We are glad that you are interested in using the EUTurbines website. The protection of personal data is our first priority. Below you find information about the processing of your personal data and your rights within the use of our website.
EUTurbines legally is part of VDMA e.V. (www.vdma.org), registered as association in Frankfurt/Main, Germany
1. Controller
The controller responsible for the data processing is:
VDMA.e.V.
Lyoner Str. 18
60528 Frankfurt
Phone: +49 69 6603-0
E-Mail: datenschutz@vdma.org
2. Data protection officer
You can contact our data protection officer as follows:
Scheja und Partner Rechtsanwälte mbB
Adenauerallee 136
D-53113 Bonn
Telephone: 0228/2272260
E-Mail: info@scheja-partner.de
Contact: https://www.scheja-partner.de/kontakt/kontakt.html
3. Rights of the data subject
As data subject you have the following rights in accordance to the General Data Protection Regulation (GDPR) as far as the respective legal requirements are met:
Access: You have the right to obtain information about your personal data processed by us.
Rectification: You can obtain the rectification of inaccurate personal data concerning you. Furthermore you can obtain the completion of incomplete personal data.
Erasure: In specific cases you can obtain the erasure of your personal data.
Restriction of processing: In specific cases you can obtain restriction of processing of your personal data.
Data portability: If you provided data to us based on a contract or your consent you can demand that you receive the provided data in a structured, commonly used and machine-readable format or that we transmit the data directly to another controller.
Individual right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Art. 6 sec. 1, including profiling based on those provisions. We will then no longer process the personal data for those purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defence of legal claims.
Right to object to processing for direct marketing purposes
In some cases we process your data for direct marketing. You have the right to object to the processing of your personal data for those purposes at any time. This applies to profiling as far as it is associated with such direct marketing. If you object to the processing for direct marketing purposes, your personal data will not be processed for those purposes any longer.
Withdrawal of consent: If you gave your consent to the processing of your personal data you can withdraw your consent at any time with future effect. The lawfulness of the processing of your personal data until your withdrawal will not be affected. In addition to the options stated under ‘enforcement of your rights’ you can explain your withdrawal according to the respective information concerning ‘exercising the right to object’ in the section ‘Services & Cookies’.
Enforcements of your rights: To exercise the aforementioned rights please contact datenschutz@vdma.org or send it by post to the address stated under number 1. When doing so please make sure an unambiguous identification of yourself is possible.
Right of appeal: You have the right to lodge a complaint with a data protection supervisory authority, particularly one in the member state of your habitual residence, work place or the place of the suspected violation, if you are of the view that the processing of your personal data is unlawful.
4. Details on services, cookies & co.
4.1. Our own services
Display of service
Data categories
Date and time of access, duration of visit, type of device, used operation system, used functions, amount of sent data, type of event, IP-address, domain name
Purpose
Providing service
Legal basis
Article 6 section 1 b) and f) GDPR
Pursued legitimate interests
Technical functionality
Recipients or categories of recipients
Hosting provider, internal departments, external service provider for technical support
Third country transfer: Adequacy decision (yes/no)
No
Safeguards and access possibilities to those
Storage periods or criteria for their determination
Directly after delivery by the web server
Duty to provide personal data and possible consequences of failure to provide
No duty to provide, automatic collection by accessing the service
Exercising the right to object
Data sources
Automatic collection by accessing the service
Log files
Data categories
Accessed URL, IP address, Date and time of access, amount of transferred data, website where the user came from (‘referrer’), websites accessed by the user’s system from our website, http-status, information about the browser type and the used version, operating system, internet service provider
Purpose
Statistical evaluations, optimizing the website, system security (fraud prevention), error diagnosis
Legal basis
Article 6 section 1 b) and f) GDPR
Pursued legitimate interests
See purposes
Recipients or categories of recipients
Hosting provider, internal departments, external service provider for technical support government agencies on demand
Third country transfer: Adequacy decision (yes/no)
No
Safeguards and access possibilities to those
Storage periods or criteria for their determination
7 days after creation
Duty to provide personal data and possible consequences of failure to provide
No duty to provide, automatic collection by accessing the service
Exercising the right to object
Data sources
Direct collection when accessing website/service
Event Registration Forms
Event Registration / Gravity Forms
We use a plugin called “Gravity Forms” to power event registration forms on our site. Data that you input and submit is not transmitted to any 3rd parties – it is stored in the database of our (WordPress) website and a copy is transmitted to our secure email, which can only be accessed by authorized individuals of EUTurbines and EUGINE (our sister Association, administrative support is provided by the same individual(s) for both Associations).
The information you submit will be used to process your registration, to fulfill our event organizational needs, and to communicate with you regarding the registered event. For live/in-person events, your data may be shared with additional organizational parties such as event venues, co-hosts, moderators and/or speakers for organizational purposes.
Except for forms where additional optional communication consent has been made available and additionally agreed to, the data submitted via these forms will not be used for any communication other than relating to the registered event. The data submitted to us via the event registration forms will be deleted from our website database and email servers no later than 30 days after the event has taken place. This deletion does not affect any other user data registered through this website (unless additionally requested by the User) such as our members-only login area.
You can revoke your consent at anytime and request the erasure of your submitted data (prior to the scheduled erasure date) by contacting info@euturbines.eu.
Legal basis
Article 6 section 1 a) and b) GDPR
Recipients
Within our organization, only those persons have access to your data who need it to perform their tasks within the scope of the purposes outlined in this statement.
We only share your personal data with external parties if this is necessary to process or handle your request, if another legal permission exists or if we have your consent to do so.
External recipients may be:
a) Processors
Service providers that we use to provide services, for example in the areas of technical infrastructure or content provision. These processors are carefully selected by us and regularly reviewed to ensure that your privacy is protected. The service providers may only use the data for the purposes specified by us.
b) Public authorities
Authorities and government institutions, such as public prosecutors, courts or tax authorities, to which we must transfer personal data for legally compelling reasons.
c) Non-public bodies Vendors or service providers to whom data is transferred on the basis of consent or compelling necessity.
4.2. Integration of third party services
We use third party services to enable you to use their functions, services and features. These integrated services are designed and provided by the respective third party. Therefore we have no influence on the design, contents and function of those services or the processing of personal data by the provider. Please obtain further information directly from the providers of those integrated services.
SSL encryption
For security reasons and to protect the transmission of confidential content, such as purchase orders or inquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption programme. You can recognise an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line.
If the SSL encryption is activated, data you transmit to us cannot be read by third parties.
Openstreetmap
Provider/recipient
Openstreetmap Foundation
132 Maney Hill Road
Sutton Coldfield
West Midlands
B72 1JU
United Kingdom
Company Registration Number: 05912761
Purpose(s)
Providing map service Openstreetmap
Legal basis
Article 6 section 1 b) and f) GDPR
Pursued legitimate interests
Providing the openstreetmap map service
The provider’s data protection notice
https://wiki.osmfoundation.org/wiki/Privacy_Policy
Twitter plug-in
Provider/recipient
Twitter
Twitter Inc.
1355 Market Street
Suite 900
San Francisco, CA 94103
We have integrated functions of the social media platform Twitter into our website. These functions are provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. While you use Twitter and the “Re-Tweet” function, websites you visit are linked to your Twitter account and disclosed to other users. During this process, data are transferred to Twitter as well. We must point out, that we, the providers of the website and its pages do not know anything about the content of the data transferred and the use of this information by Twitter. For more details, please consult Twitter’s Data Privacy Declaration at: https://twitter.com/en/privacy.
The use of Twitter plug-ins is based on Art. 6 Sect. 1 lit. f GDPR. The operator of the website has a legitimate interest in being as visible as possible on social media.
You have the option to reset your data protection settings on Twitter under the account settings at https://twitter.com/account/settings.
LinkedIn
These “Share Buttons” are integrated in deactivated form, so that no direct contact with the servers of the respective social media network is established. At no time is data transmitted from our website to the respective operator of the social media network without action by the user. A new window where you must log in to the selected social media network does not open until you click the “Share Button”. Only then can the selected page be recommended or shared. When you click this button, your browser establishes a direct connection to the servers of the associated company and transmits data about your visit to them. Even if you are not a member of the social media network, there is the possibility that in this way data such as your IP address will be sent to the company and possibly saved there.
Google reCaptcha
We use the Google service reCaptcha to determine whether a person or a computer makes a specific entry in our newsletter form. Google uses the following information to determine if you are a human being or a computer: IP address of the terminal device you are using, the website you are visiting and on which the captcha is integrated, the date and duration of the visit, the identification data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks for which you must identify images. The legal basis for the described data processing is Art. 6 para. 1 lit. f General Data Protection Regulation. There is a legitimate interest on our part in this data processing to ensure the security of our website and to protect us from automated input (attacks).
Google Forms
Provider/recipient
Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA
Purpose(s)
Provider of web-based solutions for online surveys
Legal basis
Article 6 section 1 b) and f) GDPR
Pursued legitimate interests
Facilitating to collect data for event registration
The provider’s data protection notice
Google Privacy https://www.gstatic.com/policies/privacy/pdf/20200331/acec359e/google_privacy_policy_en_eu.pdf
Newsletter Data
Our email newsletter is sent via the German certified newsletter software provider rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg i.Br., Germany (“rapidmail”) to whom we pass on the data you provide during the newsletter registration. The data entered by you for the purpose of receiving a newsletter (e.g., email address) will be stored on the servers of rapidmail in Germany. However, rapidmail is prohibited from using your data for purposes other than sending the newsletter. rapidmail is not permitted to share or sell your data. rapidmail is a certified German provider of newsletter software and has been carefully selected in accordance with the requirements of the GDPR and the BDSG.
Legal basis
The data processing necessary for sending the newsletter is based on your consent pursuant to Art. 6 (1) (a) GDPR.
You may revoke your consent at any time. The data processed before we receive your request may still be legally processed.
For this purpose, we provide a link in every newsletter we send. You can also unsubscribe from the newsletter directly on the website.
Storage duration
The data provided when registering for the newsletter will be used to distribute the newsletter until you cancel your subscription when said data will be deleted from our servers and those of Rapidmail.
Data we have stored for other purposes (e.g. email addresses for the members area) remains unaffected.
For more information, see the privacy policy of Rapidmail at https://www.rapidmail.de/datensicherheit.
Completion of an data processing contract
We have entered into a data processing agreement with Rapidmail, in which we require Rapidmail to protect the data of our customers and not to disclose said data to third parties.
4.3. Hyperlinks to other websites
Our website has so-called hyperlinks to the websites of other companies. In these cases, you are connected directly to the website of the other companies. You will notice this from the change in the URL. We cannot assume any responsibility for how your data is handled on external websites, since we have no influence regarding how these companies comply with data protection regulations. Please check the websites of such companies directly to learn how your data is handled by them.
5. Cookies
Please refer to our Cookie Policy
We use so-called “session cookies” on our website. Cookies refer to small text files generated by a web server and are saved on your computer by the web browser being used. They are used to aid in providing you (as a visitor to our website) with permanent, recurring settings, such as the “Save login data function”. Session cookies are deleted at the end of the browser session.
The majority of browsers are pre-configured to accept cookies automatically. If you do not wish for our cookies to be saved on your computer, please deactivate the function for saving cookies for our website in your browser, or configure your browser so that cookies are not stored on your computer in general.
6. Contacting EUTurbines via e-mail
Our site offers you the option to contact us via e-mail. In this case, your information is saved for the purpose of facilitating communication. There is no sharing with third parties. Data collected is not reconciled with the data that may be collected by other components of our site.
7. Security measures
As part of the technical administration of the website, we have instituted technical and organisation measures to protect your data against intentional or inadvertent manipulation, access by unauthorised third parties, loss, destruction or modification. We will continue to optimise this protection in the course of technical progress. We must point out that data transmission over the Internet (e.g. during communication via e-mail) can have security gaps. Absolute protection of data from access by third parties is not possible. It is the responsibility of the user to protect the provided data through encryption or in some other way.
General information on the handling of personal data in EUTurbines and its bodies
EUTurbines legally is part of VDMA e.V. (www.vdma.org), registered as association in Frankfurt/Main, Germany
Click here to read VDMA’s privacy: www.vdma.org/datenschutz