Insti­tut Bauen und Umwelt e.V. (IBU), Panora­mas­trasse 1, 10178 Berlin, Ger­many, is the oper­a­tor of this web­site and the respec­tive ser­vices on offer. IBU takes data pro­tec­tion very seri­ous­ly. Prin­ci­pal­ly, use of the IBU web­site is pos­si­ble with­out pro­vid­ing any per­son­al data. How­ev­er, inso­far as a user wish­es to make use of spe­cif­ic ser­vices on our web­site, com­men­su­rate pro­cess­ing of per­son­al data may be required. Where the pro­cess­ing of per­son­al data is required and there is no legal basis for such, IBU will gen­er­al­ly obtain the con­sent of the user (data sub­ject) in question.

The pro­cess­ing of per­son­al data, such as the name, address, email address or tele­phone num­ber of a data sub­ject, is car­ried out in line with the Gen­er­al Data Pro­tec­tion Reg­u­la­tion in all cas­es and in accor­dance with spe­cif­ic region­al data pro­tec­tion pro­vi­sions incum­bent upon IBU. The aim of this pri­va­cy state­ment is to inform users of our web­site of the nature, extent and pur­pose of the per­son­al data that is col­lect­ed, used and processed by IBU. In addi­tion, this pri­va­cy state­ment also explains the rights afford­ed to data subjects.

As the pro­cess­ing con­troller, Insti­tut Bauen und Umwelt e.V. has imple­ment­ed numer­ous tech­ni­cal and organ­i­sa­tion­al mea­sures to ensure the most com­pre­hen­sive pro­tec­tion pos­si­ble for per­son­al data processed via this web­site. Notwith­stand­ing this, Inter­net-based data trans­mis­sions may present secu­ri­ty vul­ner­a­bil­i­ties, with the result that absolute pro­tec­tion can­not be guar­an­teed. For this rea­son, any data sub­ject may choose to con­vey per­son­al data to IBU using alter­na­tive meth­ods such as by tele­phone or by post.

 

1. Def­i­n­i­tions

The Insti­tut Bauen und Umwelt e.V. pri­va­cy state­ment draws on ter­mi­nol­o­gy used by Euro­pean reg­u­la­tors in enact­ing the Gen­er­al Data Pro­tec­tion Reg­u­la­tion (GDPR). Our pri­va­cy state­ment is intend­ed to be easy to read and under­stand­able for the pub­lic and our mem­bers and busi­ness part­ners alike. In the inter­ests of achiev­ing this, we wish to clar­i­fy the terms used in advance.

Amongst oth­ers, the fol­low­ing terms are used in this pri­va­cy statement:

  • a) Per­son­al data

Per­son­al data means infor­ma­tion regard­ing an iden­ti­fied or iden­ti­fi­able nat­ur­al per­son (‘data sub­ject’). An iden­ti­fi­able nat­ur­al per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­tic­u­lar by ref­er­ence to an iden­ti­fi­er such as a name, an iden­ti­fi­ca­tion num­ber, loca­tion data, an online iden­ti­fi­er or to one or more fac­tors spe­cif­ic to the phys­i­cal, phys­i­o­log­i­cal, genet­ic, men­tal, eco­nom­ic, cul­tur­al or social iden­ti­ty of that nat­ur­al person.

  • b) Data subject

A data sub­ject is any iden­ti­fied or iden­ti­fi­able nat­ur­al per­son whose per­son­al data is processed by the pro­cess­ing controller.

  • c) Pro­cess­ing

Pro­cess­ing means any oper­a­tion or set of oper­a­tions which is per­formed on per­son­al data or on sets of per­son­al data, whether or not by auto­mat­ed means, such as col­lec­tion, record­ing, organ­i­sa­tion, struc­tur­ing, stor­age, adap­ta­tion or alter­ation, retrieval, con­sul­ta­tion, use, dis­clo­sure by trans­mis­sion, dis­sem­i­na­tion or oth­er­wise mak­ing avail­able, align­ment or com­bi­na­tion, restric­tion, era­sure or destruction.

  • d) Restric­tion of processing

Restric­tion of pro­cess­ing means the mark­ing of stored per­son­al data with the aim of lim­it­ing its pro­cess­ing in the future.

  • e) Con­troller or pro­cess­ing controller

Con­troller or pro­cess­ing con­troller means the nat­ur­al or legal per­son, pub­lic author­i­ty, agency or oth­er body which, alone or joint­ly with oth­ers, deter­mines the pur­pos­es and means of the pro­cess­ing of per­son­al data. Where the pur­pos­es and means of such pro­cess­ing are deter­mined by Euro­pean Union or Mem­ber State law, the con­troller or the spe­cif­ic cri­te­ria for its nom­i­na­tion may be pro­vid­ed for by Euro­pean Union or Mem­ber State law.

  • f) Proces­sor

Proces­sor means a nat­ur­al or legal per­son, pub­lic author­i­ty, agency or oth­er body which process­es per­son­al data on behalf of the controller.

  • g) Recip­i­ent

Recip­i­ent means a nat­ur­al or legal per­son, pub­lic author­i­ty, agency or anoth­er body, to which the per­son­al data is dis­closed, whether a third par­ty or not. How­ev­er, pub­lic author­i­ties which may receive per­son­al data in the frame­work of a par­tic­u­lar inquiry in accor­dance with Euro­pean Union or Mem­ber State law shall not be regard­ed as recipients.

  • h) Third party

Third par­ty means a nat­ur­al or legal per­son, pub­lic author­i­ty, agency or body oth­er than the data sub­ject, con­troller, proces­sor and per­sons who, under the direct author­i­ty of the con­troller or proces­sor, are autho­rised to process per­son­al data.

  • i) Con­sent

Con­sent of the data sub­ject means any freely giv­en, spe­cif­ic, informed and unam­bigu­ous indi­ca­tion of the data subject’s wish­es by which he or she, by a state­ment or by a clear affir­ma­tive action, sig­ni­fies agree­ment to the pro­cess­ing of per­son­al data relat­ing to him or her.

 

2. Name and address of the pro­cess­ing controller

Con­troller with­in the mean­ing of the Gen­er­al Data Pro­tec­tion Reg­u­la­tion, oth­er data pro­tec­tion laws applic­a­ble in Mem­ber States of the Euro­pean Union and oth­er pro­vi­sions of a data pro­tec­tion nature is:

Insti­tut Bauen und Umwelt e.V.

Panora­mas­traße 1

10178 Berlin

Ger­many

Tel.:  +49 (0) 30 30 87 74 8 – 0

E‑Mail: info@ibu-epd.com

Web­site: https://ibu-epd.com/

 

3. What data will be record­ed dur­ing my vis­it to the IBU website?

Every time a user access­es a page on our web­site and every time a file is retrieved, access data relat­ing to these events is stored in a log file on our server:

  • IP address of the request­ing computer
  • Web­site from which the file was requested
  • Date and time of access
  • Brows­er type and settings
  • Oper­at­ing system
  • Pages accessed by you
  • Data vol­ume transferred
  • Access sta­tus (file trans­fer, file not found etc.)

IBU can­not iden­ti­fy the data sub­ject through the use of this gen­er­al data and infor­ma­tion. Rather, this infor­ma­tion is required for the pur­pose of (1) cor­rect­ly deliv­er­ing the con­tent of our web­site, (2) opti­mis­ing our web­site con­tent, (3) safe­guard­ing the per­ma­nent func­tion­al­i­ty of our IT sys­tems and our web­site tech­nol­o­gy and (4) pro­vid­ing law enforce­ment agen­cies with the req­ui­site infor­ma­tion for crim­i­nal pros­e­cu­tion in the event of cyber attack. This anony­mous­ly col­lect­ed data and infor­ma­tion is con­se­quent­ly analysed by IBU for sta­tis­ti­cal pur­pos­es and also with the aim of enhanc­ing data pro­tec­tion and data secu­ri­ty in order to ulti­mate­ly secure an opti­mum lev­el of pro­tec­tion for per­son­al data processed by IBU. Anony­mous data on serv­er log files is stored sep­a­rate­ly from all per­son­al data pro­vid­ed by a data subject.

 

4. Con­tact via the web­site https://ibu-epd.com/kontakt/

In line with statu­to­ry require­ments, the IBU web­site con­tains infor­ma­tion to allow swift elec­tron­ic con­tact as well as direct com­mu­ni­ca­tion with IBU, which also cov­ers the use of a gen­er­al elec­tron­ic mail address (email address). Per­son­al data trans­mit­ted by the data sub­ject when con­tact­ing the pro­cess­ing con­troller via email or using a con­tact form is auto­mat­i­cal­ly stored. Such per­son­al data vol­un­tar­i­ly sent by a data sub­ject to the pro­cess­ing con­troller is stored for the pur­pos­es of pro­cess­ing or con­tact­ing the data sub­ject. This per­son­al data is not dis­closed to any third parties.

 

5. Rou­tine era­sure and block­ing of per­son­al data

The pro­cess­ing con­troller will process and store per­son­al data relat­ing to the data sub­ject sole­ly for the peri­od nec­es­sary to achieve the intend­ed pur­pose of stor­age or inso­far as pro­vid­ed for by Euro­pean reg­u­la­tors or oth­er leg­isla­tive bod­ies in laws or reg­u­la­tions incum­bent upon the pro­cess­ing controller.

Per­son­al data will be rou­tine­ly blocked or erased in accor­dance with the per­ti­nent statu­to­ry pro­vi­sions where the intend­ed pur­pose of stor­age no longer applies or the applic­a­ble stor­age peri­od pre­scribed by Euro­pean reg­u­la­tors or oth­er com­pe­tent leg­isla­tive author­i­ties has expired.

 

6. Sub­scrip­tion to our newsletter

Users of the IBU web­site have the option of sub­scrib­ing to a newslet­ter. The nature of per­son­al data trans­mit­ted to the pro­cess­ing con­troller upon sub­scrib­ing to the newslet­ter is deter­mined on the basis of the input screen used for this purpose.

Prin­ci­pal­ly, the IBU newslet­ter can only be received by data sub­jects that (1) have pro­vid­ed a valid email address and (2) have reg­is­tered to receive the newslet­ter. For rea­sons of law, a con­fir­ma­tion email with­in the scope of the ‘dou­ble opt-in’ pro­ce­dure is ini­tial­ly sent to the email address pro­vid­ed by the data sub­ject when sub­scrib­ing to the newslet­ter. This con­fir­ma­tion email serves to check whether the email address own­er has autho­rised receipt of the newslet­ter as the data subject.

Upon reg­is­ter­ing for the newslet­ter we also store the IP address issued by the Inter­net ser­vice provider (ISP) of the com­put­er sys­tem used by the data sub­ject at the time of reg­is­tra­tion as well as the date and time of reg­is­tra­tion. Col­lec­tion of such data is required in order to trace any sub­se­quent (pos­si­ble) mis­use of the data sub­ject email address and con­se­quent­ly affords legal pro­tec­tion to the pro­cess­ing controller.

Per­son­al data col­lect­ed with­in the scope of reg­is­ter­ing for the newslet­ter is used sole­ly for the pur­pose of send­ing the IBU newslet­ter. In addi­tion, newslet­ter sub­scribers can be noti­fied by email inso­far as is nec­es­sary for oper­a­tion of the newslet­ter ser­vice or an asso­ci­at­ed reg­is­tra­tion, as may occur in the case of changes to the newslet­ter offer or mod­i­fi­ca­tion of the tech­ni­cal para­me­ters. Per­son­al data col­lect­ed with­in the scope of the newslet­ter ser­vice is not dis­closed to any third par­ties. Sub­scrip­tion to the IBU newslet­ter can be can­celled at any time by the data sub­ject. Con­sent for the stor­age of per­son­al data pro­vid­ed to us by the data sub­ject for the pur­pos­es of receiv­ing the newslet­ter can be with­drawn at any time. A com­men­su­rate link for use in with­draw­ing con­sent is pro­vid­ed in each newslet­ter. More­over, the data sub­ject may also unsub­scribe from the newslet­ter at any time direct­ly via the pro­cess­ing controller’s web­site or noti­fy the pro­cess­ing con­troller of such by oth­er means.

 

7. Reg­is­tra­tion on IBU mem­bers area; reg­is­tra­tion with IBU.data; reg­is­tra­tion refusal 

7.1 IBU mem­bers area

Only IBU mem­bers are per­mit­ted to reg­is­ter on the IBU mem­bers area.

The fol­low­ing per­son­al data is required for IBU mem­bers area registration

  • Email
  • First name
  • Sur­name
  • Com­pa­ny name

After enter­ing the req­ui­site reg­is­tra­tion infor­ma­tion, con­firm your reg­is­tra­tion by click­ing on ‘Reg­is­ter’. Your data will then be stored in the user admin­is­tra­tion sys­tem. Accep­tance is, how­ev­er, only first con­firmed by a respec­tive­ly autho­rised mem­ber of the IBU staff fol­low­ing a mem­ber­ship check.

7.2 IBU.data

Insti­tut Bauen und Umwelt e.V. makes the LCA-based data from the Envi­ron­men­tal Prod­uct Dec­la­ra­tions (EPDs) for build­ing prod­ucts avail­able for down­load from IBU.data in dig­i­tal form as XML files on the basis of the ILCD for­mat. Reg­is­tra­tion is only nec­es­sary here for enabling down­load of the data pro­vid­ed. Access can also be gained with­out registration.

The fol­low­ing per­soal data is required for IBU.data registration:

  • First name
  • Sur­name
  • Organ­i­sa­tion
  • Occupation/function
  • Email

After enter­ing the req­ui­site reg­is­tra­tion infor­ma­tion, con­firm your reg­is­tra­tion by click­ing on ‘Reg­is­ter’. Your data will then be stored in the user admin­is­tra­tion sys­tem. Accep­tance is, how­ev­er, only first con­firmed by a respec­tive­ly autho­rised mem­ber of the IBU staff.

7.3 Reg­is­tra­tion refusal

Inso­far as accep­tance of your reg­is­tra­tion for the mem­bers area and/or IBU.data down­load is refused by IBU for legit­i­mate rea­sons, the pro­file stored with­in the course of refusal will be imme­di­ate­ly or prompt­ly erased.

8. Rights of the data subject

  • a) Right of confirmation

Every data sub­ject has the right grant­ed by the Euro­pean reg­u­la­tors to require con­fir­ma­tion from the pro­cess­ing con­troller as to whether or not per­son­al data con­cern­ing the respec­tive data sub­ject is being processed. Any data sub­ject wish­ing to exer­cise this right of con­fir­ma­tion may sub­mit a com­men­su­rate request to a mem­ber of the IBU staff at any time.

  • b) Right of access

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to require the pro­cess­ing con­troller to pro­vide free-of-charge access at any time to per­son­al data stored in rela­tion to the data sub­ject and also obtain a copy of such infor­ma­tion. More­over, the Euro­pean reg­u­la­tors have afford­ed the data sub­ject a right to the fol­low­ing information:

  • The pur­pos­es of the processing
  • The cat­e­gories of per­son­al data concerned
  • The recip­i­ents or cat­e­gories of recip­i­ent to whom the per­son­al data has been or will be dis­closed, in par­tic­u­lar recip­i­ents in third coun­tries or inter­na­tion­al organisations
  • Where pos­si­ble, the envis­aged peri­od for which the per­son­al data will be stored, or, if not pos­si­ble, the cri­te­ria used to deter­mine that period
  • The right to request from the con­troller rec­ti­fi­ca­tion or era­sure of per­son­al data or restric­tion of pro­cess­ing of per­son­al data con­cern­ing the data sub­ject or to object to such processing
  • The right to lodge a com­plaint with a super­vi­so­ry authority
  • Where the per­son­al data is not col­lect­ed from the data sub­ject: all avail­able infor­ma­tion regard­ing its source
  • The exis­tence of auto­mat­ed deci­sion-mak­ing, includ­ing pro­fil­ing, referred to in Arti­cle 22 (1) and (4) GDPR and, at least in those cas­es, mean­ing­ful infor­ma­tion about the log­ic involved, as well as the sig­nif­i­cance and the envis­aged con­se­quences of such pro­cess­ing for the data subject

In addi­tion, the data sub­ject also has the right to know whether per­son­al data has been trans­ferred to a third coun­try or inter­na­tion­al organ­i­sa­tion. Where this is indeed the case, the data sub­ject has the resid­ual right to be informed of the appro­pri­ate safe­guards relat­ing to the transfer.

Any data sub­ject wish­ing to exer­cise this right of access may sub­mit a com­men­su­rate request to a mem­ber of the IBU staff at any time.

  • c) Right to rectification

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to require rec­ti­fi­ca­tion with­out delay of inac­cu­rate per­son­al data relat­ing to the data sub­ject. More­over, tak­ing into account the pur­pos­es of the pro­cess­ing, the data sub­ject has the right to have incom­plete per­son­al data com­plet­ed, includ­ing by means of pro­vid­ing a sup­ple­men­tary statement.

Any data sub­ject wish­ing to exer­cise this right of rec­ti­fi­ca­tion may sub­mit a com­men­su­rate request to a mem­ber of the IBU staff at any time.

  • d)    Right to era­sure (right to be forgotten)

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to require the con­troller to erase per­son­al data con­cern­ing the data sub­ject with­out undue delay where one of the fol­low­ing grounds applies and pro­cess­ing is unnecessary:

  • The per­son­al data is no longer nec­es­sary in rela­tion to the pur­pos­es for which it was col­lect­ed or oth­er­wise processed
  • The data sub­ject with­draws con­sent on which the pro­cess­ing is based accord­ing to Arti­cle 6 (1) (a) or Arti­cle 9 (2) (a) GDPR and there is no oth­er legal ground for the processing
  • The data sub­ject objects to the pro­cess­ing pur­suant to Arti­cle 21 (1) GDPR and there are no over­rid­ing legit­i­mate grounds for the pro­cess­ing, or the data sub­ject objects to the pro­cess­ing pur­suant to Arti­cle 21 (2) GDPR
  • The per­son­al data has been unlaw­ful­ly processed
  • Era­sure of the per­son­al data is required for com­pli­ance with a legal oblig­a­tion in accor­dance with Euro­pean Union or Mem­ber State law to which the con­troller is subject
  • The per­son­al data has been col­lect­ed in rela­tion to the offer of infor­ma­tion soci­ety ser­vices referred to in Arti­cle 8 (1) GDPR

Where­so­ev­er one of the above-stat­ed grounds applies, any data sub­ject wish­ing to arrange for the era­sure of per­son­al data stored by IBU may request such from a mem­ber of the IBU staff at any time, where­upon IBU will duly car­ry out com­men­su­rate era­sure with­out delay.

  • e) Right to restric­tion of processing

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to require the restric­tion of pro­cess­ing by the con­troller of per­son­al data con­cern­ing the data sub­ject where one of the fol­low­ing con­di­tions applies:

  • The accu­ra­cy of the per­son­al data is con­test­ed by the data sub­ject, for a peri­od enabling the con­troller to ver­i­fy the accu­ra­cy of the per­son­al data
  • The pro­cess­ing is unlaw­ful and the data sub­ject oppos­es the era­sure of the per­son­al data and requests the restric­tion of its use instead
  • The con­troller no longer needs the per­son­al data for the pur­pos­es of pro­cess­ing; how­ev­er, the data is required by the data sub­ject for the estab­lish­ment, exer­cise or defence of legal claims
  • The data sub­ject has object­ed to pro­cess­ing pur­suant to Arti­cle 21 (1) GDPR pend­ing ver­i­fi­ca­tion of whether the legit­i­mate grounds of the con­troller over­ride those of the data subject

Where­so­ev­er one of the above-stat­ed grounds applies, any data sub­ject wish­ing to facil­i­tate restric­tion of per­son­al data stored by IBU may request such from a mem­ber of the pro­cess­ing controller’s staff at any time, where­upon IBU will arrange for restric­tion of processing.

  • f) Right to data portability

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to receive the respec­tive per­son­al data which they have pro­vid­ed to a con­troller, in a struc­tured, com­mon­ly used and machine-read­able for­mat. In addi­tion, the data sub­ject has the right to trans­mit such data to anoth­er con­troller with­out hin­drance from the con­troller to which the per­son­al data has been pro­vid­ed, where the pro­cess­ing is based on con­sent pur­suant to Arti­cle 6 (1) (a) GDPR or Arti­cle 9 (2) (a) GDPR or on a con­tract pur­suant to Arti­cle 6 (1) (b) GDPR and the pro­cess­ing is car­ried out by auto­mat­ed means, pro­vid­ed the pro­cess­ing is not required for the per­for­mance of a task car­ried out in the pub­lic inter­est or in the exer­cise of offi­cial author­i­ty vest­ed in the controller.

More­over, in exer­cis­ing their right to data porta­bil­i­ty pur­suant to Art 20 (1) GDPR, the data sub­ject has the right to have the per­son­al data trans­mit­ted direct­ly from one con­troller to anoth­er where tech­ni­cal­ly fea­si­ble and inso­far as not adverse­ly affect­ing the rights and free­doms of others.

To exer­cise the right to data porta­bil­i­ty, the data sub­ject may request such from a mem­ber of IBU staff at any time.

  • g) Right to object

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to object at any time on grounds relat­ing to their par­tic­u­lar sit­u­a­tion to the pro­cess­ing of per­son­al data con­cern­ing the data sub­ject based on Arti­cle 6 (1) (e) or (f) GDPR.

In the event of objec­tion, IBU will no longer process the per­son­al data, save for where IBU demon­strates com­pelling legit­i­mate grounds for the pro­cess­ing that over­ride the inter­ests, rights and free­doms of the data sub­ject, or for the estab­lish­ment, exer­cise or defence of legal claims.

To exer­cise the right of objec­tion, the data sub­ject may request such direct­ly from a mem­ber of IBU staff. In the con­text of the use of infor­ma­tion soci­ety ser­vices, and notwith­stand­ing Direc­tive 2002/58/EC, the data sub­ject may exer­cise their right to object by auto­mat­ed means using tech­ni­cal specifications.

  • h) Right to with­draw data pro­tec­tion consent

Any data sub­ject in respect of whom per­son­al data is being processed has the right grant­ed by the Euro­pean reg­u­la­tors to with­draw their con­sent for the pro­cess­ing of per­son­al data at any time.

Data sub­jects wish­ing to exer­cise this right of with­draw­al of con­sent may sub­mit a com­men­su­rate request to a mem­ber of the IBU staff at any time.

 

9. Peri­od for which per­son­al data will be stored

The cri­te­ri­on deter­min­ing the peri­od for which per­son­al data may be stored is the respec­tive statu­to­ry peri­od of stor­age. Fol­low­ing expiry of this peri­od, the cor­re­spond­ing data will be rou­tine­ly erased pro­vid­ed it is no longer required for the pur­pos­es of ini­ti­at­ing or per­form­ing a contract.

 

10. Cook­ies

IBU uses ses­sion cook­ies on its web­site. The respec­tive data is not per­ma­nent­ly stored. The use of tem­po­rary cook­ies offers you the advan­tage of not hav­ing to re-enter your per­son­al data every time you fill out one of the var­i­ous forms on our web­site. The cook­ies are auto­mat­i­cal­ly delet­ed upon clos­ing down the browser.

Cook­ies do not dam­age your com­put­er hard-dri­ve and can­not be used to trans­fer per­son­al data to IBU.

The default set­ting on most browsers auto­mat­i­cal­ly accepts cook­ies. Nev­er­the­less, you can deac­ti­vate the stor­age of cook­ies or set your brows­er to noti­fy you when­ev­er cook­ies are sent.

Where cook­ies have been deac­ti­vat­ed, a so-called ses­sion ID is used to iden­ti­fy the respec­tive per­son dur­ing cor­re­spond­ing access to our web­site. No data is stored on your com­put­er. The ses­sion ID is delet­ed upon ter­mi­nat­ing your access

 

11. Google Ana­lyt­ics web analy­sis service

This web­site uses Google Ana­lyt­ics, a web analy­sis ser­vice pro­vid­ed by Google Inc (‘Google’). Google Ana­lyt­ics uses so-called ‘cook­ies’ (see 10 above), text files that are stored on your com­put­er to analyse your use of the web­site. Infor­ma­tion gen­er­at­ed by the cook­ie regard­ing your use of our web­site, such as

  • brows­er type/version;
  • oper­at­ing sys­tem used;
  • refer­rer URL (page pre­vi­ous­ly accessed);
  • host name of the access­ing com­put­er (IP address) and
  • time of serv­er request

is gen­er­al­ly trans­mit­ted to and stored by Google on a serv­er in the USA. IBU has acti­vat­ed IP anonymi­sa­tion. Con­se­quent­ly, with­in Euro­pean Union Mem­ber States or oth­er states that are par­ty to the Euro­pean Eco­nom­ic Area Agree­ment, Google first short­ens your IP address on this website.

Only in excep­tion­al cas­es will the full IP address be trans­mit­ted to and short­ened by Google on a serv­er in the USA. On behalf of the oper­a­tor of this web­site, Google will use this infor­ma­tion to analyse your use of the web­site, cre­ate reports on web­site activ­i­ty and pro­vide addi­tion­al ser­vices to the web­site oper­a­tor asso­ci­at­ed with use of the web­site and the Internet.

The IP address sent from your brows­er with­in the scope of Google Ana­lyt­ics will not be com­bined with oth­er Google data. You can pre­vent the stor­age of cook­ies by set­ting your brows­er soft­ware accord­ing­ly; how­ev­er, please be aware that this may mean you are unable to use the full func­tion­al­i­ty of the website.

You can also pre­vent the col­lec­tion of data gen­er­at­ed by the cook­ie regard­ing your use of the web­site (includ­ing your IP address) and the pro­cess­ing of such by Google by down­load­ing and installing the brows­er plu­g­in avail­able under the fol­low­ing link: http://tools.google.com/dlpage/gaoptout?hl=de

 

12.  Pri­va­cy state­ment regard­ing the use of Twitter

Our web­site incor­po­rates func­tions of the Twit­ter ser­vice. These func­tions are offered by Twit­ter Inc., 1355 Mar­ket St, Suite 900, San Fran­cis­co, CA 94103, USA. By access­ing a page on our web­site that con­tains a com­men­su­rate plug-in, a direct link is gen­er­at­ed between your brows­er and the Twit­ter serv­er. As a result, Twit­ter is noti­fied that you vis­it­ed our web­site using your IP address.

By click­ing on the Twit­ter ‘tweet but­ton’ while logged in to your Twit­ter account, you can link the con­tent of our web­site to your Twit­ter pro­file. This allows Twit­ter to assign the vis­it to our web­site to your user account.

Please note that we do not receive any infor­ma­tion on the con­tent of the data trans­mit­ted or its use by Twit­ter. Fur­ther infor­ma­tion is pro­vid­ed in the Twit­ter pri­va­cy state­ment. You can change your Twit­ter data pri­va­cy set­tings in account set­tings at http://twitter.com/account/settings.

 

 

13. Trans­fer of per­son­al data to third parties

IBU uses per­son­al data sole­ly for inter­nal pur­pos­es with­in the course of cus­tomer rela­tions. Per­son­al data is not for­ward­ed to third par­ties with­out your required consent.

Per­son­al data will only be col­lect­ed and trans­ferred to state insti­tu­tions and author­i­ties enti­tled to receive such data with­in the scope of applic­a­ble law or where we are oblig­ed to do so by court order. IBU requires that all employ­ees and ser­vice provider com­pa­nies main­tain secre­cy and com­ply with data pro­tec­tion pro­vi­sions. The same will also apply for all future employ­ees or busi­ness partners.