Responsible for data processing is
Studierendenwerk Bonn AöR
Phone: 0228 - 73 70 00
Fax: 0228 - 73 71 04
You can reach our official data protection officer at:
Studierendenwerk Bonn AöR
For the attention of Mrs. Angela Rifisch
Telephone contact via our central telephone number: 0228 - 73 7000
When visiting this website and using the various offers, we process your personal data as described in detail below.
When operating the website with its wide range of offers, we cooperate with external service providers whom we have carefully selected and obligated to comply with data protection laws on the basis of contract processing agreements in accordance with Art. 28 EU-DS-GVO.
1. Server log files
Every time you visit our website, your browser transmits access data, so-called server log files, which we process - via an external service provider integrated in compliance with data protection regulations - in order to guarantee system security. In particular, the name of the website accessed, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider are recorded and transmitted to us. This data is required to ensure system security, e.g. to identify and block the attacker in the event of a hacker attack. This is in our predominant, legitimate interest (Article 6 I 1 f EU-DS-GVO).
This data can also be used for statistical purposes (scope of use and user behaviour, e.g. total number of visits to our website in one month and related to various sub-pages), which we use to optimise the design of the website. This is also in our predominant, legitimate interest (Art. 6 I 1 f EU-DS-GVO).
We delete or anonymise this data record as soon as possible.
Every time you visit our website, we use so-called cookies, i.e. small text files that are stored in your browser.
a. Session cookie
b. Long-term cookies
In addition, we use our own longer-term cookies in the areas of customer satisfaction surveys in order to increase user friendliness. These cookies do not store any personal data, in particular your IP address. However, they enable us to recognize you on your next visit in order to recognize a duplication in the participation in the customer satisfaction survey. The session cookies of the customer satisfaction survey are deleted after the end of the Internet session, persistent cookies after half a year.
3. Social media
We use third-party offerings in various of places on our website. These offer our visitors various opportunities for social interaction.
The links to the social media offerings allow you to share our offerings with others. These are Facebook, Instagram and Twitter offerings. If you click on the respective offers, which you can recognise by the corresponding icons, you can log in to the respective providers with your account and then share our offer with others. In some cases, the information about our offer is already pre-entered. We always work with a 2-click solution. This means that information is only transmitted to these third-party providers when you click on one of the links.
If you click on the links, a new window of your browser will open and your data will be transmitted to the respective providers, in particular the page from which you came. This also applies if you do not have an account with the respective provider or if you are not logged in.
We have no influence on what personal data these third party providers collect and how they handle it. This is also not known to us. Please note that some of these providers are located outside the EU and your data may therefore be transferred to third countries for which an adequate level of data protection is not necessarily ensured. You can obtain further information on the handling of your data from the respective third party providers.
Through social media links, we enable you to receive attractive offers from us on other channels and to communicate directly with these offers and their users. You can also conveniently share our offers with others in various ways. This makes our website more attractive and interesting for you. The embedding of social media links is therefore in our legitimate interest (Art. 6 I 1 f EU-DS-GVO). By actively clicking, you can decide for yourself whether you wish to transfer personal data to third parties.
We also use usage evaluations transmitted to us by Facebook in order to continuously improve our Facebook page. This data is only collected by Facebook and transmitted to us if you have a Facebook account and visit our page there. Again, we have no control over the data collection and analysis by Facebook itself. The evaluation of the analyses transmitted to us is in our overwhelming, legitimate corporate interest (Art. 6 I 1 f EU-DS-GVO). Usage data is provided anonymously via Facebook.
The parent companies of the social media providers are based in the USA. Insofar as personal data is transmitted there, an adequate level of data protection is ensured via the EU-US Privacy Shield, to which all the above-mentioned providers have subjected themselves if they are based in the USA (Facebook, Twitter list available at www.privacyshield.gov/list).
4. Matomo (formerly Piwik)
This website uses the Matomo (formerly Piwik) service if you agree to it. With the help of this web analysis service, it is possible to evaluate the usage data collected for statistical purposes in order to optimise the design of the website. The IP address assigned to you is also recorded, but is immediately anonymised afterwards using the "AnonymizeIP" extension.
Matomo uses tracking cookies, which are text files placed on your computer, to help the website analyze how users use the site. We set these cookies as soon as you click on our portal subpage. The information generated by the cookie about your use of this website is transferred to our servers and stored there.
5. Contact us
You have the opportunity to describe your concerns to us via a contact form or via e-mail. We will ask for your name, the subject to be confirmed from a given selection, your e-mail address and your message in the contact form. You can voluntarily enter further data. We use all this data to answer your requests in the best possible way. We also use the information you provide exclusively to process your request and delete it as soon as the communication has been completed, unless legal storage obligations require it to be stored. The processing of the information you send us is in our legitimate interest (Art. 6 I 1 f EU-DS-GVO, depending on the request also in fulfilment of our public task Art. 6 I 1 e EU-DS-GVO or for the initiation of contracts Art. 6 I 1 b EU-DS-GVO). In addition to your e-mail address, we therefore require further information in order to identify you if necessary.
6. Customer satisfaction
If you have contacted us, we would be happy to ask you about your satisfaction. How we handle customer satisfaction surveys in compliance with data protection laws is described (HERE) in a separate information for those affected.
7. Applying for a place in a dormitory
We use an online platform for the collection and processing of applications for a place in a dormitory, for which we (HERE) provide you with separate data protection-related information.
8. Google Maps
We use Google Maps to interactively display the property locations to you. We have integrated Google Maps into our website so that we can show you the corresponding maps directly on the website. You will also be asked for location access; you can prevent this in the browser settings.
Google Maps is a service offered by Google, Inc. You can also click to open an external window in which you can access Google Maps offers (including the route planning function).
Google's parent company is located in the United States, so we cannot guarantee that data will not be transmitted there. However, even in these cases, an adequate level of data protection is guaranteed by the EU-US Privacy Shield, to which Google has submitted (a list can be found at www.privacyshield.gov/list).
Embedding the map enables us to make our services more attractive and interesting for you and is therefore in our overwhelming, legitimate corporate interest (Art. 6 I 1 f EU-DS-GVO).
9. Data security
In order to protect your personal data in the best possible way, we use SSL encryption (https standard) to implement technical and organisational security measures, which are also adapted to current standards in accordance with the risks involved.
10. Affected rights
Insofar as personal data is used which relates to you as a natural person, you are entitled to various data protection claims against us. According to to Art. 15 EU-DS-GVO, you have the right to information about the stored data about you and its origin, the recipients or categories of recipients to whom the data is passed on, and the purpose of the storage.
In addition, you may be entitled to correction, deletion or limitation (of the processing) of your personal data in accordance with Art. 16 - 18 EU Data Protection Regulation. In addition, pursuant to Art. 20 EU-DS-GVO, you may request the transfer of the data to another responsible body.
You may also object to the further processing of your data if we process your data on the basis of a legitimate interest (Art. 6 I 1 f EU-DS-GVO) or on the basis of a public task incumbent on us within the meaning of Art. 6 I 1 e EU-DS-GVO. Insofar as we do not process your data for advertising purposes, this requires a reason arising from your particular situation. In the event of an objection, we will no longer process your personal data from the time it is received during the subsequent review and will delete it after completion of the review - if the objection is justified (Art. 21 EU-DS-GVO).
You can revoke your consent to data processing (Art. 6 I 1 a EU-DS-GVO) at any time; we will then not process your personal data unless there is a legal permission for this.
An objection or revocation does not affect the admissibility of data processing in the past.
We will fulfil your rights immediately and free of charge. Please contact us or our data protection officer; you will find our contact details at the beginning of this data protection declaration.
Finally, according to Art. 77 EU-DS-GVO, you have the right to lodge a complaint with the responsible data protection supervisory authority.
Status: May 24, 2018
Information according to Articles 13 and 14 DS-GVO - valid since 25.05.2018
In accordance with the EU Data Protection Basic Regulation (DS-GVO) in force since 25.05.2018, the following data protection information informs you about the processing of personal data by us and the rights to which you are entitled: