We take the protection of your personal data very seriously. We treat your personal information as confidential and handle it in compliance with the statutory data privacy regulations and this Privacy Statement.
The following information provides an overview of how we process your personal data and your rights under data protection law.
1. Who is responsible for processing the data and who can I contact?
The data controller is:
10115 Berlin, Germany
T +49 (0)30 20 60 49 0
F +49 (0)30 20 60 49 55
You can contact our external Data Protection Officer at:
10115 Berlin, Germany
T +49 (0)30 20 60 49 0
F +49 (0)30 20 60 49 55
2. Who does this Privacy Statement apply to?
This Privacy Statement is aimed at all visitors to our website.
3. What data do we use?
As a rule, you can visit our web pages without revealing your identity. If you send us an email or contact form, your message and your email address will be used exclusively for correspondence with you. In individual cases, e.g. when using our participant management system, we may need to process your personal data. This data includes participant contact details and, where applicable, other data that is necessary for running the event, such as specific customer requirements or data on speaker biographies.
4. For what purposes and on what lawful basis do we use your data?
We process your personal data in compliance with the provisions of the General Data Protection Regulation (GDPR) and the German Data Protection Act (BDSG):
a) to fulfil contractual obligations (Article 6 (1) (b) GDPR)
Personal data is processed to carry out commercial activities in the context of running events for our customers or for our own events, and to carry out pre-contractual activities in response to a request from you, e.g. via a contact form.
b) in the balance of interests (Article 6 (1) (f) GDPR)
Where necessary, we process your data beyond the actual performance of the contract to protect legitimate interests of ourselves or third parties.
- Asserting legal claims and defence in legal disputes
- Safeguarding IT security
c) on the basis of your consent (Article 6 (1) (a) GDPR)
If you have given consent for us to process your personal data for certain purposes your consent provides the lawful basis for this processing. Consent can be withdrawn at any time. Please note that the withdrawal can only apply to future processing. Data processing that took place before consent was withdrawn is not affected.
5. Who has access to my data?
Access to your data within the Leibniz Association is restricted to the offices that need it to fulfil our contractual and statutory obligations. Our contracted service providers and agents may process data for these purposes if they respect its confidentiality and our data protection guidelines. We may pass on data that we receive from you through our participant management system to the organiser of the event.
6. Is data transmitted to third countries?
Data will not generally be transferred to countries outside the EU or EEA (“third countries”). In some cases, for example for registration for events in third countries, it is necessary to submit the required data. This is based on the EU standard contractual clauses.
7. How long will my data be kept?
We process and hold your personal data for as long as is needed to fulfil our contractual and statutory obligations. Data that is no longer necessary for the fulfilment of contractual or statutory obligations is regularly deleted, unless further – temporary – processing is necessary to comply with retention periods under commercial and tax law, for instance under the Handelsgesetzbuch (German commercial code) or Abgabenordnung (German fiscal code). The retention/documentation periods specified there are between six and ten years.
8. What are my rights in terms of data privacy?
You have the right to access your personal data under Article 15 GDPR, the right of rectification under Article 16 GDPR, the right of erasure under Article 17 GDPR, the right to block data processing under Article 18 GDPR, the right to object under Article 21 GDPR and the right to data portability under Article 20 GDPR. In addition, you have the right to complain to a data protection supervisory authority (Article 77 GDPR in conjunction with § 19 BDSG).
A list of supervisory authorities and their contact details can be found here: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
If you have given consent for us to process your personal data, you may withdraw it at any time. Please note that the withdrawal can only apply to future processing. Data processing that took place before consent was withdrawn is not affected. Please also see our Information about your right to object under Article 21 GDPR (see point 11).
To exercise your rights, please use the contact details for our Data Protection Officer given above.
9. Is there any obligation to provide data?
When registering for events, you must provide us with the personal data necessary for us to carry out the event and to fulfil the associated contractual obligations, or which we are required to collect by law. These data fields are indicated as mandatory during data collection. Without this data, we will generally be forced to decline to conclude the contract or carry out the assignment, or to terminate/stop fulfilling an existing contract.
10. Are there any automated decision-making processes, including profiling?
As a rule, we do not use any fully automated decision-making processes, including profiling pursuant to Article 22 GDPR.
In the event that we use profiling for targeted marketing, you will be informed of the fact separately.
11. Information about your right to object under Article 21 GDPR
a) Right to object on a case-by-case basis
You have the right to object, on grounds relating to your particular situation, to the processing of your personal data. The prerequisite for this is that data is being processed in the public interest or on the basis of a balancing of interests. This also applies to profiling. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing the data which override your interests, rights and freedoms, or if your personal data is being used for the establishment, exercise, or defence of legal rights.
b) Objection to the processing of data for direct marketing
In individual cases, we use your personal data for our direct marketing. You have the right to object to this at any time; this also applies to profiling, where it is related to direct marketing. If you object to processing for direct marketing purposes, we will no longer process your personal data for this purpose. You may communicate your objection in any form, ideally to our data protection officer using the above contact details.
12. What data is processed when I use the website?
a) Data relating to use of the website
When you visit our website, we receive usage data. This includes information such as your screen resolution, browser version, internet access, operating system, language, plug-ins used, country/region of origin and search engines. The stored data is analysed solely for statistical purposes. It is not transferred to third parties or subject to a user-related analysis.
To facilitate browsing, session cookies are used when visitors open individual pages. These cookies expire at the end of the session and do not contain any personal data, i.e. no user-related analysis of the contents of the cookies is conducted. You can configure your browser to allow cookies only on a case-by-case basis or not at all.
Cookies required for electronic communications or to perform specific functions (e.g. registrations, subscriptions, payment transactions) are stored on the basis of Article 6 (1) (f) of the GDPR. In this case, cookies are stored for the purpose of providing our services free from technical errors and in the best possible way. Disabling cookies may reduce the functionality of this website.
13. How secure is my data?
To protect the personal data of our customers and interested parties, we use a secure online data transfer process called Secure Socket Layer (SSL). All information transmitted using this secure method is encrypted before being sent. Processing of your personal data takes place exclusively in data centres and on computers protected by security technology in line with industry standards (e.g. firewalls, password protection, access controls, etc.).
14. Which plugins and tools are used on the website?
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is
b) Integration of Google Maps
(1) This site uses the Google Maps service. It enables us to display interactive maps directly on our website and allows convenient use of the map function.
(2) When you visit our website, Google receives information that you have visited the relevant page on our website. In addition, the data listed under point 3 of this statement is also transmitted. This occurs even if you do not have an account with Google or are not currently logged in. If you are logged in to a Google account, your data will be directly associated with your account. If you do not want your data to be associated with your Google profile, you will need to log out before activating the button. Google stores your data as user profiles and uses it for purposes of advertising, market research and/or tailoring the design of its website. In particular, this kind of analysis is carried out (even for users who are not logged in) to provide tailored advertising and to inform other users of the social network about your activities on our website. You have a right to object to the development of these user profiles; to exercise this right, you must contact Google.
(3) For further information about the purpose and scope of data collection and processing by the plug-in provider, see the provider’s privacy policies. There you can also find more information about your rights and settings options in this regard for protecting your privacy: policies.google.com/privacy. Google processes your personal data in the USA as well and is subject to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Last updated February 2020