Privacy Policy

Contact Details

Pursuant to the General Data Protection Regulation, national data protection laws of the various Member States, and other privacy regulations, the responsible entity (“Controller”) is:

Universität Hamburg

Mittelweg 177
20148 Hamburg
praesident@uni-hamburg.de

Tel.: +49 40 42838-0
Fax.: +49 40 42838-9586

Universität Hamburg is a corporate body organized in accordance with German public law. Prof. Dr. Dr. hc. Dieter Lenzen, President of Universität Hamburg, Mittelweg 177, 20148 Hamburg, Germany, is authorized to represent the University.

Name and address of the representative

Dr. Bernhard Schirg
Universität Hamburg
Fakultät für Geisteswissenschaften
Arbeitsbereich Public History
Überseering 35 #5
22297 Hamburg
bernhard.schirg@uni-hamburg.de

Universität Hamburg Data Protection Officer contact details

The data controller has appointed the following data protection officer:

Data Protection Officer Universität Hamburg
Mittelweg 177, 20148 Hamburg
datenschutz@uni-hamburg.de

A. Data processing

1. Accessing this website and creation of log files

Information are collected every time this website is accessed or used. These data and information are stored in log files on the server and can include:

IP address
browser type / browser version
date and time the website was accessed
user Internet service provider
user operating system
referring website
websites accessed by the User’s system through our website

The temporary storage of data and log files is lawful pursuant to Article 6 (1) lit. f General Data Protection Regulation (Datenschutz-Grundverordnung—DSGVO).

The IP address is temporarily stored in the system as it is necessary to provide website access to the User’s computer. The IP address is retained while that website is being accessed.

These log files are stored to ensure website functionality, optimize the content of our website, and ensure the security of our IT system.

The data will be deleted when they are no longer needed for the purpose they were collected. For data collected to provide access to the website, this will be at the end of every session.

For log files, this will occur after 28 days at the latest. Some data may be preserved for a longer period of time, in which case user IP addresses are deleted or removed, rendering it impossible to link the data to any individual.

B. Data transfer to third parties

Social media

We use social media share buttons on our website to help increase the profile of this website. The individual providers are responsible for ensuring that your privacy is protected according to data protection regulations. We have integrated these buttons for the Facebook and Twitter social networks using the Shariff plugin.

Facebook

We use the Facebook social network share button on our website provided by Facebook Inc. 1 Hacker Way, Menlo Park, California 94025, USA (“Facebook”).

The share button is an automated embedding of layout buttons with links and identical click events to the individual services. No service content is integrated, nor are any data transferred before the User clicks.

Use of Facebook allows information regarding your use of this website (including your IP address) to be transmitted to, and stored in, a Facebook server in the USA.

The purpose and scope of Facebook’s data collection, its processing and use of your data as well as your rights and potential settings to protect your private information are explained in the Facebook Privacy Policy.

Twitter

We use the Twitter social network share buttons provided by the micro-blogging service Twitter, operated by Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA (“Twitter”).

Use of Twitter allows information regarding your use of this website (including your IP address) to be transmitted to, and stored in, a Twitter server in the USA.

The purpose and scope of Twitter’s data collection, the further on-site processing and use of your data as well as your rights and potential settings to protect your private information are explained in the Twitter Privacy Policy.

Instagram

Our website provides a link to Instagram, a service provided by Instagram Inc., 1601 Willow Rd, Menlo Park, CA 94025, USA.

This link is shown as a logo in the footer of our website and serves only as a link to Instagram. Your user information will only be transmitted to Instagram after clicking on the link and being taken to the Instagram website.

Use of Instagram allows information regarding your use of this website (including your IP address) to be transmitted to, and stored in, an Instagram server in the USA.

The purpose and scope of Instagram’s data collection, the further on-site processing and use of your data as well as your rights and potential settings to protect your personal information are explained in the Instagram Privacy Policy.

Spotify

We use widgets from the Spotify network for the purpose of making our content interactive. This serves to protect our overriding legitimate interest in a multimedia presentation of our offering and our activities in accordance with Art. 6 (1) sentence 1 (f) GDPR. Spotify is operated by Spotify AB, Regeringsgatan 19, SE-111 53 Stockholm, Sweden.

When you visit a page on our site that contains such a widget, your browser will connect directly to the Spotify server. The content of the widget is transmitted by the provider directly to your browser and integrated into the page. By integrating the widgets, the provider receives the information that your browser has called up the corresponding page of our website, even if you do not have a profile or are not logged in at the moment. This information (including your IP address) is transmitted by your browser directly to a server of the provider and stored there.

If you are logged in to Spotify, the provider can directly assign the visit to our website to your profile in the respective social network. When you interact with the widgets, for example when you play content, the corresponding information is also transmitted directly to a server of the provider and stored there.

The information can also be published in the social network and displayed to your contacts.

The purpose and scope of data collection and the further processing and use of data by the provider, as well as a contact option and your rights and settings options for the protection of your privacy, can be found in the privacy policy of the provider Spotify AB.

If you do not want the social network to associate the data collected via our website directly with your profile, you can also completely prevent the widget from loading with add-ons for your browser, e.g. with the script blocker NoScript.

C. Your rights

You have the following rights:

the right to information regarding personal data pertaining to you that is stored by us (Article 15 GDPR)
the right to correction of any incorrect or incomplete personal information (Article 16 GDPR)
the “right to be forgotten”: erasure of stored personal data insofar as the relevant data are not necessary for the exercise of the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or the purposes of establishing, exercising, or defending a legal claim (Article 17 GDPR)
the right to limited processing of personal data (Article 18 GDPR)
the right to object to the processing of your data conducted in our legitimate interest, public interest, or for profiling purposes unless we can demonstrate compelling grounds for processing said data that outweighs your interests, rights, and freedoms or where the processing of said data is required for the establishment, exercise, or defense of a legal claim (Article 21, GDPR)
the right to withdraw your consent to the collection, processing, and use of your personal data at any time with future effect (Article 7 paragraph 3 GDPR)—this means that the data processing related to that consent will no longer be carried out
the right to lodge a complaint with a supervisory authority where you believe the processing of personal data related to you is in breach of the GDPR (Article 77 GDPR)

D. Withdrawal of consent / objection to processing

Please send your withdrawal to:

Dr. Bernhard Schirg
Universität Hamburg
Fakultät für Geisteswissenschaften
Arbeitsbereich Public History
Überseering 35 #5
22297 Hamburg
bernhard.schirg@uni-hamburg.de

E. Rights as a data subject

You may exercise your rights as a data subject, such as obtaining information on data being stored, by contacting datenschutz@uni-hamburg.de

Last update: 16.07.2021