Data Protection

The Friedrich-Ebert-Stiftung attaches the utmost importance to the protection of your personal data. It strictly abides by the statutory provisions governing admissibility of its handling of personal data - in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) - and has taken the warranted technical and organizational measures to ensure data security.

The following information is intended to provide a summary of how we ensure this protection, in particular what kind of data we collect, process and use for what purposes and what rights are granted to you by law.

The Controller for Data Processing

The controller (Article 4, no. 7 of the GDPR) is

Friedrich-Ebert-Stiftung e. V.
Godesberger Allee 149
53175 Bonn

0228 883-0
0228 883-9207

Presse(at)fes.de

Data Protection Officer

The contact address of the Data Protection Officer of the Friedrich-Ebert-Stiftung e.V. is:

Thomas Müthlein
datenschutz(at)fes.de

Supervisory Authority

You are entitled to file a complaint with the data protection supervisory authority (Article 13, section 2 (d) of the GDPR). The supervisory authority in charge of the Friedrich-Ebert-Stiftung Geneva is the

Office of the Federal Data Protection and Information Commissioner FDPIC
Feldeggweg 1
CH - 3003 Berne

Automatically Collected Data

The Friedrich-Ebert-Stiftung collects and stores the following information automatically transmitted to us via your browser in its server files when you access this website as a standard procedure:

• the browser type / version
• the operating system used
• the referrer URL (the site visited previously)
• the hostname of the accessing computer (IP address)
• the time and date of the server request.

This information cannot be assigned to specific individuals by the Friedrich-Ebert-Stiftung. It is only evaluated anonymously and is used to improve the website content and optimize its functions. This data is not merged, pooled or combined with any other data sources, nor are personal user profiles created in any other manner.

Personal Data of the User, Purposes of Processing

Use of services provided by the Friedrich-Ebert-Stiftung (e.g. publications or events) or the processing of enquiries (e.g. on scholarships) generally requires disclosure of personal data (for instance, contact data such as names, postal addresses, e-mail addresses). Friedrich-Ebert-Stiftung is only allowed to collect, process and use this data within bounds strictly limited by law (Article 6, section 1, subsection 1, letters b and a of the GDPR).

The Friedrich-Ebert-Stiftung furthermore uses this data to inform you about FES events, publications and activities (Article 6, section 1, subsection 1, letters a and f of the GDPR), for which we generally ask for your consent. We only transmit data to third parties (e.g. to government authorities) if we are obligated to do so by law or if you have provided us your consent. Whenever the Friedrich-Ebert-Stiftung engages service providers for technical support regarding IT-supported workflows, this is done in accordance with the provisions applying to contract data processing (Article 28 of the GDPR).

If your consent is required (e.g. including when registering to receive our newsletter), Friedrich-Ebert-Stiftung exercises the utmost care in ensuring compliance with the stipulations and formal requirements necessary for proper consent (Article 7 of the GDPR). You can call up the contents of your declaration of consent at any time. In addition, you can withdraw your consent to the processing and use of your data at any time (Article 7, section 3 of the GDPR); this also applies to the withdrawal of a declaration of consent that you issued to Friedrich-Ebert-Stiftung before 25 May 2018 (the date that the GDPR entered into force). In this case, please contact Onlineredaktion(at)fes.de.

Erasure (right to be forgotten)

Subject to the reservation of storage periods required by law, the Friedrich-Ebert-Stiftung will delete your data if the purpose for which the data is being stored has been attained, you have withdrawn your consent or if one of the additional cases listed in Article 17 of the GDPR applies.

Cookies

The Internet pages use so-called cookies in several places. These serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called "session cookies". These cookies are automatically deleted at the end of your visit. You have the option of setting your browser to notify you if you are supposed to receive a cookie, however. Then you can decide yourself whether you want to allow this or not. Cookies do not cause any damage to your computer and do not contain any viruses.

Web analysis tools, plugins

The website of Friedrich-Ebert-Stiftung uses the following services, which use cookies: Google Maps, Google Custom Search and YouTube. You can obtain additional information by clicking on the indicated services.

Matomo web analysis tool (previously Piwik)

Matomo web analysis software sets a cookie on the user's computer. You can decide whether to allow a unique web analysis cookie to be set in your browser in order to enable the operator of the website to collect and analyse various statistical data. If you wish to opt out, click the link at the bottom of the page in order to have the Matomo deactivation cookie placed in your browser.

Zoom 

Our web conferences are usually held in the form of an online videoconference using a service of ZOOM Video Communications, Inc., which is a company based in the United States of America. On the basis of a standard contract approved by the EU Commission, the Friedrich-Ebert-Stiftung and ZOOM have agreed that ZOOM will exclusively act as contractual data processor. This means that the personal data of conference participants that are required for the provision of the service and collected by ZOOM must only be processed for the purpose of providing the contractual service and must not be made accessible to third parties.

We recommend that you always use the most recent version of ZOOM and install updates soon after they are released, so that you can benefit from the most up-to-date security features that ZOOM has implemented and made available for secure communication. We also recommend that you keep your device (system, browser, antivirus software) up-to-date according to the manufacturer’s security recommendations.

For further details, we refer you to the "ZOOM Global Data Processing Addendum", which you can access at https://zoom.us/docs/doc/Zoom_GLOBAL_DPA.pdf

In Exhibit A of this document, you can find, among other things, a list of personal data collected by ZOOM. Exhibit B describes the data security and control requirements provided, and Exhibit C contains the wording of the data processing contract.

That is why we use Zoom in the FES!

Zoom was selected as the standard software for the FES after extensive testing of various webinar softwares because it is the best software on the market based on performance, intuitive handling and interactive functions for webinar participants.

Even if the server is located in the USA, webinars and online workshops remain data-efficient , since we do not enter and save any of the participants´ data in the software, but only send a link for participation.

According to the data protection officer of the FES (as of May 2020), the use of ZOOM is not objectionable from a formal legal point of view. The use of ZOOM for webinars and similar events on digital political education topics is justifiable from a data protection perspective and Zoom can be used for this purpose in a manner that is permissible under data protection law.

After Zoom gained a huge increase in users through Corona, the software was examined more closely and data protection flaws were found, which Zoom quickly remedied. In terms of data protection, Zoom has improved a lot in recent weeks and closed gaps. Since the end of April (with version 5.0 of Zoom) Zoom uses the secure encryption "AES 256bit GCM" and set up a security button in the webinar room to protect against troublemakers and "Zoom-bombing“. The FES colleagues are briefed on how they can protect the event room from interferers.

Your rights

You are entitled to information on the data stored by Friedrich-Ebert-Stiftung relating to your person, its origin and recipients, the purpose of its storage as well as the provision of further information in accordance with Article 15 of the GDPR and § 34 of the German Federal Data Protection Act (BDSG). If you are interested in such information, please contact the online editorial staff of Friedrich-Ebert-Stiftung.

You are entitled to demand the correction of incorrect data relating to you (Article 16 of the GDPR).

You are furthermore entitled to deletion of data relating to you subject to the preconditions laid down in Article 17 of the GDPR and § 35 of the German Federal Data Protection Act (BDSG). In this case, please contact Onlineredaktion(at)fes.de.

You are entitled to restriction of processing under Article 18 of the GDPR, data portability under Article 20 of the GDPR and have a right to object under Article 21. If Friedrich-Ebert-Stiftung uses your data to send out information on events, offers for publications or any other information (direct advertising), you may object to the use for these purposes; the data will then no longer be processed and used for these purposes (Article 21, sections 2 and 3 of the GDPR). You can send your objection without any formal requirements to Onlineredaktion(at)fes.de.