Name and address of the responsible controller
The responsible controller as defined in the EU General Data Protection Regulation (GDPR) and other national data protection laws of the EU member states as well as other data protection-related provisions is:
Tel: +49 211 81-11118
See also: http://www.uni-duesseldorf.de/home/footer/impressum.html
Name and address of the data protection officer
The data protection officer appointed by the responsible controller is:
Datenschutzbeauftragter und Leiter der Stabsstelle Datenschutz
Tel.: +49 211 81-13214
Fax: +49 211 81-10549
General information on data processing
We collect and use the personal data of our users insofar as necessary for operating a functional website and delivering our content and services, and to the extent to which the law permits.
Legal basis for processing personal data
Whenever we obtain the consent from a data subject to process personal data, Art. 6 (1 a) GDPR serves as the legal basis for processing this personal data.
Whenever processing such data is necessary for compliance with a legal regulation, Art. 6 (1 c) GDPR serves as the legal basis.
In cases for which processing is necessary to protect the vital interests of the data subject or of another natural person, Art. 6 (1 d) GDPR serves as the legal basis.
If processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority, Art. 6 (1 e) GDPR serves as the legal basis for processing this data.
If processing is necessary for safeguarding the legitimate interests of our organization or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, Art. 6 (1 f) GDPR serves as the legal basis for processing this data.
Provision of the website and creation of log files
Scope of data processing
For every access query to our website, our server automatically collects data and information from the querying computer system. The following data is collected in this process:
- the user’s IP address
- the date and time of the query
This data is compiled in log files and saved on our server. No further personal data is stored together with the log file data.
Legal basis for processing
The legal basis for temporarily processing data and log files is provided in Art. 6 (1 f) GDPR.
Purpose of processing
The temporary storage of the IP address on our server is necessary for granting the user’s system access to our website. For this purpose, the user’s IP address must remain stored on our server for the duration of the session. Data storage in log files is required to ensure the functionality of the website. Furthermore, the data enables us to optimise the website and guarantee the security of our IT systems. Data analysis for marketing-related purposes is not performed in this context. These purposes correspond to the legitimate interests of data processing as indicated in Art. 6 (1 f) GDPR.
Duration of storage of personal data
The data is erased at the conclusion of the respective session. All data stored in log files is erased within seven days. A longer period of data storage is possible. In such cases, the user’s IP address is erased or anonymised in such a way that renders it impossible to identify the querying client.