Data protection policy

Thank you for visiting our website www.worldccbonn.com and your interest in our company. Protecting your personal data is important to us. Personal data are information about personal or factual circumstances of an identified or identifiable natural person. This includes, for instance, your official name, address, telephone number and date of birth, but also any other data that can be related to an identifiable person.
As personal data are subject to special legal protection, we only collect them to the extent that is required to make our website available and to provide our services. Below, we explain what personal information we collect when you visit our website, and how we use it.
Our data protection practice complies with the statutory regulations, in particular the German Federal Data Protection Act (Bundesdatenschutzgesetz - BDSG), the German Telemedia Act (Telemediengesetz - TMG) and the EU’s General Data Protection Regulation (GDPR). We will only collect, process and save your personal data to the extent required to ensure we provide a functioning website, content and services and in order to process inquiries and, where applicable, to execute orders/contracts, but in each case only to the extent there is a legitimate interest to do so in the meaning of Article 6 (1) lit. f GDPR or other grounds for permission. Only if you have given your specific prior consent will we use your data additionally for further purposes which are precisely defined in the declaration of consent, for instance for sending you promotional information by newsletter.

1. Controller in the meaning of Article 4 (7) GDPR

The controller in the meaning of the GDPR and other national data protection laws of the Member States and any other provisions under data protection law is:

Bonn Conference Center Management GmbH
Platz der Vereinten Nationen 2
53113 Bonn
E-mail: info(at)worldccbonn.com
Tel.: +49 (0) 228 / 92 67 - 0
Fax: +49 (0) 228 / 92 67 - 2119

2. Name and address of the data protection officer

Eva-Daniela Jung
DSQM Datenschutzmanagement Qualitätsmanagement, Haus-Gravener-Straße 96, 40764 Langenfeld
E-mail: edj(at)dsqm.org

3. Website service and creation of log files

Each time our website is visited, our system records automated data and information from the computer system of the computer accessing it. The following data are collected:

Scope of the data processing

(1) information on the browser type and the version used
(2) the operating system of the device accessing the website
(3) the IP address of the device accessing the website
(4) date and time the website was accessed
(5) websites and resources (images, files and other content) accessed on our website.
(6) websites from which the user’s system accessed our website (referrer tracking)

These data are stored in our system’s log files. These data are not stored in combination with personal data of specific users, so no identification of individual visitors to our website takes place.

The legal basis for the processing of personal data is
Article 6 (1) lit. f GDPR (legitimate interest). Our legitimate interest lies in ensuring we can fulfill the purpose outlined below.

Purpose of the data processing
Logging takes place to ensure our website continues to be compatible for all users to the greatest extent possible and to combat abuse and resolve any technical problems. This makes it necessary to log the technical data of the computer accessing our website in order to be able to respond to display errors, attacks on our IT systems and/or functionality errors on our website. The data also allow us to optimize our website and to generally ensure the security of our IT systems.

Length of storage
The aforementioned technical data are deleted as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Objection and removal options
Objection and removal options are based on the general regulations governing the right to object and the right to erasure under data protection law outlined below in this data protection policy.

4. Special functions of our website

Our site offers you different functions where we collect, process and store personal data when you use them. In the section below, we explain what happens to these data:

Contact form(s):
Scope of the processing of personal data
The data you enter on our contact form.

Legal basis for the processing of personal data
Article 6 (1) lit. a GDPR (implicit consent)

Purpose of the data processing
We will only use the data entered using our contact form or our contact forms to process the specific contact inquiry submitted via the contact form.

Length of storage
After your inquiry has been processed, the data collected will be deleted without undue delay provided it is not subject to any statutory retention periods.

Objection and removal options
Objection and removal options are based on the general regulations governing the right to object and the right to erasure under data protection law outlined below in this data protection policy.

5. Incorporation of external web services and data processing outside the EU

On our website we use active JavaScript content from external providers, known as “web services”. When you access our website, these external providers may receive personal information on your visit to our website. In this case, it may be possible that the data are processed outside of the EU. You can prevent this by installing a JavaScript blocker, for instance like the 'No Script' browser plug-in (www.noscript.net) or by deactivating JavaScript in your browser. This may lead to functionality limitations on websites you visit.
We use the following external web services:

Google APIs
Our website uploads a web service provided by the company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View (henceforth referred to as: Google APIs). We use these data to ensure our website is fully functional. In this context, your browser may transfer personal data to Google APIs. The legal basis for the data processing is Article 6 (1) lit. f GDPR. The legitimate interest lies in the error-free functioning of our website. Google APIs has self-certified in the scope of the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). The data are deleted as soon as the purpose for their collection has been fulfilled. Further information on how the transmitted data are handled is available in Google API’s data protection policy: https://www.google.com/intl/de/policies/privacy/. You can prevent your data from being collected and processed by Google APIs by deactivating the operation of script code in your browser or by installing a script blocker in your browser (these are available for instance at www.noscript.net or www.ghostery.com).

gstatic
Our website uploads a web service provided by the company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View (henceforth referred to as: gstatic). We use these data to ensure our website is fully functional. In this context, your browser may transmit personal data to gstatic. The legal basis for the data processing is Article 6 (1) lit. f GDPR. The legitimate interest lies in the error-free functioning of our website. gstatic has self-certified in the scope the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). The data are deleted as soon as the purpose for their collection has been fulfilled. Further information on how the transmitted data are handled is available in gstatic’s data protection policy: https://www.google.com/intl/de/policies/privacy/. You can prevent your data from being collected and processed by gstatic by deactivating the operation of script code in your browser or by installing a script blocker in your browser (these are available for instance at www.noscript.net or www.ghostery.com).

6. Information on the use of cookies

Scope of the processing of personal data
We use cookies on various pages to allow you to use certain functions of our website. 'Cookies' are small text files that your browser can store on your computer. These text files contain a characteristic sequence of characters which make it possible to identify the browser again if you revisit our website. The act of storing a cookie file is also referred to as “placing a cookie”.

Legal basis for the processing of personal data
Article 6 (1) lit. f GDPR (legitimate interest). Our legitimate interest lies in maintaining the full functionality of our website, improving user-friendliness and making it possible to address customers more individually. It is only possible to identify individual users of our website using cookie technology if the visitors to our website have entrusted us with according personal data on the basis of prior specific consent.

Purpose of the data processing
The cookies are placed by our website in order to maintain full functionality of our website and to improve user-friendliness. Cookie technology also enables us to recognize individual visitors through the use of pseudonyms, for instance an individual, random ID, allowing us to offer more individual services.

Length of storage
Our cookies are stored until they are deleted in your browser, or in the case of a session cookie, until the session is over.

Objection and removal options
You can set your browser yourself as you see fit so that you generally prevent the placing of cookies, or are only informed of this, or decide on a case-by-case basis on whether to accept cookies or not: or to always accept cookies. Cookies can be used for different purposes, for instance to recognize that your PC already connected to our website previously (permanent cookies) or to save which offers you viewed most recently (session cookies). We use cookies to offer you greater user convenience. To use our convenience features, we recommend authorizing the acceptance of cookies for our website. The objection and removal options are also based on the general regulations relating to the right to object and to erasure under data protection law outlined below in this data protection policy.

7. Data security and data protection, communication by e-mail

Your personal data are protected by technical and organizational measures during collection, storage and processing so that they are not accessible for third parties. If you engage in unencrypted communication by e-mail, it is not possible for us to ensure complete data security whilst the data are transmitted to our IT systems, we therefore recommend using encrypted communication or the postal service for information with a high level of confidentiality.

8. Revoking your consent – access to your data and requests for modifications – erasure and blocking of data

Under the German Federal Data Protection Act you have the right to free-of-charge information about the data stored on you and, where applicable, a right to rectification, blocking or erasure of these data. Your data will be erased if no statutory regulations stand in the way of such. You can revoke the permission you granted us to use your personal data at any time. You can send requests for information, erasure and rectification relating to your data and comments or suggestions as well to the following address at any time:

Bonn Conference Center Management GmbH
Platz der Vereinten Nationen 2
53113 Bonn
E-mail: info(at)worldccbonn.com
Tel.: +49 (0) 228 / 92 67 - 0
Fax: +49 (0) 228 / 92 67 - 2119

9. Right to data portability

You have the right to receive the personal data concerning you, which you provided to us, in a structured, commonly used and machine readable format. You can also demand from us that we transfer these data to a third party upon your first instruction without undue delay, provided that processing is based on consent pursuant to Article 6 (1) lit. a GDPR or Article 9 (2) lit. a GDPR or a contract pursuant to Article 6 (1) lit. b GDPR and that we perform the processing in the scope of automated data processing.
When exercising this right to data portability, you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible. Freedoms and rights of others must not be adversely affected as a result.
The right to data portability does not apply to the processing of personal data required to perform a task in the public interest or in the exercise of official authority vested in the controller.

10. Right to lodge a complaint with a supervisory authority pursuant to Article 77 (1) GDPR

If you suspect that your data are being processed unlawfully on our site, you can of course refer the matter to a court to clarify the issue at any time. Irrespective of this, you also have the possibility of referring the matter to a supervisory authority. The right to lodge a complaint is available to you in the EU Member State of your habitual residence, your place of work and/or the place of the alleged infringement, i.e. you can select the supervisory authority you wish to refer the matter to at any of the aforementioned places. The supervisory authority at which you lodged the complaint will then inform you about the status and outcome of your submission, including possible judicial remedy pursuant to Article 78 GDPR.

Compiled by:
© IT-Recht-Kanzlei DURY – www.dury.de
© Website-Check GmbH – www.website-check.de

 

Contact

Bonn Conference Center
Management GmbH
Platz der Vereinten Nationen 2
53113 Bonn

Tel. +49 (0)228 9267 0
info(at)worldccbonn.com

Contact form