This privacy statement is based on concepts from the general data protection regulation. The most important concepts are explained as follows:
Personal data is all information relating to an identified or identifiable individual (hereinafter referred to as “the person concerned”). An identifiable person is an individual who, directly or indirectly, can be identified especially by classifying by name, distinguishing number, location data, online recognition, or by one or many special features, the expression of a natural, psychological, genetic, economic, cultural or social identity.
Concerned person is any identifiable or with an ability to be an identifiable person whose personal data is processed by the administrator or the responsible person.
“Processing” is any process performed, with or without the aid of an automated procedure or a series of procedures that relate to personal data, such as processing, storing, adapting or modifying, retrieving, consulting, using, disclosing, transmitting, distributing or otherwise providing or combining, limiting, deleting or destroying personal data.
Restriction of processing
Restriction of processing is the marking of stored personal data in order to limit future processing.
‘Profiling’ means any form of automated processing of personal data which involves the use of personal data to evaluate certain personal aspects relating to an individual, and in particular to analyze or forecast aspects relating to the performance of professional duties of that individual, his or her economic status, health, personal preferences, interests, reliability, behavior, location or movement.
‘Pseudonymisation’ means the processing of personal data in such a way that personal data can no longer be linked to a specific data subject without the use of additional information, provided that it is stored separately and is subject to technical and organizational measures with to ensure that personal data are not linked to an identified or identifiable individual
Administrators and responsible persons for the processing of personal data
‘Administrator’ means a natural or legal person, public authority, agency or other entity that independently or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union law or the law of a Member State, the administrator or the specific criteria for determining it may be laid down in Union law or in a Member State law.
Personal data processor
‘Personal data processor’ means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the responsible person.
‘Recipient’ means a natural or legal person, public authority, agency or other entity to whom personal data are disclosed, whether a third party or not. At the same time, public authorities which may receive personal data in the context of a specific investigation in accordance with Union or Member State law are not considered as ‘recipients’.
‘Third party’ means a natural or legal person, public authority, agency or other body other than the data subject, the administrator, the processor and the persons who, under the direct control of the administrator or the processor, have the right to process the personal data.
Consent is any voluntary declaration of will, in the form of a declaration or other unambiguous act of the person concerned, expressing his/her understanding of consent to the processing of personal data.