Scope of application
This Privacy Statement explains to users the nature, scope and purposes of the collection and use of personal data by the
on this website (hereinafter referred to as the Service).
The legal framework of data privacy can be found in the Baden-Württemberg Data Privacy Act (Landesdatenschutzgesetz Baden-Württemberg; LDSG) and the Telemedia Act (Telemediengesetz; TMG).
Handling of personal data
Personal data are individual details concerning personal or factual information of an identified or identifiable natural person. Aalen University is strongly committed to ensuring the highest possible level of personal data privacy. Personal data will only be processed by Aalen University if law permits or if the user consents to such processing.
Encrypted data transmission
The entire Service is SSL-encrypted, specifically for contact forms. Encrypted data transmission prevents third parties from gaining knowledge of the data.
Access data/Server Log Files
Aalen University collects data on each access to the service (referred to as server log files). Access data includes:
- Name and URL of the website accessed
- Date and time of the call
- Messages about faulty call (error log)
- Browser type and version
- Operating system of the user
- Referrer URL (the previously visited page)
- IP address
Aalen University uses access data only for statistical evaluations for the purposes of operation, security and improvement of the service. Access data is stored for no longer than 7 days and then deleted.
When contacting Aalen University (e.g. via contact form or e-mail), the user's details are processed for the purpose of responding to the enquiry in the event that any follow-up questions should arise.
Aalen University offers its guests free WLAN access (referred to as a hotspot) as a service.
If you would like to use the guest WLAN access, Aalen University requires the following data:
- Time and date of registration
- User name, password and IP address of the user
- First name and surname of the user
- Expiry date of the guest WLAN access
- MAC address of the terminal device
- Device type
- Log files
Aalen University uses this data only for the free provision of guest WLAN access (Hotspot). Access data is stored for no longer than 7 days and then deleted. However, Aalen University reserves the right to subsequently examine the data if specific reasons to suspect illegal use should arise.
The user has the right to revoke consent to the processing of data and its use for the free provision of guest WLAN access (Hotspot) at any time. Such revocation can be made by notification to the contacts specified in the actual declaration of consent or to the contacts listed above.
Integration of third-party services and content
Third-party content (e.g. YouTube videos, Google Maps cartographic material, RSS feeds or images from other websites) may be included within the service. This presupposes that the providers of such content (hereinafter referred to as third-party providers) obtain the IP address of the users. Without an IP address, content cannot be sent to the browser of the respective user. The IP address is required for the display of this content. Aalen University has no control over the storage of IP addresses for statistical or other purposes by third-party providers. If Aalen University is aware of relevant information, it will inform users accordingly.
This service uses items referred to as social plug-ins. These are currently the plug-ins of Facebook, Google+ and Twitter services. These plug-ins can be used to send data, including personal data, to US-based service providers who may use them at their discretion.
Shariff Social Media Buttons
This service uses the Shariff solution to prevent data from being transmitted to US-based service providers without the user's knowledge. This solution ensures that no personal data is initially passed on to the providers of the individual social plug-ins when the service is used. Only when the user actively clicks on one of the social plug-in buttons can data be transferred to and stored by the service provider.
Further information about the Shariff solution can be found on the website of Heise Medien Gmbh & Co. KG: http://m.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html
This service uses social plug-ins of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as Facebook). The list and appearance of the Facebook social plug-ins can be viewed here: https://developers.facebook.com/docs/plug-ins/.
If the user actively clicks on a Facebook social plug-in, the browser establishes a direct connection with the Facebook servers. The content of the plug-in is transmitted directly from Facebook to the user's browser which integrates it into the website. The provider therefore has no control over the amount of data that Facebook collects using this plug-in and therefore informs users according to its level of knowledge: By integrating the plug-ins, Facebook receives information that a user has called up the corresponding page of the service. If the user is logged in to Facebook, Facebook can allocate the visit to the user's Facebook account. When users interact with the Facebook social plug-in (e.g. by clicking the Like button or posting a comment), relevant information is transferred directly from the user's browser to Facebook and stored by Facebook. If a user is a client of Facebook and does not want Facebook to collect personal data through this service and link it to the client's Facebook data, the client must log out of Facebook before interacting with the Facebook social plug-in. Further settings and objections to the use of data for advertising purposes can be defined in the Facebook profile settings: https://www.facebook.com/settings?. If a user is not a Facebook client, Facebook may still retrieve and store this user's IP address. According to Facebook, only an anonymised IP address is stored in Germany.
This Service uses the +1 button of the Google Plus social network of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (hereinafter referred to as Google). The +1 button is identified by the ‘+1’ icon on a white or coloured background.
If the user actively clicks on the +1 button of the Google Plus social network, the browser establishes a direct connection with Google's servers. The content of the +1 button is transmitted directly from Google to the user's browser, which integrates it into the website. The provider therefore has no control over the amount of data Google collects via the +1 button. According to Google, data - including the IP address - is only collected and processed for logged-in members.
This service uses the buttons of Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA (hereinafter referred to as Twitter). They can be identified by terms such as ‘Twitter’ or ‘Follow’ combined with a stylized blue bird.
If the user actively clicks on the buttons of the Twitter service, the browser establishes a direct connection to the Twitter servers. The content of the buttons is transmitted directly from Twitter to the user's browser which integrates it into the website. The provider therefore has no control over the amount of data Twitter via its buttons. According to Twitter, only the IP address of the user and the URL of the respective website are transmitted and used exclusively to display the buttons.
Information, correction, deletion, blocking and objection
The user has the right, upon request and free of charge, to obtain information about any personal data stored about the user. Furthermore, the user has the right to correct incorrect personal data as well as to block and delete personal data, insofar as this is not prevented by any legal storage obligation.
In addition, the user is entitled to revoke consent to the processing of personal data at any time with effect for the future. For this purpose, it is sufficient to send a message to any of the contacts listed above.
Data protection officer
For further questions and information about privacy, please contact the data protection officer of Aalen University. Please contact the data protection officer via the following e-mail: firstname.lastname@example.org
This person is also the contact person for the enforcement of your rights as a data subject.
Modification of the data privacy statement
Due to ongoing legal developments, Aalen University reserves the right to update this data privacy statement at any time.