The following data protection declaration applies to the use of our online offer [www.aquahealth-project.com] (hereinafter “website”).
We ascribe great importance to data protection. The collection and processing of your personal data takes place in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).
Responsible body for the collection, processing and use of your personal data within the meaning of Art. 4 No. 7 GDPR on this website is:
Hamburg University of Technology
Institute for Environmental Technology and Energy Economics
Prof. Dr.-Ing. Kerstin Kuchta
T: +49 40 42878-3054
If you want to object to the collection, processing or use of your data by us in accordance with these data protection provisions as a whole or for individual measures, you can address your objection to the person responsible.
You can save and print this data protection declaration at any time.
2. General purposes of processing
We use personal data for the purpose of operating the website.
We process the personal data that you provide to us by email to answer and deal with your inquiries.
The legal basis is: Article 6 Paragraph 1 Sentence 1 Letter e GDPR in conjunction with Section 4 HmbDSG in conjunction with Section 3 Paragraph 11, 13 in conjunction with Section 111 Paragraph 1 HmbHG.
The information is only stored for the associated process and deleted after the request has been completed, unless statutory provisions stipulate a longer storage period, in particular for the purpose of accounting or for security purposes.
3. What data we use and why
3.1 Processing of Data
We collect information about you when you use this website. We automatically collect information about your usage behavior and your interaction with us and register data about your computer or mobile device. We collect, save and use data about every access to our website (so-called server log files). Data included:
– Name and URL of the file called up
– Date and time of access
– amount of data transferred
– Notification of successful retrieval (HTTP response code)
– browser type and version
– Systems software
– Referer URL (i.e. the previously visited page)
– Websites that are accessed by the user’s system via our website
– The user’s internet service provider
– IP address and the requesting provider. The last blog of the IP address is not displayed in the Access_log; a 0 is inserted here instead. This “obscures” the IP address and cannot be assigned to anyone.
We use this log data without assignment to your person or other profile creation for statistical evaluations for the purpose of operation, security and optimization of our website, but also for anonymous recording of the number of visitors to our website (traffic) as well as the scope and type of Use of our website and services.
The legal basis is: Art. 6 Paragraph 1 Sentence 1 Letter e GDPR in conjunction with Section 4 HmbDSG in conjunction with Section 3 Paragraph 11, 13 in conjunction with Section 111 Paragraph 1 HmbHG.
We reserve the right to check the log data retrospectively if there are reasonable grounds to suspect illegal use. We store it in the log files for a limited period of time if this is necessary for security purposes. The deletion usually takes place after 7 days, unless the longer storage is required by law, in particular for security purposes.
The legal basis is: Art. 6 para. 1 sentence 1 letter e GDPR in connection with § 4 HmbDSG in connection with § 3 para. 11, 13 in connection with § 111 para. 1 in connection with the rules for dealing with log – and log files on mail servers and firewalls of the Hamburg University of Technology dated February 14, 2011 (Link: https://www.tuhh.de/tuhh/uni/informationen/ordnung-linien/regel-protokolldaten.html), in particular § 6 .
When individual pages are called, so-called temporary cookies are used to make navigation easier. These session cookies do not contain any personal data and expire at the end of the session. Techniques such as Java applets or Active-X controls that make it possible to understand the access behavior of users are not used. Cookies are small text files that a website can store on the computer of a website visitor, i.e. locally.
You can prevent the installation of cookies by preventing the installation of cookies through a corresponding setting or add-ons in your browser.
3.3 Contact form
Data transmitted via the contact form, including your contact details, will be saved in order to process your request or to be available for follow-up questions. This data will not be passed on without your consent.
The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your already given consent at any time. An informal notification by email is sufficient for the revocation. The legality of the data processing operations carried out before the withdrawal remains unaffected by the withdrawal.
Data transmitted via the contact form will be deleted if it can be inferred from the circumstances that your request or the matter concerned has been finally clarified, your consent to storage is revoked or there is no longer any need to store data. Mandatory statutory provisions – in particular retention periods – remain unaffected.
3.4 SSL or TLS encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses an SSL or. TLS encryption 1.2. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https: //” address line of your browser and by the lock symbol in the browser line.
4. Rights of the person in question
You have the rights listed below. If you would like to assert these rights, please send your request by email or post, clearly identifying yourself, to the address given in Section 1.
– Art. 15 GDPR: Right of the data subject to be informed
You have the right to obtain information from us about what data we process about you.
– Art. 16 GDPR: right to rectification
If the data concerning you is incorrect or incomplete, you can request that incorrect information be corrected or that incomplete information be completed.
– Art. 17 GDPR: Right to deletion
Under the conditions of Art. 17 GDPR, you can request the deletion of your personal data. Your right to deletion may depend amongst others on whether the data concerning you are still required by us to fulfill our legal tasks.
– Art. 18 GDPR: right to restriction of processing
Under the conditions of Article 18 GDPR, you can request that the processing of your personal data be restricted.
– Art. 21 GDPR: right to object
For reasons arising from your particular situation, you can object to the processing of your data at any time.
– Art. 7 Para. 3 GDPR: Right to withdraw consent
You have the right to revoke your consent to the processing of your personal data at any time. Withdrawing consent does not affect the lawfulness of processing based on consent before its withdrawal.
– Right to complain to the competent supervisory authority
As a data subject, you have the right to lodge a complaint with the competent supervisory authority in the event of a breach of data protection law. The responsible supervisory authority is:
Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
Ludwig-Erhard-Str. 22, 7th floor
5. Data protection officer
Our data protection officer will be happy to provide you with information or suggestions on the subject of data protection:
External data protection officer of the TUHH
datenschutz nord GmbH
Email: office (at) datenschutz-nord.de
6. PDF version of the data protection declaration
The PDF version of the data protection declaration is available here.