Preliminary remark:
Herewith we inform you about the use of data by Social Impact gGmbH (hereinafter "Social Impact"). This Data Protection Declaration informs you about the type, scope and purpose of processing personal data within our online offer and the websites, functions and contents connected to it as well as external online presences (e.g. social media profile from Social Impact). With regard to the terms used, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).
In order for you to take advantage of the information, offers and services offered on our website, Social Impact collects, processes and uses (personal) data. By agreeing to this Data Protection Declaration, you consent to the collection, processing and use of your (personal) data in accordance with the following provisions and in compliance with data protection law. We process personal data of users only in compliance with the relevant data protection regulations and in accordance with the dictates of data economy and data avoidance. This means that your data will only be processed if a legal permission has been granted, especially if the data is required for the provision of our contractual or other services, or if it is legally required or if a permission has been granted.
Personal data is individual information about factual or personal circumstances of a specific or identifiable natural person. Data that is collected when you visit our website but cannot be directly linked to your person is not personal data. You can revoke your consent once given at any time with effect for the future and/or object to future use of your data, provided that the processing and use of the data is not required for the purposes of contract processing. Social Impact also deletes the data if any legal retention obligations have expired, if you have made a claim for deletion, or if further storage is no longer necessary to fulfil the originally intended (contractual) purpose. In accordance with Art. 13 GDPR, we will inform you of the legal basis of our data processing. In cases where the legal basis is not stated in the Data Protection Declaration the following applies: The legal basis for obtaining consent is derived from Art. 6 (1) GDPR.
Your personal data will only be transmitted by Social Impact as encrypted data. For this we use the SSL (Secure Socket Layer) coding system. In addition, Social Impact ensures that websites and other systems are protected by technical and organizational measures against unauthorized access, modification or distribution of data by unauthorized persons.
1. Responsible Party and Data Protection Officer
The responsible party for the collection, processing and use of your personal data within the meaning of the Federal Data Protection Act (BDSG) and the General Data Protection Regulation (GDPR) is Social Impact gGmbH, Schiffbauergasse 7, 14467 Potsdam, represented by the managing directors Norbert Kunz, Jörg Fürstenberger or Gabriela Spangenberg.
The contact details of the data protection officer:
The data protection officer of Social Impact gGmbH can be reached by e-mail at datenschutzbeauftragter@datenschutzexperte.de and by phone at +49 89 2500 392 22.
PROLIANCE GmbH / www.datenschutzexperte.de
Data Protection Officer
Leopoldstr.21
80802 München
2. Collection, storage and use of personal data
a) Provision of our services in line with our statutes and business
We process the data of our supporters, interested parties, customers or other persons in accordance with Art. 6 (1) (b) GDPR, insofar as we offer them contractual services or act within the framework of existing business relationships or are ourselves recipients of services and benefits. Otherwise we process the data of affected persons in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate interests, e.g. if it concerns administrative tasks or public relations.
The data processed, the type, scope and purpose of such processing and the necessity of processing it are determined by the underlying contractual relationship. This includes inventory and master data of persons such as name, address, as well as contact data (e.g. e-mail address) and, if applicable, relevant project data (e.g. project contents and information). We delete data that is no longer required for the provision of our statutory and business purposes. This is determined according to the respective tasks and contractual relations. In the case of business processing, we store the data for as long as they may be relevant to the business transaction and also with regard to any warranty or liability obligations. The necessity of storing the data is reviewed every three years; otherwise the statutory storage obligations apply.
b) When visiting the website
When you visit our website www.socialimpact.eu, information is automatically sent to the server of our website by the browser used on your terminal device. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:
IP address of the requesting computer,
date and time of the access,
name and URL of the accessed file,
website from which the access takes place (referrer URL),
used browser and if applicable the operating system of your computer as well as the name of your access provider.
We process the above-mentioned data for the following purposes:
Ensuring a smooth connection of the website,
ensuring a comfortable use of our website,
use of the services offered,
evaluation of the system security and stability, as well as for
other administrative purposes.
The legal basis for data processing is Art. 6 (1) (f) GDPR. Our legitimate interest follows from the above-mentioned purposes for data collection. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
c) When registering for our newsletter
If you have expressly consented in accordance with Art. 6 (1) (a) GDPR, we will use your e-mail address to send you our newsletter on a regular basis. To receive the newsletter, it is sufficient to provide an e-mail address.
Registration for our newsletter is carried out in a so-called double opt-in procedure. This means that you will receive an e-mail after registration in which you are asked to confirm your registration. This confirmation is necessary so that nobody can register using a third-party’s e-mail address. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Likewise, changes to your data stored with the delivery service provider are logged.
You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you can send your unsubscription request at any time to newsletter(at)socialimpact.eu by e-mail.
The newsletters are sent via the mailing service "MailChimp", a newsletter mailing platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The privacy policy of the mail service provider can be viewed here: mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy-Shield Agreement and thus offers a guarantee to comply with the European level of data protection (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAGtatus=Active). The mail order service provider is used on the basis of our legitimate interests according to Art. 6 (1) (f) GDPR and an order processing contract according to Art. 28 (3) GDPR.
The dispatch service provider may use the data of the recipients in pseudonymous form, i.e. without allocation to a user, to optimise or improve its own services, e.g. for technical optimisation of dispatch and presentation of the newsletters or for statistical purposes. However, the dispatch service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.
d) When using our contact form
For questions of any kind, we may offer the possibility to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who the enquiry comes from and can answer it. Further information can be provided voluntarily.
Data processing for the purpose of contacting us is carried out in accordance with Art. 6 (1) (a) (b) GDPR on the basis of your voluntarily given consent or your submitted request.
The personal data collected by us for the use of the contact form will be automatically deleted after completion of the request you have submitted.
e) Surveys, invitations to tender & applications
Social Impact may conduct surveys and invitations to tender via this website. It is also possible to apply online for a job at Social Impact. Unless otherwise stated, the personal data you provide to participate in these surveys, tenders or applications will only be collected, processed and used to the extent necessary to conduct the relevant survey, tender or application. The processing of such data is carried out in order to fulfil our (pre-)contractual obligations within the framework of the application, invitation to tender or survey procedure (Art. 6 (1) (b) GDPR).
These forms are generated using Wufoo, a service operated by SurveyMonkey Inc, 101 Lytton Avenue, Palo Alto, CA 94301, USA. We have made appropriate agreements to ensure that Wufoo collects and processes your data only on our behalf and according to our instructions. Wufoo will neither sell nor pass on your data to third parties. Further details can be found in Wufoo's privacy policy: de.surveymonkey.com/mp/legal/privacy-policy/
f) Google Analytics
For the purpose of designing and continuously optimizing our pages according to our needs, and on the basis of Art. 6 (1) (f) GDPR, we use Google Analytics, a web analysis service of Google Inc. (https://www.google.de/intl/de/about/) (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ; hereinafter "Google"). In this context, pseudonymised user profiles are created and cookies (see section 4) are used. The information generated by the tracking cookie about your use of this website, such as
browser type/version,
operating system used,
referrer URL (the previously visited page),
host name of the accessing computer (IP address), and
time of the server inquiry,
is transferred to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on the website activities and to provide further services associated with the use of the website and the Internet for the purposes of market research and the needs-based design of these Internet pages. This information may also be transferred to third parties where required by law or where third parties process this data on our behalf. Under no circumstances will your IP address be combined with other data from Google. The IP addresses are anonymised, so that an association is not possible (IP masking).
Google is certified for the US-European data protection agreement "Privacy Shield", which guarantees compliance with the data protection level applicable in the EU.
You can prevent the installation of cookies through the corresponding settings in your browser software. However, we would like to point out that this may potentially result in you not being able to use all features of our website in their full scope.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de). Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help (https://support.google.com/analytics/answer/6004245?hl=de).
g) Social media and YouTube plug-ins
We use social media plug-ins from the social networks Facebook, Twitter and Instagram on our website on the basis of Art. 6 (1) (f) GDPR in order to make Social Impact more widely known. The underlying advertising purpose is to be regarded as a legitimate interest within the meaning of the GDPR. The responsibility for data protection compliant operation is to be guaranteed by their respective providers. The integration of these plugins by us is done via the so-called two-click method to protect visitors of our website in the best possible way.
aa) Facebook
On our website, social media plugins from Facebook Ireland Ltd. are used to personalise the use of our website. For this purpose we may use the "LIKE" or "SHARE" button. This is an offer from Facebook.
If you call up a page of our website that contains such a plugin, your browser will establish a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the website by it.
Through the integration of the plugin, Facebook receives the information that your browser has called up the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there.
If you are logged in to Facebook, Facebook can match your visit to our website directly to your Facebook account. If you interact with the plugins, for example by clicking the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your Facebook friends.
Facebook may use this information for the purposes of advertising, market research and the design of Facebook pages to meet your needs. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements shown to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.
If you do not want Facebook to associate the data collected via our website with your Facebook account, you would need to log out of Facebook before visiting our website.
Information regarding our fan page:
In the event that the data you provide us with is also or exclusively processed by Facebook, then Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, is responsible for data processing in the sense of the GDPR, in addition to us or in our place. For this purpose, we have concluded an agreement with Facebook in accordance with Art. 26 GDPR on joint responsibility for data processing (Controller Addendum). This agreement defines the data processing operations for which we or Facebook are responsible when you visit our Facebook fan page. You can view this agreement by clicking on the following link: www.facebook.com/legal/terms/page_controller_addendum. If as a visitor to the site you wish to exercise your rights (information, correction, deletion, restriction, data transferability, complaint to the supervisory authority, objection or revocation), you can contact both Facebook and us. You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in: www.facebook.com/settings or www.youronlinechoices.com
For further details, please refer to Facebook's Privacy Policy: www.facebook.com/about/privacy/
Facebook's Data Protection Officer: To contact the data protection officer of Facebook, you can use the online contact form provided by Facebook under the following link www.facebook.com/help/contact/540977946302970.
Information on data processing by Facebook: for statistical purposes, Facebook provides so-called page insights for our Facebook fan page: www.facebook.com/business/a/page/page-insights. This is aggregated data that provides information about how people interact with our site. Page insights may be based on personally identifiable information collected in connection with people visiting or interacting with our site and in connection with content provided.
The conditions of participation for our Facebook competitions can be found here: socialimpact.eu/teilnahmebedingungen/
bb) Twitter
Plugins of the short message network of Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland (Twitter) are integrated on our website. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. You can find an overview of tweet buttons here (https://about.twitter.com/resources/buttons).
If you call up a page of our website that contains such a plugin, a direct connection between your browser and the Twitter server is established. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet button" while you are logged in to your Twitter account, you can link the contents of our pages on your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We expressly draw attention to the fact that as the website operator, we receive no details of the contents of the data transmitted, nor of the usage made by Twitter of this data.
If you do not want Twitter to be able to link your visit to our pages, please log out of your Twitter user account. You can find further information on this in the Twitter Privacy Policy (https://twitter.com/privacy).
cc) Instagram
Our website also uses so-called social plugins ("plugins") from Instagram, which is operated by Instagram Inc, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland ("Instagram"). The Plugins are marked with an Instagram logo, for example in the form of an "Instagram Camera".
When you access a page on our site that contains such a plugin, your browser will connect directly to Instagram's servers. The content of the plugin is transmitted by Instagram directly to your browser and integrated into the page. This integration informs Instagram that your browser has called up the corresponding page on our website, even if you do not have an Instagram profile or are not currently logged in to Instagram.
This information (including your IP address) is transmitted by your browser directly to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can immediately associate your visit to our website with your Instagram account. When you interact with the plugins, for example by clicking the "Instagram" button, this information is also transmitted directly to an Instagram server and stored there.
The information is also published to your Instagram account and displayed to your contacts.
If you do not want Instagram to associate the information collected through our site directly with your Instagram account, you would need to log out of Instagram before visiting our site.
Please see Instagram's Privacy Policy (https://help.instagram.com/155833707900388) for more information.
The terms and conditions for our competitions on Instagram can be found here: socialimpact.eu/teilnahmebedingungen/
dd) YouTube
Our website uses plugins from the Google-operated YouTube site. The site is operated by YouTube, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of our sites equipped with a YouTube plugin, a connection to the servers of YouTube is established. This tells the YouTube server which of our pages you have visited. If you are logged in to your YouTube account, you can enable YouTube to assign associate your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.
YouTube is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest in the sense of Art. 6 (1) (f) GDPR .
Further information on the handling of user data can be found in the YouTube Privacy Policy at https://www.google.de/intl/de/policies/privacy.
ee) Privacy information regarding the use of WhatsApp
If you wish to communicate with us via WhatsApp, please take note of the following information regarding functionality, encryption, risks of WhatsApp, use of metadata within the Facebook corporate group, and your options for objection.
The use of WhatsApp is entirely voluntary. Alternatively, you can contact us through the contact methods provided to you or the contact methods listed on our website (e.g., postal, telephone, or email).
WhatsApp (WhatsApp Inc., WhatsApp Legal, 1601 Willow Road, Menlo Park, California 94025, USA) is a U.S.-based service, meaning that the data you send via WhatsApp may be transmitted to WhatsApp in the USA before being forwarded to us. According to Facebook, this transmission is based on the so-called EU Standard Contractual Clauses.
We point out that, according to the European Court of Justice, the USA does not provide a level of data protection equivalent to that of the EU, and therefore, no suitable guarantees for data protection can be provided (possible access by governmental authorities and lack of enforceability of data subject rights). However, WhatsApp assures that communication contents (i.e., the content of your messages) are end-to-end encrypted. This means that the content of messages is not accessible, not even by WhatsApp itself. You should always use an up-to-date version of WhatsApp to ensure the encryption of message contents. As our communication partners, especially customers, prospects, and applicants, we inform you that while WhatsApp cannot see the content, it can determine when communication partners are communicating with us and can access technical information about the communication partner's device, as well as, depending on the settings of their device, location information (so-called metadata). Except for the encrypted contents, the transmission of data from communication partners within the Facebook corporate group, for the purposes of optimizing respective services and ensuring security, is possible. Communication partners should also assume, unless they have objected, that their data processed by WhatsApp may be used for marketing purposes or for displaying user-tailored advertisements.
Personal data that you communicate during communication will be processed by us in accordance with the provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and other legal regulations applicable to electronic business transactions, as well as the instructions of the competent supervisory authorities. Since you contact us via WhatsApp on your own initiative, we use WhatsApp in relation to you in the context of contract initiation as a contractual measure according to Art. 6 para. 1 lit. b. GDPR.
For further information on the purposes, types, and scope of processing your data by WhatsApp, as well as your rights and options to protect your privacy, please refer to WhatsApp's privacy policy: https://www.whatsapp.com/legal/.
You can object to communication with us via WhatsApp at any time. In the case of subscribing to messages (also known as "broadcasts") or subscribing to status messages via WhatsApp, you can delete our corresponding phone number from your contacts and request us to remove your contact from our directory. For ongoing individual inquiries or communications, you can also request us not to continue communication via WhatsApp. In the case of communication via WhatsApp, we delete WhatsApp messages as soon as we can assume that any user inquiries have been answered, if no reference to a previous conversation is expected, and deletion does not conflict with legal retention obligations. Deletion on the systems we use occurs within 90 days. Furthermore, we want to inform you that we do not transmit the contact details provided by you to WhatsApp without your consent (e.g., through contact initiated by us via WhatsApp).
As part of the WhatsApp service, we process the following personal data:
We would like to point out that, for reasons of your safety, we reserve the right not to answer inquiries via WhatsApp. This is the case, for example, when communication content requires special confidentiality or when a response via the messenger does not meet formal requirements. In such cases, we refer you to more suitable communication channels.
h) Presence in social networks & external links
Besides this website, we also have a presence in various social media, which you can reach by clicking on the corresponding buttons on our website, or by entering the address in your browser or by clicking on search engine results. Insofar as you visit or interact with such a presence, personal data may be transmitted to the provider of the social network. It is possible that, in addition to the storage of the data you specifically entered in this social medium, further information may also be processed by the social network provider (e.g. for statistics).
Furthermore, the social network provider may process the most relevant data relating to the computer system from which you visit it - for example your IP address, the type of processor used and browser version including plug-ins.
For the purpose and scope of data collection by the respective medium and the further processing of your data there as well as your rights in this regard, please refer to the respective provisions of the respective social network provider, e.g. at
Facebook: de-de.facebook.com/about/privacy/
Twitter: twitter.com/de/privacy
Instagram: help.instagram.com/155833707900388
YouTube: policies.google.com/privacy
Google: policies.google.com/privacy
Xing: privacy.xing.com/de/datenschutzerklaerung
With regard to the use of our Facebook fan pages, we would like to point out that Facebook collects a number of user data for us as a site operator and makes this data available free of charge - without you or us being able to reject or edit/delete it. The statistics that we receive from Facebook as a site operator are based on anonymous data. However, the collection is done via cookies, which contain unique user IDs and, together with the Facebook login data, can be personally identifiable, i.e. these would no longer be anonymous. For further information, please refer to the current press and Facebook information at de-de.facebook.com/about/privacy/.
In the event that the data you provide us with is also or exclusively processed by Facebook, then Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, is responsible for data processing in the sense of the GDPR, in addition to us or in our place. For this purpose, we have concluded an agreement with Facebook in accordance with Art. 26 GDPR on joint responsibility for data processing (Controller Addendum). This agreement defines the data processing operations for which we or Facebook are responsible if you have visited our Facebook fan page. This agreement can be viewed at the following link: www.facebook.com/legal/terms/page_controller_addendum. If as a visitor to the site you wish to exercise your rights (information, correction, deletion, restriction, data transferability, complaint to the supervisory authority, objection or revocation), you can contact both Facebook and us. You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in: www.facebook.com/settings or www.youronlinechoices.com For further details, please refer to the Facebook privacy policy: www.facebook.com/about/privacy/.
To contact the Facebook Data Protection Officer, you can use the online contact form provided by Facebook at the following link www.facebook.com/help/contact/540977946302970.
Facebook provides so-called page insights for our Facebook fan page: www.facebook.com/business/a/page/page-insights. This is aggregated data that provides information about how people interact with our site. Page insights may be based on personally identifiable information collected in connection with people visiting or interacting with our site and in connection with content provided. Please note what personal information you share with us through Facebook. Your data may be processed for market research and advertising purposes even if you are not logged in to Facebook or do not have a Facebook account. For example, user profiles can be created from the user behaviour and the resulting interests of users. The user profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. This data collection takes place via cookies, which are stored on your terminal device. Furthermore, user profiles may also store data that is independent of the devices used by the users; especially if the users are members of the respective platforms and are logged on to them. The legal basis of the processing is Art. 6 (1) (f) GDPR. Our legitimate interest lies in the optimised presentation of our offer, the effective informing of and communication with customers and interested parties as well as the targeted placement of advertisements. Please note that we have no influence on the data collection and further processing by Facebook. As a result, we cannot provide any information about the extent to which, where and for how long the data is stored by Facebook. Furthermore, we cannot make any statements about the extent to which Facebook complies with existing deletion obligations, which evaluations and links to the data are carried out by Facebook and to whom the data is passed on by Facebook. If you want to avoid the processing of your personal data by Facebook, please contact us by other means.
i) Use of Web Fonts
aa) External fonts, Google Fonts, are used on our website. Google Fonts is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The integration of these web fonts is done by a server call, usually to a Google server in the USA. Through this, the server is informed which of our websites you have visited. The IP address of the browser of the terminal device of the visitor of these Internet pages is also saved by Google. You can find more information in the Google data protection information, which you can download here: policies.google.com/privacy
bb) Adobe Typekit Webfonts are also used on our website. Typekit is a service offered by the company Adobe. This service provides fonts that are displayed in the user's web browser after a server call to Adobe (in the USA). The IP address of the browser of the terminal device of the user of this website is stored by Adobe, and possibly other data, too. For more information, please refer to the Typekit privacy policy, which can be found here: https://www.adobe.com/de/privacy/policies/typekit.html.
k) Hubspot
We use HubSpot, a digital marketing tool, on our website and when processing personal data. The service provider is the American company HubSpot, Inc, 25 First St 2nd Floor Cambridge, MA, USA. The company also has a registered office in Ireland with the address 1 Sir John Rogerson's Quay, Dublin 2, Ireland. HubSpot also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the lawfulness and security of the data processing. HubSpot uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO) as the basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there. Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that data processing complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, HubSpot undertakes to comply with the European level of data protection when processing the relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. The decision and the corresponding standard contractual clauses can be viewed here, among other places: eur-lex.europa.eu/eli/dec_impl/2021/914/oj The data processing agreement, which corresponds to the standard contractual clauses, can be found at legal.hubspot.com/dpa. More about the data processed through the use of HubSpot can be found in the Privacy Policy at legal.hubspot.com/de/privacy-policy .
3. Disclosure of Data
Your personal data will not be disclosed to third parties for purposes other than those listed below.
We will only pass on your personal data to third parties if:
you have given your express consent in accordance with Art. 6 (1) (a) GDPR;
the transfer in accordance with Art. 6 (1) (f) GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data;
in the event that the transfer in accordance with Art. 6 (1) (c) GDPR is legally obligatory, and when
this is legally permissible and necessary for the processing of contractual relationships with you according to Art. 6 (1) (b) GDPR.
4. Cookies
We use cookies on our site. These are small files that are automatically created by your browser and stored on your device (laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your terminal device and do not contain viruses, trojans or other malware. Information is stored in the cookie that is related to the specific terminal device used. This does not mean, however, that we obtain knowledge of your identity.
The use of cookies serves firstly to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site. Secondly, we also use temporary cookies to optimise user-friendliness. These are stored on your terminal device for a certain specified period of time. If you visit our site again in order to use our services, it is automatically recognised that you have already been with us and which entries and settings you have made so that you do not have to enter them again. Furthermore, we also use cookies to record the use of our website statistically and to evaluate it for the purpose of optimising our services for you. These cookies enable us to automatically recognize that you are a returning visitor when you visit our site again. These cookies are automatically deleted after a defined time.
The data processed by cookies is required for the above-mentioned purposes to protect our legitimate interests and those of third parties in accordance with Art. 6 (1) (f) GDPR.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. Completely deactivating cookies may mean that you cannot use all the functions of our website.
5. Data Subject Rights
You have the right:
to request confirmation of whether data referred to here is being processed and to request information on this data as well as further information and a copy of the data in accordance with Art. 15 GDPR;
in accordance with Art. 16 GDPR, to request the correction of incorrect or incomplete personal data stored by us;
in accordance with Art. 17 GDPR to demand the deletion of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data, and, insofar as you dispute the accuracy of the data or if the processing is unlawful but you reject its deletion and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
in accordance with Art. 20 GDPR to receive the personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another responsible party;
in accordance with Art. 7 (3) GDPR to revoke your once granted consent to us at any time;
in accordance with Art. 77 GDPR to complain to a supervisory authority. As a rule, you can contact the regulatory agency or watchdog at your usual place of residence or workplace or at the headquarters of our company.
6. Right of Objection
If your personal data are processed on the basis of legitimate interests in accordance with Art. 6 (1) (f) GDPR, in accordance with Art. 21 GDPR you have the right to object to the processing of your personal data insofar as there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without a special situation being named.
If you wish to exercise your right of revocation or objection, simply send an e-mail to kommunikation(at)socialimpact.eu .
7. Data Security
We use the common SSL (Secure Socket Layer) method in connection with the highest encryption level supported by your browser when visiting our website. Usually this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether a specific page of our website is encrypted by the closed display of the key or lock symbol in the lower status bar of your browser.
We also use suitable technical and organisational security measures to protect your data against accidental or deliberate manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are improved on an ongoing basis in line with technological developments.
8. Protection of Minors
Persons under 18 years of age should not transmit any personal data to us without the consent of their parents or legal guardians. We do not request personal data from children and young people. We do not knowingly collect such data nor pass them on to third parties.
9. Topicality and amendment of this Data Protection Declaration
This Data Protection Declaration is currently valid and became valid as of November 2023.
It may become necessary to amend this Data Protection Declaration due to the further development of our website and offers on it or due to amended legal or official requirements. The current Data Protection Declaration valid at specific time can be accessed and printed out at any time on the website under DATA PROTECTION.
The European Social Innovation Alliance is a joint project of Centre for Social Investment, Danish Design Centre, Danish Social Innovation Academy, Diakonie Schleswig-Holstein, FASE GmbH, Foundation for Civil Society, Glasgow Caledonian University, Institute for Work and Technology, Phineo gAG, Social Entrepreneurship Netzwerk Deutschland e.V., Shipyard Foundation, Social Enterprise Estonia, Social Innovation Exchange, Tallinn University, Technical University Dortmund, Võru County Development Agency with the lead partner Social Impact gGmbH and is funded by the European Commission via the European Social Fund and the European Programme for Employment and Social Innovation.
