Data Protection Policy

General

Please note that security gaps can arise when transmitting data on the Internet (e.g. when communicating by email). Absolute protection of data against access by third parties is not possible.
The use by third parties of contact data published in fulfilment of the informational obligations (Impressumspflicht) under Section 5 of the German Telemedia Act to send unsolicited advertising and information material is hereby expressly objected to. The operators of this website expressly reserve the right to take legal action in the case of the unsolicited sending of advertising information, for example via spam mails.

Personal Data

As a rule, it is possible to use this website without providing personal data. Insofar as personal data are collected on this website, this is always done, as far as possible, on a voluntary basis and to the extent outlined here. These data will not be passed on to third parties without your express consent.

Names and email addresses that are provided when making enquiries will be used exclusively for the correspondence.

All personal data will be stored only for as long as this is necessary for the specific stated purpose. In doing so, existing statutory retention periods will be taken into account.

Information on the Processing of Personal Data

Name and Contact Data of the Controller

Georg-August-Universität Göttingen is a public-law body. It is legally represented by the President, Professor Dr Metin Tolan.

Georg-August-Universität Göttingen
Wilhelmsplatz 1
37073 Göttingen
Germany
+49 551 39-21000 (Tel.)
+49 551 39-1821000 (Fax)
praesident(at)uni-goettingen.de

Contact Data of the Data Protection Officer of the University of Göttingen
Prof. Dr Andreas Wiebe
Chair for Civil Law,
Intellectual Property Law, Media Law and
Communications Technology Law
Platz der Göttinger Sieben 6
37073 Göttingen
Germany
+49 551 39-7381 (Tel.)
+49 551 39-4437 (Fax)
datenschutz(at)uni-goettingen.de

Purposes of and Legal Basis for the Processing of Personal Data
Your personal data will be collected in order to process your enquiry. Your data will be collected on the basis of point (e) of Article 6(1) of the EU General Data Protection Regulation (GDPR).

Recipients of the Personal Data
In order to reply to your enquiry, your personal data will be transferred to the competent team within Göttingen State and University Library (SUB).

Transfer of Personal Data to a Third Country
It is not intended to transfer your personal data to a third country.

Period for which Personal Data Will Be Stored
Your data will be stored in order to provide the services that you have commissioned us to perform. As soon as you log out or request that your data be erased, your data will be stored only until all ongoing procedures have been completed, and will then be erased unless statutory provisions require storage for a longer period.

Rights of Data Subjects
Under the EU General Data Protection Regulation (GDPR), you have the following rights:
If your personal data are processed, you shall have the right of access to the personal data stored concerning you (Art. 15 GDPR). Should inaccurate personal data concerning you be processed, you shall have the right to rectification (Art. 16 GDPR). If the statutory prerequisites are satisfied, you shall have the right to demand the erasure of your personal data or the restriction of processing, and to object to the processing (Arts 17, 18, and 21 GDPR).
If you do not provide the necessary data, your request cannot be processed.
If you have agreed to the processing of your data, or if a data processing contract exists, and if the data processing is carried out by automated means, you shall have a right to data portability, where applicable (Art. 20 GDPR). Should you exercise your above-mentioned rights, Göttingen State and University Library (SUB Göttingen) will examine whether the statutory prerequisites for doing so are satisfied.
To exercise your rights, please contact the Data Protection Officer of the University of Göttingen.

In the case of data-protection-related complaints, you can contact the competent supervisory authority, the Data Protection Commissioner of the State of Lower Saxony:

The Data Protection Commissioner of the State of Lower Saxony
Prinzenstrasse 5
30159 Hannover
Germany
+49 551 120 4500 (Tel.)
+49 551 120 4599 (Fax)
poststelle(at)lfd.niedersachsen.de

Right to Withdraw Consent
If you have consented in the context of a declaration to the processing of your personal data by Göttingen University and State Library, you may prospectively withdraw that consent at any time. The withdrawal will not affect the lawfulness of the data processing based on consent before its withdrawal (Art. 7(3) GDPR).

Access, Rectification, Erasure, Restriction of Processing
You shall have the right at any time and without charge to information about the personal data stored concerning you, the source and the recipients of the data, and the purpose of the processing (Art. 15(1) GDPR). Further, you shall have the right to rectification, restriction of processing, or erasure of these data (Arts 16, 18, and 17 GDPR). In matters relating to this, you can contact us at any time via the address of the website operator provided on the “Legal Notice” (Impressum) page.

Statistical Data for the Operator of the Website

This website uses the open source software Matomo to statistically analyse visitor accesses. Matomo’s configuration complies with data protection regulations; data are stored in an anonymised form. The session cookies used for this purpose are text files that are stored on your computer and that enable an analysis of your use of the website. The information generated by the cookie about your use of this website is stored on the server of the Gesellschaft für wissenschaftliche Datenverarbeitung mbH Göttingen (GWDG). The IP address is anonymised immediately after processing and before it is saved. The data collected by Matomo are used in anonymised form to improve our offering. In Matomo, IP addresses are saved without the final tuple. Hence, we know the network that the request came from, but not the computer.

The session cookies do not contain any personal data; they expire after the session ends. Technologies such as, for example, Java applets or Active-X controls that enable the access behaviour of the user to be tracked are not used. 

Specifically, the following data are stored about every access/retrieval:

  • the first two parts of the IP address
  • the date and time
  • the user agent of the software used
  • the page accessed/the name of the file retrieved
  • the volume of data transferred
  • notification of whether the access/retrieval was successful

You can decide here whether a unique web analytics cookie may be placed in your browser in order to enable the operator of the website to collect and analyse various statistical data. 

By using this website, you agree to the processing of the data about you collected by Matomo in the manner described and for the purpose stated above.
If, however, you wish to opt out, please click the following link in order to place the Matomo deactivation cookie in your browser.

Data Protection Information for the Social Networks

This Data Protection Statement (last updated: June 2020) applies also to the following social media profiles of the project open-access.network

Twitter

open-access.net, https://twitter.com/openaccessnet

Facebook

open-access.net, https://www.facebook.com/openaccess.net/

The work package “Public Relations Work of the Project open-access.network” manages all accounts. In addition to open-access.network, the respective providers of the platforms mentioned below are also jointly responsible for compliance with the data protection guidelines.

Name and Contact Data of the Controllers Responsible for the Processing, and of the Data Protection Officer

The operation of the social medial profiles is under joint control within the meaning of Article 26 of the General Data Protection Regulation (GDPR).

The controller for the open-access.network website is:

Margo Bargheer
Georg-August-Universität Göttingen
Göttingen State and University Library
37073 Göttingen
Germany
Tel.: +49 551 39-91188
Email: bargheer(at)sub.uni-goettingen.de

Name and Address of the Data Protection Officer of the University of Göttingen:

Data Protection Officer of the University of Göttingen
Prof. Dr Andreas Wiebe
Chair for Civil Law,
Intellectual Property Law, Media Law and
Communications Technology Law
Platz der Göttinger Sieben 6
37073 Göttingen
Germany
Tel.: +49 551 39-7381
Fax: +49 551 39-4437
Email: lehrstuhl.wiebe(at)jura.uni-goettingen.de
Email: datenschutz(at)uni-goettingen.de

The controllers for the respective platforms are:

Twitter
Twitter International Company, Attn: Data Protection Officer, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 IRELAND
Twitter’s data protection officer can be contacted via the following link: twitter.ethicspointvp.com/custom/twitter/forms/data/form_data.asp?lang=de
Data privacy statement: twitter.com/de/privacy
Privacy Shield agreement: www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
Opt out: twitter.com/personalization

Facebook on the basis of an agreement on joint processing of personal data
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Data policy: www.facebook.com/about/privacy/
Privacy Shield agreement: www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Actice
Opt out: www.facebook.com/settings?tab=ads and www.youronlinechoices.com
Information on page insights data: www.facebook.com/legal/terms/information_about_page_insights_data

General Information on Data Processing

Purpose of Data Processing and Categories of Data Subjects
The social media accounts of open-access.network supplement the website open-access.network (www.open-access.network), and give users the opportunity to enter into dialogue with open-access.network.
As soon as users access the social media profiles of open-access.network in the respective social media networks, the terms and conditions and the data processing guidelines of the respective operators apply.
open-access.network does not have any influence on data processing in the respective networks. The data collected concerning you when you use the service are processed by the provider and transmitted, where applicable, to countries outside the European Union. open-access.network does not have any influence on the type and volume of the data processed by the provider, the type of processing and use, or the transfer of these data to third parties, especially to countries outside the European Union. Information about the type of data processed by the provider and the purposes for which they are used can be found in the data privacy statements of the respective providers.
open-access.network processes personal data that arrive at its editorial office via the social media accounts in order to answer service enquiries.

The social media team at open-access.network processes data for the following purposes:

  • to generate and make available social media content,
  • to process online enquiries and communicate with users,
  • to moderate comments and discussions about contributions,
  • to analyse which content is relevant for users and to adapt the content accordingly, and
  • to alert users to interesting events and offerings of open-access.network.

The data subjects are visitors to and users of the social media profiles of open-access.network.

Social Media Editorial Office – Contact Details

open-access.network Project Public Relations (SUB Göttingen)
Göttingen State and University Library
Platz der Göttinger Sieben 1
37073 Göttingen
Email: info(at)open-aceess.network

Legal Basis

Where the open-access.network social media editorial office obtains the consent of the data subject to process personal data, the legal basis for this is point (a) of Article 6(1) of the GDPR. Provided the processing of personal data is necessary for the performance of the social media work, which is carried out in the public interest or in the exercise of official authority, point (e) of Article 6(1) of the GDPR will serve as the legal basis.

Cooperation with Third Parties

If within the framework of the processing, open-access.network discloses data to other persons and enterprises (processors or third parties), transfers the data to them, or otherwise gives them access to the data, this will be done only if it is necessary for the performance of the contract with you as the data subject pursuant to point (b) of Article 1(1) of the GDPR; if the transfer is permissible based on a balancing of interests within the meaning of point (f) of Article 6(1) of the GDPR; if open-access.network is legally obliged to transfer the data; or if you have given your consent to it.
If open-access.network commissions third parties to process data within the framework of a so-called “processing contract”, this will be done on the basis of Article 28 of the GDPR.

Twitter Management Tool Tweetdeck

In order to plan and post content on Twitter, to avoid missing any posts of relevance to us, and to interact with users, open-access.network uses the product Tweetdeck. Tweetdeck is Twitter Inc.’s own Tweet management application. The data protection guidelines are the same as on Twitter.

Period of Time for which Personal Data Are Stored

The period of time for which personal data are stored within the social media platforms depends on the respective platform operators. open-access.network has no access to the data stored by the platform operators.
Within the social media editorial office of open-access.network, personal data are erased or their processing is restricted as soon as the purpose of the storage ceases to exist. Furthermore, storage may take place if this has been provided for by the European or national legislator in Union directives, laws, or other provisions to which the controller is subject. The restriction of the processing or the erasure of the data will also take place when the storage period prescribed by the said norms expires, unless a necessity exists to continue storing the data for the purposes of concluding or performing a contract.
Moreover, data may also be stored in order to secure within the social media editorial office unlawful content and content that violates the netiquette of open-access.network that lands via users on the social media accounts of open-access.network. The identity of the authors of such content is therefore of interest. The netiquette policy of open-access.network can be found here.

Rights of Data Subjects

You have the following rights vis-à-vis the controller when personal data concerning you are processed:

  • the right of access pursuant to Article 15 of the GDPR
  • the right to rectification or erasure pursuant to Articles 16 and 17 of the GDPR
  • the right to restriction of processing pursuant to Article 18 of the GDPR
  • the right to data portability pursuant to Article 20 of the GDPR
  • the right to object to the processing pursuant to Article 21 of the GDPR
  • the right to prospectively withdraw consent to the processing pursuant to Article 7(3) of the GDPR
  • Automated decision-making, including profiling, in individual cases shall not take place.

In addition, you have the right to complain to a data protection supervisory authority about the processing of your data by us. Further rights that you have vis-à-vis the operators of the platform (in particular the right to object to certain types of processing by the respective platforms or to withdraw a consent granted to one of the said platforms) are described in the data guidelines of the respective platforms (see links above).

Detailed explanations can be found in the University of Göttingen’s general Data Protection Policy: https://www.uni-goettingen.de/en/439479.html

Changes to this Statement

open-access.network reserves the right to amend or supplement this privacy statement as required. The changes will be published here. Therefore, you should regularly access this page in order to keep up to date with the current status of our data protection policy.

[Last updated: June 2020]

Netiquette for the Social Media Channels of open-access.network

We welcome your comments, opinions, and questions on our Facebook page and on Twitter. Because we value a pleasant and friendly atmosphere, we request that you observe the following rules as the basis for our joint communication online:

  • We welcome constructive criticism because it helps us to recognise mistakes and to develop further. We value an objective and respectful tone of address. Abuse and insults are unnecessary and will be removed by us.
  • Contributions with xenophobic, sexist, unlawful, pornographic, or inappropriate content will be deleted by us. Moreover, we reserve the right to report the authors of such posts.
  • In order to be able to ensure the clarity of our social media pages, we filter out spam, advertising, and other commercial content.
  • We value data privacy: we do not disseminate any confidential content and we request our users not to publish personal data concerning themselves or others.
  • In order to ensure mutual understanding, we communicate exclusively in German or English, and we request our users to do the same.

In addition to this netiquette, we also observe the general standards and the terms and conditions of use of the respective social media platforms:

Twitter
Facebook