We only process data that is necessarily transmitted to us when accessing our website. We delete any user data as soon as our hoster allows it.
As a non-profit organisation our sole intent is to contribute to a save and pleasant user experience. Therefore we naturally refrain from using cookies, tracking or profiling of any kind.
Processing of personal data
The functioning of the internet necessitates that when a user or automated system calls up the website from our hoster's server system, a series of information is transmitted to and temporarily processed by the server in order to be able to deliver the content. This information includes:
- the sub-website accessed,
- the date and time of access,
- the Internet protocol address (IP address) of the accessing system,
- the Internet service provider of the accessing system
- the browser type and version used,
- the operating system used by the accessing system,
- the website from which the accessing system has been referred (if applicable)
- any other similar data and information
For each access to our website, our hoster's server system automatically stores the data listed above in log files, which we, unfortunately, can not prevent. Both we as the website operators and the hoster technically have access to the log files. However, we do not subsequently access, process or analyze the log files in any way for reasons that lie beyond cyber security, and our hoster is not allowed to as well (see below). We explicitly refrain from using any cookies, tracking tools or profiling software. The log files are treated confidential and are deleted on the eighth day after the user visited our website.
Legal basis for the processing
These processing operations are based on Article 6(1) lit. f GDPR for the purposes of the legitimate interests pursued by our organisation, which is to ensure the technical functionality of our website.
External hosting service
Our website is hosted by an external service provider (hoster). Our hoster has access to the information listed above in the interest of a secure, fast and efficient provision of our online service by a professional provider (Article 6(1) lit. f GDPR).
We have concluded a GDPR Data Processing Agreement (DPA) with our hoster in order to ensure data proctection compliant processing. This DPA legally requires the hoster to process personal data exclusively for the purpose of meeting their performance obligations and to not store any more data than we do.
We use the following hoster:
BIOHOST - Lars-Helge Wilbrandt
Our website is 100% open source, meaning that you can read the complete source code on Github.