Data Protection Statement

This is the Data Protection Statement of the private website of Michael Deppe: 🔒 https: // www.michael-deppe.de.

Die Deutsche Version dieser Datenschutzerklärung ändert sich hier.

Foreword

According to Article 8 (1) of the Charter of Fundamental Rights of the European Union and Article 16 (1) of the Treaty on the Functioning of the European Union (TFEU), every person has the right to the protection of personal data concerning them. The following privacy statement is provided for in REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. In short: General Data Protection Regulation (GDPR).

Privacy Policy in the sense of the General Data Protection Regulation (GDPR)

I. Name and address of the person responsible

The person responsible within the meaning of the General Data Protection Regulation and other national data protection laws of the EU member states as well as other data protection provisions is Michael Deppe. Further details about the person are given in the Imprint.

II. General information on data processing

1. Fundamentals

What is this explanation for?

This is a private website and no commercial communication according to german „Telemediengesetz“ TMG §2, Abs. 5b . Thus, the GDPR in the strict sense does not apply to the information provided here. The following information therefore goes beyond the requirements of the GDPR and is only for the information of users. Regardless, you have the right to complain to the appropriate regulatory authority at any time if you believe that the processing of your personal information is not in compliance with data protection laws. In that case, I would kindly ask you to contact me BEFOREHAND (see Imprint).

definitions

I use (legal) terms such as personal data, processing, responsible persons, third parties, consent, supervisory authority, etc. The definition of these terms can be found in GDPR Chapter I, Art. 4 para. 1-26.

Duration of storage of personal data

The personal data of the person concerned will only be stored as long as the purpose of the storage exists. If the processing is based on the consent of the data subject (a person whose personal data is being collected, held or processed), the data will only be stored until the data subject withdraws his consent, unless there is another legal basis for the processing.

Right to rectification and deletion of personal data

The data subject has the right to demand immediate correction of incorrect personal data concerning him. The data subject also has the right to demand immediate deletion of personal data concerning him as soon as the purpose of the storage is removed or if the processing is based on the consent of the data subject, if the person withdraws his consent and no other legal basis for the processing consists. For this purpose, please send me an e-mail. The personal data of the person concerned will also to be deleted, if he/she is objecting to the processing and there are no legitimate reasons for the processing if the personal data were processed unlawfully or if the deletion was intended to fulfill a legal obligation by the European or national legislature.

Right of withdrawal

If the processing of personal data is based on the consent of the data subject, the latter may revoke its consent at any time.The processing of personal data until the revocation remains legal despite the revocation.

Right to information

The data subject has the right to request confirmation from me as to whether personal data relating to the person is being processed. If this is the case, the data subject has a right to know which personal data are involved and for what purposes they are processed. It also has a right to information about the duration of the planned storage of this data and the criteria for determining the duration of storage.

2. Scope of processing of personal data

The use of my website is usually possible without providing personal data. As far as on my sides personal data (for example name, address or E-Mail addresses) are raised, this takes place, as far as possible, always on optional basis. These data will not be disclosed to third parties without your explicit consent. Personal data of users are only processed to the extent necessary to provide a functional website, content and services. The processing of personal data of the users takes place regularly only with the consent of the user. An exception applies to cases in which prior consent is not possible for reasons of fact and the processing of the data is permitted by law.

I point out that the data transmission in the Internet (eg. in the communication by e-mail) can exhibit security gaps. A complete protection of the data from access by third parties is not possible.

The use of contact information published by third parties for the purpose of sending unsolicited advertising and information materials is hereby expressly excluded. As the operator of the pages, I expressly reserve the right to take legal action in case of unsolicited sending of advertising information, for example through advertising or spam e-mails.

This website uses Google Analytics, a web analytics service provided by Google Inc. („Google“). Google Analytics uses cookies that allow you to analyze the use of the website. The information generated by the cookie about your use of this website (including your IP address) is transmitted to and stored by Google on servers in the United States. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

3. Legal basis for the processing of personal data

Insofar as the processing of personal data requires the consent of the data subject, Art. 6 (1) lit. a EU General Data Protection Regulation (GDPR) as legal basis. In the processing of personal data necessary for the performance of a contract of which the data subject is a party, Art. 6 (1) lit. b GDPR as legal basis. This also applies to processing operations required to carry out pre-contractual measures. If the processing is necessary to safeguard a legitimate interest of myself or a third party and the interests, fundamental rights and fundamental freedoms of the person concerned do not predominate the first mentioned interest, then Art. 6 (1) lit. f GDPR as legal basis for processing.

4. Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is deleted. In addition, it may be stored if provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. A blocking or deletion of the data takes place even if a storage period prescribed by the mentioned standards expires, unless there is a need for further storage of the data for a contract conclusion or a contract fulfillment.

III. Provision of the website and creation of log files

1. Description and scope of data processing

Each time my website is accessed, the underlying server system automatically collects data and information from the computer system of the calling computer.

The following data is collected here:

  1. Information about the browser type and version used
  2. The operating system of the user
  3. The internet service provider of the user
  4. The IP address of the user
  5. Date and time of access
  6. Websites from which the system of the user comes to my website
  7. Websites that are accessed by the user’s system through my website

The data is also stored in the log files of my system. A storage of this data together with other personal data of the user does not take place.

2. Legal basis for data processing

The legal basis for the temporary storage of data and log files is Art. 6 (1) lit. f GDPR.

3. Purpose of the data processing

The temporary storage of the IP address by the system is necessary to allow delivery of the website to the computer of the user. To do this, the user’s IP address must be kept for the duration of the session. Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of my information technology systems. An evaluation of the data for marketing purposes does not take place in this context. For these purposes, my legitimate interest in the processing of data according to Art. 6 (1) lit. f GDPR.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. In the case of collecting the data for providing the website, this is the case when the respective session is completed. The company Webgo GmbH in Germany, which is responsible for the hosting of this website, stores IP addresses of your website visitors in so-called log files for the detection and defense against attacks (data protection conditions of the company Webgo). This storage is valid for a maximum of seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

5. Opposition and removal possibility

The collection of the data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no contradiction on the part of the user.

IV. Use of cookies

1. Description and scope of data processing

My website uses cookies! You can read that everywhere now. But what are cookies? This does not mean the small round originally American biscuits that the Cookie Monster likes to eat. For some website operators, it is often read at this point to clarify: „Cookies are small text files that are stored on the computer system of the user.“ This statement is unfortunately just as wrong and casually an indication that the creator has probably written off his „privacy policy“ somewhere (thoughtlessly?).

What are cookies actually? So that somewhere something is stored is already correct, but that with the small text files is usually nonsense. For example, cookie information is stored in Firefox browser in a SQLite database. In order to be able to read this content independently of the browser itself, special software is required to read SQL databases in SQLite3 format – provided that you know where this database is located. For example, on a Mac, the Firefox cookie database can be found under the hidden path „/ Users/<user>/Library/Application Support/Firefox/Profiles/<profile name>/cookies.sqlite“. In the case of Windows 7, it can be found under „\Users\<user>\ AppData\Roaming\Mozilla\Firefox\Profiles\<profile name>\Cookies.sqlite“. The same applies to Google Chrome, only the file paths are different. Even Apple’s Safari stores binary – dear lawyers and privacy experts!

If a user calls up my website, a cookie can be stored in a database of the user in binary form – and not just as a text file for anyone to read without any difficulty. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is reopened. Earlier, at the beginning of the nineties, these identification data were called Magic Cookie in the first graphical browsers (Mosaic, Netscape) and were actually small text files at that time. And how today’s cookie, which is stored with you, could look in your Mozilla Firefox database, I show here:

Example of a cookie in a Firefox SQLite database

Interesting is the entry „true“ in the column „value“. If a cookie with this entry is found on your computer, this means that the first time you visited my page in the cookie banner, you clicked „OK“ and thus gave your consent to the storage of cookies and also accepted my privacy policy (value = true). The cookie is stored so that the request for consent does not reappear every time.

Even if the cookies are easily hidden from the normal user – do not worry! The Internet browsers I surveyed do not trick their users into specifying their (well-protected) cookie database content. If you want to view your cookies, you can find in the respective instructions for Firefox, Google Chrome, Safari & Co.

I also use other cookies to make my website more user-friendly. Some elements of my website require that the calling browser be identified even after a page break.

Third party cookies are cookies created by a website other than the one you are visiting. For example, a website might have a button like Facebook. If you press Like I set a cookie that can be read by Facebook. Such a cookie is called a third-party cookie. An advertiser can use such third-party cookies to track your visits to any page displaying their ads. If you have concerns about third-party cookies, you may block them in my info banner (cookie-ok banner) or browser.

The following data are stored and transmitted in the cookies:

  • language settings
  • Log-in information
  • Domain Name
  • Cookie Name
  • expiry date
  • Date of last access
  • Creation Date

I also use cookies on my website that allow an analysis of users‘ browsing habits.

In this way, the following data can be transmitted:

  • Entered search terms
  • Frequency of page views
  • Use of website functions

The data of the users collected in this way are pseudonymised by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible. The data will not be stored together with other personal data of the users.

When you visit my website, the Infobanner informs you about the use of cookies for analysis purposes and obtains your consent to the processing of the personal data used in this context. In this context, there is also a reference to this privacy policy.

If you post a comment on my website, it may be a consent to save your name, email address and website in cookies. This is a convenience feature so you do not have to re-enter all this data if you write another comment. These cookies are stored for one year.

If you have an account and sign in to this site, a temporary cookie will be set to determine if your browser accepts cookies. This cookie contains no personal information and will be discarded when you close your browser.

When you sign up, some cookies will be set up to store your login and viewing options. Log-in cookies expire after two days and cookies for display options after one year. If you select „Stay signed in“ when signing up, your registration will be maintained for two weeks. By logging out of your account, the login cookies will be deleted.

When you edit or publish an article, an additional cookie is saved in your browser. This cookie contains no personal information and only refers to the post ID of the item you have just edited. The cookie expires after one day.

2. Legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Article 6 (1) lit. f GDPR.

The legal basis for the processing of personal data using cookies for analysis purposes is, if your consent in this regard, Art. 6 (1) lit. a GDPR.

3. Purpose of the data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some features of my website can not be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page break.

For example, the website requires cookies for the following applications:

  • Transfer of language settings
  • Remember keywords

The user data collected by technically necessary cookies will not be used to create user profiles.

The use of the analysis cookies is for the purpose of improving the quality of my website and its contents. Through the analysis cookies, I learn how the website is used and can optimize my offer constantly. For these purposes, my legitimate interest in the processing of personal data pursuant to Art. 6 (1) lit. f GDPR.

4. Duration of storage, objection and disposal options

Cookies are stored on the computer of the user and transmitted by this on my side. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Already saved cookies can be deleted at any time. This can also be done automatically. If cookies are disabled for my website, it may not be possible to fully use all features of the website. The transmission of Flash cookies can not be prevented by the settings of the browser, but by changing the settings of the Flash Player.

V. Contact form and e-mail contact

1. Description and scope of data processing

On my website is a contact form available, which can be used for electronic contact. If a user realizes this option, the data entered in the input mask will be transmitted to me and saved. These data are:

Surname

  1. E-mail address
  2. Content of the message.
  3. The IP address of the user
  4. Date and time of registration

For the processing of the data, your consent is obtained during the sending process and reference is made to this privacy policy.

Alternatively, contact via the provided e-mail address is possible. In this case, the user’s personal data transmitted by e-mail will be stored.

There is no disclosure of data to third parties in this context. The data is used exclusively for processing the conversation.

2. Legal basis for data processing

Legal basis for the processing of the data is in the presence of the consent of the user Art. 6 (1) lit. a GDPR. The legal basis for the processing of the data transmitted in the course of sending an e-mail is Article 6 (1) lit. f GDPR. If the e-mail contact aims to conclude a contract, then additional legal basis for the processing is Art. 6 (1) lit. b GDPR.

3. Purpose of the data processing

The processing of personal data from the input mask is solely for processing the contact. In the case of contact via e-mail, this also includes the required legitimate interest in the processing of the data.

The other personal information processed during the posting process is intended to prevent misuse of the contact form and to ensure the security of my information technology systems.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. For the personal data from the input form of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation ends when it can be inferred from the circumstances that the matter in question has been finally clarified.

The additional personal data collected during the sending process will be deleted at the latest after a period of seven days.

5. Opposition and removal possibility

You have the opportunity at any time to revoke your consent to the processing of personal data. If you contact me by e-mail, you can informally object to the storage of your personal data at any time. In such a case, of course, the conversation can not be continued.

All personal data stored in the course of contacting will be deleted in this case. For this purpose please send me an e-mail directly (address see Imprint).

VI. Comment Function

1. Description and scope of data processing

On my website a comment function is available. If a user realizes this option, the data entered in the input mask will be transmitted to me and saved. The comments are then visible to everyone.

If you use the comment function, additional personal data (example: pseudonyms) will be saved. When you comment you give consent to the processing of personal data. These data are:

  1. Surname
  2. E-mail address
  3. Content of the comment.
  4. The IP address of the user
  5. Date and time of registration

For the processing of the data, your consent is obtained during the sending process and reference is made to this privacy policy. There is no disclosure of data to third parties in this context. The data is used exclusively for processing the conversation.

2. Legal basis for data processing

Legal basis for the processing of the data is in the presence of the consent of the user Art. 6 (1) lit. a GDPR.

3. Purpose of the data processing

The processing of the personal data from the input mask is solely for processing the comment. In the case of a comment on my website, this also includes the necessary legitimate interest in the processing of the data.

The other personal information processed during the posting process is intended to prevent misuse of the comment function and to ensure the security of my information technology system.

4. Duration of storage

When you write a comment, it will be stored indefinitely including metadata. That way, we can automatically detect and approve episode comments instead of keeping them in a moderation queue.

For users who register on our website, we also store the personal information they provide in their user profiles. All users can view, modify or delete their personal information at any time (the username can not be changed). Site administrators can also view and change this information.

5. Opposition and removal possibility

You have the opportunity at any time to revoke your consent to the processing of personal data. If you contact me by e-mail, you can informally object to the storage of your personal data at any time. In such a case, not only all comments disappear, but of course the conversation can not be continued.

All personal data stored in the comment function will be deleted in this case. For this purpose you can send me an e-mail directly (address see Imprint).

VII. Embedded content from other websites

Posts on this site may contain embedded content (eg, videos, pictures, posts, etc.). Embedded content from other websites behave just as if the visitor had visited the other website.

These sites may collect information about you, use cookies, embed additional third-party tracking services, and record your interaction with this embedded content, including your interaction with the embedded content if you have an account and are logged in to this site.

When pages are accessed from publications of the National Library of Medicine (NLM) (PubMed), data is transferred to their servers. According to the NLM, these data are neither collected nor forwarded. Further information can be found here: National Library of Medicine Privacy and Security Policy .

VIII. Externally provided fonts

This website downloads fonts from Google Fonts. Among other things from the following places:

  • fonts.googleapis.com
  • fonts.gstatic.com

Google could hereby in principle establish cross-references between the data collected by the user when loading the font (IP address and browser fingerprint) and other google services. using this information Google could identify the user. Google is vague about this possibility: „Google Fonts logs records of the CSS and the font file requests, and access to this data is kept secure„. What Google under secure  understands and to which group of persons this refers is not known to me. Google’s privacy policy states: „We restrict access to personal information to Google employees, contractors, and agents who need that information in order to process it„. Who these contractors are, who need to know the data is not indicated by Google. In particular, Google does not comment on what or who triggers the constraint that should justify the disclosure.

IX. Automated decision-making or profiling with user data

1. What is an automated individual decision?

An „automated individual decision“ exists if no substantive assessment and decision based on it have taken place by a natural person. This is the case, for example, when score values ​​alone are decisive for the conclusion of a contract, or even when the decision to conclude a contract is made directly by a computer program and not by a human being.

2. Description and scope of data processing

This website does not offer or contain any service that incorporates automated decision-making or profiling.

Contact Information

see Imprint.

© Michael Deppe, This GDPR privacy policy is based on some specifications of the german privacy statement for website operators by Prof. Dr. med. Thomas Hören and staff of the Research Center Law of the DFN-Verein, Westfälische Wilhelms-Universität Münster.