Privacy statement

General notes

The web presence www.fgmhessen.de (hereinafter “website”) is an offer of pro
familia Landesverband Hessen e. V. (hereinafter “we”/”us”).
In the following sections, we inform you about how we handle personal data
concerning you. If you use our website and the services of our website, personal data
is processed.
1. Name and address of the data controller
The data controller is pro familia Landesverband Hessen e. V., Palmengartenstr. 14,
60325 Frankfurt am Main (Germany), telephone: +49 69-447061, fax: +49 69-
493612, e-mail: Lv.hessen@profamilia.de, legally represented by the board: Chair
Prof. Dr. Dr. h. c. Frank Louwen / Vice Chair Dr. Carolin Hornack.
2. Contact details of the data protection officer
If you have any questions or wish to exercise your rights as a data subject, please
contact our data protection officer, WINHELLER Rechtsanwaltsgesellschaft mbH,
at datenschutz.hessen[at]profamilia.de.
3. Processing of personal data
4. Provision of the website and creation of log files
5. Description and scope of data processing
Whenever you access our website, the following data transmitted by your browser is
automatically stored for technical reasons:
– Information about your browser type and version
– The operating system you use
– The website from which you are referred to our website (referrer URL)
– Your IP address
– Date and time of your visit
– Request line
– Status code
– Size of the response body
– Referrer sent by the client
Our system stores your personal data in log files. This data will not be stored together
with other personal data concerning you.
6. Legal basis for data processing
The legal basis for the temporary processing of data and log files is Article 6(1)(f)
GDPR.
7. Purpose of data processing
The temporary processing of your IP address by our system is required to enable
provision of the website to your end device. Furthermore, we use personal data
concerning you to optimize our website and to ensure the security of our IT systems.
In the process, your data will not be processed for marketing purposes. This
constitutes our legitimate interest in data processing.
8. Duration of storage
The personal data referred to above shall be erased as soon as they are no longer
necessary for the purpose of the processing. Regarding the data processing for the
provision of the website, this is the case when you terminate the session in question.
Regarding the processing of IP addresses in log files, these are deleted after seven
days. Longer storage is only legitimate provided your IP address is deleted or
anonymized, so that a connection to your person is no longer possible.
9. Right to objection and removal under Art. 21 GDPR
There is no possibility to object to this data processing, as the processing of the data
is absolutely necessary for the provision of the website.
10. Cookies
a) Description and scope of data processing
We use so-called cookies on our website, which serve to recognize you as a user and
make using our site more convenient. Cookies are small text files which your Internet
browser stores on your end device. In most cases these are so-called session
cookies, which are deleted after the end of your session.
The personal data concerning you processed in this way will be pseudonymized by
technical measures. This way it is not possible to map the data to the retrieving user.
The data is not stored together with other processed personal data concerning you.
11. Legal basis for data processing
The legal basis for the processing of personal data concerning you by using cookies
is Art. 6(1)(f) GDPR.
12. Purpose of the data processing
We use technically necessary cookies in order to optimize the use of the website for
you and to make it secure.
These purposes also substantiate our legitimate interest in processing personal data
concerning you.
13. Duration of storage and possibility to object
These are session cookies that are only used during the respective session, which
means that they are deleted as soon as you leave our website. You can only object to
their use by leaving the website.
14. Rights of the data subject
If personal data concerning you is processed by us, you are regarded as a data
subject in the sense of the GDPR; thus, you enjoy the following rights vis-à-vis us:
1. Right of access to information
You shall have the right to request information from us at any time about personal
data concerning you that is being processed by us. This also includes information
about the recipients of your data, their origins or the categories of recipients to whom
we transfer data concerning you and the purposes for which we process personal
data concerning you.
15. Right to rectification
You have the right to request that we rectify and/or complete personal data
concerning you without undue delay if personal data concerning you is incorrect or
incomplete.
16. Right to erasure or restriction of processing
You have the right to obtain from us the erasure of personal data concerning you
without undue delay. We are obliged to carry out the erasure immediately. This shall
not apply if we are obliged to further process personal data concerning you due to
contractual and/or legal regulations. This is the case, for example, if we are prohibited
from deleting the data under fiscal law. In such a case, we will restrict the processing
and delete the personal data in question immediately after the retention period has
expired.
17. Right to data portability
You have the right to receive the personal data concerning you that you have
provided to us in a structured, commonly used and machine-readable format,
provided that this is technically feasible. Furthermore, you shall have the right to
transmit that data to another controller without hindrance from us.
18. Automated individual decision-making including profiling
You shall have the right not to be subject to a decision based solely on automated
processing, including profiling, which produces legal effects concerning you or
similarly significantly affects you.
19. Right to lodge a complaint with a supervisory authority
You shall have the right to lodge a complaint with the competent supervisory authority
if you consider the processing of personal data concerning you to infringe the GDPR.
Competent supervisory authority: Data Protection Commissioner of the State of
Hesse, P.O. Box 3163, 65021 Wiesbaden, e-mail:
Poststelle@datenschutz.hessen.de.