Privacy Policy

Data protection notice pursuant to Article 13 of the General Data Protection Regulation (GDPR)

RADAR4ING

The following information provides you with an overview of how your personal data is processed and your rights under data protection law. According to Article 4(1) of the EU General Data Protection Regulation (GDPR), personal data refers to any information relating to an identified or identifiable natural person.

Overview

  1. Data Controller and Data Protection Commissioner (od. Officer)
  2. Website Visits and Server Log Files
  3. Publication of Meta and Research Data
  4. Cookies
  5. Contacting Us (Email, Phone, Form)
  6. Your Rights

Detailed Information

1. Data Controller and Data Protection Commissioner (od. Officer)

The data controller within the meaning of the GDPR (Art. 4(7)) and other data protection regulations is:

Karlsruhe Institute of Technology (KIT)
Kaiserstraße 12, 76131 Karlsruhe
Germany
Phone: +49 721 608-0
  Fax: +49 721 608-44290
Email: info∂kit.edu  

The Karlsruhe Institute of Technology is a corporation governed by public law. It is represented by the respective President. You can contact our Data Protection Commissioner (od. Officer) at datenschutzbeauftragte∂kit.edu or at the mailing address with the addition “The Data Protection Commissioner (od. Officer).”

2. Website Visits and Server Log Files

Scope and Purpose: When you use the website for informational purposes only—that is, if you do not register or otherwise provide us with information—we collect only the personal data that your browser transmits to our server based on the settings you have configured.

  • The user’s IP address
  • Date and time of the request/access
  • Requested page or URL
  • Access status/HTTP status code
  • Amount of data transferred in each instance
  • Websites from which the user’s system accessed our website, if the user’s browser actively transmits this information 
  • Information about the browser type and version used
  • The user’s operating system




The data is used for the technical optimization of the website, to troubleshoot issues in the event of a malfunction, and to ensure the security of our IT systems. The IP address is necessary for the operation and delivery of the website. The data is processed in anonymized form for statistical purposes; no cross-referencing with other data sets takes place.
If we have concrete evidence of unlawful use, we reserve the right to collect and store full IP addresses.
Recipients: The data is not disclosed to third parties.

Legal basis: The legal basis for processing is Art. 6(1)(e) and (3)(b) of the GDPR in conjunction with § 4 of the LDSG or § 20(1) of the KITG in conjunction with § 12(1) of the LHG.

Retention Period: Personal data will be stored for as long as necessary to fulfill the purpose for which it was collected. The data will be deleted after no later than forty days.

3. Publication of Meta- and Research Data

Scope and Purpose: We process your personal data

Users of the application [processing and storage for the purposes of account creation, login, and use of the application]: 

  • Username or “Persistent ID” (when using Shibboleth)
  • Password (not applicable when using Shibboleth)
  • Email address
  • First and last name (optional)
  • ORCiD (optional)
  • Profile picture (optional)

Individuals involved in the creation of research data (e.g., data generators, contributors, publishers, rights holders) [Processing, storage, and publication for the purpose of publishing metadata and research data]

  • First and last name 
  • Institutional affiliation (optional)
  • ORCiD (optional)

Recipients: At KIT, access to the above-mentioned data is granted in particular to the relevant staff members of the Scientific Computing Center ( SCC ). In the case of the publication of meta- and research data: Transfer of the data to DataCite; optional: Transmission of first and last name when searching the ORCID registry; Transmission of the institution name when searching the ROR registry for the purpose of indicating institutional affiliation, generation of citations via https://support.datacite.org/docs/datacite-content-resolver

In the context of the technical operation of the application, we collaborate with an external service provider, FIZ Karlsruhe – Leibniz Institute for Information Infrastructure, which we have carefully selected and contractually bound. This service provider operates exclusively in accordance with our instructions. We ensure this through strict contractual provisions, technical and organizational measures, and supplementary controls.
During the registration of DOIs and the assignment of DOIs, KIT library staff may have access to metadata that has not yet been published (authors, contributors, and description of the data).
In the context of day-to-day operations, selected NFDI4ING staff members (www.nfdi4ing.de) are granted access to the data to be published in order to perform their duties as part of overseeing the data publication process (curators).
After publication, both the uploaded published data and the specified metadata are accessible worldwide.
Furthermore, in accordance with archival regulations, documents must be submitted to the KIT Archive prior to their deletion. The KIT Archive decides whether to accept the documents. In doing so, the KIT Archive safeguards the legitimate interests of the data subjects in accordance with the Baden-Württemberg State Archives Act (LArchG) and other relevant legal provisions.

Legal basis: The legal basis for processing is Art. 6(1)(e) and (3) of the GDPR in conjunction with § 4 of the Baden-Württemberg State Data Protection Act (LDSG).
For optional information, data processing is based on Art. 6(1)(a) of the GDPR (consent). Consent is given voluntarily. Consent may be withdrawn at any time with future effect. “Future effect” means that the withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent prior to the withdrawal. Refusal or withdrawal of consent will not result in any disadvantages.

Retention period: Personal data will be stored for as long as necessary for the purposes mentioned above. There are no explicit plans to delete the personal data contained in published meta- and research data. The guaranteed retention period for this data is at least 10 years. " data-cke-real-node-type="1" alt="Anker" title="Anker" align="" src="data:image/gif;base64,R0lGODlhAQABAPABAP///wAAACH5BAEKAAAALAAAAAABAAEAAAICRAEAOw==" data-cke-real-element-type="anchor">Pursuant to Art. 5(1)(e) of the GDPR in conjunction with § 8(2) of the State Archives Act (LArchG) and Sections 3 and 2 of the LArchG, the data may be transferred to the KIT Archive, where it is generally retained indefinitely.

4. Cookies

Scope and Purpose: In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your device by the browser you are using and through which certain information is transmitted to us (the server of our website). We use so-called session cookies (transient cookies), which are technically necessary to ensure the website functions properly. The cookies we use store and transmit the following data for the following purposes:

  • [JSESSIONID: three session cookies, two each for backend components and the OAI provider
  • RADAR_SESSION_ID: session cookie for the front end
  • _shibsession_number_sequence: current Shibboleth session (only in the case of authentication via Shibboleth)
  • org.springframework.web.servlet...: Language settings for the current session
  • cb_cookie_notice: General Cookie Disclaimer]

Recipients: The data is not disclosed to third parties.

Legal basis: The legal basis for the processing of personal data using technically necessary cookies within the meaning of Section 25(2) TDDDG is Article 6(1)(e), para. 3(b) of the GDPR in conjunction with § 4 of the LDSG or § 20(1) of the KITG in conjunction with § 12(1) of the LHG.

Retention Period: Session cookies are deleted at the latest when you close your browser (exception: the general cookie disclaimer “cb_cookie_notice,” which confirms the cookie information displayed in the browser, is valid for one year)

Tip: You can configure your browser to notify you when cookies are set and to allow cookies only on a case-by-case basis, to block the acceptance of cookies in specific cases or generally, and to enable the automatic deletion of cookies when you close your browser. Disabling cookies may limit the functionality of this website.

5. Contacting Us (Email, Phone, Form)

Scope and Purpose: When you contact us via email, phone, or a contact form, the contact information you provide—such as your email address, phone number, and, if applicable, your name—is stored for the purpose of processing and responding to your inquiry.

Please note that data transmission over the Internet (e.g., when communicating via email) may be subject to security vulnerabilities. It is not possible to completely protect data from access by third parties.

Recipients: To the extent necessary to respond to your inquiry, personal data may be forwarded to relevant departments within KIT. The respective KIT employees responsible will use your personal data exclusively to process your inquiry.

Legal basis: The legal basis for processing this data is Article 6(1)(e) and (3)(b) of the GDPR in conjunction with Section 4 of the LDSG.

Retention Period: Personal data will be stored for as long as necessary to fulfill the aforementioned purpose; that is, the data will be deleted once it can be assumed that further communication is no longer desired.

6. Your Rights

With regard to the personal data concerning you, you have the following rights vis-à-vis us:

  • Right to withdraw your consent with future effect, provided that the processing is based on consent pursuant to Article 6(1), first subparagraph, letter a of the GDPR (Article 7(3) of the GDPR)
  • Right to confirmation as to whether data concerning you is being processed, and to access the processed data, to receive further information about the data processing, and to obtain copies of the data (Article 15 of the GDPR)
  • Right to have inaccurate or incomplete data rectified or completed (Article 16 of the GDPR)
  • Right to the immediate erasure of data concerning you (Article 17 of the GDPR)
  • Right to restriction of processing (Article 18 of the GDPR)
  • Right to receive the data in a structured, commonly used, and machine-readable format, provided that the processing is based on consent pursuant to Article 6(1), first subparagraph, letter a, or Article 9(2), letter a, of the GDPR, or on a contract pursuant to Article 6(1), first subparagraph, letter b, of the GDPR (Article 20 of the GDPR)
  • Right to object to the future processing of your personal data, provided that the data is processed pursuant to Article 6(1)(e) or (f) of the GDPR (Article 21 of the GDPR)

You also have the right to lodge a complaint with the supervisory authority regarding KIT’s processing of your personal data (Article 77 of the GDPR). The supervisory authority within the meaning of Article 51(1) of the GDPR with regard to KIT is, pursuant to Section 25(1) of the LDSG: The State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg (https://www.baden-wuerttemberg.datenschutz.de/).