Data Protection Declaration for the UAS Kiel Facebook Page

This data protection declaration informs you about the type, scope and purpose of the personal data collected, processed and used by us and Facebook.

In addition, you can also see in following text your rights with regards to the processing of your personal data by us.

The basis for the terms used in our data protection declaration is the GDPR (Regulation EU 2016/679 of the European Parliament and of the Council of the European Union). Explanations of terms can be found under Article 4 GDPR. You can find the text here.

a) We, at the following address, are responsible for the processing of personal data and for the content on our Facebook fan page:

Fachhochschule Kiel
Sokratesplatz 1
24149 Kiel
Tel. +49 431 210 0
E-Mail: info(at)fh-kiel.de

President: Prof. Dr. Björn Christensen

b) In addition, the platform operator, at the following address, is also responsible for the processing of your personal data:

Meta Platforms Ireland Limited (in the following called Facebook)
4 Grand Canal Square
Grand Canal Harbour
Dublin 2
Ireland

Online: https://www.facebook.com/help/contact/1650115808681298

a) You can reach our data protection officer at…

Datenschutzbeauftragte
Fachhochschule Kiel
Sokratesplatz 1
24149 Kiel
Germany
Telephone: +49 431 210-1080
E-Mail: datenschutz(at)fh-kiel.de

She is at your disposal for questions regarding the processing of your data by us.

b) Facebook data protection officer

You can contact the data protection officer of Facebook under the following link: https://www.facebook.com/help/contact/540977946302970

You are entitled to the rights described below with regard to your personal data. To assert this, please contact us, our data protection officer or Facebook or Facebook's data protection officer using the contact details above.

The Right to Information

You can request information as to whether we process your personal data.

If we process your personal data, you are entitled to information regarding the following points:

• the purposes of processing
• the categories of personal data processed
• the recipients or the categories of recipients to whom personal data are disclosed, in particular recipients in third countries or international organizations
• if possible, the planned duration for which personal data is stored or, if this is not possible, the criteria for determining this duration
• whether there is a right to correction or deletion of personal data concerning you or to restriction of processing by the person responsible or a right to object to this processing
• a right of appeal to a supervisory authority
• if the personal data is not collected directly from you, all available information about the origin of the data
• the existence of automated decision-making including profiling in accordance with Article 22 Paragraphs 1 and 4 GDPR and - at least in these cases - meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

The Right to Rectification

You have the right to immediate correction of inaccurate personal data concerning you.

In addition, taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data - also by means of a supplementary declaration.

The Right to Deletion

We are obliged to delete personal data concerning you immediately upon request if at least one of the following reasons applies:

• the personal data are no longer necessary for the purposes for which they were collected or otherwise processed
• you withdraw your consent on which the processing was based and there is no other legal basis for the processing
• you object to the processing and there are no overriding legitimate grounds for the processing
• the personal data have been unlawfully processed
• the deletion of the personal data is necessary to fulfil a legal obligation under the law of the European Union or the Federal Republic of Germany.

The right to erasure does not exist if processing is necessary…

• to exercise the right to freedom of expression and information
• to fulfil a legal obligation that requires processing under the law of the European Union or the Federal Republic of Germany or to perform a task that is in the public interest or in the exercise of official authority that has been assigned to us
• for reasons of public interest in the field of public health
• for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, insofar as the right to erasure is likely to make it impossible or seriously impair the achievement of the processing goals
• to assert, exercise or defend legal claims.

If we are obliged to delete data according to the aforementioned principles and if we have made your personal data public, we shall take appropriate measures, also of a technical nature, taking into account the available technology and the implementation costs, to inform the other persons responsible for data processing who store the personal data that you have requested that they delete any links to, or copies or replications of, that personal information.

Right to Restriction of Processing

Under the following conditions, you have the right to request us to restrict the processing of your personal data if:

• the accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data
• the processing is unlawful and you reject to deletion of the personal data and instead request that the use of the personal data be restricted
• we no longer need the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims, or
• you have objected to the processing pending the verification whether our legitimate grounds override yours.

Right to Data Portability

You have the right to receive the personal data that you have provided to us in a structured, common and machine-readable format.

In addition, you have the right to transmit this data to another person responsible without hindrance from us, provided that

• the processing is based on consent or on a contract and
• the processing is conducted using automated procedures.

When exercising your right to data portability, you have the right to have your personal data transmitted directly by us to another controller, where technically feasible.

Right to Object to Data Processing

You have the right, for reasons arising from your particular situation to object at any time to the processing of your personal data, which is based on your consent or on the basis of our legitimate interest; this also applies to profiling.

After your objection, we shall no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

You have the right, for reasons arising from your particular situation to object to the processing of your personal data for scientific or historical research purposes or for statistical purposes, unless the processing is necessary for the fulfilment a task in the public interest.

Right to Withdraw Consent

If you have given us your consent to the processing of your personal data (e.g. to send a newsletter), you also have the right to revoke this consent at any time with effect for the future. The withdrawal does not affect the legality of the processing conducted on the basis of the consent up to the time of withdrawal.

Right to Complain to a Supervisory Authority

You also have the right to lodge a complaint against us with the Independent Centre for Data Protection Schleswig-Holstein (https://www.datenschutzzentrum.de/) if you believe that our processing of your personal data violates applicable data protection law.

a) Data Processing by Us

If you use our Facebook page for informational purposes, we do not collect any personal data from you.

b) Data Processing by Facebook

Every time a fan page is called up, i.e. also for purely informational use, various data and information are recorded by Facebook for technical reasons and stored in so-called log files or server log files (protocol files) on Facebook servers. This is only the personal or person-related data that your browser transmits to the Facebook server.

The following are recorded and stored:

• IP address (Internet Protocol address)
• date and time of access to our website
• browser software/browser types used to access our content (computer programs for displaying websites) and their versions and language
• operating system used to access our content and its version
• path of the page accessed (e.g. /contact/)
• the referrer URL (the website that brought you to the current website or file
• host name of the accessing computer

This data is collected regardless of whether you are logged in to Facebook or not.

If you are logged in to Facebook, the content, communications and other information you provide will also be saved, as well as the fact that you have visited our site and possibly “liked” it.

You can find out more about this and how Facebook uses your data at
https://www.facebook.com/privacy/guide/collection.

a) Cookie Use by Us

We do not use cookies on our Facebook fan page.

b) Cookie Use by Facebook

Facebook uses so-called cookies on its websites.

Cookies are small text files that are sent to your browser by the Facebook server together with the website accessed when you or your browser first access Facebook websites. Your browser saves the cookie(s) on the hard drive of your device.

Cookies cannot transfer malware or viruses to your end device, run programs or open pop-up windows. They are also not used to send spam.

Rather, cookies are used to obtain certain information.

Detailed information on the use of cookies by Facebook can be found under the following link: https://www.facebook.com/policies/cookies/.

You have the option of sending us a message via Facebook or leaving comments on our fan page.

Processing of Data by Us

If you use this option, we only collect the personal data that you provide as part of your inquiry and that is required to answer your inquiry. The processing is based on Article 6 Paragraph 1 1 f of the GDPR. Unless we are legally obliged to store it for a longer period of time, we shall delete the data after we have answered it in full.

If you leave a comment on our fan page, your data and the content of your comment will only be stored if this post has criminally relevant content and storage is required for legal prosecution purposes.

Processing of Data by Facebook

We have no influence on the processing and the storage period by Facebook. For details, see https://www.facebook.com/privacy/policy.

Facebook uses TLS (Transport Layer Security) encryption technology on its pages. This is a protocol for encrypting data transmissions in order to prevent unauthorized access by third parties to your personal data, in particular your bank or financial data. You can recognise the encryption by the designation “https://”

Facebook provides summarised statistics and insights (Facebook Insights). The data are collected and evaluated anonymously. As a page administrator, we receive information about the number of people or accounts that view, act on, or have commented on our posts, as well as aggregated demographic and other information that helps us understand about interactions with our page or account. Personal data are not transmitted to us in this context.

The legal basis for this is our legitimate interest (Article 6 Paragraph 1 Clause 1 f of the GDPR) in the analysis and optimisation of our online offer.

Facebook may use your data to show you interest-based advertising. You can counteract this by adjusting the relevant advertising settings.

For more information on adjusting your settings, see https://www.facebook.com/privacy/guide/ads.

Facebook collects personal data from you when you are logged in to Facebook and visit third-party websites connected to Facebook (e.g. via social plugins). Visiting these pages or any activities on the page (use of the Like button) are automatically linked to your account by Facebook. If you want to prevent this, log out of your Facebook account.

a) Insofar as we collect data from you when you use our Facebook fan page, we do not transmit this to third countries.

b) However, Facebook servers are also located in the USA. Therefore, your data could be processed by Facebook in a third country. For this reason, Facebook Inc., and its subsidiary Facebook Ireland, has submitted to the EU-US Privacy Shield, which you can view under the following link: https://www.privacyshield.gov/EU-US-Framework.

https://www.facebook.com/FHKiel