Logo RC Navy Kiel

Privacy

Common

The RC Navy Kiel (hereinafter also referred to as "Operator" or "Responsible") takes the protection of personal data very seriously. The use of our website is basically possible without the provision of personal data. If you as a user want to use special services through our website, processing of your personal data may be required.

Data processing always takes place in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations that apply to us.

Below we inform you about the extent to which we process personal data as part of their use of our website, for what purpose the data is processed and what rights they have against this data processing.

Responsible

The Responsible within the meaning of Article 4 paragraph 7 GDPR is:

Definitions

This Privacy Policy is based on the terminology used by the European Regulatory and Regulatory Authority in the adoption of the General Data Protection Regulation (GDPR). This privacy policy should be easy to read and understand for both the public and visitors. To ensure this, the definitions used should be explained in advance.

( 1 )  Personal Data

Any information relating to an identified or identifiable natural person ("person concerned"); a natural person is regarded as identifiable, which can be identified directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, the expression of the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person.

( 2 )  Processing

Any process or series of operations related to personal information, such as collection, organization, ordering, storage, adaptation or modification, read-out, retrieval, use, disclosure, performed with or without the aid of automated procedures by submitting, distributing or otherwise providing, adjusting, linking, limiting, erasing or destroying.

( 3 )  Restriction of Processing

The marking of stored personal data in order to limit their future processing.

( 4 )  Profiling

Any type of automated processing of personal data that involves the use of such personal information to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal preferences, interests To analyze or predict the reliability, behavior, location or change of location of this natural person.

( 5 )  Pseudonymization

The processing of personal data in such a way that personal data can no longer be attributed to a specific concerned person without the need for additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that the personal data are not identified or identifiable natural person.

( 6 )  Filing System

Any structured collection of personal data accessible by specific criteria, whether that collection is centralized, decentralized or organized according to functional or geographical considerations.

( 7 )  Responsible

The natural or legal person, public authority, institution or other office that, alone or in concert with others, decides on the purposes and means of processing personal data; where the purposes and means of such processing are determined by Union law or the law of the Member States, the controller or the specific criteria for his designation may be provided for under Union or national law.

( 8 )  Processors

A natural or legal person, agency, institution or other office that processes personal data on behalf of the controller.

( 9 )  Receiver

A natural or legal person, public authority, agency or other office to which personal data are disclosed, whether or not it is a third party. However, authorities that may receive personal data under Union or national law in connection with a particular mission are not considered to be recipients; the processing of these data by the said authorities shall be in accordance with the applicable data protection rules in accordance with the purposes of the processing.

( 10 )  Third

A natural or legal person, public authority, institution, office or other than the concerned person, the controller, the processor and the persons authorized under the direct responsibility of the controller or processor to process the personal data.

( 11 )  Approval

The approval of the concerned person to any expression of intent, informed and unambiguous in the form of a statement or any other unambiguous confirmatory act by which the concerned person expresses understanding that he agrees with the processing of the personal data.

( 12 )  Violation of the protection of personal data

A breach of security that results in destruction, loss or alteration, whether inadvertent or unlawful, or unauthorized disclosure of or access to personal data that has been transmitted, stored or otherwise processed.

Cookies

On our website NO "temporary" or "permanent" cookies are used.

Data Security

Pursuant to Article 32 GDPR, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing and the different likelihood and severity of the risk to the rights and freedoms of natural persons, take appropriate technical and organizational measures, to ensure a level of protection appropriate to the risk.

Measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as their access, input, disclosure, availability and disconnection.

In addition, procedures have been put in place to ensure the perception of concerned persons rights, the deletion of data and the reaction to the threat to data. Furthermore, the protection of personal data is already taken into account in the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technology design and through privacy-friendly default settings (Article 25 GDPR).

Hosting

The hosting services used are to provide the following services: infrastructure and platform services, computing capacity, storage and database services, security and technical maintenance services used to operate this website.

Here we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta and communication data of visitors to this website based on a legitimate interest in an efficient and secure provision of the website in website in accordance with Article 6 paragraph 1 litteral f) GDPR in conjunction with Article 28 DSGVO (conclusion of contract processing contract).

Contact

When contacting us (for example via contact form, e-mail or telephone), the information provided by the user for processing the contact request and processing it in accordance with Article 6 paragraph 1 litteral b) GDPR are processed.

If an affected person contacts us by e-mail or via a contact form, the personal data transmitted by the person concerned will be automatically saved. Such personal data transmitted to us on a voluntary basis will be stored for the purposes of processing or contacting the data subject.

There is no disclosure of this personal data to third parties.

Online Services

The website includes maps from the Google Maps service provided by Google LLC (1600 Amphitheater Parkway, Mountain View, CA 94043, USA).

Auf der Webseite sind Landkarten des Dienstes Google Maps vom Anbieter Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) eingebunden.

Privacy: https://www.google.com/policies/privacy/

Opt-Out: https://adssettings.google.com/authenticated

Plugins (Social Network)

Plugins from "Facebook", "Twitter", "LinkedIn" or "Xing" are NOT used on this website.

Rights of concerned Person

( 1 )  Right for information

According to Article 15 GDPR, you have the right for information about the processed personal data and further information about the processing.

( 2 )  Right to rectification

Under Article 16 GDPR, you have the right to request rectification and / or completion if your processed personal data are incorrect or incomplete.

( 3 )  Right to delete

Under Article 17 of the GDPR, you have the right to request the deletion of the personal data, provided that one of the reasons stated in the article applies.

( 4 )  Right to restriction of processing

You have the right under Article 18 of the GDPR to request the restriction of the processing of the personal data, provided that one of the reasons stated in the article applies.

( 5 )  Right to notification

Under Article 19 of the GDPR, you have the right that all recipients are informed to whom the personal data have been disclosed, of any correction (Article 16 GDPR) or deletion (Article 17 GDPR) of personal data or a restriction of processing (Article 18 GDPR).

( 6 )  Right to data portability

Under Article 20 of the GDPR, you have the right to receive personal data in a structured, common and machine-readable format.

( 7 )  Right to objection

Under Article 21 of the GDPR, they have the right, at any time and for reasons that arise from their particular situation, to prevent the processing of the data relating to them which, on the basis of Article 6 paragraph 1 litteral e) or f) GDPR takes an objection.

Legal basis of processing

According to Article 13 GDPR, we inform you about the legal basis of the data processing. Unless the legal basis is stated in the privacy policy, the following applies:

The legal basis for obtaining consent is Article 6 paragraph 1 litteral a) and Article 7 GDPR, the legal basis for the processing of the performance of services and the response to requests is Article 6 paragraph 1 litteral b) GDPR, the legal basis for processing to fulfill my legal obligations is Article 6 paragraph 1 litteral c) GDPR, and the legal basis for processing for the protection of my legitimate interests is Article 6 paragraph 1 litteral f) GDPR.

In the event that vital interests of the data subject or any other natural person require the processing of personal data, Article 6 paragraph 1 litteral d) GDPR as legal basis.

Transmission to third countries

If we process data in a third country (ie outside the European Union (EU) or the European Economic Area (EEA)) or in the context of the use of third party services or disclosure, or transmission of data to third parties, this will only be done if it is to fulfill my (pre) contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interest.

Subject to legal or contractual permissions, we process or let the data in a third country only in the presence of the special conditions of Article 44 et seq. GDPR. That is, the processing is e.g. on the basis of specific guarantees, such as the officially recognized level of data protection (eg for the US through the "Privacy Shield") or compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").

Access data and log files

Logfile information is stored for security reasons for a maximum of 7 days and then deleted. Data whose further retention is required for evidential purposes are excluded from the erasure until the final clarification of the incident.

( 1 )  Survey

The hosting provider charges on the basis of legitimate interests within the meaning of Article 6 paragraph 1 litteral f) GDPR Data on every access to the server on which this site is located (so-called server log files). Access data includes:

  • the name of the retrieved website
  • the date and time of access to the website
  • the transferred amount of data
  • a message about the successful call
  • the used browser type and the version
  • the used operating system from the accessing system
  • the website from which an accessing system accesses this website (referrer URL)
  • the Internet-Protocol-Address (IP-Address)
  • the requesting Internet-Service-Provider of the accessing system

( 2 )  Purpose of the Survey

When using the access data, no conclusions are drawn to the data subject. Rather, this information is needed:

  • to deliver the content of the website correctly
  • to optimize the contents and functions of the website
  • to ensure the permanent functioning of the information technology systems and the technology of the website
  • to provide law enforcement with the necessary information for prosecution in the event of a cyberattack
  • to provide law enforcement with the information necessary for law enforcement to investigate abuses or fraud

Collaboration with processors and third parties

If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transfer them to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (eg if a transmission of the data to third parties, as required by payment service providers, pursuant to Article 6 paragraph 1 litteral b) GDPR), they have consented to a legal obligation or on the basis of my legitimate interest (eg in the use of agents, webhosters, etc.).

If we entrust third parties with the processing of data on the basis of a so-called "order processing contract", this is done on the basis of Article 28 GDPR.