Privacy Statement

Your privacy is important to us. This privacy statement explains which data we collect and when, and how we use it.

In order to guarantee that we and our external service providers comply with data protection provisions, we have taken the required technical and organisational measures.

We are constantly aiming to improve the service we provide to you by further developing our website and implementing new technologies. Adjustments to this privacy statement may therefore be necessary. This is why we advise you to re-read this Privacy Statement every once in a while.

 

Access to the DermExpoDB website

The provision of your data is necessary for the correspondence with you and the provision of the service to you after login. The provision of data is voluntary on your part. The data is transmitted with SSL encryption. Your data will only be stored by init AG for as long as is necessary to provide the service to you but at least as long as you possess a login. This data will then be deleted if there are no other legal obligations for further storage of the data. Signed documents for granting of the right to use data will be stored permanently by the DermExpoDB consortium partners who have released dermal data for sharing with you.

With every access to this website, personal data will be stored in a log file. This data will be stored by init AG for the sole purpose of providing technical security, to safeguard against and identify attacks on our web servers in particular.

The following data will be saved on the init AG servers in Germany for 7 days:

• Full IP address of the computer making the request
• Date and time of access
• Name of the accessed resource
• Page from which the file was requested
• Access status (file transmitted, file not found etc.)
• The used web browser and operating system
• Size of accessed resource

 

Personal data

If you send us an E-Mail, and provide us with personal or business data, this data will only be used for communication with you. It is for you to decide whether or not you wish to disclose this data to us. We shall store your information on highly protected servers in Germany. Only specially authorised personnel who are responsible for the technical, commercial or editorial operation of the servers are granted access to this data.

Your personal data will be processed for the following purposes:

On the basis of Art. 6, (1) point (b) GDPR, we shall use your personal data in order to fulfil a contractual obligation which occurs in the context of your enquiry and/or a data request that you may make after login.

 

Your rights

You have the right to information, free of charge and at any time, on the personal data concerning you that is stored and processed by us, on their origin and on their recipients, and on the purpose for which it is processed.

You have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format.

You also have the right to rectification free of any charge, to the restriction of processing and to the erasure of your personal data.

Your individual situation may also justify an objection to the processing of your personal data, an additional right of yours.

Should you have provided us with specific consent to the processing of your personal data, you may withdraw that consent at any time. An objection shall not affect the lawfulness of the processing of your data up until the time of the objection.

Should you believe that we are not processing your data in accordance with the applicable data protection provisions, you have the right to contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI) at Husarenstraße 30, D-53117 Bonn.

For further questions regarding the processing of your personal data, you may send your query either directly to us or to our body's data protection officer. You will find the relevant contact details at the end of this Privacy Statement.

 

Disclosure of personal data to third parties

We shall not disclose personal data that is saved following access to BAuA's website to third parties unless we are required to do so by law or by a court order, or disclosure is necessary for the purposes of investigation or criminal prosecution in the event of attacks on our internet infrastructure. Data shall not be disclosed for any other non-commercial purposes or for commercial ends.

E-Mail addresses or postal addresses provided by you when requesting data will be used for the sole purpose of delivering and evaluating these services. Without your explicit consent, we will not disclose your data to any third party. Data requests are processed by our service provider init AG.

 

Use of cookies

Drupal creates a session cookie for logged in users. This has a validity of up to 2000000 seconds (just over 23 days) and can be removed prematurely by using the logout function.

 

Protection of minors

Without the consent of their parents or legal guardians, persons of less than 18 years of age should not provide us with their personal data. We do not request personal data of children or adolescents. We do not intentionally collect such data and do not disclose them to third parties.

 

Links to other providers' websites

Our website may contain links to websites of other providers. We have no influence on whether or not these operators comply with European or national data protection provisions.

 

Controllers as specified in Art. 4 (7) of the EU General Data Protection Regulation

Federal Institute for Occupational Safety and Health (BAuA)
Friedrich-Henkel-Weg 1-25
44149 Dortmund
GERMANY
E-Mail: @email

 

Contact details of the authority's data protection officer

Mathias Thielen
Federal Institute for Occupational Safety and Health (BAuA) 
Friedrich-Henkel-Weg 1-25
44149 Dortmund
GERMANY 
E-Mail: @email