Thank you for your interest in our website. Of course, the protection of your personal data on the occasion of your visit to our website is an important concern for us.
1. General information on data processing
With the following data protection information, we inform you about the type and scope of the processing of personal data. We collect and use personal data of visitors to our website only insofar as it is necessary to provide the website and our content and services in a functional manner and to make it convenient for visitors to use.
Personal data is regularly only with the consent of the visitor. In addition, processing may take place if obtaining consent in advance is not possible for factual reasons and the data processing is permitted by legal regulations – in particular by the European General Data Protection Regulation (DSGVO) and the German Federal Data Protection Act (BDSG 2018).
“Personal data” are, according to Art. 4 No. 1 DSGVO, any information relating to an identified or identifiable natural person (“data subject”). This includes, for example, the name, address, date of birth, e-mail address and telephone number.
According to Art. 4 No. 2 DSGVO, “processing” means any operation or set of operations which is performed on personal data, whether or not by automatic means (e.g. collection, storage, use or disclosure).
“Controller” is, according to Art. 4 No. 7 DSGVO, the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.
Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) lit. a DSGVO serves as the legal basis. When processing personal data that is necessary for the performance of a contract, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures. If processing of personal data is necessary to comply with a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis. If processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing.
The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a necessity for the continued storage of the data for the conclusion or fulfilment of a contract.
2. Name and contact details of the data controller, contact details of the data protection officer(s)
The person responsible for data processing when visiting and using this website is:
urticaria network e.V.
Schönhauser Allee 163
Phone number: +49 159 04868883
3. Processing of data when visiting and using our website
3.1 Storage of access data in http log files (“log files”)
In general, you can visit and use our website without providing any personal information. When you visit our website, the internet browser you use automatically transmits certain access data to the server provided. This involves the following data:
IP address of the requesting computer
Browser software used and its version and language
Internet service provider of the user
Operating system of the requesting computer
Date and time of access
Name and URL of the accessed page or file
Internet page from which the access is made
Internet page that was called up by the user’s system via our internet page
Access status/http status code
Data volume transferred in each case
Nature and purposes of data processing:
This data is temporarily stored in a separate log file. The log files contain IP addresses or other data that enable an assignment to a user. This could be the case, for example, if the link to the website from which the user arrives at the website or the link to the website to which the user goes contains personal data.
The purpose of storing this data is to ensure system security and stability on a permanent basis and to enable technical administration in order to provide a trouble-free connection and operation of our website as well as its comfortable use. In addition, this data is evaluated for internal administrative and statistical purposes in order to improve our online services. This data is not merged with other data or data sources that would allow conclusions to be drawn about your person.
The legal basis for this processing is Art. 6 (1) lit. f DSGVO. With this data processing, we pursue the legitimate interest of maintaining the operational security of our website in order to be able to provide this website and the information contained therein in a trouble-free and convenient manner.
The data will be deleted as soon as it is no longer required to achieve the aforementioned purposes of its collection. In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated to the extent that an assignment of the visiting client is no longer possible.
Possibility of revocation and removal:
The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.
Type and purposes of data processing and storage period:
When you visit our website, so-called “cookies” are also stored on your end device or data carrier. Cookies are text or information files that your internet browser automatically saves on your end device when you access our website. They contain certain data or settings that are exchanged between your internet browser and our system. This is mainly information about which sub-pages of our website are called up and how often. Cookies enable the browser to be uniquely identified when the website is called up again.
In addition, in order to optimise user-friendliness, we use temporary cookies that are stored on your end device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognised that you have already been with us and which entries and settings you have made so that you do not have to enter them again.
The visitor data collected in this way is pseudonymised by technical precautions. The data is not stored together with other personal data of the visitors. Therefore, an assignment of the data to the visitor is no longer possible.
A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session. With regard to their function, a distinction is made between cookies:
- Technical cookies: these are mandatory to move around the website, use basic functions and ensure the security of the website; they do not collect information about you for marketing purposes nor do they store which web pages you have visited;
- Performance cookies: these collect information about how you use our website, which pages you visit and, for example, whether errors occur during website use; they do not collect information that could identify you – all information collected is anonymous and is only used to improve our website and find out what interests our users;
- Advertising cookies, targeting cookies: These are used to offer the website user tailored advertising on the website or offers from third parties and to measure the effectiveness of these offers; advertising and targeting cookies are stored for a maximum of 13 months;
- Sharing cookies: These are used to improve the interactivity of our website with other services (e.g. social networks); sharing cookies are stored for a maximum of 13 months.
The following cookies are used:
Name | Description of the stored data | Storage period
- actppresence | These cookies manage the frequency of advertisements displayed | 1 year
The legal basis for the processing of personal data using technically necessary cookies within the meaning of Section 25 (2) TTDSG is Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimised provision of its services.
Possibility to object to the storage of cookies:
If you would like to support us with a donation, you can either transfer it to our donation account or use the payment service provider Paypal. Furthermore, you have the possibility to support us by shopping at the external service provider Amazon smile.
3.3.2 Amazon Smile:
You have the possibility to support us by shopping via Amazon smile of the provider Amazon Services Europe S.à r.l. , 38 avenue John F. Kennedy, L-1855 Luxembourg.
3.4 Social media profiles
Nature and purpose of the data processing:
We maintain publicly accessible profiles on social networks. The individual social networks used by us can be found below. Social networks such as Facebook, Twitter, etc. can generally comprehensively analyse your user behaviour when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered.
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, the interest-based advertising can be displayed on all devices on which you are or were logged in.
Our social media presences are intended to ensure the most comprehensive presence possible on the internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO. The analysis processes initiated by the social networks may be based on different legal grounds, which are to be stated by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a DSGVO).
Person responsible and assertion of rights:
If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both against us and against the operator of the respective social media portal (e.g. Facebook). Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing procedures of the social media portals. Our options are largely determined by the corporate policy of the respective provider.
The data collected directly by us via the social media presence will be deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.
Social networks in detail:
3.5 Social Media Plugins
We use the social media plugin on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 (1) lit. f. DSGVO).
We use on social plugins of the social network facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). The plugins can display interaction elements or content (e.g. videos, graphics or text contributions) and are recognisable by one of the Facebook logos (white “f” on a blue tile, the terms “Like”, “Like” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/policy.php.
3.6 Legal or contractual obligation to provide the data
If you send us a contact enquiry and would like us to process and answer your enquiry accordingly, we require the personal data specified as necessary there. Otherwise, we will not be able to process the request.
3.7 Data security
We are committed to ensuring the security of your data. To prevent the loss, misuse and alteration of personal data, we have put in place and are adapting appropriate physical, electronic and managerial procedures in line with the latest technology.
For security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the site operator, this site uses SSL encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
3.8 No use of automated decision-making including profiling
We do not use so-called profiling or other decision-making processes which are based exclusively on automated data processing and which have legal effects against you or which significantly affect you in a similar way.
4. Your data subject rights
You have the following rights regarding the processing of your personal data:
4.1 Right of access (Art. 15 DSGVO)
You have the right to request information about your personal data processed by us. In particular, you can request information about the processing purposes, the categories of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling pursuant to Art. 22 (1) and (4) DSGVO and, if applicable, meaningful information about its details.
You also have the right to request information on whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 of the DSGVO in connection with the transfer.
4.2 Right of rectification (Art. 16 DSGVO)
You have the right to immediately request the correction of data relating to you that we have stored incorrectly or to request that we complete such data if we have stored it incompletely.
4.3 Right to erasure (Art. 17 DSGVO)
You have the right to request the deletion of your personal data stored by us if one of the following reasons applies:
The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
You revoke your consent on which the processing was based pursuant to Art. 6 (1) lit. a or Art. 9 (2) lit. a DSGVO and there is no other legal basis for the processing.
You object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) DSGVO.
The personal data concerning you has been processed unlawfully.
The deletion of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
The personal data concerning you was collected in relation to information society services offered pursuant to Art. 8 (1) DSGVO.
If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17 (1) of the DSGVO, it shall take reasonable steps, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers which process the personal data that you, as the data subject, have requested that they erase all links to, or copies or replications of, that personal data.
The right to erasure does not exist insofar as the processing is necessary
to exercise the right to freedom of expression and information;
for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
for reasons of public interest in the area of public health pursuant to Art. 9 (2) lit. h and lit. i and Art. 9 (3) DSGVO;
for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89 (1) of the DSGVO, where the right referred to in Section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing, or
for the assertion, exercise or defence of legal claims.
4.4 Right to restriction of processing (Art. 18 DSGVO)
You have the right to request the restriction of the processing of your personal data insofar as the accuracy of the data is disputed by you, insofar as the processing is unlawful but you refuse the erasure of the data, insofar as we no longer require the data but you need it for the assertion, exercise or defence of legal claims, or insofar as you have objected to the processing pursuant to Art. 21 DSGVO.
4.5 Right to information (Art. 19 DSGVO)
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to communicate this rectification or erasure of the data or restriction of processing to all recipients to whom the personal data concerning you have been disclosed, unless this proves impossible or involves a disproportionate effort.
4.6 Right to data portability (Art. 20 DSGVO)
You have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller.
4.7 Right to revoke consent given at any time (Art. 7 (3) in conjunction with Art. 6 (1) lit. a or Art. 9 (2) lit. a DSGVO)
You have the right to revoke your consent at any time. This has the consequence that we may no longer continue the data processing based on this consent in the future, unless it can be based on another legal basis.
4.8 Right to complain to a supervisory authority (Art. 77 DSGVO in conjunction with Section 19 BDSG 2018)
You have the right to complain to a supervisory authority if you believe that the processing of your personal data violates the DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.
4.9 Right of objection (Art. 21 DSGVO)
If we process data relating to you on the basis of legitimate interests, you may object to this on grounds relating to your particular situation.
In addition, you can object to data processing if we carry it out for direct marketing purposes.
4.10 Automated decision in individual cases including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
(1) is necessary for the conclusion or performance of a contract between you and the responsible person,
(2) is authorised by legislation of the Union or the Member States to which the controller is subject and that legislation contains adequate measures to safeguard your rights and freedoms and your legitimate interests, or
(3) is done with your express consent.
However, these decisions must not be based on special categories of personal data pursuant to Art. 9 (1) of the DSGVO, unless Art. 9 (2) lit. a or lit. g of the DSGVO applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.
With regard to the cases referred to in (1) and (3), the controller shall take reasonable steps to safeguard the rights and freedoms of, and your legitimate interests, including at least the right to obtain the intervention of a person on the part of the controller, to express his or her point of view and to contest the decision.