• Home
  • Privacy Policy
  •  

Data Protection Policy

The protection of your personal data is very important to us. In the following passages, therefore, we will explain which data from your virtual visit to our site are used for which purposes. Should you have any additional questions regarding the handling of your personal data, please contact our data protection officer.

Continuing technological evolution, changes in our service offering, the regulatory environment and other circumstances can make adjustments to our data protection notices necessary. We thus reserve the right to modify this data protection policy at any time and suggest you follow it regularly for current status updates.

Basic information

The term and concept of personal data are defined in the EU General Data Protection Regulation (GDPR) and its German counterpart EU Datenschutz-Grundverordnung (DSGVO). As stated in this regulation, personal data consists of all information which applies to an identified or identifiable natural person. Some examples of what is meant by personal data in this context are your legal name, your address, your telephone number or your birth date.

Unless otherwise specified in the following sections, basically no personal data are collected, processed or used as a consequence of utilising our websites. When you launch our website, some data are transferred, such as URL, date and time of access, the amount of transmitted data in bytes, the source or link from which you accessed the website, the web browser used, the operating system used, the IP-address used. This information is stored for seven days and thereafter deleted.

These data cannot be employed by us to identify an individual user. They are only evaluated by us statistically and used exclusively to improve the appeal, content and features of our websites.

Unless explicit consent in accordance with Art. 6 (1) sentence 1 (a) DSGVO has been granted, the Karl Kübel Stiftung für Kind und Familie processes personal data for the purpose of fulfilling a contract or when it is required in accordance with Art. 6. (1) sentence 1 (b) DSGVO for the implementation of pre-contractual measures. Processing that takes place beyond this is required for the safeguarding of a legitimate interest of our organisation in accordance with Art. 6 (1) sentence 1 (f) DSGVO and outweighs the interests, basic rights and basic freedoms of the individual affected.

  • Data controller

    Karl Kübel Stiftung für Kind und Familie, Darmstädter Straße 100, 64625 Bensheim, Germany
    Telephone +49 6251 7005-0, E-Mail: info@kkstiftung.de

  • Data protection officer

    Should you have questions with regard to the processing of your personal data, you may also contact our data protection officer by E-Mail at the following address:

    E-Mail: datenschutz@kkstiftung.de

  • Data transfer

    A transfer of your data to third parties does not take place as a general rule. Exceptions occur when we are legally bound to effect such a transfer, or the data transfer is necessary to fulfil a contractual relationship or you have explicitly consented to the transfer of your data.

    If you have registered for a workshop in India, your personal data (first and last name, address, E-Mail address, telephone number, company name and career experience) are transferred to the seminar provider in India. The seminar provider there is the Karl Kübel Foundation for Child and Family – KKF, KKID Campus, Anaikatti Road, Mankarai, Coimbatore – 641 108, Tamil Nadu/India. Your personal data are transferred for the purpose of organising and carrying out the seminars. 

    External service providers and partner organisations, such as e.g. online payment providers or a transport enterprise tasked with deliveries, receive your data only to the extent that such data is required for the administration of your order. In these cases, however, the scope of the transferred data is limited to the minimum required. To the extent your personal data reaches our service providers, we ensure that these providers comply in like manner with the provisions of the data protection regulations within the framework of order data processing principles in accordance with Art. 28 DSGVO. Please also take note of the respective data protection statements of the providers. The respective service provider is responsible for the content of third-party services, whereas we monitor—within reasonable limits—the services’ compliance with the legal requirements.

    It is important to us to process your data within the EU / EEA. It is possible, however, that we may work with service providers occasionally who process data outside the EU / EEA. In these cases we ensure that a corresponding data protection level is put into place with the recipient before your data are transferred. This means a data protection standard comparable to those within the EU is achieved using EU standard agreements or an adequacy resolution such as the EU-US Privacy Shield.

  • Data stored for contact purposes

    You may contact us using our E-Mail address. We will, of course, use the personal data you transfer to us this way only for the exclusive purpose for which you have provided them via your contact.

    Your disclosure of these data is wholly voluntary and takes place with your consent, Art. 6 (1) (a) DSGVO. To the extent that the data you share here pertains to the channels to be used in our communications (for example E-Mail address, telephone number) you agree, in addition, that we may also contact you using these communications channels to answer your inquiries as the case may require.

    You may revoke this consent at any time for the future, of course. To do so, please send us an E-Mail at the following address: info@kkstiftung.de

    We will delete the data thus generated after storage is no longer required or limit the scope of processing if legal retention requirements exist. 

  • Data security

    We have taken extensive technical and operational security precautions to protect your data from coincidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security procedures are regularly monitored and updated to comply with state-of-the-art technologies.

  • Your rights

    You have the following rights vis-à-vis us concerning personal data that applies to you:

         General rights

    You have the right to information, rectification and erasure and restriction of processing; objection to processing; and the right of data portability (Arts. 15-20 DSGVO). To the extent that the processing depends upon your consent, you have the right to revoke such agreement with us for the future. 

         Rights with respect to data processing on the basis of a legitimate interest

    In accordance with Art. 21 (1) DSGVO you have the right at any time, for reasons based on your particular situation, to raise an objection to the processing of personal data pertaining to you which arise from Art. 6 (1) (e) DSGVO (data processing in the public interest) or from Art. 6 (1) (f) DSGVO (data processing for the purpose of safeguarding a legitimate interest). This applies also to profiling based upon this regulation. In case of your objection, we will cease to process your data unless we can prove compelling, defensible reasons for its processing that outweigh your interests, rights and freedoms, or unless the processing serves the enforcement, exercise or defence of legal requirements.

         Rights concerning direct marketing

    To the extent that we process your personal data to conduct direct marketing, you have the right to object to the processing of personal data pertaining to you at any time in accordance with Art. 21 (2) DSGVO. This also applies to profiling insofar as it is related to such direct marketing.

    In case of your objection to such processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

         Right to appeal to a regulatory authority

    Moreover, you have the right to raise an objection with the responsible data protection authority to our processing of your personal data.

  • How are the data of customers and service providers processed?

    Information on the collection and processing of your personal data*

    *This broad category of data addressed by the GDPR includes some or all PII (personally identifiable information)

    Heedfulness and transparency form the cornerstone of the spirit of trust in partnering we aim for with our customers. To promote this aim, we are providing you with details here of how we process your data and how you can exercise your rights in this regard, to which you are entitled under the equivalent of the General Data Protection Regulation, or GDPR (German: Datenschutz-Grundverordnung or DSGVO).

    1. Who is responsible for processing the data?

    Karl Kübel Stiftung für Kind und Familie
    Darmstädter Straße 100
    64625 Bensheim

    2. How can you contact the data protection officer?

    By postal mail:

    Datenschutzbeauftragte
    Darmstädter Straße
    64625 Bensheim

    Or by e-mail:

    datenschutz@kkstiftung.de

    3. Which of your personal data do we use?

    We process your personal data if you make an enquiry of us, if you direct offers or correspondence to us, if we place orders with you, if you sign a contract with us or if you perform a consulting activity for us.  We also process your personal data to fulfil legal obligations, to safeguard a legitimate interest or on the basis of consent from you.

    The following categories of personal data are pertinent, in accordance with the applicable legal basis:

    • First name, last name
    • Address
    • Communications data (telephone, e-mail address)
    • Profession
    • Core contract data, especially contract number, duration, period of notice, type of contract
    • Invoice data/sales (turnover) data
    • Credit ratings, related data
    • Payment data/account information
    • Where applicable video or image recordings

    As a part of contract preparation, we may also use data provided to us by third parties. Depending on the type of contract at hand, the following categories of personal data apply:

    • Information on credit ratings (via credit agencies)
    • Information on company data (via commercial registers or similar)

    4. What are the sources of the data?

    We process personal data we receive directly from our customers                      
    and/or
    we receive personal data from the following sources:

    • Credit rating agencies
    • Publicly accessible sources such as commercial or association registers, debtors’ registers, land registers

    5. What are our purposes for processing your data, and what is the legal basis for such processing?

    We process your personal data with special attention to compliance with the General Data Protection Regulation, or GDPR, known in German as the Datenschutzgrundverordnung or DSGVO, in addition to the German privacy law known as the Bundesdatenschutzgesetz, or BDSG (Federal Data Protection Act). We consider all other relevant laws and regulations as well.

    5.1. For the fulfilment of a contract (Art. 6, para. 1(b), DSGVO)

    We use your personal data for signing and executing orders; for construction contracts, service agreements, fee contracts and consulting contracts; and for the termination and archiving of the aforementioned orders or contracts as well as for both judicial and extrajudicial enforcement of claims.

    Within this contractual relationship we will process your data primarily for the implementation of the following:

    Initiating contact with you for order-related or contract-related reasons; contract management; our ongoing business relationship; service center; realisation of warranty claims; claims management; order or contract termination management.

    You can get more information on the specific reasons for the data processing from the corresponding order or contract documents.

    6. Who will receive your forwarded data?

    In order to fulfil our contractual and legal obligations, your personal data will be disclosed to various public or internal bodies, as well as external service providers.

    We work with selected external service providers to meet our contractual and legal obligations, such as the following:

    • IT service providers (e.g. maintenance service providers, hosting service providers)
    • Service providers in the context of real property management (e.g. billing companies for operating costs, service providers for security technology)
    • Service provider for file and data destruction
    • Printing services
    • Telecommunications
    • Payment service providers
    • Advisors and consultants
    • Credit rating agencies
    • Auditors
    • Attorneys and notaries
    • Craftsmen, architects and engineers; maintenance custodians and insurance companies

    Public bodies:

    In addition, we may be required to pass your personal data on to other entities, such as public authorities, to meet legal notification requirements.

    Should you have further questions about the individual recipients of your data, please contact us at datenschutz@kkstiftung.de

    7. Are your data transmitted to countries outside the European Union (so-called third countries)?

    Countries outside the European Union (and the European Economic Area “EEA”) manage the protection of personal data differently from countries within the European Union. We also use service providers located in third countries outside the European Union to process your data. Currently there exists no EU Commission ruling that these third countries offer an adequate level of protection overall.

    For this reason, we have taken specific measures to ensure that your data are processed just as securely in third countries as they are within the European Union. For this purpose, we conclude the standard data protection stipulation clauses provided by the European Commission with service providers in third countries. These stipulations provide appropriate guarantees for the protection of your data with service providers in the third country.

    8. How long are your data stored?

    We store your personal data as long as necessary to fulfil our legal and contractual obligations.

    If storage of your data is no longer needed for the fulfilment of contractual or legal obligations, it will be deleted unless further processing is required for the following purposes:

    • Within the context of fulfilment of the contract, the data will be stored after the end of the contract (or the cooperative activity or completion of order) in accordance with the periods of time stipulated by tax law (German Commercial Code), normally 10 years.
    • In addition, such data may be stored for the preservation of evidence within the framework of the legal statute of limitations. According to the statutes of limitation of the German Civil Code (BGB), these periods of limitation can in some cases extend up to 30 years. The regular period of limitation is three years.

    9. Which rights do you have regarding the processing of your data?

    Every data subject has the right of access under Art. 15 DSGVO, the right of rectification under Art. 16 DSGVO, the right of cancellation under Art. 17 DSGVO, the right to limit processing under Art. 18 DSGVO, the right of objection under Art. 21 DSGVO and the right of data transferability under Art. 20 DSGVO. With regard to the right of information and the right of deletion, the restrictions pursuant to §§ 34 and 35 BDSG apply.

    9.1. Right of objection

    You can object to the use of your data for advertising purposes at any time.

    • What right do you have in case of data processing owing to your legitimate interest or the public interest?

    According to Art. 21, paragraph 1 of the DSGVO, you have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6, paragraph 1(e) of the DSGVO (data processing in the public interest) or on the basis of Art. 6, paragraph 1(f) of the DSGVO (data processing to safeguard a legitimate interest); this also applies to profiling based on this provision.

    I the event of your objection, we will no longer process your personal data unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

    • What right do you have in case of data processing for the purpose of direct marketing?

    If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing, including profiling, provided it is related to such direct marketing, in accordance with Art. 21, para. 2 of the DSGVO.

    In the event of your objection to processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

    9.2. Revocation of consent

    You can revoke your consent to the processing of personal data at any time. Please note that the revocation is applicable only to the future.

    9.3. Right to information

    You may request details relating to whether we have stored personal data about you. If you wish, we will inform you which data are involved, for which purposes the data are processed, to whom the data are disclosed, how long the data are stored and which other rights you have in relation to these data.

    9.4. Further rights

    In addition, it is your right to have incorrect data corrected or your data deleted. If there is no reason for further storage, we will delete your data; otherwise, we will limit processing. You may also request that we make all personal data you have provided us with available either to you or to a person or organization of your choice in a structured, commonly used and machine-readable format.

    In addition, you have the right of appeal to the competent data protection supervisory authority (Art. 77 DSGVO in conjunction with § 19 BDSG).

    9.5. Exercising your rights

    In order to exercise your rights, please contact the persons responsible or the data protection officer using the contact details provided. We will process your enquiries immediately and in accordance with legal requirements and inform you of the measures we have taken.

    10. Must you provide your personal data?

    In order to enter into a business relationship with us, you must provide us with the personal data that is necessary to carry out the contractual relationship or that we are required to collect by law. If you do not provide us with these data, the execution and processing of the contractual relationship will not be feasible for us.

    11. Changes to this information

    Should the purpose for which your personal data is processed change significantly, or if the method for such processing changes in a material way, we will update this information in a timely manner and inform you of such changes quickly. 

    piwikpro.de/blog/was-sind-pii-non-pii-und-personenbezogene-daten/

  • Cookies

    We use cookies to improve our website and to optimise its use for you. We also use cookies for advertising purposes. Cookies are small text files that are stored on your computer when you visit our website. They make possible the renewed allocation of your browser in future sessions. Cookies store information such as your language settings, the duration of your visit to our website or the entries you make while there, for example. Their use allows you to avoid having to re-enter all required data each time you visit the site. In addition, cookies make it possible to recognise your preferences and adjust our website to correspond to your areas of interest.

    This website uses the following types of cookies, whose scope and function are described in the following:

    Transient cookies

    These cookies are automatically deleted when you close the browser. Session cookies in particular belong to this category. These store a so-called session ID, with which the various queries from your browser can be assigned to the joint session. As a result, your computer can be recognised when you return to our website. The session cookies are deleted when you log out or close the browser (Courtesy Copy) .

    Permanent or persistent cookies

    These cookies are automatically deleted after a specified period of time, which can differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

    Most browsers accept cookies automatically. If you want to prevent the storage of cookies, you can choose “do not accept cookies” in your browser settings. You can learn how this works in detail from your browser manufacturer’s operating guide. You can delete cookies already stored on your computer at any time. We would like to point out, however, that the use of our website without cookies may limit the functions of the offering available to you.

  • Social plugins

    This website uses social plugins from the following providers:

    -Facebook (operator: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA)

    -Twitter (operator: Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA)

    -Google+ (operator: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland)

    These plugins normally record your data by default and transfer these to the server of the respective provider. To ensure the protection of your privacy, we have implemented technical measures that certify your data cannot be recorded without your consent by the providers of the respective plugin. When a page is opened in which the plugins are embedded, these are initially in a deactivated state. The plugins are activated only when you click on the corresponding symbol. With this click you give your consent that your data may be transferred to that particular provider.

    After activation, the plugins also record personal data such as your IP address and send these to the server of the respective provider, where they are stored. In addition, activated social plugins set a cookie with a unique identifier when you launch the applicable website. This also makes it possible for the provider to create a profile about your user behaviour. This happens whether or not you are a member of the social network of the respective provider. Should you be a member of the social network of the provider and if you are logged in to that social network during your visit to this website, your data and information can be linked to your profile on that social network via your visit to this website. We have no influence on the exact range of your data collected by the respective provider. To get more detailed information about the scope, type and purpose of this data processing and about your rights and available settings for the protection of your privacy, please refer to the data protection notices of the corresponding provider of the social network. These are available at the following link addresses:

    Facebook: https://www.facebook.com/privacy/explanation
    Twitter: https://twitter.com/en/privacy
    Google+: https://policies.google.com/privacy?hl=en

  • Social bookmarks

    Our website integrates so-called social bookmarks (e.g. from Facebook). Social bookmarks are Internet flags with which the users of such a service can collect links and messages. These are contained on our website only as a link to the corresponding services. After clicking on the embedded graphic, you will be forwarded to the page of the respective provider; i.e. only then are user data transferred to the respective provider. Please refer to the respective privacy policies of the providers for information on how your personal data is handled by a particular provider when you use these websites.

  • Google Analytics and conversion tracking

    This website uses Google Analytics, a web analysis service provided by Google LLC, (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). Responsible authority for users in the EU/EWR und Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland. Use includes the mode of operation Universal Analytics. Through this it is possible to assign data, sessions and interactions from multiple devices to a pseudonymous user ID and thus to analyse the activities of a user across a number of devices.

    Google Analytics uses cookies, which enable you to make an analysis of the use of the website. The information generated by the cookie about your use of this website is generally transferred to a Google server in the US and stored there. If IP anonymization is activated on this website, your IP address is truncated by Google within the member states of the European Union or in other states who are parties to the Agreement on the European Economic Area, however. Only in exceptional cases is the full IP address transferred to a Google server in the US and truncated there. The personal data will be transferred to the USA under the EU-US Privacy Shield based on the adequacy decision of the European Commission. You can retrieve the certificate here: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

    The IP address transferred within the framework of Google Analytics from your browser is not merged with other Google data. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports about website activities and provide additional services to the website operator that relate to the use of the website and Internet use. Moreover, these purposes constitute our legitimate interest in the data processing. The data sent by us and linked with cookies, user IDs or advertising IDs are automatically deleted after 14 months. The deletion of data which has reached its storage limit takes place automatically once per month.

    You can disable the storage of cookies by a corresponding setting of your browser software; please be aware, however, that in this case you may not be able to use all the functions of this website fully. Beyond that, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google as well as the processing of these data by Google by downloading and installing https://tools.google.com/dlpage/gaoptout?hl=en . Opt-out cookies prevent the future collection of your data when you visit this website. In order to prevent data collection by Universal Analytics across various devices, you must apply the opt-out function to all systems used. If you click here, the opt-out cookie will be set: Google Analytics deaktivieren (deactivate Google Analytics).

    More detailed information about user conditions and data protection can be found under https://www.google.com/analytics/terms/gb.html and under https://policies.google.com/?hl=en 

    In addition we use Google Conversion Tracking in conjunction with Google Analytics. This allows us to record the behaviour of our website visitors. For example, this function shows us how many PDFs are downloaded from our site or how often the contact form is filled out. Similarly, we are shown how many clicks on advertisements from external sources (AdWords, LinkedIn, Xing, Bing) have led to our website. The legal basis for this data processing is Art. 6 (1) (f) DSGVO.

  • Google Maps

    This site uses the map service Google Maps. The provider of the service is Google LLC., Gordon House, Barrow Street, Dublin 4, Irland. Your IP address must be saved to enable the use of Google Maps functions. This information is usually transferred to a Google server in the USA. The provider of this site has no influence on this data transmission.

    Our use of Google Maps is in the interest of an attractive presentation of our online offering and ease of locating places we mention on the website. Accordingly, the legal basis for this use is Article 6 (1) (f) DSGVO (German version of the GDPR).

    More information on the handling of user data can be found in Google’s own data protection policy under https://www.google.de/intl/de/policies/privacy/.

  • Typekit

    For the visually pleasing design of our website, we use so-called web fonts, which are provided by the web service Typekit from the company Adobe Systems Inc. When you launch our website, the required fonts are loaded into your browser cache. This is done by retrieval from the servers of Adobe Systems Inc., San Jose, California, USA. Adobe does not set cookies on your device to provide this service.

    To display the fonts, the browser you use must contact the servers of Adobe Typekit. This process informs Adobe of the IP address and the browser from which the website is accessed.

    The company Adobe has agreed to submit to the EU-US Privacy Shield. It has agreed, within this framework, to comply with European data protection principles as well as the standard level of European data protection even if the data processing takes place outside the EU. The use of Typekit is in the interest of the uniform and appealing design of our website. This use reflects our legitimate interest within the meaning of Article 6 (1) (f) DSGVO (German version of the GDPR).

    For more information about Adobe Typekit, please see the corresponding data protection notices under https://www.adobe.com/de/privacy/policies/typekit.html