click a button, play or pause a piece of music, this information is stored in the cookies.

If you would like to find out more about SoundCloud's privacy policy and the general handling of data, we recommend that you read the company's privacy policy at https://soundcloud.com/pages/privacy.

Vimeo

In the Mensa Matterport model, Vimeo is essential for us to be able to connect and play video files within the Matterport model. We also use Vimeo videos in connection with the Matterport model. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in, we can display interesting video material within the Matterport model of the canteen dining room. Vimeo is essential for us to be able to link and play video files within the Matterport model. In the process, certain data may be transferred from you to Vimeo. In this privacy policy, we show you what data is involved, why we use Vimeo and how you can manage or prevent your data or the transfer of data.

What data is stored on Vimeo? When you visit a page on our website that has a Vimeo video embedded, your browser connects to the Vimeo servers. This results in a data transfer. This data is collected, stored and processed on the Vimeo servers. Regardless of whether you have a Vimeo account or not, Vimeo collects data about you. This includes your IP address, technical information about your browser type, your operating system or very basic device information. Vimeo also stores information about which website you use the Vimeo service and which actions (web activities) you perform on our website. These web activities include, for example, session duration, bounce rate or which button you clicked on our website with built-in Vimeo function. Vimeo can track and store these actions with the help of cookies and similar technologies.

Vimeo also processes your data in the USA, among other places. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This may entail various risks for the legality and security of data processing. You can find more information on the standard contractual clauses at Vimeo at https://vimeo.com/privacy#international_data_transfers_and_certain_user_rights.
You can find out more about the use of cookies at Vimeo at https://vimeo.com/cookie_policy, information on data protection at Vimeo can be found at https://vimeo.com/privacy .

Order data processing

We host our website with the processor ALL-INKL.COM - Neue Medien Münnich, Owner: René Münnich
who is bound by our instructions. Hauptstraße 68, 02742 Friedersdorf, Germany. Corresponding contracts for commissioned processing in accordance with Article 28 of the GDPR are available and can be viewed on request.

Data processing on this website 

Our host automatically collects and stores information in your server log files that your browser sends to the server. These are:

  • Browser type/version (e.g. Internet Explorer, Chrome, Safari, Firefox, Edge, etc.)
  • Operating system used
  • Operating system used (e.g. Windows, Android, Chrome OS, iOS, MacOS, Linux, etc.)
  • Referrer URL (the previously visited page)
  • Host name of the accessing computer (IP address)
  • Time of the server request
  • .

This data cannot be assigned to specific persons. This data is not merged with other data sources, and the data is also deleted after a statistical evaluation.

Contact and information forms 

For the purpose of contacting us or making an enquiry, you can contact us by e-mail using various forms. Personal data may be collected in these forms, such as surname, first name, address, telephone number, birthday, email address or similar. The data collected in the form is not stored in the system. They are sent to us as SSL-encrypted e-mails; the system merely acts as a forwarding agent for the information you have provided. Neither the e-mails sent nor any form data are stored in the web server system. However, a normal email link is processed exclusively on your own system, and our CMS forwards the relevant email address to you.

All comments, text messages, details or information that you send us via these forms are voluntary. We receive this information via SMTP as an e-mail and also treat it internally as an e-mail; it is not passed on to third parties. The information provided will only be used for the purpose stated in each case, will be stored securely and will not be passed on to third parties without your express consent. We will only send you information if you have registered for corresponding offers or have requested a reply.

However, we would like to point out that data transmission on the Internet (e.g. when communicating by email) takes place via numerous networked systems and may be subject to security vulnerabilities. Complete protection of the transmitted data against access by third parties is not possible. If you do not agree to this, you should generally refrain from using the forms and contact us in person.

Your rights as a data subject

As a data subject, you have the following data subject rights in the context of data processing by us: You can request from us at any time, free of charge and without giving reasons in accordance with Art. 15 GDPR, to request information about which of your data is processed by us, to request the correction of incorrect data in accordance with Art. 16 GDPR, to request the deletion of your data in accordance with Art. 17 GDPR, to receive your personal data in accordance with Art. 20 GDPR or to have your personal data transmitted to another controller, insofar as this is feasible, to demand the restriction of processing in accordance with Art. 18 GDPR and to object to processing under the conditions of Art. 21 para. GDPR, provided that the respective conditions are met. Excluded from this are copyrighted materials and production data as well as source data from the operator's property, in accordance with sections 12, 13 and 14 of our GTC.

Your right of appeal

Your trust is important to us. We would therefore like to be able to answer your questions regarding the processing of your personal data at any time. If you have any questions that this privacy policy could not answer or if you would like more detailed information on any point, please contact us at any time at the address given in the legal notice.

If you have any concerns or complaints regarding the lawfulness of the processing of your personal data, you can also contact the data protection supervisory authority responsible for the operator;data protection supervisory authority (Independent Data Protection Centre Saarland, Monika Grethel, Landesbeauftragte für Datenschutz und Informationsfreiheit, Fritz-Dobisch-Straße 12 in 66111 Saarbrücken, Telefon: 0681 / 94781-0, fax: 0681 / 94781-29, e-mail: poststelle(at)datenschutz(dot)saarland(dot)de). You also have the right to take legal action.