Privacy Declaration
Responsible in the sense of the data protection laws, in particular the EU- General Data Protection Regulation (GDPR), is:
Ludwig-Erhard-Haus foundation represented by:
Evi Kurz, Chairperson of the Board
Stiftung Ludwig-Erhard-Haus
Friedrichstraße 4
90762 Fürth
E-Mail: info@ludwig-erhard-zentrum.de
Your rights as an affected person
Using the contact details of our data protection officer specified below, you can exercise the following rights at all times:
- obtain information about your data stored by us and its processing (Sec. 15 GDPR),
- have incorrect personal data corrected (Sec. 16 GDPR),
- have your stored data deleted (Sec. 17 GDPR),
- restrict data processing if we are not yet allowed to delete your data due to legal obligations (Sec. 18 GDPR),
- objection to us processing your data (Sec. 21 GDPR) and
- data portability, provided that you have consented to the data processing or have concluded a contract with us (Sec. 20 GDPR).
If you have given us your consent, you can revoke this at any time with effect for the future.
Collecting general information when visiting our website
Type and purpose of processing:
When you access our website, i.e., when you do not register or otherwise submit information, then information of a general nature is collected automatically. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and the like.
This information is processed for the following purposes in particular:
- to ensure smooth connection to the website,
- to ensure the smooth use of our website,
- to evaluate system security and stability, and
- to optimize our website.
We do not use your data to draw conclusions about your person. Information of this kind is statistically evaluated anonymously by us, where necessary, in order to optimize our Internet presence and the technology behind it.
Legal basis and justified interest:
This data is processed pursuant to Sec. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website.
Recipient:
Recipients of the data may be technical service providers who act as order processors for the operation and maintenance of our website.
Storage period:
The data is deleted as soon as it is no longer required for the purpose for which it was collected. This is generally the case for any data used to provide access to the website, which are deleted when the respective session has ended.
In the event that data are stored in log files, this is the case after 14 days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are anonymized, so that an assignment to the calling client is no longer possible.
Provision mandatory or required:
The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website is not guaranteed. In addition, individual products and services may not be available or may be limited. For this reason, objections are excluded.
Contact
Type and purpose of processing:
The data you enter will be stored by us for the purpose of communicating with you. For this purpose, it is necessary to provide a valid e-mail address and your name. This serves to assign the request and the subsequent response to the same. Whether or not you specify further data is optional.
Legal basis:
The processing of data is based on a legitimate interest (Sec. 6 para. 1 lit. f GDPR).
The information you provide will be stored for the purpose of processing the request and for possible follow-up questions.
If you contact us to request an offer, the data entered will be processed to carry out pre-contractual measures (Sec. 6 para. 1 lit. b GDPR).
Recipients:
The recipients of the data are, where applicable, the order processors.
Storage period:
Data are stored for 6 months at most after offers have been processed.
If a contractual relationship results, we are subject to the statutory retention periods as specified by the German Commercial Code (HGB) and delete your data after these periods have expired.
Provision mandatory or required:
The provision of your personal data is voluntary. However, we can only process your request if you provide us with your name, e-mail address and the reason for the request.
Using script libraries (Google Webfonts)
In order to display our content correctly and in a visually appealing manner across browsers, we use “Google Web Fonts” from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter "Google") on this website to display fonts.
You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in the privacy declaration by Google: https://www.google.com/policies/privacy/.
SSL encryption
To protect your data during transmission, we encrypt processes in line with state-of-the-art technology (e.g., SSL) via HTTPS.
Information about your right of objection as per Sec. 21 GDPR
Individual right of objection
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Sec. 6(1)(f) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Sec. 4 No. 4 GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing of your data is done for the purpose of asserting, exercising, or defending legal claims.
Recipient for objections
Ludwig Erhard Zentrum
Ludwig-Erhard-Straße 6
90762 Fürth
E-Mail: info@ludwig-erhard-zentrum.de
INFORMATION ON USING THE LEZ APP: YOUR DIGITAL EXHIBITION COMPANION
Our app provides you with the option to access information about exhibits/tours and special features in our museum from a central information system (editorial system). The provision of information uses various formats (text, image, map, video, audio). The retrieved data is stored on the requesting mobile device. Much of the content from the editorial system is loaded onto the mobile device the first time the app is started. In addition, information about functions of the app can be deleted from the mobile device and retrieved and stored by the central editorial system.
The app only transmits data from the mobile device to the central information system that is required to retrieve data from the editorial system or to operate the information service properly.
The transmitted IP address is used to deliver requested information. The IP address is technically required to answer the client’s (app) HTTP request, i.e., to provide the content of the requested HTML page or multimedia file (image, audio, video). The IP address is not stored or forwarded beyond this. Therefore, the IP address is explicitly not stored in the server's log files.
When the app is installed, a unique anonymous identification number is assigned and stored on the mobile device. This anonymous identification number is used for the proper operation of the system and for evaluations of the information provided.
The following data are stored when the central system is accessed and, beyond that, also processed:
- information about the browser type and the version used (in abbreviated from)
- the user’s operating system (in abbreviated from)
- the date and time of access
- the name/ID of the information/file retrieved
- the language chosen for the app
- the anonymous identification number
The data collected for the purposes of system administration are stored centrally on the Web server in a log file and deleted after 60 days.
We would like to continuously improve the information offered and also report on the impact of our offering. For this reason, all accesses to the central editorial system are stored in a database in anonymized form regarding the use of the information offering and analyzed for statistical purposes.
The following data are analyzed for the use statistics:
- the date and time of access
- the name/ID of the retrieved information/file
- the language chosen on the app
- the anonymous identification number
Legal basis for the processing of data
Data is processed on the basis of Sec. 6 (1) lit. e GDPR.
Support in operating the app
The LEZ app, your digital exhibition companion, is operated by the company “Fluxguide Ausstellungssysteme GmbH” as a services provider. The processing is done there on our behalf and in line with our specifications in line with Sec. 28 GDPR.
The editorial responsibility lies with the Ludwig-Erhard-Haus Foundation represented by: Evi Kurz, Chairperson of the Board.
The data center in which the editorial system is hosted is located in Frankfurt, Germany.
Changes to our data protection provisions
We reserve the right to amend this privacy declaration so that it always complies with the current legal requirements or to implement changes to our services in the privacy declaration, e.g., when introducing new services. The new privacy policy will then apply to your next visit.
Questions to the data protection officer
If you have any questions about data protection, write us an e-mail or contact our data protection officer directly:
René Glaubert
bg-consulting GmbH
Sprottauer Straße 4-8
90475 Nürnberg
https://www.die-datenschutzberater.com
E-Mail: info@die-datenschutzberater.com