Responsible operator/persons within the meaning of applicable data protection and privacy laws

Cluster für Individualisierte Immun-Intervention (Ci3) e.V. (in liquidation)

Göttelmannstr. 17
55130 Mainz
Phone: 06131 50 19 322
Email: mail@ci-3.de

1st   Chairperson:
PD Dr. Özlem Türeci
2nd  Chairperson: 
Prof. Dr. Christoph Huber

Processing of Personal Data

Ci3 e.V. processes personal data according to the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

Personal data is individual information about the personal or material circumstances of a specific or specifiable natural person, including the name, address, email address and IP address, among others.

This Data Privacy Statement describes how we process your personal data. For the purpose of this website, your personal data is processed within the meaning of section 6 para. 1 sub. f GDPR; for the purpose of registrations/newsletter, your personal data is processed based on your approval according to section 6 para. 1 sub. a GDPR. As soon as your personal data is no longer needed for the intended purpose or the basis for processing has become obsolete, we delete the data while adhering to legal retention periods.

Please note that web-based data transfer is subject to security vulnerabilities making it impossible to fully protect the data from third-party access.

Website

This website is hosted by 1&1 Internet SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. For the purpose of using individual services of our website, it may be necessary to collect personal data as set out below.

Cookies

This website uses cookies. Cookies are small text files that are placed and stored on your computer by your Internet browser. Cookies are used for technical reasons, for example in order to resume the session of a user when logging in and if the previous session was terminated by closing the browser. These cookies are not used to analyze the use of our website. The legal basis is provided in Article 6 (1) f) GDPR.

You may block the installation of cookies by adjusting the settings of your browser. Please be aware that you may not fully use all functions of our website if you block the installation of cookies

Server Data
When visiting the website, certain data including data sent by the browser (e.g. IP addresses, cookies, referring website, date and time, displayed content) is temporarily stored on the 1&1 web server.

This data is used to enable users to use the website. In addition, the data may be necessary to be able to investigate any claims or violations of legal stipulations, terms of use and third-party rights and enforce such rights.  The legal basis is provided in Article 6 (1) f) GDPR.

This anonymous data is stored separately from other personal data you may have provided and thus does not allow drawing conclusions on a specific person. It is evaluated for statistical purposes to optimize our online presence and services.

Registration Function

Our website features a registration function that allows you to register for events, among others. The data collected during the registration process and visible in the registration template (name, email address, organization, business address) is solely collected and stored for the purpose of using our services. The legal basis is provided in Article 6 (1) f) GDPR.

When you register on our site, we also store your IP address and the date and time of your registration.  We do this to protect us against any claims in case a third party abuses your data or registers on our website without your consent. None of this data is transferred to third parties. Nor is any of this information reconciled with the data third parties may have collected through other components of our site. We will keep the data you have entered into the form until you either request us to delete the data or withdraw your consent to data sharing, or if the purpose of data sharing does no longer exist.

Newsletter

Our website has a feature allowing you to sign up for our newsletter. This newsletter aims at informing you about our services at regular intervals. In order to be able to receive our newsletter, you have to register with a valid email address. We will verify this email address in order to determine whether you are indeed the owner of the given email address or whether the owner of the email address has given consent to receive our newsletter. When you sign up for our newsletter, we will save your email address and, where applicable, name, IP address, date and time of your registration. We do this to protect us against any claims in case a third party abuses your email address or signs up for our newsletter without your consent.  We do not collect any other data apart from the data mentioned above. The data we collect in this manner is used exclusively to provide you with our newsletter. None of this data is transferred to third parties. Nor is any of this information reconciled with the data third parties may have collected through other components of our site.

You may unsubscribe from our newsletter and thus withdraw your consent to the aforementioned use of your data at any time. The unsubscribe link is included at the end of each newsletter.

To mail our newsletter, we use ‘CleverReach“, a tool provided by CleverReach GmbH & Co. KG, Rastede, Germany. The data we store when you sign up for the newsletter (address and, where applicable, name, IP address, date and time of your registration) is transmitted to and stored at a server operated by CleverReach GmbH & Co. KG.

For more information about data privacy at CleverReach, please visit:

https://www.cleverreach.com/de/datenschutz/

Use of Google Maps

We use the “Google Maps” function of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA – hereinafter referred to as “Google” – on our website. The legal basis is provided in Article 6 (1) f) GDPR.

Each time the “Google Maps” function is called up, Google places a cookie on the page into which the “Google Maps” function is integrated in order to process user settings and data when the page is called up. This cookie is usually not deleted when you close your browser, but expires after a certain period of time provided that you have not previously deleted the cookie manually.

If you do not agree to the processing of your data in this manner, you can prevent the transmission of data to Google by deactivating the “Google Maps” function.  To do so, you must deactivate the JavaScript function in your browser. In this case, however, you will only be able to use some of the “Google Maps” functions or none at all. The use of “Google Maps” and of the information collected via “Google Maps” will be in accordance with the Google Terms of Use

http://www.google.de/intl/de/policies/terms/regional.html

and the “Google Maps” Terms of Use.

https://www.google.com/intl/de_de/help/terms_maps.html.

Third-Party Services

If you use links on our website or embedded content (e.g. videos, images, articles, etc.). that take you to Internet services maintained by third parties, you should review the data privacy statements and statements for the processing of personal data contained in these websites. These are the responsibility of the respective third-party provider.

Virtual Meetings

With regard to
business communications, in the course of cooperations, workshops etc. we use
virtual meetings when necessary. For this purpose we use

·       “Microsoft
Teams” from Microsoft Corporation (One Microsoft Way, Redmond, WA
98052-6399 USA)

·       “Zoom”
from Zoom Video Communications Inc. (55 Almaden Boulevard, 6th Floor, San Jose,
CA 95113, USA) and “Webex Meetings” by Cisco International Limited
(9-11 New Square Park, Bedfont Lakes, Feltham, England TW14 8HA, UK) 

to conduct conference calls, online
meetings, video conferences and live webinars.

The
following personal data may be processed:

Registration
data/profile data: name, e-mail address, password, image, telephone number
(some of which is optional).

Hosting
& usage data (meeting metadata): IP address, user ID, hardware type,
operating system type and version, client version, IP addresses along the
network path, endpoint MAC address (if applicable), service version, actions
taken, meeting session information (title, date and time, frequency, average and
actual duration, quantity, quality, network activity, network connectivity),
number of meetings, number of sessions with and without screen sharing, number
of participants, host name, screen resolution, joining method, performance/
troubleshooting information/diagnostics, chat content (optional).

We
protect the participants of our virtual meetings in the best possible way with
privacy-friendly settings and internal usage policies.

Personal
data processed in connection with participation in virtual meetings are
generally not passed on to third parties, unless they are specifically intended
to be passed on. The above-mentioned service providers necessarily receive
knowledge of the above-mentioned data, insofar as this is provided for in the
respective data processing agreements. 

Ci3
e.V. has a legitimate interest in the processing of personal data for virtual
meetings according to article 6 paragraph 1(f) GDPR.
Where applicable, legality also arises from article 6 paragraph 1(b) GDPR for
(pre)contractual measures.

The
relevant personal data of the participants will be stored until the purpose of
the data processing ceases to apply. As a rule, however, the above-mentioned
data will be deleted at the latest within 50 days after termination of the
service, unless they are subject to a statutory retention period or serve to
improve the service.

If
applicable, please also review the data protection declarations of the service
providers.

In order to be able to properly answer your enquiry, it may be necessary to transfer your enquiry internally. Your data will not be shared with third parties and will immediately be deleted as soon as there are no other reasons to use your data apart from answering your enquiry. You may withdraw your consent free of charge at any time. Your personal data is processed based on a legitimate interest within the meaning of 6 para. 1 sub. f GDPR.

Information/Withdrawal/Deletion

The processing of personal data by Ci3 e.V. gives rise to data subject rights in accordance with data privacy laws. You have the right to free information, correction, deletion and limited processing of your personal data as long as this right does not interfere with any legal retention periods. In addition, you have the right to data portability, the right not to be subject to a decision based solely on automated processing, and the right to withdraw consent. The lawfulness of processing, however, will not be repealed retroactively in the event of a withdrawal of consent.  Furthermore, you have a right of appeal to Ci3 e.V. or the competent data privacy supervisory authority.

If you want to assert your data subject rights or if you have any questions regarding the processing of your personal data by Ci3 e.V., please contact

Cluster für Individualisierte ImmunIntervention (Ci3) e.V.
Hölderlinstr. 8
55131 Mainz
E-Mail: mail@ci-3.de

As of: 04.12.2020