1. Definitions according to DS-GVO

The data protection declaration of this website is based on the terms used by the European Directive and Ordinance Maker when enacting the General Data Protection Regulation (DS-GVO). Our data protection declaration should be easy to read and understand for the public as well as for you as customers and business partners. To ensure this, we would like to explain the terms used in advance.

We use the following terms, among others, in this data protection declaration:

• a) personal data
  Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

• b) Data subject
  A data subject is any identified or identifiable natural person whose personal data are processed by the controller. So, in case of doubt, you are a data subject.

• c) Processing
  Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

• d) Restriction of processing
  Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

• e) Profiling
  Profiling shall mean any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location.

• f) Pseudonymisation
  Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data are not attributed to an identified or identifiable natural person.

• g) Controller or data controller
  The controller or person responsible for processing is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.

• (h) Processor
  Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

• (i) Recipient
  Recipient means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigative task under Union or Member State law shall not be considered as recipients.

• j) Third party
  Third party means any natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.

• k) Consent
  Consent is any freely given specific and informed indication of his or her wishes, in the form of a statement or other unambiguous affirmative act, by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.

The person responsible for this website within the meaning of the General Data Protection Regulation is:

Dresden International University GmbH
Freiberger Straße 37
01067 Dresden

Tel.: 0351 / 40470 - 0
Fax: 0351 / 40470 - 110

Email: info@di-uni.de
Website: www.di-uni.de

Dresden International University GmbH is represented by the CEO, Dr. Merle Emre.

Our website collects a series of general data and information from you each time you access the website. This general data and information is stored in the server's log files. The following can be recorded

(1) browser types and versions used,

(2) the operating system used by the accessing system,

(3) the website from which an accessing system arrives at our website (so-called referrer),

(4) the sub-websites which are accessed via an accessing system on our website,

(5) the date and time of an access to our website

(6) an anonymised Internet protocol address (IP address),

(7) the Internet service provider of the accessing system.

When using this general data and information, our company does not draw any conclusions about you. Rather, this information is required in order to

(1) deliver the contents of our website correctly,

(2) optimise the content of our website and the advertising for it,

(3) ensure the long-term functionality of our information technology systems and the technology of our website; and

(4) to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

Therefore, we analyse these anonymously collected data and information on one hand for statistical purposes and on the other hand for the purpose of increasing the data protection and data security of our enterprise, and ultimately to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all your specified personal data.

Due to legal regulations, our website contains information that enables a quick electronic contact to our company as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address).

If you contact us by e-mail, the personal data you provide will be stored automatically. Such personal data transmitted by you to us on a voluntary basis will be stored for the purpose of processing or contacting you. This personal data will not be passed on to third parties.

We process and store your personal data only for the period of time necessary to achieve the storage purpose or if this has been provided for by the European Directive and Regulation Maker or another legislator in laws or regulations to which the controller is subject.

If the storage purpose ceases to apply or if a storage period prescribed by the European Directive and Regulation Maker or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

The European legislator has given you a number of options within the framework of the General Data Protection Regulation to assert your rights - also against us. In order to comply with our duty to inform you in this respect, your rights are outlined below:

• a) Right to information

You have the right to be informed at any time about which of your personal data we process.

• b) Right to rectification

You have the right to request that we correct any inaccurate personal data relating to you without undue delay. Taking into account the purposes of the processing, you also have the right to request that incomplete personal data be completed, including by means of a supplementary declaration.

• c) Right to erasure (right to be forgotten)

You can demand that we delete your personal data immediately if there is no (longer) a legal basis for its further storage by our company.

If we have made your personal data public and we are obliged to erase it, we will take reasonable measures, including technical measures, taking into account the available technology and the costs of implementation, to inform data controllers who process the personal data that you have requested us to erase all links to, or copies or replications of, that personal data.

• d) Right to restriction of processing

You have the right to request us to restrict processing if one of the following conditions is met:

The accuracy of the personal data is contested by you for a period enabling us to verify the accuracy of the personal data.
The processing is unlawful, you object to the erasure of the personal data and request instead the restriction of the use of the personal data.
We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
You have objected to the processing pursuant to Art. 21 (1) DSGVO and it is not yet clear whether our legitimate grounds outweigh yours.

• e) Right to data portability

You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to have this data transferred to another person responsible without hindrance from us.

• f) Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) of the DS-GVO.

We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

• g) Complaint to a supervisory authority

For your benefit, you have the right to lodge a complaint with a supervisory authority if, in your opinion, the legal requirements were not fully complied with when processing your personal data. In such cases, you are of course also welcome to contact our company data protection officer - also confidentially - who you can reach at datenschutz@di-uni.de, for example.

• h) Right to revoke a data protection consent

You have the right to revoke your consent to the processing of personal data at any time.

If you wish to assert the revocation of consent, you can contact the following office at any time:

Dresden International University GmbH
Dr. Merle Emre

Freiberger Straße 37
01067 Dresden

Tel.: 0351 / 40470 - 0
Fax: 0351 / 40470 - 110

Email: info@di-uni.de
Website: www.di-uni.de

You can create a user account on our website. As part of the registration process, the required mandatory information is provided to the users and processed on the basis of Art. 6 (1) lit. b DS-GVO for the purpose of providing the user account. The processed data includes, in particular, the login information (name, password and an e-mail address). The data entered during registration is used for the purposes of using the user account and its purpose.

They may be informed of information relevant to their user account, such as technical changes, by e-mail. If users have terminated their user account, their data relating to the user account will be deleted, subject to any legal obligation to retain it. It is the responsibility of the users to save their data in the event of termination before the end of the contract. We are entitled to irretrievably delete all user data stored during the term of the contract.

Within the scope of the use of our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as in your interest to protect against misuse and other unauthorised use. As a matter of principle, this data is not passed on to third parties unless it is necessary for the pursuit of our claims or there is a legal obligation to do so pursuant to Art. 6 Para. 1 lit. c. DS-GVO. The IP addresses are anonymised or deleted after 7 days at the latest.

You have the opportunity to apply for degree programmes on our website. The application is made through the portal "DIU DIGIT@L" by providing your personal data and sending your application documents. We process the applicant data only for the purpose and within the framework of the application procedure or for the allocation of the study place in accordance with the legal requirements. The applicant data is processed to fulfil our (pre-)contractual obligations within the scope of the application procedure in accordance with Art. 6 Para. 1 lit. b. DS-GVO Art. 6 para. 1 lit. f. DS-GVO insofar as the data processing becomes necessary for us, e.g. within the scope of legal procedures (in Germany, § 26 BDSG also applies).

Applicant data usually includes your personal details, postal and contact addresses and the application documents such as cover letter, CV and certificates. In addition, applicants may voluntarily provide us with additional information.

By submitting your application to us, you consent to the processing of your data for the purposes of the application process in the manner and to the extent set out in this privacy policy.

Insofar as special categories of personal data within the meaning of Art. 9 (1) DS-GVO are voluntarily disclosed within the scope of the application procedure, their processing is additionally carried out in accordance with Art. 9 (2) lit. b DS-GVO (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 (1) DS-GVO are requested from applicants in the context of the application procedure, their processing is additionally carried out in accordance with Art. 9 (2) a DS-GVO (e.g. health data, if this is necessary for the exercise of the profession).

Subject to a justified revocation by the applicant, the data will be deleted after the purpose has been fulfilled or - if the applicant does not commence studies at Dresden International University - after the expiry of a period of six months so that we can answer any follow-up questions about the application and fulfil our obligations to provide evidence under the Equal Treatment Act.

We have integrated a link to Facebook on our website. Facebook is a social network on which Dresden International University can be found and reached at any time.

As a social network, Facebook enables its users to communicate with each other and to act in virtual space. It therefore also serves as a platform for exchanging opinions and reports or enables the internet community to provide personal or company-related information.

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If you live outside the USA or Canada, the data controller is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Each time you call up one of the individual pages of this website that is operated by us and on which a Facebook link (Facebook plug-in) has been integrated, your internet browser is automatically caused by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be found at developers.facebook.com/docs/plugins/.

Within the scope of this technical procedure, Facebook receives information about which specific sub-page of our website is visited by you.

If you are logged in to Facebook at the same time, Facebook recognises you and which specific sub-page of our website you have visited each time you call up our website and for the entire duration of your respective stay on our website. This information is collected by the Facebook component and assigned to your Facebook account by Facebook. If you click on one of the Facebook buttons integrated on our website, for example the "Like" button, or if you post a comment, Facebook assigns this information to your personal Facebook user account and stores this personal data.

Facebook always receives information via the Facebook component that you have visited our website if you are logged into Facebook at the same time as calling up our website; this takes place regardless of whether you click on the Facebook component or not. If you do not want this information to be transmitted to Facebook, you can prevent it from being transmitted by logging out of your Facebook account before accessing our website.

The privacy policy published by Facebook, which is available at de-de.facebook.com/about/privacy/, provides information on the collection, processing and use of personal data by Facebook. It also explains which setting options Facebook offers to protect your privacy. In addition, various applications are available that allow you to suppress the transmission of data to Facebook. You can use such applications to suppress the transmission of data to Facebook.

Opt-out:

https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

In addition to Facebook, we use so-called Facebook pixels on our website.

Facebook pixels allow Facebook, on the one hand, to determine you as a visitor to our online offer as a target group for the display of advertisements (so-called "Facebook ads"). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called "Custom Audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and do not have a harassing effect.

With the help of the Facebook pixel, we can also track the effectiveness of the Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion").

If you do not agree to this collection of your data, please follow the instructions provided by Facebook on the settings for usage-based advertising.

We have integrated the Google Analytics component (with anonymisation function) on our website. Google Analytics is a web analysis service. Web analysis is the collection, compilation and evaluation of data about the behaviour of visitors to websites. A web analysis service collects, among other things, data about the website from which you came to a website (so-called referrers), which sub-pages of the website were accessed or how often and for how long a sub-page was viewed. A web analysis is mainly used to optimise a website and to analyse the costs and benefits of internet advertising.

The provider of Google Analytics is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We use the add-on "_gat._anonymizeIp" for web analysis via Google Analytics. By means of this add-on, your IP address of your internet connection will be shortened and anonymised by Google if access to our internet pages takes place from a member state of the European Union or from another state party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website and to provide other services in connection with the use of our website.

Google Analytics sets a cookie on your information technology system. We have already explained what cookies are in section 3. By setting the cookie, Google is enabled to analyse the use of our website. Each time you call up one of the individual pages of this website that is operated by us and on which a Google Analytics component has been integrated, the internet browser on your information technology system is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical procedure, Google obtains knowledge of personal data, such as your IP address, which Google uses, among other things, to track the origin of visitors and clicks and subsequently to enable commission settlements.

Through this measure, personal information such as the time of access, the location from which an access originated and the frequency of your visits to our website can be stored. Each time you visit our website, your personal data, including the IP address of the internet connection you use, will be transmitted to and stored by Google - possibly also in the United States of America. Google may pass on this personal data collected via the technical process to third parties.

As described above, you can prevent the setting of cookies at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on your information technology system. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programmes.

Furthermore, you can object to the collection of data generated by Google Analytics and related to the use of this website as well as to the processing of this data by Google and prevent such processing. To do this, you must download and install a browser add-on under the link tools.google.com/dlpage/gaoptout. This browser add-on tells Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. Google will consider the installation of the browser add-on as an objection. If your information technology system is deleted, formatted or reinstalled at a later date, you must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by you or another person within your control, you may reinstall or reactivate the browser add-on.

Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.

The Google Tag Manager is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. You can find Google's privacy policy at https://policies.google.com/privacy?hl=de.

Google Search Console is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. You can find Google's privacy policy at https://policies.google.com/privacy?hl=de.

Our website uses the map material from Google Maps. The use of this component requires that Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland "Google"), perceives the IP address of the user. Without the IP address, Google would not be able to send the content to the browser of the respective user. The IP address is therefore necessary for the display of this content. We endeavour to use only the content for which Google uses the IP address only to deliver the content. However, we have no influence on what happens to your data outside our sphere of influence, e.g. if Google stores the IP address for statistical purposes. Insofar as we are aware of this, we inform users about it.

The terms of use of Google Maps can be found under "Terms of use of Google Maps".

Please also note the opt-out option: https://adssettings.google.com/authenticated.

In addition to Facebook, we have integrated Twitter components on our website. Twitter is a multilingual, publicly accessible microblogging service on which users can publish and distribute so-called tweets, i.e. short messages limited to 140 characters. These short messages can be accessed by anyone, including people who are not registered with Twitter. However, the tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow the tweets of a user. Furthermore, Twitter makes it possible to address a broad audience via hashtags, links or retweets.

The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

Each time you call up our website, www.di-uni.de, on which a Twitter component (Twitter button) has been integrated, the internet browser on your information technology system is automatically prompted by the respective Twitter component to download a representation of the corresponding Twitter component from Twitter. Further information on the Twitter buttons can be found at https://about.twitter.com/de/resources/buttons. Within the scope of this technical procedure, Twitter receives information about which specific sub-page of our website is visited by you. The purpose of integrating the Twitter component is to enable our users to disseminate the content of this website, to make this website known in the digital world and to increase our visitor numbers.

If you are logged in to Twitter at the same time, Twitter recognises which specific sub-page of our website you are visiting each time you call up our website and for the entire duration of your respective stay on our website. This information is collected by the Twitter component and assigned to your Twitter account by Twitter. If you use one of the Twitter buttons integrated on our website, the data and information you transfer with it will be assigned to your personal Twitter user account and stored and processed by Twitter.

Twitter always receives information via the Twitter component that you have visited our website if you are logged into Twitter at the same time as calling up our website; this takes place regardless of whether you click on the Twitter component or not. If you do not agree to such transmission of your data, you can prevent this transmission by logging out of your Twitter account before accessing our website.

The applicable data protection provisions of Twitter are available at https://twitter.com/privacy?lang=de.

Opt-Out:

https://twitter.com/personalization

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active

In order to offer you a more interesting surfing experience on our website, we have integrated YouTube videos on our pages. YouTube is an Internet video portal that allows video publishers to post video clips free of charge and other users to view, rate and comment on them, also free of charge. YouTube allows the publication of all kinds of videos, which is why complete film and television programmes, but also music videos, trailers or videos made by users themselves can be accessed via the Internet portal.

The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Each time you call up one of the individual pages of this website that is operated by us and on which such a YouTube video has been integrated, your internet browser is automatically caused by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information on YouTube can be found at https://www.youtube.com/yt/about/de/. Within the scope of this technical procedure, YouTube and Google receive information about which specific sub-page of our website is visited by you.

If you are logged into YouTube at the same time, YouTube recognises which specific sub-page of our website you are visiting when you call up a sub-page that contains a YouTube video. This information is collected by YouTube and Google and assigned to your YouTube account.

YouTube and Google always receive information via the YouTube video that you have visited our website if you are logged into YouTube at the same time as calling up our website; this takes place regardless of whether you click on a YouTube video or not. If you do not wish this information to be transmitted to YouTube and Google, you can prevent this transmission by logging out of your YouTube account before accessing our website.

The privacy policy published by YouTube, which can be accessed at https://www.google.de/intl/de/policies/privacy/, provides information on the collection, processing and use of personal data by YouTube and Google.

Opt-out:

https://adssettings.google.com/authenticated

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

We have integrated a link to the internet service Instagram on our website. Instagram is a platform that allows users to share photos and videos and also to redistribute such data in other social networks.

The operating company of the Instagram services is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.

Each time you call up one of the individual pages of this website that is operated by us and on which an Instagram component (Insta button) has been integrated, your internet browser is automatically caused by the respective Instagram component to download a representation of the corresponding component from Instagram. As part of this technical process, Instagram receives information about which specific subpage of our website you are visiting.

If you are logged in to Instagram at the same time, Instagram recognises which specific sub-page you are visiting with each of your calls to our website and for the entire duration of your respective stay on our website. This information is collected by the Instagram component and assigned to your Instagram account by Instagram. If you click on one of the Instagram buttons integrated on our website, the data and information thus transmitted will be assigned to your personal Instagram user account and stored and processed by Instagram.

Instagram always receives information via the Instagram component that you have visited our website if you are logged into Instagram at the same time as calling up our website; this takes place regardless of whether you click on the Instagram component or not. If you do not wish this information to be transmitted to Instagram, you can prevent the transmission by logging out of your Instagram account before accessing our website.

Further information and the applicable data protection provisions of Instagram can be found at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

Opt-out:http://instagram.com/about/legal/privacy/

We have also included a link on our website to our presence on LinkedIn Corporation. LinkedIn is an internet-based social network that allows users to connect with existing business contacts and to make new business contacts.

The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For data protection issues outside the USA, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

With each individual call-up of our website that is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser you are using to download a corresponding representation of the component from LinkedIn. Further information on LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. Within the scope of this technical procedure, LinkedIn receives information about which specific sub-page of our website is visited by you.

If you are logged in to LinkedIn at the same time, LinkedIn recognises which specific sub-page of our website you are visiting with each of your calls to our website, for the entire duration of your respective stay on our website. This information is collected by the LinkedIn component and assigned to your LinkedIn account by LinkedIn. If you use a LinkedIn button integrated on our website, LinkedIn assigns this information to your personal LinkedIn user account and stores this personal data.

LinkedIn always receives information via the LinkedIn component that you have visited our website if you are logged into LinkedIn at the same time as calling up our website; this takes place regardless of whether you click on the link or not. If you do not wish this information to be transmitted to LinkedIn, you can prevent it from being transmitted by logging out of your LinkedIn account before accessing our website.

LinkedIn offers the possibility to unsubscribe from email messages, SMS messages and targeted ads as well as to manage ad settings at https://www.linkedin.com/psettings/guest-controls. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. LinkedIn's applicable privacy policy is available at https://www.linkedin.com/legal/privacy-policy. LinkedIn's cookie policy is available at https://www.linkedin.com/legal/cookie-policy.

Opt-Out:

https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Privacy Shield: 

https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active

Furthermore, we have integrated a link to Xing on our website. Xing is also a social network that allows registered users to get in touch with existing business contacts as well as make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.

The operating company of Xing is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.

By calling up our website on which the Xing button (Xing plug-in) has been integrated, your internet browser will automatically be prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on the Xing plug-ins can be found at https://dev.xing.com/plugins. Within the scope of this technical procedure, Xing receives information about which specific sub-page of our website is visited by you.

If you are logged in to Xing at the same time as visiting our website, Xing recognises which specific sub-page of our website you are still visiting. This information is collected by the Xing component and assigned to your Xing account by Xing.

Xing always receives information via the Xing component that you have visited our website if you are logged into Xing at the same time as calling up our website. This takes place regardless of whether you click on the Xing component or not. If you do not want personal data to be transmitted to Xing, you can prevent such transmission by logging out of your Xing account before accessing our website.

The data protection provisions published by Xing, which can be accessed at https://www.xing.com/privacy, provide information on the collection, processing and use of personal data by Xing. Furthermore, Xing has published a privacy policy for the XING Share button at https://www.xing.com/app/share?op=data_protectionDatenschutzhinweise.

Opt-out:https://privacy.xing.com/de/datenschutzerklaerung

The legal basis for the above-mentioned processing operations is Art. 6 (1) lit .a DS-GVO, where we obtain your consent for a specific processing purpose. If the processing of personal data is necessary, for example, due to the fulfilment of a contract between you and us, this processing is justified by Art. 6 (1) lit. b DS-GVO. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of enquiries about our company and our services.

If our company is subject to a legal obligation through which the processing of personal data becomes necessary, such as for the fulfilment of tax obligations, the processing is based on Art. 6 (1) lit. c DS-GVO.

Furthermore, the processing of personal data may become necessary in order to protect your vital interests or the interests of another natural person.

Finally, processing operations may be based on Article 6(1)(f) of the GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that your interests, fundamental rights and freedoms are not overridden. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator.

If the processing of personal data is based on Art. 6 para. 1 lit. f DS-GVO, our legitimate interest is the performance of our business activities for the benefit of the well-being of all our customers, employees and shareholders.

The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of the period, the corresponding data is routinely deleted if it is no longer required for the fulfilment or initiation of the contract.

We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). Furthermore, in order to conclude a contract, it may be necessary for you to provide us with personal data that subsequently has to be processed by us. For example, you are obliged to provide us with personal data if our company concludes a contract with you. Failure to provide the personal data would mean that the contract could not be concluded.

Before providing us with your personal data, you should contact one of our employees. Our employee will explain to you on a case-by-case basis whether the provision of your personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

Consent to the processing of personal data can only be given by a person of legal age. For information society services, the consent of a child is permissible from the age of sixteen in accordance with Art. 8 DS-GVO.

Last but not least, we would like to inform you that we do not use automatic decision-making or profiling.

If you have any questions about data protection and the handling of your data on our website and in our company, you can contact the company's data protection officer at any time - also in confidence - at datenschutz@di-uni.de.

If you have any technical questions on individual topics, our employees in the specialist departments will of course also be happy to help.

DIU is represented by DID DRESDNER INSTITUT FÜR DATENSCHUTZ and Mr Dipl.-Ing. Wieland Pflug as contact person.

This privacy policy was created by:

Bastanier & Schmelzer
Rechtsanwälte Partnerschaft mbB