Data protection

I. General Preliminary Remarks

The central web server presents the IAC internally and externally, disseminates information and supports the tasks of the IAC. The appearance has an independent, uniform design.

II. Responsibility and responsibilities

For the operation as well as the correctness and topicality of the information no guarantee is taken over. The ZARM at the University of Bremen is responsible for the operation of the server. The content management (ZARM IT department) maintains the entry pages of the central website at

I. Name and address of the person responsible:

University of Bremen ZARM-1 1110

Mr. Thorsten Coordes

Am Fallturm 2

28359 Bremen, Germany

Tel .: +49 421 218-57879

E-Mail: thorsten.coordes(at)



II. Name and address of the data protection officer / data protection officer:

Oliver Daroszewski

It department

Am Fallturm 2

29359 Bremen, Germany

Tel .: +49 421 218-57926

E-Mail: oliver.daroszewski(at)

III. General information about data processing

The IAC takes the protection of personal data very seriously. We process personal data, which are collected when visiting our websites, in compliance with the applicable data protection regulations. In particular, the EU General Data Protection Regulation (DS-GVO), the Bremen Implementation Act to the EU General Data Protection Regulation (BremDSGVOAG) and the Bremen University Law (§ 11 BremHG) and the Telemedia Act (TMG) apply.

In the following, we will inform you about the nature, scope and purpose of the collection and use of personal data.

Your data will neither be published by us nor passed on to third parties without authorization. We point out, however, that we are entitled on the order of the competent bodies in individual cases to provide information about data, as far as for law enforcement purposes, to prevent the risk of police forces of the Länder, to fulfill the statutory duties of the constitutional protection authorities of the Federation and the Länder, the Federal Intelligence Service is required (legal basis Art. 6 (1) 1 c) DS-GVO).

1. Data collection and processing for access from the Internet

(1) When you visit our web pages, our web servers automatically save each access in a log file.

(2) This data is stored separately from other data that you enter during the use of our offer. It is not possible for us to assign this data to a specific person. A storage of this data together with other personal data of the user does not take place. Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. The legal basis for the temporary storage of data and log files is Art. 6 (1) 1 f) DS-GVO.

The following data is recorded:

• The IP address of the requesting computer

• Date and time of access

• Access method / function desired by the requesting computer

• Name and URL of the retrieved file

• Access status of the web server (file transfer, file not found, command not executed, etc.)

 (3) The login for access to protected areas is partially logged in order to detect abuse attempts and password attacks. Thereby, no data is stored, with the help of which personal profiles are created about the user behavior.

2. Use and disclosure of personal data

(1) In general, the use of our website does not require you to provide personal information. In order for us to be able to provide some of our services (registration for an event or see point 8. contact form or point 9), we may need your personal data (eg name, address, e-mail addresses).

(2) Any use of your personal data takes place only for the stated purposes and to the extent necessary to achieve these purposes. None of this data is disclosed to third parties without the prior consent of the user.

(3) The transmitted data is stored in a database which is only accessible to administrators. For data security reference is made to point 4.

(4) You may revoke your consent to the storage of the data at any time. Please contact us by e-mail to [email protected] or to the above addresses.

(5) We point out that the transmission of data on the Internet (for example in the case of communication by e-mail) may have security gaps. A complete protection of the data from access by third parties is not possible.

3. Cookies

(1) Our websites use cookies in several places. They serve to make our offer more user-friendly and effective. Cookies are small text files that are stored by the browser on your computer. Most of the cookies we use are so-called session cookies (legal basis Art. 6 (1) 1 f) DS-GVO), which are deleted when you end your browser session.

The following cookies are set:

• session cookie (for session detection, lifetime: one session)

• TYPO3 session cookie (for session detection, lifetime, one session)

 (2) In your browser settings, you can specify whether cookies should be set or not.

4. Data security

Our technical and organizational security measures, which protect all data from unauthorized access, are always kept up to date. As far as your data is collected and recorded by us, it is stored on specially protected servers. These are protected by technical and organizational measures against loss, destruction, access, modification or distribution by unauthorized persons. Access to your data is only possible for a few authorized persons. All our employees are obliged to confidentiality. Personal information is always transmitted in encrypted form.

5. Links to websites of other providers

Our website contains links to external websites of third parties. This site is subject to the liability of the operator. Therefore, we can not assume any liability for these external contents. At the time of the inclusion of the links, there were no illegal contents on the respective pages. However, we have no influence on the current and future design and content of the linked sites. A permanent control of these third party sites is unreasonable. If we become aware of a violation, we will remove the link immediately. When you leave this site, it is recommended that you carefully read the privacy policy of each website first.

6. Contact form

(1) If you send us inquiries via the contact form, your details from the application form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. We do not share this data. In order to answer your questions, we require your name and your e-mail address as mandatory.(2) You can revoke your consent to the storage of the data and the e-mail address at any time. You can contact the above mentioned addresses or send an e-mail to the following address: oliver.daroszewski(at)

7. SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of sensitive content, such as the requests you send to us as the site operator. You can recognize an encrypted connection by changing the address line of the browser from "http: //" to "https: //" and the lock symbol in your browser line. When SSL encryption is enabled, it is almost impossible for third parties to read the data you transmit to us.

8. Right to information / blocking / deletion / revocation

(1) You have at all times the right to free information about your stored personal data, their origin and the recipient and the purpose of the data processing as well as a right of correction, blocking or deletion, as far as no storage obligation precludes or limiting the processing of this data , A right to cancellation exists i.a. not, if the further processing for the assertion, exercise or defense of legal claims is necessary.

(2) You also have the right to revoke any data protection consent declaration that may have been submitted at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation. Their rights arise from Art. 12-23 DS-GVO. For further information on personal data, please contact the above mentioned addresses or send an e-mail to the following address: oliver.daroszewski(at)

9. Right to complain to a supervisory authority

Notwithstanding any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of its residence, place of work or place of alleged infringement, if you believe that the processing of the personal data concerning you is against the DS-GMO infringes. The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint.

10. Validity and timeliness of the privacy policy

By using our website, you consent to the use of the data described above. This Privacy Policy is immediately valid and supersedes all prior statements. This statement will be updated as necessary to bring it into line with the content of the website as well as more generally with legal changes.


As of May 2018