The Friedrich-Alexander-Universität Erlangen-Nürnberg (FAU) is responsible for its websites within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws as well as other data protection regulations. It is legally represented by its President. For contact details, please consult the legal notice on FAU’s central website.
The respective FAU institutions are responsible for any content they make available on the websites of Friedrich-Alexander-Universität Erlangen-Nürnberg (FAU). For questions related to specific content, please contact the person responsible as named in the legal notice of this web page.
Norbert Gärtner, RD
Schloßplatz 4
91054 Erlangen
Phone: +49 9131 85-25860
Fax: +49 9131 85-70239
Email: ✉ datenschutzbeauftragter@fau.de
We only process our users' personal data to the extent necessary to provide services, content and a functional website. As a rule, personal data are only processed after the user gives their consent. An exception applies in those cases where it is impractical to obtain the user's prior consent and the processing of such data is permitted by law.
Art. 6 (1) (a) of the EU General Data Protection Regulation (GDPR) forms the legal basis for us to obtain the consent of a data subject for their personal data to be processed.
When processing personal data required for the performance of a contract in which the contractual party is the data subject, Art. 6 (1) (b) GDPR forms the legal basis. This also applies if data has to be processed in order to carry out pre-contractual activities.
Art. 6 (1) (c) GDPR forms the legal basis if personal data has to be processed in order to fulfil a legal obligation on the part of our organisation.
Art. 6 (1) (d) GDPR forms the legal basis in the case that vital interests of the data subject or another natural person make the processing of personal data necessary.
If data processing is necessary in order to protect the legitimate interests of our organisation or of a third party and if the interests, basic rights and fundamental freedoms of the data subject do not outweigh the interests mentioned above, Art. 6 (1) (f) GDPR forms the legal basis for such data processing.
The personal data of the data subject are deleted or blocked as soon as the reason for storing them ceases to exist. Storage beyond this time period may occur if provided for by European or national legislators in directives under Union legislation, laws or other regulations to which the data controller is subject. Such data are also blocked or deleted if a storage period prescribed by one of the above-named rules expires, unless further storage of the data is necessary for entering into or performing a contract.
Each time our website is accessed, our system automatically collects data and information from the user's computer system.
In this context, the following data are collected:
The data stored are required exclusively for technical or statistical purposes; no comparison with other data or disclosure to third parties occurs, not even in part. The data are stored in our system's log files. This is not the case for the user's IP addresses or other data that make it possible to assign the data to a specific user: before data are stored, each dataset is anonymised by changing the IP address. These data are not stored together with other personal data.
The legal basis for the temporary storage of data and logfiles is §§ 14, 15 TMG, § 100 Abs. 1 TKG and Art. 4 BayDSG following the tasks of Art. 11 BayEGovG and Art. 7 and 34 BayHO.
The temporary storage of the IP address by the system is necessary in order to deliver the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.
The storage of such data in log files takes place in order to ensure the website's functionality. These data also serve to help us optimise the website and ensure that our IT systems are secure. They are not evaluated for marketing purposes in this respect.
Data are deleted as soon as they are no longer necessary for fulfilling the purpose for which they were collected. If data have been collected for the purpose of providing the website, they are deleted at the end of the respective session.
If data are stored in log files, they are deleted at the latest after seven days. A longer storage period is possible. In this case, the users' IP addresses are deleted or masked so that they can no longer be assigned to the client accessing the website.
The collection of data for the purpose of providing the website and the storage of such data in log files is essential to the website's operation. As a consequence, the user has no possibility to object.
Pursuant to Art. 15 GDPR, you, the data subject, are entitled to the following rights concerning the processing of your data:
If you would like to attend any face-to-face session or enter our institution, we are obliged by the statutory accident insurance provider and current legal requirements to process your personal data in an effort to contain the coronavirus pandemic.
If you do not provide the required data, we must unfortunately prevent you from attending the session or entering our institution.
Infection prevention and contact tracing at face-to-face sessions or visits to the institution in order to comply with official requirements for ensuring the safety of the event.
The legal basis for the temporary saving of the data is meeting official requirements for ensuring the safety of the event pursuant to Section 6 (1) (c) and (d) GDPR and Section 9 (2) (i) GDPR in conjunction with Section 4 (1), Section 5 (1) (1)(1) BayDSG on the basis of BayIfSMV, IfSG, Section 21 SGB VII.
| Number | Name of data |
|---|---|
| 1 | Contact information |
| 2 | Time and duration of stay |
| 3 | Information from health authority |
| No. for categories | Recipients | Reason for disclosure | Storage location |
|---|---|---|---|
| 1, 2 | Pertinent health authorities / local authorities | Sections 16 (2) and 25 (2) IfSG | Germany |
| No. of categories | Deadline for deletion |
|---|---|
| 1, 2 | Four weeks after attending the session or visiting the institution, unless disclosure is required. |
| 3 | Information from the health authorities is not stored permanently. |
Dieses Webangebot bindet Videos des Videoportals YouTube ein. Betreiber von YouTube ist die Google Ireland Limited („Google“), Gordon House, Barrow Street, Dublin 4, Irland.
Wenn Sie eine unserer Seiten besuchen, auf denen YouTube eingebunden ist, wird eine Verbindung zu den Servern von YouTube hergestellt. Dabei wird dem YouTube-Server mitgeteilt, welche unserer Seiten Sie besucht haben.
Die Einbindung von YouTube Videos erfolgt entweder
Beim Abruf des Videos kann YouTube verschiedene Cookies auf Ihrem Endgerät speichern. Mit Hilfe dieser Cookies kann YouTube Informationen über Besucher dieser Website erhalten. Diese Informationen werden u. a. verwendet, um Videostatistiken zu erfassen, die Anwenderfreundlichkeit zu verbessern und Betrugsversuchen vorzubeugen. Die Cookies verbleiben auf Ihrem Endgerät, bis Sie sie löschen.
Wenn Sie in Ihrem YouTube-Account eingeloggt sind, ermöglichen Sie YouTube, Ihr Surfverhalten direkt Ihrem persönlichen Profil zuzuordnen. Dies können Sie verhindern, indem Sie sich aus Ihrem YouTube-Account ausloggen.
Die Nutzung von YouTube erfolgt im Interesse einer ansprechenden Darstellung unserer Online-Angebote. Dies stellt ein berechtigtes Interesse im Sinne von Art. 6 Abs. 1 lit. f DSGVO dar. Sofern eine entsprechende Einwilligung abgefragt wurde (z. B. eine Einwilligung zur Speicherung von Cookies), erfolgt die Verarbeitung ausschließlich auf Grundlage von Art. 6 Abs. 1 lit. a DSGVO; die Einwilligung ist jederzeit widerrufbar.
Weitere Informationen zum Umgang mit Nutzerdaten finden Sie in der Datenschutzerklärung von YouTube unter: https://policies.google.com/privacy?hl=de.
Dieses Webangebot bindet Videos des Videoportals Vimeo ein. Anbieter ist die Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
Wenn Sie eine unserer mit einem Vimeo-Plugin ausgestatteten Seiten besuchen, wird eine Verbindung zu den Servern von Vimeo hergestellt. Dabei wird dem Vimeo-Server mitgeteilt, welche unserer Seiten Sie besucht haben. Zudem erlangt Vimeo Ihre IP-Adresse. Dies gilt auch dann, wenn Sie nicht bei Vimeo eingeloggt sind oder keinen Account bei Vimeo besitzen. Die von Vimeo erfassten Informationen werden an den Vimeo-Server in den USA übermittelt.
Wenn Sie in Ihrem Vimeo-Account eingeloggt sind, ermöglichen Sie Vimeo, Ihr Surfverhalten direkt Ihrem persönlichen Profil zuzuordnen. Dies können Sie verhindern, indem Sie sich aus Ihrem Vimeo-Account ausloggen.
Die Nutzung von Vimeo erfolgt im Interesse einer ansprechenden Darstellung unserer Online-Angebote. Dies stellt ein berechtigtes Interesse im Sinne des Art. 6 Abs. 1 lit. f DSGVO dar. Sofern eine entsprechende Einwilligung abgefragt wurde (z. B. eine Einwilligung zur Speicherung von Cookies), erfolgt die Verarbeitung ausschließlich auf Grundlage von Art. 6 Abs. 1 lit. a DSGVO; die Einwilligung ist jederzeit widerrufbar.
Weitere Informationen zum Umgang mit Nutzerdaten finden Sie in der Datenschutzerklärung von Vimeo unter: https://vimeo.com/privacy.
Our website uses SSL encryption for security reasons and to protect the transmission of confidential information, for example enquiries you send to us as operators of the website. You can recognise an encrypted connection when the browser's address line changes from http:// to https:// and a padlock appears in your web browser.
If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
With regard to the processing of your personal data, you as a data subject are entitled to the following rights pursuant to Art. 15 et seq. GDPR: