Privacy statement

Thank you for your interest in the websites of Collaborative Research Centre (CRC) SFB 1265:
„Re-Figuration of Space“. The protection of the personal data of visitors of TUB websites is very important for us. Therefore we want to inform you about data security at our university.

Subject of Data Privacy

Data privacy covers personal data. According to art. 4 par. 1 of DSGVO this are data referring to an identified or identifiable individual, hence all data which could be used to identify you. This applies for data such as name, private address, e-mail address, telephone number but also to usage data such as your IP address.

Of course CRC 1265 observes the legal requirements of data privacy and other applicable regulations.

We are committed to ensure that you can trust us concerning your personal data. Therefore transfers of personal or sensitive data are encrypted.  In addition our websites are protected against damage and unauthorised access by technical measures.

General Data Privacy

(1) If you visit a CRC 1265 website or download data of these sites, the following information will be stored in a log file: your IP address, date and time of the site access, visited website resp. name of the downloaded file, amount of transferred data, “user agent-string” of your web browser, the website from which you were referred to the current website or file and a status notification of successful or unsuccessful access. The non-anonymised data will be deleted after two weeks and will not be archived.

(2) This data will only be used for non-commercial purposes: it will only be reviewed manually if necessary for fault analysis, optimisation or investigation of abuse or performance issues.

(3) For data collection and storage we employ cookies. Cookies are small data packets consisting of text and are stored by your web browser upon website visit. They cause no harm on your device – neither do cookies contain viruses nor do they give us the option to spy on you. We employ two types of cookies: session cookies and permanent cookies. Session cookies are deleted when you close your web browser. Permanent cookies have a maximum lifetime – in our case up to one day.

Cookies are employed to ensure an optimal usage of the websites for visitors and editors. The employed cookies are not used for the tracing of personal user activities or analysis of behaviour. They are only employed where there is a technical requirement or they make more sense than other techniques such as the recognition of selected language. The usage of the websites is possible without cookies most of the time. For features resp. sites which require a login the employment of cookies is necessary.

You can configure your web browser to delete stored cookies.

(4) Within CRC 1265 websites external websites or services are embedded in some cases.

With techniques like “iframes” external website contents are embedded at certain points. The providers of the websites may register, store and as the case may be process and relay your data.

At the very most, these data are so-called traffic data, that is information collected by external service providers as can be collected from visiting any regular website, e.g. the IP address, the approximate location, the browser used, the website you are coming from and so on. In no way are personal information or data collected unless you have voluntarily submitted these via a web form.

Extent of Data Collection and Storage

Please refer to the section on our General Data Policy (see above, regarding login data and cookies) and the chapter on Usage Data (below, further information about cookies).

For the usage of our websites active registration of your personal data is not necessary in general. For CRC 1265 to fulfil requested services, we require personal data in some cases. This applies especially for the individual replying to e-mails, registration for events and newsletter or applications.

The registration for the newsletter of the CRC 1265 takes place exclusively by the previous input of your data and the following confirmation of the registration via E-Mail (Double-Opt-In).

If you register for an event via the CRC 1265 website, you must fill in the respective form fields (name, institution and e-mail address) and then submit your registration. You will receive afterwards a confirmation message at your e-mail address.

If you entrust us with the supply of a service, we will only register and store your personal data as required for the supply of the service.

You can revoke your consent at any time and without giving reasons and demand the deletion of your data.

If you sign up for a newsletter with your e-mail address, we will use your e-mail address in order to inform you within the newsletter until you unsubscribe the newsletter.

Collection and Storage of Usage Data

For the optimisation of our websites we collect and store data, such as visited website, date and time of access, the website which you are coming from and so on.

An automated processing is conducted for the generation access statistics. For this purpose the log data is anonymised by removal of the last two octets of IP addresses and removal of GET parameters from the URLs. This ensures that the statistics are based on anonymous data not allowing a reference to natural persons and their correspondent user data. The non-anonymised data will be deleted automatically after two weeks and will not be archived; a permanent storage is excluded. The anonymised log files and access statistics are stored for a longer period.

Data Usage for a Specific Purpose

For the homepage of the CRC 1265 we use the server and host services of the company Domain Factory. Please also note their privacy policy, which you can view at https://www.df.eu/de/datenschutzrichtlinie/.

We collect, process and store your personal data exclusively CRC 1265 internal for the purpose you notified us about and thereby we follow the principle of purpose related data usage. Without your explicit consent your personal data will not be given to third parties as long as it is not necessary for the supply of a service or execution of an agreement.  The forwarding of data to requesting governmental institutions and authorities is only conducted based on legal regulations resp. if we legally obligated by a judicial decision.

We take university internal data privacy very seriously. Our employees are bound to discretion and the compliance with data privacy laws by contract.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as newsletter or event registration. You can recognize an encrypted connection by the fact that the address line of the browser changes from “https://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Right of Access to Personal Data

You can retrieve information about your stored personal data without giving reasons at any time free of charge. Please contact the address provided in the legal details of the website. We will be pleased to assist you if you have any further questions about our data privacy information.

Right of Complaint

Should you have reason to believe that we are not adhering to this data privacy statement, you can contact the data protection officer at Technische Universität Berlin at any time:

Annette Hiller
Data Protection Officer of Technischen Universität Berlin
Straße des 17. Juni 135, 10623 Berlin,
Room H 1038
Tel.:  +49 30 314 21784
Fax:  +49 30 314 28033
Email: info@datenschutz.tu-berlin.de

You also have the right to contact the local controlling authority:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219 / visitor entrance via Puttkamerstr. 16 -18
10969 Berlin
Tel.: +49 30 13889-0
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de

Final Note

Please note that data privacy regulations and handling of data privacy (e.g. at Youtube) can change from time to time making it necessary to inform oneself about changes of data privacy laws and company policies.

This data privacy statement only applies for content of CRC 1265 webservers which provide this data privacy statement and does not cover linked websites of external webservers.