Data Processing Controller
SRH University of Applied Sciences Heidelberg GmbH
part of the SRH universities
69123 Heidelberg (DE)
Phone: +49 6221 6799 882
Fax: +49 6221 6799-883
Data Protection Officer
SRH University of Applied Sciences Heidelberg GmbH
Direct contact to the data processing controller:
Tel: 06221 6799-854 /-882
Direct contact to the data protection officer:
What is personal data?
Personal data is any information that relates to an identified or identifiable natural person. What is essential here therefore is whether a personal reference can be made using the collected data. This includes information such as your name, address, telephone number or email address. Information which is not directly connected to your actual identity, such as favourite websites or number of users of a site, is not regarded as personal data.
How do we collect and process your personal data?
If the online service includes the option to enter personal or commercial data (email addresses, names, addresses, etc.), this data may be disclosed by the user on a purely voluntary basis. Emails are transmitted via a contact form. When you send such a message, your personal data is collected only to the extent necessary to reply. The email is sent in an unencrypted manner. If you have provided us with any personal data, we shall only use this data for the technical administration of the web pages and to respond to your wishes and requests, which as a rule means to process any contract concluded with you or to reply to any queries you may have. The legal basis for processing is Article 6(1)(a) and Article 6(1)(b) GDPR. It is only if you have given us your consent beforehand, or if you – subject to it being provided for under statutory regulations – have not raised an objection, that we will also use this data for product-related surveys, marketing and statistical purposes. In this case the legal basis for processing is Article 6(1)(a) GDPR and Article 6(1)(f) GDPR. Your personal data is not disclosed, sold or transmitted in any other way to third parties unless it is necessary in order to fulfil a contract or you have given your express consent. Any consent granted can be revoked at any time with future effect.
How do we use your personal data and how do we disclose it?
If the online service includes the option to enter personal or commercial data (email addresses, names, addresses, etc.), this data may be disclosed by the user on a purely voluntary basis. Emails are transmitted via a contact form. When you send such a message, your personal data is collected only to the extent necessary to reply. The email is sent in an unencrypted manner.
If you have provided us with any personal data, we shall only use this data for the technical administration of the web pages and to respond to your wishes and requests, which as a rule means to process any contract concluded with you or to reply to any queries you may have.
It is only if you have given us your consent beforehand, or if you – subject to it being provided for under statutory regulations – have not raised an objection, that we will also use this data for product-related surveys, marketing and statistical purposes.
Your personal data is not disclosed, sold or transmitted in any other way to third parties unless it is necessary in order to fulfil a contract or you have given your express consent. Any consent granted can be revoked at any time with future effect.
For how long will my data be stored?
Generally speaking, we store all information that you send to us until the respective purpose, i.e. the contractual purpose, has been fulfilled. This means, for example, until any queries have been resolved, or in the case of newsletters, until you choose to unsubscribe from them. If an extended storage period is permissible by law, the data will be stored within this framework. If you no longer wish that we utilise your data, we will of course comply with this request immediately (please also refer to the address stated under “Contact”).
When will my data be deleted?
The deletion of the stored personal data is carried out if you revoke your consent to such storage, if knowledge of such data is no longer necessary for the fulfilment of the purpose pursued with the storage, or if the storage of such data is inadmissible on other legal grounds. Data for invoicing and accounting purposes will not be affected by a deletion request.
We make use of so-called cookies during your visit to our website. Cookies are small data files which are stored on your computer. Cookies help us check on the frequency of use and the number of users who visit our web pages, and to make our services to you as convenient and efficient as possible.
On the one hand, we use so-called “session cookies”, which are exclusively stored temporarily for the duration of your use of one of our web pages. On the other hand, we also use “permanent cookies” in order to record data on visitors who repeatedly access one of our web pages. The purpose of using cookies is to be able to offer you optimal user guidance as well as to “recognise” you and thus be able to present to you as diversified a website as possible along with new content during repeated use. The content of a permanent cookie is limited to an identification number. Name, IP address, etc. are not stored. No individual profile is created on your usage behaviour.
Our website offer can also be used without cookies. You can change your browser settings to disable cookies, restrict them to certain websites or set your browser to alert you whenever a cookie is sent. Please note, however, that applying such settings may affect the way in which the website is displayed or limit user guidance.
What we do to ensure security of data processing
Our organisation takes all of the necessary technical and organisational security measures to ensure your personal data is protected from loss or misuse. Accordingly, your data shall be stored in a secure operational environment that is not open to the public. In certain cases, your personal data is encrypted by Secure Socket Layer technology (SSL) during transmission. This means that an approved encryption procedure is used for communication between your computer and our organisation’s servers if your browser supports SSL.
Or: SSL and TLS encryption
For security reasons and to protect the transfer of confidential content, such as the orders or enquiries that you send to us as the website operators, this site uses SSL and TLS encryption. You can identify an encrypted connection from the padlock symbol in your browser bar and the fact that “http://” in the address bar changes to “https://”.
If SSL or TLS encryption is enabled, the data you send to us cannot be read by third parties.
Should you wish to contact our organisation via email, we would like to point out that the confidentiality of the transmitted information cannot be guaranteed. The content of emails may be viewed by third parties. We would therefore recommend that you arrange for confidential information to be sent to us exclusively by post.
Your data protection rights
In accordance with the various statutory provisions in place, you shall be entitled to obtain information at any time, and free of charge, regarding your stored personal data, its origin and potential recipients and the purpose of the data processing (Article 15 GDPR) and, where applicable, the right to rectification of inaccurate data (Article 16 GDPR), the right to erasure of such data (Article 17 GDPR), the right to restriction of processing according to Article 18 GDPR, the right to object (Article 21 GDPR) and the right to receive the personal data that you have provided according to Article 20 GDPR. The limitations according to Sections 34 and 35 BDSG apply to the right to information and the right to erasure. In addition, you shall also have the right to lodge a complaint with a responsible supervisory authority in the event of infringements under data protection law (Article 77 GDPR in conjunction with Section 19 BDSG). The responsible supervisory authority in data protection matters is the state data protection officer of the federal state in which our organisation has its registered office. A list of data protection officers and their contact details can be found in the link below.
How you can withdraw your consent to data processing
A lot of data processing operations can only take place with your express consent. You can withdraw your consent at any time. All you have to do is send us a simple email. The legality of any data processing carried out before you withdraw your consent will not be affected by the withdrawal of your consent.
Contact for questions, complaints, assertion of your rights
Contact details in the event of queries or complaints and assertion of your rights
Should you have any queries or complaints or wish to assert your data protection rights, please feel free to contact us. Via post: SRH Hochschule Heidelberg GmbH, Ludwig-Guttmann-Straße 6, 69123 Heidelberg. Via email: email@example.com
Changes may be made to these privacy notices that must also be published in a timely manner on this website.
© 2021 SRH University of Applied Sciences