Our notice regarding data protection

Our notice regarding data protection

The Fritz Thyssen Stiftung takes the protection of your personal data very seriously. We would therefore like to inform you about whether and which data we process. Our obligation to do this emanates from the German Telemedia Act (Telemediengesetz – TMG) and the General Data Protection Regulation (GDPR). We provide our information at www.fritz-thyssen-stiftung.de.

1. Personal data
Personal data means all information that relates to an identified or identifiable natural person (referred to in the following as data subject); an identifiable persons is deemed to mean a natural person who can be identified directly or indirectly, in particular by means of association with a form of identification such as a name, an identification number, location-related data, an online identification or one or more special features that manifest the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person.

Our personal data therefore includes, for example, your name, the address where you reside, your gender, your date of birth, your age, your telephone number, your e-mail address or your IP address. This list is not complete and is merely intended to show you what the term personal data may designate.

2. Name and contact data of the instance in charge
The Fritz Thyssen Foundation is the instance in charge of processing your personal data. You can contact us at this address:

Fritz Thyssen Stiftung
Apostelnkloster 13-15
50672 Köln

3. Data protection officer
This is where to contact the Fritz Thyssen Foundation’s Data Protection Officer:

Dr. Thomas Suermann
Fritz Thyssen Stiftung
Apostelnkloster 13-15
50672 Köln
Telefax: +49.221.277 496-196
E-mail: datenschutz@fritz-thyssen-stiftung.de

4. What data from you that we process
In the following we inform you whether and what data we process when you use one of our information services:

a) General principle
We do not process any personal data on you in principle when you use our information services.

b) Enquiries by e-mail
If you contact us by e-mail, it may be the case that we require personal data from you. We only process your personal data to the extent and as long as we need such in order to render our information services to you. We store your personal data on a permanent basis.

c) Data collection for technical reasons
Each time you visit www.fritz-thyssen-stiftung.de, we automatically collect and store your data that your browser sends to our server. This involves the following information:

  • Type and version of the browser used by you
  • What operating system you are using
  • The URL of the site being requested
  • Date and time of day when the site is called up
  • Your IP address

We do not have any possibility to assign this data to you individually, nor do we place this data together with other data sources. If we obtain knowledge of your IP address when you call up our site, we shall store the aforementioned data for a period of 60 days and delete it after the expiry of this period of time unless statutory retention obligations require us to store your data for a longer period of time. We shall only assess data which has been recorded in a protocol on your visit to our website or have such assessed if

  • we are obligated to do such by law or a court decision or
  • we need the protocolled data in order to be able to take legal action under penal and/or civil law against attacks on our infrastructure.

d) Downloading of files
On our website we offer you the possibility to download files. In order to make this possible, we automatically collect data which your browser transmits to our server. This involves the following information:

  • Type and version of the browser used by you
  • What operating system you are using
  • The URL of the site being requested
  • Date and time of day when the site is called up
  • Your IP address

To the extent that we acquire knowledge of your IP address through your download, we shall store the aforementioned data for a period of 60 days and delete it after the expiry of this period of time.

In order to foster reasonably transparent actions in the interest of the public weal, the Fritz Thyssen Foundation publishes annual reports in printed form, within the framework of which we report on the names of recipients of support, their institutions and their research projects. You can download these annual reports from our website. The Foundation reserves the right to also report on its website about projects for which support has been approved. These forms of publication are not associated with any assessments or evaluations.

e) No use of cookies
We do not use any “cookies” (text files that are saved on the web browser on your computer that make it possible to analyse use of the website).

f) No use of data traffic analysis services
We do not use any data traffic analysis services such as, for example, Google Analytics, the web analysis service of Google Inc. (“Google”), on our website.

5. Your rights as a data subject
As a data subject, you have the following rights towards us:

  • Right to withdraw data protection-related consent in accordance with Art. 7, section 3 of the General Data Protection Regulation
  • Right of access in accordance with Art. 15 of the General Data Protection Regulation
  • Right to rectification in accordance with Art. 16 of the General Data Protection Regulation
  • Right to erasure (“right to be forgotten”) in accordance with Art. 17 of the General Data Protection Regulation
  • Right to restriction of processing in accordance with Art. 18 of the General Data Protection Regulation
  • Notification obligation in accordance with Art. 19 of the General Data Protection Regulation
  • Right to data portability in accordance with Art. 20 of the General Data Protection Regulation
  • Right to object in accordance with Art. 21 of the General Data Protection Regulation
  • Right to lodge a complaint with a supervisory authority in accordance with Art. 77 of the General Data Protection Regulation

6. Legal foundations for processing; statutory or contractual provisions pursuant to the provision of personal data; requirement that a contractual agreement be concluded; obligation of the data sub-ject to provide personal data; possible consequences of not providing data
Under Art. 6, section 1, subsection 1, letter b) of the General Data Protection Regulation, we require some of your personal data in order to present the content of our website to you or to render information services to you.

If you do not want us to process your personal data, we cannot present our website or render information services to you.

7. Data security
We have taken technical and organisational security precautions in order to protect your data, in particular against loss, manipulation or unauthorised access. We modify our security precautions on a regular basis in order to stay abreast of ongoing technological developments.

8. Regular updating of this data protection note
The underlying legal conditions for us in our capacity as providers of information services are of course subject to change and modification. These changes and modifications make it necessary to update this data protection notice from time to time. We shall therefore notify you about any changes.