Privacy Policy
In accordance with Art. 13 DS-GVO, this privacy policy informs you about the method and background of the processing of your personal data via the website www.project-elpida.org ("Website") and about the rights to which you are entitled. Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. These are therefore not only your name, e-mail address or contact details, but also, for example, the IP address through which you may visit our website purely for information purposes.
​
​
I. Person responsible
Pursuant to Art. 4 No. 7 DS-GVO, the responsible party is Project ELPIDA e.V. ("Elpida"), Friedbergstraße 25, 14057 Berlin, represented by Levin Schmidt, Lorenz Schmidt and Benjamin Schmidt (Board of Directors); e-mail: project-elpida@web.de.
​
Registration in the register of associations.
Register court: Amtsgericht Berlin Charlottenburg
Registration number: VR 39048 B
​
​
II. purely informative visit to our website
During the informational visit to our website, we automatically collect the following data and information from the computer system of the accessing computer:
-
IP address
-
Date and time of the request
-
Time zone difference to Greenwich Mean Time (GMT)
-
Content of the request (specific page)
-
Access status/HTTP status code
-
Amount of data transferred in each case
-
Website from which the request comes Browser
-
Operating system and its interface
-
Language and version of the browser software
The data is also saved in the log files of our system. A saving of this data together with other personal data of the user does not take place. This data processing by our system serves the purpose and our interest of enabling the delivery of the website to the user's computer. For this purpose, the user's IP address must remain saved for the duration of the session. The saving in log files is done for the purpose and in our interest to ensure the functionality of the website and to optimize the website as well as to ensure the security of our information technology systems. An evaluation of this data for marketing purposes does not take place.
The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f DS-GVO. The data is deleted from our system when the respective session has ended. The data saved in the log files are deleted or anonymized after seven days at the latest, so that an assignment of the calling client is no longer possible. The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Apart from that, we only collect personal data from you if you voluntarily provide it to us on the website, e.g. when you download a newsletter, make a donation or contact us.
You can also visit the website in general without disclosing any personal data. In this case, however, you may not be able to use certain areas of the website or we may not be able to respond to a request from you.
​
III. Cookies
​
1. what are cookies?
A cookie is a small data record that is saved on your device and contains data such as personal page settings and login information. This record is generated and sent to you by the web server to which you have connected via your web browser.
The most common types of cookies are explained below for your understanding:
-
Session cookies: while you are active on the website, a session cookie is temporarily saved in your computer's memory, which saves a session identifier, for example, to prevent you from having to log in again each time you change pages. Session cookies are deleted when you log out or lose their validity once their session has automatically expired.
-
Permanent or protocol cookies: A permanent or protocol cookie saves a file on your computer beyond the period of your visit to the website. These cookies allow websites to remember your information and preferences the next time you visit. This results in faster and more convenient access, as you do not have to set your language preferences again, for example.
-
Third-party cookies: Third-party cookies come from providers other than the website operator. They can be used, for example, to collect information for advertising, custom content, and web statistics.
​
2. technically necessary cookies
Some elements of our website require that the accessing browser can be identified even after a page change. In the cookies to be set at your end, the following data will be saved and transmitted:
-
Log-in information: The cookies are deleted when the browser is closed. The legal basis for the processing of personal data using these technically necessary cookies is Art. 6 para. 1 lit. f DS GVO. The cookies serve our legitimate interest in enabling the use and provision of our website. The cookies are technically necessary cookies for the use of the website.
​
IV. Your data subject rights
​
According to the DS GVO, you have the following rights regarding the personal data concerning you:
-
Right to information,
-
right to correction,
-
right to delete,
-
Right to restriction of processing,
-
Right to object to processing,
-
right to data portability.
You also have the right to complain to a data protection supervisory authority about the processing of your personal data.
​
​
V. Links to other websites
​
The Website may contain links to other websites and to privacy statements and policies on those websites. We assume neither liability nor responsibility for these statements and guidelines that are not related to our website.
​
VI. other data processing by Project ELPIDA e.V.
​
1. provision of our statutory and business services
We process the data of our members, supporters, interested parties, customers or other persons in accordance with Art. 6 para. 1 lit. b. DS-GVO, insofar as we offer them contractual services or act within the context of existing business relationships, e.g. towards members, or are ourselves recipients of services and benefits. In other respects, we process the data of data subjects pursuant to Art. 6 Para. 1 lit. f. DS-GVO on the basis of our legitimate interests, e.g. when administrative tasks or public relations are involved.
The data processed in this context, the type, extent and purpose and the necessity of their processing are determined by the underlying contractual relationship. In general, this includes inventory and basic data of the persons (e.g., name, address, etc.), as well as contact data (e.g., e-mail address, telephone, etc.), contract data (e.g., services used, content and information provided, names of contact persons) and, if we offer services or products subject to payment, payment data (e.g., bank details, payment history, etc.).
We delete data that is no longer required to fulfill our statutory and business purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we retain the data for as long as they may be relevant for the processing of the business and with regard to any warranty or liability obligations. The necessity of retaining the data is reviewed every three years; otherwise, the statutory retention obligations apply.
​
2. administration, financial accounting, office organization, contact management
We process data in the context of administrative tasks as well as organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In this regard, we process the same data that we process in the context of providing our contractual services. The processing bases are Art. 6 para. 1 lit. c. DS-GVO as well as Art. 6 para. 1 lit. f. DS-GVO. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve the maintenance of our business activities, performance of our tasks and provision of our services. The deletion of data with regard to contractual services and contractual communication corresponds to the data mentioned in these processing activities.
We disclose or transfer data to the tax authorities, consultants, such as tax advisors or auditors, as well as other fee offices and payment service providers.
Furthermore, based on our business interests, we save information about suppliers, event organizers and other business partners, e.g. for the purpose of contacting them at a later date. This data, most of which is company-related, is generally saved permanently.
​
3. deletion of data
The data processed by us will be deleted or restricted in its processing in accordance with Articles 17 and 18 DS-GVO. Unless expressly stated in this data protection declaration, the data saved by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory retention obligations. If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. I.e. the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law.
According to legal requirements in Germany, data is kept for 10 years in accordance with §§ 147 Para. 1 AO, 257 Para. 1 No. 1 and 4, Para. 4 HGB (books, records, management reports, accounting vouchers, commercial books, documents relevant for taxation, etc.) and 6 years in accordance with § 257 Para. 1 No. 2 and 3, Para. 4 HGB (commercial letters).
​
4. cooperation with processors and third parties
Insofar as we disclose data to other persons and companies (order processors or third parties) within the context of our processing, transmit it to them or otherwise grant them access to the data, this shall only be done on the basis of a legal permission (e.g. if a transmission of the data to third parties, such as to payment service providers, is required for the performance of the contract pursuant to Art. 6 (1) lit. b DS-GVO), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called "order processing contract", this is done on the basis of Art. 28 DS-GVO.
5. transfer to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of using third-party services or disclosing or transferring data to third parties, this will only occur if it is done to fulfill our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or allow the processing of data in a third country only if the special requirements of Art. 44 et seq. DS-GVO are fulfilled. This means, for example, that processing takes place on the basis of special guarantees, such as compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").