Privacy Policy
-
- Name and address of the data controller
The controller, as defined by the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations, is:
studyos-europe.com
Sachsenstraße 26
28203 Bremen
Germany
-
- Scope of processing personal data:
We process personal data of our users only to the extent necessary for the provision of a functioning website as well as our content and services. The processing of personal data of our users is regularly only carried out with the user’s consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of data is permitted by legal regulations.
-
- Legal basis for the processing of personal data
To the extent that we obtain the consent of the data subject for processing personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
In the processing of personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) of the GDPR serves as the legal basis. This also applies to processing operations required to carry out pre-contractual measures.
To the extent that the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Article 6(1)(c) of the GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) of the GDPR serves as the legal basis.
If the processing is necessary to safeguard the legitimate interests of our company or a third party, and if the interests, fundamental rights, and freedoms of the data subject do not outweigh the first-mentioned interest, Article 6(1)(f) of the GDPR serves as the legal basis for processing.
-
- Data Deletion and Storage Duration
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases. Storage may also take place if provided for by the European or national legislator in Union regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or deleted when a storage period prescribed by the mentioned standards expires, unless there is a necessity for further storage of the data for the conclusion or performance of a contract.
-
- Description and Scope of Data Processing
With each visit to our website, our system automatically collects data and information from the computer system of the accessing device.
The following data is collected in this process:
- Information about the browser type and version used
- The user’s operating system
- The user’s IP address
- Date and time of access
- Websites from which the user’s system accesses our website
The data is also stored in the log files of our system. Storage of this data alongside other personal user data does not occur.
-
- Legal Basis for Data Processing
The legal basis for the temporary storage of data and log files is Article 6(1)(f) of the GDPR.
-
- Purpose of Data Processing
The temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user’s computer. For this purpose, the user’s IP address must be stored for the duration of the session.
The storage in log files is done to ensure the functionality of the website. In addition, the data serves us to optimize the website and ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
In these purposes, our legitimate interest in data processing according to Article 6(1)(f) of the GDPR is also present.
-
- Duration of Storage
The data is deleted as soon as it is no longer necessary for the purpose of its collection. In the case of data collected for the provision of the website, this is the case when the respective session is ended.
In the case of storing data in log files, this occurs at the latest after seven days. Further storage is possible. In this case, the IP addresses of users are either deleted or anonymized, so that assignment to the accessing client is no longer possible.
-
- Options for Objection and Removal
The collection of data for the provision of the website and the storage of data in log files are essential for the operation of the website. Consequently, there is no option for objection on the part of the user.
-
- Nature and Scope of Data Processing
A contact form for a chance assessment is available on our website, which can be used for electronic communication. If a user takes advantage of this option, the data entered in the input mask is transmitted to us and stored. This data includes:
Name, First name, Email address, Date of birth, Sport, Phone number, Facebook contact, Nationality, Athletic achievements, Club affiliation, Athletic statistics, High school degree, School grades, University grades, Desired start of studies, Field of study, Height, Weight, Place of residence.
At the time of sending the message, the following data is also stored:
Date and time of registration
Your consent is obtained for the processing of the data during the submission process, and reference is made to this privacy policy.
Alternatively, contact can be made via the provided email address. In this case, the personal data of the user transmitted with the email will be stored.
The data is used exclusively for processing the conversation.
-
- Legal Basis for Data Processing
The legal basis for processing the data, if the user has given consent, is Art. 6(1)(a) GDPR.
The legal basis for processing data transmitted in the course of sending an email is Art. 6(1)(f) GDPR. If the email contact aims to conclude a contract, the additional legal basis for the processing is Art. 6(1)(b) GDPR.
-
- Purpose of Data Processing
The processing of personal data from the input mask serves stydios.org solely for handling the contact request. In the case of contact via email or phone, there is also the necessary legitimate interest in processing the data.
The processing of the contact request includes the identification of the user, the assessment of their application chances based on the entered data, and the transmission of this assessment.
Furthermore, the personal data processed during the submission process is used to prevent misuse of the contact form and ensure the security of our information technology systems.
-
- Duration of Storage
The data is deleted as soon as it is no longer necessary for the purpose of its collection. For personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user is finished. The conversation is deemed finished when it can be inferred from the circumstances that the relevant matter has been finally clarified.
The additional personal data collected during the submission process will be deleted no later than seven days after the submission.
-
- Options for Objection and Removal
The user has the option to revoke their consent to the processing of personal data at any time. If the user contacts us via email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.
Here is a description of how the revocation of consent and objection to storage can be exercised.
All personal data stored during the contact will be deleted in this case.
-
- Options for Objection and Removal
Privacy Policy for the Use of Facebook and Instagram Plugins
Our pages include plugins from the social networks Facebook and Instagram, operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Facebook Ireland Limited is a company registered under Irish law, through which data may be transferred to foreign countries within the EU, namely the USA. You can recognize Instagram plugins by the Instagram logo on our site and Facebook plugins by the Facebook logo or the „Like“ button on our site. An overview of Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/. When you visit our pages, a direct connection is established between your browser and the Facebook server via the plugin. Facebook thereby receives the information that you have visited our site with your IP address. If you click the Facebook „Like“ button while logged into your Facebook account, you can link the content of our pages to your Facebook profile. This allows Facebook to associate your visit to our pages with your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. For more information, please refer to Facebook’s privacy policy at https://en-gb.facebook.com/policy.php. If you do not want Facebook to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account.
Privacy Policy for the Use of Google +
Collection and Disclosure of Information: With the Google+ button, you can publish information globally. The Google+ button provides you and other users with personalized content from Google and our partners. Google stores both the information that you have given content a +1 and information about the page you viewed when you clicked +1. Your +1 can be displayed as hints together with your profile name and photo in Google services, such as search results or in your Google profile, or at other locations on websites and ads on the Internet. Google records information about your Google+ activities to improve Google services for you and others. To use the Google+ button, you need a globally visible, public Google profile that must contain at least the name chosen for the profile. This name is used in all Google services. In some cases, this name may also replace another name that you used when sharing content through your Google Account. The identity of your Google profile can be displayed to users who know your email address or have other identifying information about you. Use of the collected information:
In addition to the purposes described above, the information provided by you will be used in accordance with the applicable Google privacy and usage policies (https://policies.google.com/privacy?hl=en). Google may publish aggregated statistics about users‘ Google+ activities or pass them on to users and partners, such as publishers, advertisers, or affiliated websites.
Privacy Policy for the Use of Twitter
Functions of the Twitter service are integrated on our pages. These functions are offered by Twitter Inc., Twitter, Inc. 1355 Market St, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the „Re-Tweet“ function, the web pages you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Twitter. For more information, please refer to Twitter’s privacy policy at https://twitter.com/privacy. You can change your privacy settings on Twitter in the account settings at https://twitter.com/account/settings.
Privacy Policy for the Use of Google Analytics
This offer uses Google Analytics, a web analysis service from Google Inc. („Google“). Google Analytics uses so-called „cookies,“ text files that are stored on users‘ computers and that enable an analysis of their use of the website. The information generated by the cookie about the use of this website by users is usually transferred to a Google server in the USA and stored there. If IP anonymization is activated on this website, the IP address of users will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate the use of the website by users, to compile reports on website activities, and to provide the website operator with other services related to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. Users can also prevent Google from collecting the data generated by the cookie and related to their use of the website (including your IP address) and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaopt
-
- Use of Cookies
Description and Scope of Data Processing
Our website uses cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user’s computer system. When a user accesses a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables a unique identification of the browser when the website is accessed again.
We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.
The cookies store and transmit the following data:
Log-in information
When our website is accessed, the user is informed about the use of cookies for analytical purposes, and their consent for the processing of personal data used in this context is obtained. In this context, a reference to this privacy policy is also provided.
Legal Basis for Data Processing
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f GDPR.
Purpose of Data Processing
The cookies used on our website serve no other purpose than to ensure that only authorized individuals can access the restricted areas of this site. The cookies are not used for any other purpose.
In these purposes lies our legitimate interest in processing personal data according to Art. 6 para. 1 lit. f GDPR.
Duration of Storage, Objection, and Removal Options
Cookies are stored on the user’s computer and transmitted to our site by the user. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Stored cookies can be deleted at any time, and this can also be done automatically. If cookies are disabled for our website, some functions of the website may not be fully usable.
-
- Rights of the Data Subject
The following list includes all rights of data subjects according to the GDPR. If your personal data is processed, you are a data subject within the meaning of the GDPR, and you have the following rights against the controller:
Right to information:
You have the right to request confirmation from the controller as to whether personal data concerning you is being processed.
If such processing exists, you can request the controller to provide the following information:
(1) the purposes for which the personal data is processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom the personal data concerning you has been or will be disclosed;
(4) the planned duration of storage of the personal data concerning you or, if specific information about this is not possible, criteria for determining the storage period;
(5) the existence of the right to rectification or erasure of personal data concerning you, the right to restriction of processing by the controller, or the right to object to such processing;
(6) the right to lodge a complaint with a supervisory authority;
(7) all available information on the origin of the data if the personal data is not collected from the data subject;
(8) the existence of automated decision-making, including profiling, according to Art. 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
You have the right to request information on whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you can request to be informed about the suitable guarantees pursuant to Art. 46 GDPR in connection with the transfer.
Right to rectification:
You have the right to correction and/or completion from the controller if the processed personal data concerning you is incorrect or incomplete. The controller is obligated to make the correction without undue delay.
Right to restriction of processing:
Under the following conditions, you can request the restriction of processing of your personal data:
(1) If you contest the accuracy of your personal data for a period enabling the controller to verify the accuracy of the personal data;
(2) The processing is unlawful, and you oppose the erasure of the personal data and request the restriction of their use instead;
(3) The controller no longer needs the personal data for the purposes of processing, but you require them for the establishment, exercise, or defense of legal claims; or
(4) If you have objected to processing pursuant to Article 21(1) GDPR pending the verification whether the legitimate grounds of the controller override your grounds.
If processing of your personal data has been restricted, these data – with the exception of storage – may only be processed with your consent or for the establishment, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or of a Member State.
If the restriction of processing has been restricted under the conditions mentioned above, you will be informed by the controller before the restriction is lifted.
Right to erasure:
a) Erasure obligation:
You can request the erasure of your personal data without undue delay from the controller, and the controller is obligated to erase this data without undue delay if one of the following grounds applies:
(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You withdraw your consent on which the processing is based according to Art. 6(1)(a) or Art. 9(2)(a) GDPR, and there is no other legal ground for the processing.
(3) You object to the processing pursuant to Art. 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR.
(4) The personal data concerning you have been unlawfully processed.
(5) The erasure of personal data concerning you is required for compliance with a legal obligation under Union or Member State law to which the controller is subject.
(6) The personal data concerning you have been collected in relation to the offer of information society services referred to in Art. 8(1) GDPR.
b) Information to third parties:
If the controller has made the personal data concerning you public and is obligated to erase it, taking into account available technology and implementation costs, the controller shall take reasonable steps, including technical measures, to inform controllers processing the personal data that you, as the data subject, have requested the erasure of any links to, or copy or replication of, those personal data.
c) Exceptions:
The right to erasure does not exist to the extent that processing is necessary:
(1) for exercising the right of freedom of expression and information;
(2) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing, or
(5) for the establishment, exercise, or defense of legal claims.
Right to information:
If you have asserted your right to rectification, erasure, or restriction of processing against the controller, the controller is obligated to communicate any rectification or erasure of data or restriction of processing to each recipient to whom the personal data concerning you have been disclosed, unless this proves impossible or involves disproportionate effort.
You have the right to be informed about these recipients from the controller.
Right to data portability:
You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data has been provided, where:
(1) the processing is based on consent pursuant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR or on a contract pursuant to Article 6(1)(b) GDPR, and
(2) the processing is carried out by automated means.
In exercising this right, you also have the right to have your personal data transmitted directly from one controller to another, where technically feasible. This right shall not adversely affect the rights and freedoms of others.
The right to data portability does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Right to object:
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(e) or (f) GDPR, including profiling based on those provisions.
The controller shall no longer process the personal data concerning you unless they demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms or for the establishment, exercise, or defense of legal claims.
Where personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.
In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.
Right to revoke the data protection consent:
You have the right to revoke your data protection consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent before its withdrawal.
Automated individual decision-making, including profiling:
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
(1) is necessary for the conclusion or performance of a contract between you and the data controller,
(2) is authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights, freedoms, and legitimate interests, or
(3) is based on your explicit consent.
However, these decisions must not be based on special categories of personal data referred to in Article 9(1) of the GDPR, unless Article 9(2)(a) or (g) of the GDPR applies and suitable measures to safeguard your rights and freedoms and legitimate interests are in place.
With regard to the cases mentioned in (1) and (3), the data controller shall implement suitable measures to safeguard your rights, freedoms, and legitimate interests, including at least the right to obtain human intervention on the part of the controller, to express your point of view, and to contest the decision.
Right to lodge a complaint with a supervisory authority:
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement, if you believe that the processing of personal data concerning you violates the GDPR.
The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.