Privacy notice

Data protection information / data protection declaration

 

1. Responsible body under data protection laws:

University of Stuttgart
Keplerstraße 7
70174 Stuttgart
Germany
Telephone: +49 711 685-0
Email: poststelle(at)uni-stuttgart.de

2. Data protection officer:

University of Stuttgart
Data protection officer
Breitscheidstr. 2
70174 Stuttgart
Tel: +49 711 685-83687
Fax: +49 711 685-83688
Email: datenschutz(at)uni-stuttgart.de

3. Introductory notice

This information concerning data protection / this data protection declaration relates to the web servers of the University of Stuttgart (in particular www.uni-stuttgart.de), which is operated by the Technical Information and Communications Services of the Information and Communications Center of the University of Stuttgart with the web content management system OpenCms. There are also web servers which are operated by the Technical Information and Communications Services where the administration is the responsibility of various departments. These web servers, as well as those which are operated by institutes and faculties may handle personal data differently and have different data protection declarations accordingly.

4. Personal data is gathered as follows:

4.1. Provision of the website and creation of log files

4.1.1 Description and categories of data

Should you access this or other websites, you transfer data to our web server via your browser. The following data is temporarily recorded in a log file whilst a connection is established:

  • IP address of the accessing computer
  • Date and time of the access
  • Name, URL and transferred data quantity of the accessed file
  • Access status (requested file transferred, not found etc.)
  • Browser type and operating system (if transferred by the requesting web browser)
  • Website from which the access took place (if transferred by the requesting web browser)

The processing of the data in this log file takes place as follows:

  • The log entries are continually automatically evaluated in order to recognize attacks against the web server and in order to be able to respond accordingly.
  • In individual cases, i.e. in case of reported disruptions, errors and security breaches, a manual analysis takes place.

In addition, when accessing websites, the date and time stamp, IP address + port (source), IP address + port (target) and the package size are recorded in the active network components of the University of Stuttgart.

4.1.2 Purpose

The temporary storage of the IP address by the system is necessary in order to deliver the website to the computer of the user. For this purpose, the IP address of the user must remain saved for the duration of the session.

Saving in a log file takes place in order to ensure the functional capability of the website. In addition, the data enables us to optimize the website and to ensure the security of our IT systems. IP addresses contained in the log entries are not combined with other data inventories, unless there are concrete indicators of a disruption to the correct operation.

The recording of active network components also enables us to ensure the security of the IT systems.

These purposes also represent our legitimate interest in the data processing in accordance with Article 6 Paragraph 1 Letter f) GDPR.

4.1.3 Legal basis

The legal basis for the temporary storage of the data and log files is Article 6 Paragraph 1 Letter f) GDPR.

4.1.4 Recipients

Should criminal investigations be initiated due to attacks against our IT systems, the data named under 4.1.1 and log files can be passed on to state investigative bodies (for example the police, criminal prosecution authorities).

The same applies if relevant authorities and/or courts make inquiries of the University and we are obliged to respond to these.

4.1.5 Storage duration

The data will be deleted once it is no longer necessary for the purpose for which it was gathered. In case of the recording of data for provision of the website, this is the case when the respective session has come to an end.

The storage of the data in log files is anonymized after seven days. This takes place by means of shortening the IP addresses.

4.1.6 Consequences of non-provision, right of objection and correction

The recording of data for provision of the website and the storage of data in log files is absolutely necessary in order to operate the website. Users who do not wish for their data to be processed as described can contact the University via alternative channels (by telephone, in written form, in person) in order to receive corresponding information or carry out actions.

4.2. Use of cookies

Our website uses no cookies.

5. Your rights

You have the right to receive information from the university concerning the data saved in relation to your person and/or to have incorrectly saved data corrected.
In addition, you have the right to deletion or to have the processing restricted or to object to the processing.

For this purpose, please contact the data protection officer of the University of Stuttgart:
datenschutz(at)uni-stuttgart.de

You have the right to complain to the supervisory authority, should you be of the opinion that the processing of the personal data relating to you breaches legal regulations.

The competent supervisory authority is the State Data Protection and Freedom of Information Officer of Baden-Württemberg – Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg.

6. Additional information relating to media elements

6.1 Google Fonts

We include the typefaces (“Google Fonts”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA,. Privacy notice: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.