Privacy policy

Our Privacy Policy

Last update: 28.08.2020

1. Subject of the privacy policy

Due to the high sensitivity and protection requirements of personal data, protecting your personality rights and thus your personal data is of highest priority to the WIVW GmbH. For this reason, we comply with all relevant data protection legislation (General Data Protection Regulation, GDPR, and country-specific data protection regulations applicable to the WIVW GmbH).
The following privacy policy notice is intended to inform you how and if we store your personal data, and if we do, what kind of personal data it is and for what purpose we process them. Additionally, we would like to inform you about the first data transmission and the type of transmitted data, as well as the protective measures that we have taken.
As the privacy policy is supposed to be legible and understandable for everyone visiting our internet pages, we would first like to explain some terms used in the GDPR.

  • Personal data means any information helping to identify you as a person. This could be data identifying you directly (e.g. your name), or indirectly (e.g. an online identifier).
  • Processing is any operation or set of operations which is performed on personal data. For example, this might be the collection, storage, or erasure of your data.
  • Consent is any freely given, specific, informed and unambiguous indication of your wishes by which you agree to the processing of your personal data (e.g. statement or clear affirmative action).
  • Controller is the natural or legal person which determines the purposes and means of the processing of personal data.

We would like to point out that our hosting-provider is a German enterprise. We have concluded a contract about commissioned data processing in accordance with the requirements of Art. 28 GDPR. This means that the processor provides sufficient guarantees to have implemented appropriate technical and organizational measures in such a manner that processing will meet the requirements of the GDPR and any other country-specific data protection regulations and thus ensure the protection of your data.

2. Name and Address of the Controller

Controller for the purposes of the GDPR, other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:

Würzburger Institut für Verkehrswissenschaften (WIVW GmbH)
Robert-Bosch-Straße 4
97209 Veitshöchheim
Tel.: +49-931-78009-0
Fax: +49-931-78009-150
E-Mail: info@wivw.de

3. Data Protection Officer

Contact details of our data protection officer are:

Datenschutzbeauftragte
Würzburger Institut für Verkehrswissenschaften (WIVW GmbH)
Robert-Bosch-Straße 4
97209 Veitshöchheim
E-Mail: datenschutzbeauftragte@wivw.de

If you have any questions or comments regarding data protection at the WIVW GmbH, please feel free to contact our data protection officer.

4. Collection and use of data

Type and scope of data processing depends on the purpose of your visit to our internet pages.

4.1 Purpose of obtaining information

If you only want to gather information on our internet pages, it is not necessary for you to provide any personal data. We only process the data provided by your internet browser and stored in the logfile of the server:

  • the date and time of access to the Internet site
  • the browser type and version
  • the browser settings
  • the operating system used by the accessing system
  • the lastly and currently visited websites
  • the amount of transferred data and access status (data transferred, page not found, etc.)
  • your internet protocol address (IP address)

This usage data will be processed and saved separately from further data that you might enter on our internet pages. No links will be made between your usage data and any further data; furthermore, no conclusions to your person can be made. In general, usage data is necessary for the access to the website. In addition the data is used anonymously to optimize the online presence by means of statistical analysis. Due to technical safety, i.e. to prevent attempted attacks to the webserver, as well as due to legal requirements and to be able to provide information to law enforcement authorities, your usage data will be saved for a short period of time, maximally 7 days.

4.2 Contacting

Further data will only be processed after your explicit consent (Art. 6 (1) a GDPR).

You have the possibility to message us via the contact form. In this case we will ask you for your name and email address. You can also state your phone number which is not required. Alternatively you could send an email. With the completion and submission of your message you accept that your data will be processed in order to reply to your request. Dependent on the content of your request your data might internally be forwarded to the responsible person at WIVW GmbH, which you will be informed of. Your data will solely be processed to reply to your request. Your data will not be transferred to a third party unless there is a statutory obligation to pass on the data, or if the transfer serves the aim of criminal prosecution.

4.3 Customer area

You can get access to the customer area in consultation with us if you are a customer of the WIVW GmbH. This access can be established to provide certain information or services as specified in the contractual agreements. With a visit to the customer area time of log-in, IP address and visited content will be protocolled. This informs us if the agreed upon services were used. The log files will be erased after termination of the contractual relationship.

4.4 Tools

In order to make it more convenient for you to find your way to the WIVW, we have inserted the URL of Google Maps, as provided by Google. Service provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, parent company is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “provider”).

We would like to point out to you that by using Google Maps the provider might process your IP-address, location, and further personal data. The data processing needs your consent (Art. 6 (1) lit. a GDPR), which is often given via the settings of your mobile device / browser. Only by clicking on the URL and thereby giving your consent you will be directed to the provider and data will be processed by the provider.

Limiting data processing: Your personal data is processed by the provider independently of you being logged into your google account or not. If you are logged in, data can be assigned to your user profile. In order to avoid this, please log out of your account before using the tool. Additionally, Blocker-Tools can prevent the provider from accessing your data. Google stores your data as user profiles, for example in order to use them for needs-oriented advertising. You have a right to object the creation of user profiles. For this, you have to contact the provider directly. You can find more information about the data processing in the provider’s privacy policy (https://policies.google.com/privacy) and adjust your privacy settings.

Of course you can use any other trip planner you might prefer in order to find your way to the WIVW. In this case, the particular provider’s privacy policies are effective.

5. Duration of storage and erasure of processed data

Your personal data will only be processed as long as it is necessary for our services or for the purpose of storing. If WIVW GmbH is legally obliged, further storage might become necessary.
Data will be erased according to the legal regulations if the purpose of storing is omitted or if the data retention period expires.

6. Cookies

Like many other web pages we also use cookies. Cookies are text files sent from our webpage to your browser during your visit to our web pages, which are kept on your computer for later retrieval.

We only use Session Cookies or temporary Cookies, which are only stored temporarily for the duration of your stay on our webpages. The purpose of those Cookies is to identify your computer while changing from one of our webpages to another during your visit to our online presence and to identify the end of your visit. Cookies do not damage your computer nor do they contain viruses.
The cookies will be deleted once the browser session ends.

You can determine through the settings of your browser if Cookies are set and retrieved. You can completely deactivate the saving of Cookies, limit the usage of Cookies to certain webpages or configure your browser to message you every time a cookie is set and ask for permission beforehand. For technical reasons it is necessary to accept Session Cookies in order to experience full functionality of our online presence.
Surveying or saving of personal data through Cookies does not happen in this context. Furthermore, no techniques are used to link the information provided by Cookies to user data.

7. Data safety

We use technical and organizational safety measures to protect surveyed data, especially against manipulation, loss or unauthorized access. Our safety measures are continuously updated according to the technological development. Web based data transfer might have some security gaps, therefore unfortunately absolute protection cannot be ensured. Having said this, you do have the possibility to transfer your data to us alternatively via telephone or in person.

8. Your rights

According to GDPR you have the following rights in connection with your data. You can address the data protection officer or any other employee of the WIVW GmbH to make use of your rights.

8.1 Right to information/disclosure

You have the right to always and free of charge access the data being processed with regard to your person. This disclosure includes information whether or not personal data concerning you are being processed at all, and if they are the categories of personal data concerned; the recipients to whom the personal data have been or will be disclosed to and the period for which the personal data will be stored (Art. 15 GDPR).

8.2 Right to rectification

You have the right to obtain without undue delay the rectification of inaccurate personal data if we processed incorrect information (Art. 16 GDPR).

8.3 Right to erasure (‘right to be forgotten’)

You have the right to the erasure of personal data without undue delay if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; if you withdraw consent on which the processing is based on and if the personal data have to be erased for compliance with a legal obligation (Art 17 GDPR). This applies under the prerequisite that further processing of your data is neither necessary nor legally required.

8.4 Right to restriction of processing

Under certain circumstances you have the right to request the restriction of the processing of your data (Art. 18 GDPR).

8.5 Right to data portability

You have the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format (Art 20 GDPR).

8.6 Right to withdrawal of consent

You have the right to withdraw your consent for data processing at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal (Art. 7 (3) GDPR).

8.7 Right to object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6 (1) GDPR. We shall no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

Where personal data are processed for direct marketing purposes, you shall have the right to object at any time to processing of personal data for such marketing.

Where personal data are processed for scientific or statistical research purposes pursuant to Article 89 (1) GDPR, you shall have the right to object to processing of personal data, on grounds relating to your particular situation, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

8.8 Right to lodge a complaint with a supervisory authority

You shall have the right to lodge a complaint with a supervisory authority if you are dissatisfied with our help and consider that the processing of your personal data infringes this Regulation.