• Home
  • Privacy Policy
  •  

Data Protection Policy

The protection of your personal data is very important to us. In the following passages, therefore, we will explain which data from your virtual visit to our site are used for which purposes. Should you have any additional questions regarding the handling of your personal data, please contact our data protection officer.

Continuing technological evolution, changes in our service offering, the regulatory environment and other circumstances can make adjustments to our data protection notices necessary. We thus reserve the right to modify this data protection policy at any time and suggest you follow it regularly for current status updates.

Basic information

The term and concept of personal data are defined in the EU General Data Protection Regulation (GDPR) and its German counterpart EU Datenschutz-Grundverordnung (DSGVO). As stated in this regulation, personal data consists of all information which applies to an identified or identifiable natural person. Some examples of what is meant by personal data in this context are your legal name, your address, your telephone number or your birth date.

Unless otherwise specified in the following sections, only technical information that is technically necessary is transmitted when you use our websites for informational purposes.When you launch our website, some data are transferred, such as URL, date and time of access, the amount of transmitted data in bytes, the source or link from which you accessed the website, the web browser used, the operating system used, the current IP-address of the of the terminal device used. This information is stored for seven days and thereafter deleted.

These data cannot be employed by us to identify an individual user. The collection of this data is technically necessary to display our website to you and to ensure stability and security. We do not combine this data with other data. 

The legal basis is Art. 6 para. 1 p. 1 lit. f) DSGVO. Since the collection of data for the provision of the website and the storage in log files are absolutely necessary for the operation of the website and to protect against misuse, our legitimate interest in data processing prevails at this point.

  • Data controller

    Karl Kübel Stiftung für Kind und Familie, Darmstädter Straße 100, 64625 Bensheim, Germany
    Telephone +49 6251 7005-0, E-Mail: info@kkstiftung.de

  • Data protection officer

    Should you have questions with regard to the processing of your personal data, you may also contact our data protection officer by E-Mail at the following address:

    E-Mail: datenschutz@kkstiftung.de

  • Data transfer

    A transfer of your data to third parties does not take place as a general rule. Exceptions occur when we are legally bound to effect such a transfer, or the data transfer is necessary to fulfil a contractual relationship or you have explicitly consented to the transfer of your data.

    If you have registered for a workshop in India, your personal data (first and last name, address, E-Mail address, telephone number, company name and career experience) are transferred to the seminar provider in India. The seminar provider there is the Karl Kübel Foundation for Child and Family – KKF, KKID Campus, Anaikatti Road, Mankarai, Coimbatore – 641 108, Tamil Nadu/India. Your personal data are transferred for the purpose of organising and carrying out the seminars. 

    External service providers and partner organisations, such as e.g. online payment providers or a transport enterprise tasked with deliveries, receive your data only to the extent that such data is required for the administration of your order. In these cases, however, the scope of the transferred data is limited to the minimum required. To the extent your personal data reaches our service providers, we ensure that these providers comply in like manner with the provisions of the data protection regulations within the framework of order data processing principles in accordance with Art. 28 DSGVO. Please also take note of the respective data protection statements of the providers. The respective service provider is responsible for the content of third-party services, whereas we monitor—within reasonable limits—the services’ compliance with the legal requirements.

    It is important to us to process your data within the EU / EEA. It is possible, however, that we may work with service providers occasionally who process data outside the EU / EEA. In these cases we ensure that a corresponding data protection level is put into place with the recipient before your data are transferred. This means a data protection standard comparable to those within the EU is achieved using EU standard agreements or an adequacy resolution.

  • Data stored for contact purposes

    You may contact us using our E-Mail address. We will, of course, use the personal data you transfer to us this way only for the exclusive purpose for which you have provided them via your contact. The legal basis in this respect is Art. 6 para. 1 p. 1 lit. f DSGVO.

    Your disclosure of these data is wholly voluntary and takes place with your consent, Art. 6 (1) (a) DSGVO. To the extent that the data you share here pertains to the channels to be used in our communications (for example E-Mail address, telephone number) you agree, in addition, that we may also contact you using these communications channels to answer your inquiries as the case may require.

    You may revoke this consent at any time for the future, of course. To do so, please send us an E-Mail at the following address: info@kkstiftung.de

    We will delete the data thus generated after storage is no longer required or limit the scope of processing if legal retention requirements exist. 

  • Data security

    We have taken extensive technical and operational security precautions to protect your data from coincidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security procedures are regularly monitored and updated to comply with state-of-the-art technologies.

  • Your rights

    You have the following rights vis-à-vis us concerning personal data that applies to you:

         General rights

    You have the right to information, rectification and erasure and restriction of processing; objection to processing; and the right of data portability (Arts. 15-20 DSGVO). To the extent that the processing depends upon your consent, you have the right to revoke such agreement with us for the future. 

         Rights with respect to data processing on the basis of a legitimate interest

    In accordance with Art. 21 (1) DSGVO you have the right at any time, for reasons based on your particular situation, to raise an objection to the processing of personal data pertaining to you which arise from Art. 6 (1) (e) DSGVO (data processing in the public interest) or from Art. 6 (1) (f) DSGVO (data processing for the purpose of safeguarding a legitimate interest). This applies also to profiling based upon this regulation. In case of your objection, we will cease to process your data unless we can prove compelling, defensible reasons for its processing that outweigh your interests, rights and freedoms, or unless the processing serves the enforcement, exercise or defence of legal requirements.

         Rights concerning direct marketing

    To the extent that we process your personal data to conduct direct marketing, you have the right to object to the processing of personal data pertaining to you at any time in accordance with Art. 21 (2) DSGVO. This also applies to profiling insofar as it is related to such direct marketing.

    In case of your objection to such processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

         Right to appeal to a regulatory authority

    Moreover, you have the right to raise an objection with the responsible data protection authority to our processing of your personal data.

  • How are the data of customers and service providers processed?

    Information on the collection and processing of your personal data*

    *This broad category of data addressed by the GDPR includes some or all PII (personally identifiable information)

    Heedfulness and transparency form the cornerstone of the spirit of trust in partnering we aim for with our customers. To promote this aim, we are providing you with details here of how we process your data and how you can exercise your rights in this regard, to which you are entitled under the equivalent of the General Data Protection Regulation, or GDPR (German: Datenschutz-Grundverordnung or DSGVO).

    1. Who is responsible for processing the data?

    Karl Kübel Stiftung für Kind und Familie
    Darmstädter Straße 100
    64625 Bensheim

    2. How can you contact the data protection officer?

    By postal mail:

    Datenschutzbeauftragte
    Darmstädter Straße
    64625 Bensheim

    Or by e-mail:

    datenschutz@kkstiftung.de

    3. Which of your personal data do we use?

    We process your personal data if you make an enquiry of us, if you direct offers or correspondence to us, if we place orders with you, if you sign a contract with us or if you perform a consulting activity for us.  We also process your personal data to fulfil legal obligations, to safeguard a legitimate interest or on the basis of consent from you.

    The following categories of personal data are pertinent, in accordance with the applicable legal basis:

    • First name, last name
    • Address
    • Communications data (telephone, e-mail address)
    • Profession
    • Core contract data, especially contract number, duration, period of notice, type of contract
    • Invoice data/sales (turnover) data
    • Credit ratings, related data
    • Payment data/account information
    • Where applicable video or image recordings

    As a part of contract preparation, we may also use data provided to us by third parties. Depending on the type of contract at hand, the following categories of personal data apply:

    • Information on credit ratings (via credit agencies)
    • Information on company data (via commercial registers or similar)

    4. What are the sources of the data?

    We process personal data we receive directly from our customers                      
    and/or
    we receive personal data from the following sources:

    • Credit rating agencies
    • Publicly accessible sources such as commercial or association registers, debtors’ registers, land registers

    5. What are our purposes for processing your data, and what is the legal basis for such processing?

    We process your personal data with special attention to compliance with the General Data Protection Regulation, or GDPR, known in German as the Datenschutzgrundverordnung or DSGVO, in addition to the German privacy law known as the Bundesdatenschutzgesetz, or BDSG (Federal Data Protection Act). We consider all other relevant laws and regulations as well.

    5.1. For the fulfilment of a contract (Art. 6, para. 1(b), DSGVO)

    We use your personal data for signing and executing orders; for construction contracts, service agreements, fee contracts and consulting contracts; and for the termination and archiving of the aforementioned orders or contracts as well as for both judicial and extrajudicial enforcement of claims.

    Within this contractual relationship we will process your data primarily for the implementation of the following:

    Initiating contact with you for order-related or contract-related reasons; contract management; our ongoing business relationship; service center; realisation of warranty claims; claims management; order or contract termination management.

    You can get more information on the specific reasons for the data processing from the corresponding order or contract documents.

    6. Who will receive your forwarded data?

    In order to fulfil our contractual and legal obligations, your personal data will be disclosed to various public or internal bodies, as well as external service providers.

    We work with selected external service providers to meet our contractual and legal obligations, such as the following:

    • IT service providers (e.g. maintenance service providers, hosting service providers)
    • Service providers in the context of real property management (e.g. billing companies for operating costs, service providers for security technology)
    • Service provider for file and data destruction
    • Printing services
    • Telecommunications
    • Payment service providers
    • Advisors and consultants
    • Credit rating agencies
    • Auditors
    • Attorneys and notaries
    • Craftsmen, architects and engineers; maintenance custodians and insurance companies

    Public bodies:

    In addition, we may be required to pass your personal data on to other entities, such as public authorities, to meet legal notification requirements.

    Should you have further questions about the individual recipients of your data, please contact us at datenschutz@kkstiftung.de

    7. Are your data transmitted to countries outside the European Union (so-called third countries)?

    Countries outside the European Union (and the European Economic Area “EEA”) manage the protection of personal data differently from countries within the European Union. We also use service providers located in third countries outside the European Union to process your data. Currently there exists no EU Commission ruling that these third countries offer an adequate level of protection overall.

    For this reason, we have taken specific measures to ensure that your data are processed just as securely in third countries as they are within the European Union. For this purpose, we conclude the standard data protection stipulation clauses provided by the European Commission with service providers in third countries. These stipulations provide appropriate guarantees for the protection of your data with service providers in the third country.

    8. How long are your data stored?

    We store your personal data as long as necessary to fulfil our legal and contractual obligations.

    If storage of your data is no longer needed for the fulfilment of contractual or legal obligations, it will be deleted unless further processing is required for the following purposes:

    • Within the context of fulfilment of the contract, the data will be stored after the end of the contract (or the cooperative activity or completion of order) in accordance with the periods of time stipulated by tax law (German Commercial Code), normally 10 years.
    • In addition, such data may be stored for the preservation of evidence within the framework of the legal statute of limitations. According to the statutes of limitation of the German Civil Code (BGB), these periods of limitation can in some cases extend up to 30 years. The regular period of limitation is three years.

    9. Which rights do you have regarding the processing of your data?

    Every data subject has the right of access under Art. 15 DSGVO, the right of rectification under Art. 16 DSGVO, the right of cancellation under Art. 17 DSGVO, the right to limit processing under Art. 18 DSGVO, the right of objection under Art. 21 DSGVO and the right of data transferability under Art. 20 DSGVO. With regard to the right of information and the right of deletion, the restrictions pursuant to §§ 34 and 35 BDSG apply.

    9.1. Right of objection

    You can object to the use of your data for advertising purposes at any time.

    • What right do you have in case of data processing owing to your legitimate interest or the public interest?

    According to Art. 21, paragraph 1 of the DSGVO, you have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6, paragraph 1(e) of the DSGVO (data processing in the public interest) or on the basis of Art. 6, paragraph 1(f) of the DSGVO (data processing to safeguard a legitimate interest); this also applies to profiling based on this provision.

    I the event of your objection, we will no longer process your personal data unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

    • What right do you have in case of data processing for the purpose of direct marketing?

    If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing, including profiling, provided it is related to such direct marketing, in accordance with Art. 21, para. 2 of the DSGVO.

    In the event of your objection to processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

    9.2. Revocation of consent

    You can revoke your consent to the processing of personal data at any time. Please note that the revocation is applicable only to the future.

    9.3. Right to information

    You may request details relating to whether we have stored personal data about you. If you wish, we will inform you which data are involved, for which purposes the data are processed, to whom the data are disclosed, how long the data are stored and which other rights you have in relation to these data.

    9.4. Further rights

    In addition, it is your right to have incorrect data corrected or your data deleted. If there is no reason for further storage, we will delete your data; otherwise, we will limit processing. You may also request that we make all personal data you have provided us with available either to you or to a person or organization of your choice in a structured, commonly used and machine-readable format.

    In addition, you have the right of appeal to the competent data protection supervisory authority (Art. 77 DSGVO in conjunction with § 19 BDSG).

    9.5. Exercising your rights

    In order to exercise your rights, please contact the persons responsible or the data protection officer using the contact details provided. We will process your enquiries immediately and in accordance with legal requirements and inform you of the measures we have taken.

    10. Must you provide your personal data?

    In order to enter into a business relationship with us, you must provide us with the personal data that is necessary to carry out the contractual relationship or that we are required to collect by law. If you do not provide us with these data, the execution and processing of the contractual relationship will not be feasible for us.

    11. Changes to this information

    Should the purpose for which your personal data is processed change significantly, or if the method for such processing changes in a material way, we will update this information in a timely manner and inform you of such changes quickly. 

    piwikpro.de/blog/was-sind-pii-non-pii-und-personenbezogene-daten/

  • Which data are stored in the processing of online payments?

    This website uses the payment module made available by twingle GmbH, Prinzenallee 74, 13357 Berlin, for the payment of workplace upskilling and workshops. For this form, twingle GmbH provides the technical platform for the payment process. The data you enter during the payment process (for example address, bank details etc.) are stored by twingle on servers in Germany solely for the purpose of processing payment for the workshop or training.

    We have entered into a commissioned data processing agreement with twingle while fully implementing the strict requirements of the EU General Data Protection Regulation and the German data protection authorities when using twingle's form.

    The transfer of your data is based on Art. 6 para. 1 lit. b DSGVO (German general data protection regulation) (processing for the performance of a contract).

    Collection, processing and use of personal data during payment transactions

    During payment for training events, we collect and use your personal data only to the extent necessary to complete and process the payment and, if applicable, to process your inquiries. The provision of the data is necessary for the processing of the payment transaction. Failure to provide it will result in your payment not being received. The processing is based on Art. 6 (1) lit. b DSGVO (German general data protection regulation) and is necessary for implementation of the payment. Your data will not be passed on to third parties without your express consent. The only exceptions to this are our service partners whom we need in order to process the payment, or service providers we engage as part of order processing. In addition to the recipients named in the respective clauses of this privacy policy, these are recipients belonging to the following categories, for example: payment service providers, receipt/invoice dispatchers. In all cases, we strictly observe the legal requirements. The scope of data transfer is limited to a minimum.

  • Which data are stored in the processing of online donations?

    This website uses the payment module made available by twingle GmbH, Prinzenallee 74, 13357 Berlin, for online donations. For this form, twingle GmbH provides the technical platform for the payment process. The data you enter during the payment process (for example address, bank details etc.) are stored by twingle on servers in Germany solely for the purpose of processing payment for the workshop or training.

    We have entered into a commissioned data processing agreement with twingle while fully implementing the strict requirements of the EU General Data Protection Regulation and the German data protection authorities when using twingle's form.

    The transfer of your data is based on Art. 6 para. 1 lit. b DSGVO (German general data protection regulation) (processing for the performance of a contract).

    Collection, processing and use of personal data during payment transactions

    During online donations, we collect and use your personal data only to the extent necessary to complete and process the payment and, if applicable, to process your inquiries. The provision of the data is necessary for the processing of the payment transaction. Failure to provide it will result in your donation not being received. The processing is based on Art. 6 (1) lit. b DSGVO (German general data protection regulation) and is necessary for implementation of the payment. Your data will not be passed on to third parties without your express consent. The only exceptions to this are our service partners whom we need in order to process the payment, or service providers we engage as part of order processing. In addition to the recipients named in the respective clauses of this privacy policy, these are recipients belonging to the following categories, for example: payment service providers, receipt/invoice dispatchers. In all cases, we strictly observe the legal requirements. The scope of data transfer is limited to a minimum.

     

  • Cookies

    We use cookies to improve our website and to optimise its use for you. We also use cookies for advertising purposes. Cookies are small text files that are stored on your computer when you visit our website. They make possible the renewed allocation of your browser in future sessions. Cookies store information such as your language settings, the duration of your visit to our website or the entries you make while there, for example. Their use allows you to avoid having to re-enter all required data each time you visit the site. In addition, cookies make it possible to recognise your preferences and adjust our website to correspond to your areas of interest.

    This website uses the following types of cookies, whose scope and function are described in the following:

    Transient cookies

    These cookies are automatically deleted when you close the browser. Session cookies in particular belong to this category. These store a so-called session ID, with which the various queries from your browser can be assigned to the joint session. As a result, your computer can be recognised when you return to our website. The session cookies are deleted when you log out or close the browser (Courtesy Copy) .

    Permanent or persistent cookies

    These cookies are automatically deleted after a specified period of time, which can differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

    Most browsers accept cookies automatically. If you want to prevent the storage of cookies, you can choose “do not accept cookies” in your browser settings. You can learn how this works in detail from your browser manufacturer’s operating guide. You can delete cookies already stored on your computer at any time. We would like to point out, however, that the use of our website without cookies may limit the functions of the offering available to you.

    When accessing our website, all users are also informed by an information banner about our use of cookies and referred to this data protection notice. As user you will also be asked for your consent to the use of certain cookies, in particular for the personalization of services and for marketing measures. Once you have given your consent, you can revoke it at any time with effect for the future by clicking on Privacy Settings and then selecting it again.

  • Social plugins

    This website uses social buttons from the following providers:

    - Facebook (Betreiber: Meta Platforms Inc., 1601 Willow Road Menlo Park California 94025, USA)
    - Twitter (Betreiber: Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA)

    We have integrated these social media buttons indirectly on our website to enable you to share interesting articles and content on your favorite social media platforms (social sharing). These buttons are only integrated on our website as a graphic and link to the corresponding services. Only after clicking on the embedded graphic will you be redirected to the page of the respective provider, i.e. only then will user information be transmitted to the respective provider. No data is transmitted to the operators of the social media platforms before you actively click on these links.

    For information on the handling of your personal data when using these websites, please refer to the respective privacy policies of the providers.

    Facebook: https://www.facebook.com/privacy/explanation
    Twitter: https://twitter.com/en/privacy
     

  • Social bookmarks

    Our website integrates so-called social bookmarks (e.g. from Facebook). Social bookmarks are Internet flags with which the users of such a service can collect links and messages. These are contained on our website only as a link to the corresponding services. After clicking on the embedded graphic, you will be forwarded to the page of the respective provider; i.e. only then are user data transferred to the respective provider. Please refer to the respective privacy policies of the providers for information on how your personal data is handled by a particular provider when you use these websites.

  • Matomo and conversion tracking

    Our website uses Matomo, a web analytics service provided by https://matomo.org/. The service uses so-called "cookies". For more details, see the "Cookies" section above. In addition, we use Matomo "on-premise", i.e. only the responsible party (and, if applicable, its order processor) is granted access to the data. Our website uses Matomo exclusively with IP masking, which ensures anonymization of the IP address by shortening it and excludes direct personal reference. Through this function, your IP address is not stored and processed completely, but shortened and thus anonymized.

    Purposes of processing: tracking (e.g. interest/behavior-based profiling), visit action evaluation, interest-based and behavior-based marketing, profiling (creation of user profiles), conversion measurement (measurement of the effectiveness of marketing measures), reach measurement (e.g. access statistics, recognition of returning visitors).

    Legal basis for the setting of cookies is your consent n accordance with Art. 6 para. 1 p. 1 lit. a DSGVO, which you can revoke at any time with effect for the future. The data processing is based on our overriding legitimate interest according to Art. 6 para. 1 p. 1 lit. f DSGVO in reach measurement, web tracking and conversion measurement.

    Storage period: We store the anonymized data determined in this way for a maximum period of 24 months. After that, the data is deleted automatically.

    Data recipient: Web hoster, see above.

    Objection: You can deactivate Matomo at any time, i.e. object to data processing for the future. To do this, click on "Privacy setting" and readjust the "Statistics" category.

  • Google Maps

    This site uses the map service Google Maps. The provider of the service is Google LLC.1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. In order to use the functions of Google Maps, information, including the IP address as well as the address entered within the scope of the route function, may be transmitted to the provider's servers. This information is usually transferred to a Google server in the USA. The provider of this site has no influence on this data transmission.

    The data collection and storage is only carried out after explicit consent according to Art. 6 para. 1 p. 1 lit. a) DSGVO. This can be revoked at any time with effect for the future.

    Insofar as data is processed outside the EU/EEA, Google LLC. has certified itself in accordance with the Data Privacy Framework (DPF) program and is included in the Data Privacy Framework list of the International Trade Administration (ITA). This means that Google has publicly committed to complying with DPF obligations and any data transfer to the U.S. is unobjectionable based on the European Commission's current adequacy decision of July 10, 2023.

    A list of currently certified U.S. companies can be found here: https://www.dataprivacyframework.gov/s/participant-search

    More information on the Data Privacy Framework program can be found on the ITA's official website: www.dataprivacyframework.gov/s/

    More information on the handling of user data can be found in Google’s own data protection policy under https://www.google.de/intl/de/policies/privacy/.

Lade Daten