Privacy Policy
1. General information
In the following, we inform you about the processing of your personal data by us and the claims and rights to which you are entitled under data protection regulations, in particular the European General Data Protection Regulation (GDPR).
This data protection information clarifies the type, scope and purpose of the processing of personal data within our website (hereinafter "website"). The data protection information applies regardless of the domains, platforms and devices used (e.g. desktop, mobile, etc.).
Personal data within the meaning of the GDPR is all data that can be related to you personally, e.g. name, address, email addresses, user behaviour. Which data is processed in detail and how it is used depends largely on the services you use with us.
In our data protection information, we use various other terms within the meaning of the GDPR. These include terms such as processing, restriction of processing, profiling, pseudonymisation, controller, processor, recipient, third party, consent, supervisory authority and international organisation. You can find the corresponding definitions for these terms in Art. 4 GDPR.
Name and contact details of the person responsible
Responsible for data processing is the
European Edtech Alliance e.V.
Schwarzer Diek 3
33428 Marienfeld
GERMANY
The electronic contact details can be found in the imprint.
Contact details of the data protection officer
If you have any questions regarding the processing of your data, you can contact our data protection officer, who will be happy to assist you in the event of requests for information, suggestions or complaints.
Damian Bartsch Cornelsen - data@edtecheurope.org
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
2. Data categories and origin of the data
We process personal data that we receive from you as part of the use of our website and, if applicable, our business relationship.
If you use the website for purely informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server (so-called server log files). When you visit our website, we collect the following access data, which is technically necessary for us to display our website to you and to ensure stability and security. The access data includes the IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (i.e. name of the specific website accessed), access status/HTTP status code, amount of data transferred in each case, referrer URL (previously visited page), operating system and its interface, language and version and type of browser software, notification of successful access. This data is not merged with other data sources.
We also receive your personal data if you contact us by e-mail, telephone or fax, for example, or send us data via a web form. Personal data here includes, for example, your name, address, e-mail address, telephone number ("contact data") and, if applicable, the data that you send us as a message. Depending on the type of enquiry, it may be necessary to provide further data.
We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
3. Purposes and legal basis of data processing
We process your personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) on the basis of the following legal bases:
3.1 Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
If you have given us your consent to process personal data for specific purposes, in particular for contacting you (sending newsletters, contacting you through partners in our network) or publishing your data on our website (e.g. European Edtech Map), the lawfulness of this processing is based on your consent. Any consent given can be revoked at any time.
Please note that the cancellation is only effective for the future. Processing that took place before the cancellation is therefore not affected by the cancellation. The cancellation can be sent to the contact details above or to data@edtecheurope.org.
3.2 Implementation of (pre-)contractual measures at the request of the person (Art. 6 para. 1 sentence 1 lit. b GDPR)
When contacting us (via web form), by filling out the membership application form.
3.3 As part of the balancing of interests to safeguard legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR) or your consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
We use cookies and similar technologies on our website. We store information on your end device this is technically necessary in order to make our website available to you. The data processing is carried out to protect our legitimate interest in the best possible functionality of the website.
Further information on the use of cookies and comparable technologies can be found under "Cookies and similar technologies".
3.4 As part of the balancing of interests to safeguard legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR)
We may process your personal data to protect our legitimate interests or those of third parties. We pursue the following legitimate interests in particular:
· Ensuring IT security, in particular the security of the website;
· Improvement of the website in terms of structure and content;
· Assertion of legal claims and defence in legal disputes;
· Direct advertising, provided you have not objected to the use of your data.
4. Recipients of the data
Within the company, those departments that require your data to fulfil our contractual and legal obligations will have access to it.
If you register on our European Edtech Map or the Ecosystem Builder Map using the relevant forms, the partner organisations based in your country will receive your data.
Companies engaged by us for order processing (Art. 28 GDPR) may also receive data for the above-mentioned purposes. The service providers have been carefully selected and commissioned by us. They are contractually bound by our instructions, have suitable technical and organisational measures in place to protect the rights of the data subjects, guarantee an appropriate level of data protection and are carefully monitored by us.
Data will only be passed on to third parties who are not companies for order processing within the framework of the legal requirements. We only pass on your data to third parties if this is necessary, for example, on the basis of Art. 6 para. 1 sentence 1 lit. b GDPR for contractual purposes or on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f. GDPR in the economic and effective operation of our business operations or if you have consented to the transfer of data. When using the website purely for information purposes, we do not pass on any data to third parties.
5. Duration of data storage
For security reasons (e.g. to investigate misuse or fraud), log file information from website use is stored on our server for a maximum of 90 days and then deleted. Data whose further retention is required for evidentiary purposes is excluded from deletion until the respective incident has been finally clarified.
Where necessary, we process and store your personal data for the duration of our business relationship, which also includes, for example, the initiation and fulfilment of a contract via the contact form or by email.
In addition, we are subject to various retention and documentation obligations, including those arising from the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods specified there are two to ten years.
Finally, the storage period is also assessed according to the statutory limitation periods, which, for example, according to Sections 195 et seq. of the German Civil Code (BGB), are generally three years, but in certain cases can be up to thirty years, whereby the regular limitation period is three years.
If you assert your rights as a data subject, we will store the information provided to you in this regard for three years until the expiry of the statutory limitation period Art. 83 (5) lit. b GDPR. This period may be extended if the statutory limitation period is extended due to interruptions of the limitation period (e.g. in the context of enquiries by the supervisory authorities).
6. Transfer of your data to a third country or an international organisation
The data provided will be processed within the European Union and in the USA. When transferring data to the USA, we ensure that the recipients of the data are certified in accordance with the EU-U.S. Data Privacy Framework or that we agree EU standard data protection clauses with recipients without certification. If we base the data transfer on the EU standard data protection clauses, we will take additional security measures in order to protect your data and to achieve an appropriate level of protection for your personal data. You have the option of obtaining or viewing a copy of the EU standard data protection clauses. If necessary, we will obtain your express consent for the transfer of data to the USA.
7. Rights of data subjects
Each person concerned has
· the right to information in accordance with Art. 15 GDPR (i.e. you have the right to request information about your personal data stored by us at any time),
· the right to rectification pursuant to Art. 16 GDPR (i.e. in the event that your personal data is incorrect or incomplete, you can request the rectification of this data),
· the right to erasure in accordance with Art. 17 GDPR and the right to restriction of processing in accordance with Art. 18 GDPR (i.e. you may have the right to request the erasure or restriction of processing of your personal data if, for example, there is no longer a legitimate business purpose for such processing and statutory retention obligations do not require further storage),
· the right to data portability under Art. 20 GDPR (i.e. you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance).
In addition, you can revoke your consent with effect for the future. This does not affect the lawfulness of data processing up until receipt of the cancellation.
In the event of breaches of data protection law, you have the right to lodge a complaint with the competent supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG). An overview of the supervisory authorities and their contact details can be found at https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html. We would appreciate it if we could resolve your concerns before you contact the supervisory authority and therefore ask you to contact us first with your complaint.
You can assert the rights described above informally, directly against the controller or by contacting the data protection officer.
We would also like to draw your attention to your right to object in accordance with Art. 21 GDPR:
Information about your right to object in accordance with Art. 21 GDPR
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) of Article 6(1) GDPR (data processing in the public interest) and point (f) of Article 6(1) GDPR (data processing on the basis of a balancing of interests); this also applies to profiling based on this provision within the meaning of Article 4(4) GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.
In individual cases, we process your personal data for direct marketing purposes. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.
The objection can be made informally and there are no costs other than the transmission costs according to the basic tariffs. If you wish to make use of your right to object, an informal notification, e.g. to the contact details above, is sufficient.
Ideally, you should address your objection to at the above address.
8. Automated decision making
When you access our website or contact us by form or email, we generally do not use fully automated decision-making in accordance with Art. 22 GDPR. If we use these procedures in individual cases, we will inform you of this separately if this is required by law. We do not process your data automatically with the aim of evaluating certain personal aspects (profiling).
9. Cookies and comparable technologies
We and any services used by us use cookies and similar technologies on our website, such as web storage or web beacons (see below).
We only store such information on your end device, that is technically absolutely necessary to make our website available to you, § 25 para. 2 no. 2 TTDSG. If personal data is also processed by individual cookies, the processing is carried out in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR for the execution of the contract, in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, to safeguard our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the page visit. You can accept or decline the usage of cookies via the cookie banner.
Cookies and similar technologies used:
You can individually prohibit the storage of cookies via the settings of your browser (you can find out how to set the cookie handling via the browser's help page). You can find help on cookie management in the most common browsers at the following addresses:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-loeschen-daten-von-websites-entfernen
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Google Chrome: https://support.google.com/accounts/answer/61416?hl=de
Opera: http://www.opera.com/de/help
Safari: https://support.apple.com/kb/PH17191?locale=de_DE&viewlocale=de_DE
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-l%C3%B6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Please note that deactivating cookies can lead to functional restrictions on this website.
10. Our social media presence
You can find us on social networks and platforms so that we can also communicate with you there and inform you about our services. We would like to point out that your data may be processed outside the European Union and that the data is generally processed there for market research and advertising purposes. Usage profiles can be created from your usage behaviour and your resulting interests. These user profiles can in turn be used, for example, to place adverts within and outside the platforms that presumably correspond to your interests. Cookies may be stored on your end device for this purpose. Other data may also be stored in these user profiles, particularly if you have a membership with the respective platforms and are logged in to them.
In principle, we have no significant influence on the data processing of social networks. However, we receive statistics from the platforms about the use of and visits to our company profiles in the social networks (e.g. information about the number of views, interactions such as likes and comments as well as summarised demographic and other information or statistics). Further information on the data used by the platforms can be found in the data protection notices of the platforms linked below.
If we receive your personal data as part of our social media presence (e.g. as part of a message), you are entitled to the rights set out above in this data protection information. You can address your enquiries regarding data processing in the context of our company profiles to us using the contact details given above.
If you wish to assert any further rights against the provider of the social network, the easiest way to do so is to contact the respective provider directly. The provider knows both the details of the technical operation of the platform and the associated data processing as well as the specific purposes of the data processing. The contact details can be found in the data protection information linked below. We are also happy to support you in asserting your rights, insofar as this is possible for us.
The processing of users' personal data is generally based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. The legal basis is also Art. 6 para. 1 sentence 1 lit. b GDPR if we receive and process your data as part of a contract-related enquiry via our social media presence. The legal basis for the linking and operation of our company profiles in social networks, including the receipt of statistics on the use of our company profiles, is Art. 6 para. 1 sentence 1 lit. f GDPR based on our legitimate interest in our corporate communication in the respective social networks.
For information on the respective processing and the respective objection options, please refer to the data protection information linked below:
· LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) - Privacy Policy https://www.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
· X (Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland), microblogging service - data protection information: https://twitter.com/de/privacy, opt-out: https://twitter.com/personalization
In the case of requests for information and the assertion of your rights, we recommend that these are asserted directly with the providers, as they have direct access to the data. Should you nevertheless require assistance, you are welcome to contact us using the contact details above.
11. Newsletter
We only send newsletters, e-mails and other electronic notifications with advertising information (hereinafter "newsletter") on the basis of the consent of the recipient or on the basis of a legal authorisation.
Double opt-in: Registration for our newsletter takes place using the so-called double opt-in procedure. This means that after registering for the newsletter, we will send you an e-mail asking you to confirm your registration. This confirmation serves to ensure that only people who have access to the e-mail address provided register for our newsletter. We keep a record of newsletter registrations in order to be able to prove the registration process in accordance with legal requirements. This includes storing the time of registration and confirmation as well as the IP address. Changes to your data stored with the newsletter service provider are also logged.
The newsletters contain a so-called web beacon, i.e. a pixel-sized file that is retrieved when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, is initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and your reading behaviour based on their retrieval locations (which can be determined with the help of the IP address) or the access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our endeavour nor that of the mailing service provider to observe individual users. The analyses serve us much more to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
The newsletter is sent, and its success measured on the basis of the recipient's consent in accordance with Art. 6 para. 1 sentence 1 lit. a). The registration process is logged on the basis of our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR and serves as proof of consent to receive the newsletter.
You can unsubscribe from our newsletter at any time, i.e. revoke your consent. You will find a link to unsubscribe from the newsletter at the end of each newsletter. If users have only registered for the newsletter and cancelled this registration, their personal data will be deleted.