Data Protection Declaration
Last amended: 7/12/2020
We take data protection and data security extremely seriously. The protection of your personal data, and transparency regarding its use, are important to us.
This statement is designed to provide an overview of how your personal data is collected and processed when you use our website and what you can do to enhance its protection.
Zentralinstitut für Seelische Gesundheit
Tel.: +49 621 1703-0
Data protection officer
If you have any questions, complaints or wish to assert your data protection rights, please use the following address:
Data Protection Officer | Zentralinstitut für Seelische Gesundheit | J 5 | 68159 Mannheim
What is personal data?
Personal data is any information relating to an identified or identifiable natural person. The decisive factor is therefore whether the data collected can be related to a person. This includes information such as your name, address, telephone number or email address. Information that is not directly related to your real identity, such as favourite websites or the number of users of a site, is not personal data.
How do we collect and process personal data?
You can visit this site without providing any personal information. Personal data is collected only if you voluntarily provide it to us during your visit to our website.
How do we use personal data and pass it on?
Where personal or business data (email address, name, home address etc.) is requested, the provision of such data is voluntarily. Emails are sent via a contact form. If you send us such a message, your personal data will be collected solely to the extent necessary for us to reply. The email is transmitted in unencrypted form.
We use the personal data you provide exclusively for managing our website and to comply with your requests and requirements (e.g. to process the contract concluded with you or to answer your enquiry).
We also use this data for product-related surveys and marketing and statistical purposes, but only if you have given us your prior consent or unless you have exercised your statutory right to object.
Your personal data will not be passed on, sold or otherwise transferred to third parties unless required for the purpose of processing the contract or you have given your express consent.
Consent can be revoked at any time with future effect.
How long will your data be stored?
We will store the information you send us until its purpose (e.g. contractual performance) has been met. For example, in the case of enquiries, until the enquiry has been dealt with or, in the case of newsletters, until you unsubscribe. If longer storage is provided for by law, the data will be stored accordingly.
If you no longer wish us to use your data, we will of course comply with your request immediately.
When will your data be deleted?
Your personal data will be deleted if you revoke your consent to storage, if the data is no longer needed to fulfil the purpose for which it was collected, or if storage is inadmissible for other reasons. A request for deletion will not affect data held for billing or accounting purposes.
We also use session cookies, which are temporarily stored for the duration of your use of our website, and permanent cookies, which record information about visitors who access our website repeatedly. The purpose of using these cookies is to enable us to offer you an optimal user experience, to recognise you when you return and to present you with new content and the most varied website possible for your repeat visits. The content of a permanent cookie is limited to an identification number. Name, IP address etc. are not stored. There is no individual profiling of your usage behaviour.
You can use our website without cookies. You can deactivate the storage of cookies in your browser, restrict storage to certain websites or set your browser to notify you as soon as a cookie is sent. Please note, however, that if you deactivate cookies, you will experience restricted display of the website and restricted usability.
Cookies that are necessary for electronic communication purposes or to provide functions that you have requested (e.g. shopping basket) are stored on the basis of art. 6 para. 1 (f) GDPR. The website operator has a legitimate interest in storing cookies to enable the error-free and optimised provision of its services. Insofar as other cookies are stored (e.g. cookies to analyse your surfing behaviour), these are dealt with separately in this policy.
The analysis service Matomo
Deployment and use of YouTube
This website includes YouTube components. YouTube is an Internet video portal that allows video publishers to post video free of charge and allows other users to view, rate and comment on them free of charge. YouTube allows the publication of all kinds of videos, including complete film and television programmes, music videos, trailers and videos made by users themselves.
The operating company of YouTube is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Each time you access a page of our website on which a YouTube component (YouTube video) has been integrated, your browser is automatically prompted to download the component from YouTube. (Further information on YouTube can be found at https://www.youtube.com/yt/about/de/.) As part of this procedure, YouTube and Google receive information about which specific page of our website you are visiting.
If you are logged into YouTube at the time you access a YouTube video, YouTube recognises which specific page of our website you are visiting. This information is collected by YouTube and Google and assigned to your YouTube account if you have one.
If you are logged into YouTube when you access our website, YouTube and Google will be informed via the YouTube component that you have visited our website. This happens regardless of whether you click on a YouTube video or not. If you do not want this information to be transmitted to YouTube and Google, you can prevent this by logging out of your YouTube account before accessing our website.
You can find YouTube's data protection policy at: https://policies.google.com/privacy?hl=de&gl=de.
Deployment and use of Vimeo
This website integrates Vimeo components. Vimeo is an Internet video portal that allows video publishers to place video clips there, and allows other users to view, rate and comment on these video clips. Vimeo allows the publication of all types of videos, for which reason not only complete films and television programs, but also music videos, trailers or user-created videos are accessible via its Internet portal.
Vimeo's operating company is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
Each time you visit a page on our website that incorporates a Vimeo component (Vimeo video), the respective Vimeo component will automatically cause your internet browser to download an image of the corresponding Vimeo component from Vimeo. You can find further information on Vimeo at https://www.vimeo.com. As part of this technical process, Vimeo receives information on which specific sub-page of our website you visit.
If you are simultaneously logged into Vimeo when accessing a sub-page of our website that contains a Vimeo video, Vimeo will detect which specific sub-page of our website is visited by the data subject. This data is collected by Vimeo and assigned to the individual Vimeo account of the data subject.
If you are simultaneously logged into Vimeo at the time of accessing our website, Vimeo always receives information, via the Vimeo component, that the data subject has visited our website. This happens regardless of whether or not you click on a Vimeo video. If you do not wish this data to be transmitted to Vimeo in this way, you can prevent this by first logging out of your Vimeo account before accessing our website.
Our website contains links to the social network Facebook. This website is operated exclusively by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (Facebook). The links are identified on our website by the Facebook logo or the presence of a "Like" button.
When you visit our website, functions and data transfers to Facebook are not automatically activated. The Facebook plugins are activated only if you click on the links and your browser establishes a direct connection with Facebook servers. If you follow the links and are logged in to your Facebook account at the same time, the information that you have visited our website will be forwarded to Facebook. Facebook can assign your visit to our website to your account. This information is transmitted to Facebook and stored there. To prevent this, you should log out of your Facebook account before clicking on the link.
Our website contains links to Instagram, which is operated exclusively by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. The links are identified by the Instagram logo on our website.
When you visit our website, functions and data transfers to Instagram are not automatically activated. The Instagram plug-ins are activated only if you click on the links and your browser establishes a direct connection with Instagram servers. If you follow the links and are logged in to your Instagram account at the same time, the information that you have visited our website will be forwarded to Instagram. Instagram can assign your visit to our website to your account. This information is transmitted to Instagram and stored there. To prevent this, you should log out of your Facebook account before clicking on the link.
Our website contains links to Twitter, which is operated exclusively by Twitter International, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland. The links on our website are identified by the Twitter logo.
When you visit our website, functions and data transfers to Twitter are not automatically activated. The Twitter plug-ins are activated only if you click on the links and your browser establishes a direct connection with Twitter servers. If you follow the links and are logged in to your Twitter account at the same time, the information that you have visited our website will be forwarded to Twitter. Instagram can assign your visit to our website to your account. This information is transmitted to Twitter and stored there. To prevent this, you should log out of your Twitter account before clicking on the link.
When personal data is transmitted via email it is not secure, so the data might be accessed by third parties. The data transmitted to us will be used exclusively for the purposes specified to us, treated confidentially and deleted immediately after your enquiry has been processed. No data will be passed on to third parties.
Data protection for job applicants
We collect, process and store the personal data of job applicants for the purpose of processing their application. Processing may also take place electronically. This is particularly the case if an applicant sends us their application documents electronically, for example by email. If an employment contract is concluded with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions and transferred to the applicant's HR file. If no employment contract is concluded with the applicant, the application documents will be automatically deleted six months after the applicant has been notified of rejection, provided that no other legitimate interests of the data controller conflict with such deletion. Other legitimate interest in this sense may include, for example, a duty to provide evidence in proceedings under Germany's Equality Act (AGG). Rejected applicants may be invited to be included in a "talent pool" for future vacancies. If the applicant consents to such inclusion, their data will be held for one year. Data can be held in accordance with statutory limitation periods, which can be up to thirty years (e.g. §§ 195 ff. of Germany's Civil Code [BGB]). The regular retention period is three years.
How do we make data processing secure?
We take all necessary technical and administrative measures to protect your personal data from loss and misuse. Your data will be stored in a secure operating environment that is not accessible to the public. In certain cases, your personal data will be encrypted during transmission using secure socket layer (SSL) technology. This means that, if your browser supports SSL, communication between your computer and our servers will take place using a recognised encryption method.
Your data protection rights
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and possible recipients and the purposes for which it is processed (art. 15 GDPR) and, if applicable, a right to correction (art. 16), deletion (art. 17), restriction of processing (art. 18), objection (art. 21) and data portability (art. 20). For the right to notification and deletion, regional data protection legislation applies (§§ 9 and 10 LDSG Baden-Württemberg).
In the event of a breach of data protection law, you have the right to complain to the supervisory authorities (art. 77 GDPR in conjunction with §25 LDSG Baden-Württemberg). The supervisory authority for data protection issues is the State Commissioner for Data Protection and Freedom of Information of the State of Baden-Württemberg, P.O. Box 10 29 32, 70025 Stuttgart, tel. 0711 6155 410, fax 0711 6155 4115, email: poststelle lfdi.bwl.de
How to revoke consent that you have already given to data processing
Much data processing is subject to your express consent. You can revoke prior consent at any time by emailing datenschutzbeauftragter zi-mannheim.de. Data processing carried out prior to revocation of consent will remain unaffected.
Changes to data protection policy
Our data protection policy is subject to change. Please check regularly for updates.
Zentralinstitut für Seelische Gesundheit (ZI) - https://www.zi-mannheim.de