Data Protection Information

Information on Data Protection in Accordance with Article 13 of the General Data Protection Regulation (GDPR)

Digitalization and Sustainability Interface Project

The following information provides you with an overview of the processing of your personal data and your rights under data protection law. According to Art. 4 No. 1 of the EU General Data Protection Regulation (GDPR), personal data is any information relating to an identified or identifiable natural person.

1. Controller and Data Protection Commissioner

According to the GDPR (Article 4, No. 7) and other data protection regulations, the controller is:

Karlsruhe Institute of Technology (KIT)
Kaiserstraße 12
76131 Karlsruhe, Germany
Phone: +49 721 608-0
Fax: +49 721 608-44290
E-Mail: info∂kit.edu

Karlsruhe Institute of Technology is a public corporation represented by its President. Our Data Protection Commissioner can be contacted at dsb does-not-exist.kit edu or by ordinary mail with “Die Datenschutzbeauftragte” (the Data Protection Commissioner) being indicated on the envelope

2 Type and Manner of Data Processing

  1. Scope and Purpose: We store and process your personal data, i.e. your name and your KIT e-mail address from the Shibboleth Identity Provider, in order to contact you for queries and to invite you to subsequent workshops. Your submitted ideas will be stored, reviewed, transcribed or/and translated if necessary, thematically bundled and further developed. It is to be noted that participants should not enter any personal data - especially in free text fields.

  2. Recipients: The project team that processes this data consists of employees from the Digital Office, Sustainability Office, Institute for Technology Assessment and Systems Analysis as well as the Scientific Computing Center.
    Should it be necessary for an external service provider to process personal data on our behalf in order to transcribe submissions, the service provider will be carefully selected and contractually bound by us. The service provider in question then works exclusively in accordance with our instructions. We ensure this through strict contractual regulations, technical and organizational measures as well as additional controls.

  3. Legal Basis: The legal basis for processing is Art. 6 para. 1 lit. a GDPR (consent).
    Consent is given voluntarily. Consent can be withdrawn at any time with effect for the future. Effect for the future means that the withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. There are no disadvantages if consent is refused or withdrawn. If you wish to withdraw your consent, you can do so in writing to the following address: spdn∂do.kit.edu.

  4. Storage Period: The personal data will be stored for as long as is necessary for the above-mentioned purposes, i.e. until the end of 2025 at the latest.

3. Your Rights

As far as your personal data are concerned, you have the following rights:

  • Right to revoke your consent with effect for the future, provided that processing is based on a consent according to Article 6, par. 1, sub-par. 1, a GDPR (Article 7, par. 3 GDPR).
  • Right to confirmation whether data about you are processed and right to information about the data processed and about data processing as well as right to obtain copies of the data (Article 15 GDPR).
  • Right to rectification or completion of incorrect or incomplete data (Article 16 GDPR).
  • Right to immediate erasure of your personal data (Article 17 GDPR).
  • Right to restriction of processing (Article 18 GDPR).
  • Right to data portability in a structured, standard, and machine-readable format, if processing is based on a consent according to Article 6, par. 1, sub-par. 1, a or Article 9, par. 2, a or on an agreement according to Article 6, par. 1, sub-par. 1, b (Article 20 GDPR).
  • Right to object to the future processing of your personal data, if the data are processed accord-ing to Article 6, par. 1, e or f GDPR (Article 21 GDPR).

In addition, you have the right to complain about the processing of your personal data by KIT with its supervisory authority (Article 77 GDPR). According to Article 25, par. 1, LDSG (State Data Protection Act), the supervisory authority of KIT according to Article 51, par. 1 GDPR is:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg (Baden-Württemberg State Commissioner for Data Protection and Freedom of Information) (https://www.baden-wuerttemberg.datenschutz.de/)