Privacy Policy

We, Deutsche Welthungerhilfe e. V., take the protection of your personal data seriously. We treat your personal data confidentially and, naturally, in accordance with statutory data protection regulations and this Privacy Policy.

In principle, it is possible to use our website without providing personal data. Insofar as any personal data (e.g., name, address, or email address) are collected on our website, this occurs on a purely voluntary basis. This data will not be shared with third parties without your express consent.

Please note that online data transfer (e.g., in connection with email communication) is vulnerable to security flaws. It is not possible to fully secure data against third-party access.

This data cannot be connected to individual persons and will not be combined with other data sources.

Party responsible and contact information: This Privacy Policy governs data processing by: Deutsche Welthungerhilfe e. V. Friedrich-Ebert-Str. 1 53173 Bonn Germany

1. General Information

In this Privacy Policy, we explain the kind, scope, and purpose of the processing of personal data within the online services of Deutsche Welthungerhilfe e. V. and its related websites, functions, and content (hereinafter referred to as "Website"). This Privacy Policy applies regardless of the individual domains, systems, platforms, and devices (e.g., desktop or mobile devices) on which our online services are accessed.

Party responsible Deutsche Welthungerhilfe e.V. Friedrich-Ebert-Str. 1 53173 Bonn Germany Tel.: +49 (0)228-2288 176 Fax: +49 (0)228-2288 250

Terms such as "personal data" or the "processing" of the same are defined as per § 4 of the General Data Protection Regulation (GDPR). It is possible to use the Website—with the exception of social plugins—for informational purposes without providing personal data (see §§ 9, 10, 12).

We process our users’ personal data only in accordance with the relevant data protection regulations; this includes but is not limited to cases in which data processing is required to provide our online services, the user has consented, or our legitimate interests so require (i.e. interests of analysis, optimization, and commercial operation and security of our online services as per § 6.1(f) GDPR—especially for measuring reach, creating "personas" for publicity and marketing purposes, capturing access data, and utilizing the services of third-party providers).

In this context, the term "user" comprises all categories of persons affected by the data processing; this includes our donors, cooperative partners, interested parties, and others visiting our online services. The terms used, e.g., "user", are gender neutral.

Please note that the legal basis for consent as per §§ 6.1(a), 7 GDPR constitutes the legal basis for processing personal data both for purposes of fulfilling our legal obligations (§ 6.1(c) GDPR) and for purposes of protecting our legitimate interests (§ 6.1(f) GDPR).

Please note that online data transfer (e.g., in connection with email communication) is vulnerable to security flaws. It is not possible to fully secure data against third-party access. Private data should therefore be transmitted only via a secure connection (SSL).

2. Security Measures

We take state-of-the-art organizational, contractual, and technical security measures to ensure compliance with the regulations of data protection laws and to protect the data we process against random or targeted manipulation, loss, destruction, or access by unauthorized persons.

Said security measures include but are not limited to the encrypted transmission of data between your browser and our server.

3. Sharing Your Data with Third Parties and Third-Party Providers

If we employ any external service providers to provide our services, this is done in accordance with the stipulations of § 28 GDPR. We have concluded a limited-processing contract with each data processing company to ensure that your personal data are processed according to their purpose and not shared. We also take appropriate technical and organisational measures to protect your personal data.

This applies to service providers including but not limited to the following:

Company for Informatics Engineering - SOLS DOO Skopje, Kosturski Heroi no. 2/2, SKOPJE - CENTER, CENTER Website maintenance and development

Insofar as contents, tools, or other materials are employed within the framework of this Privacy Policy by other providers (hereinafter collectively referred to as "Third-Party Providers") registered in a third country, it must be assumed that data are being transferred to the Third-Party Provider's country of record. Third countries are countries in which the GDPR is not directly-applicable law—categorically, this includes countries outside of the European Union and the European Economic Area. Data may be transferred into third countries in the presence of the appropriate data protection level, user consent, or another form of statutory authorization.

4. Making Contact via Contact Form

Our Website offers you multiple options to send your enquiries to us through a contact form via an encrypted SSL connection. In accordance with § 6.1(a) GDPR, exclusively the data and information required to process your enquiry will be processed.

5. Access Data and Logfiles

On the basis of our legitimate interests within the meaning of § 6.1(f) GDPR, we collect data every time the server hosting this service (Serverlogfiles) is accessed. Access data include but are not limited to:

The IP address of the computer sending the request
Date and time of access
Name and URL of accessed page
The amount of data sent during the transmission of the page
Access status (page transmitted, page not found etc.)
Browser and operating system data
The website serving as the access point

For security reasons (e.g., to resolve cases of abuse or fraud), logfile information will be stored for a maximum of seven days and thereafter deleted. Data that must be retained for purposes of proof are exempt from deletion until the respective incident is fully resolved.

6. Cookies and Reach Measurement

Cookies are data which are transmitted from our web server or from third-party web servers to the user's web browser and stored there for future retrieval. Cookies may take the form of small files or other forms of information storage. In accordance with this Privacy Policy, you will be informed of any cookies employed for pseudonymous reach measurement.

If you do not want any cookies to be stored on your computer, you are requested to deactivate the corresponding option in your browser’s system settings. Stored cookies can be cleared in the browser’s system settings. Deactivating cookies may limit the Website’s functionality.

Internet Explorer: support.microsoft.com/
Firefox: https://support.mozilla.org
Google Chrome: https://support.google.com/
Safari: https://support.apple.com/
Opera: help.opera.com

You can also opt out of the use of cookies for reach measurement and marketing purposes via the Network Advertising Initiative’s deactivation page (http://optout.networkadvertising.org/) and via the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

7. Facebook

The project has a facebook page which is accessible via a link on the website. Facebook is certified by the Privacy Shield Framework, guaranteeing its compliance with European data protection laws (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

Data processing through Facebook is subject to Facebook’s privacy policy. General information regarding the display of Facebook Ads can be found in Facebook's privacy policy: https://www.facebook.com/policy.php. Specific information and details regarding Facebook Pixel and how it works can be found in Facebook’s help section: Facebook Business.

8. Photographs, Video (Clips), ...

Pictures and video (clips) used on this Website were provided for publication by contracted photographers, photography agencies, or the depicted persons with their consent. Ownership of and credit for the photographs on the website www.ccr-project.com is provided in the page’s “Legal Notice”. The legal basis for this is § 6.1(f) GDPR.

9. Incorporating Third-Party Services and Content (where applicable)

We employ the contents and services of Third-Party Providers within our online services on the basis of our legitimate interests (i.e. interests of analysis, optimization, and commercial operation of our online services within the meaning of § 6.1(f) GDPR) in order to incorporate their contents and services such as videos (hereinafter collectively referred to as "Contents"). This always requires the Third-Party Providers of these Contents to detect user IP addresses, since they cannot send the Contents to the users’ browsers without the IP address. The IP address is therefore required in order to display these Contents. We endeavor to use only the Contents of such Providers as use the IP address solely to deliver the Contents. Third-Party Providers may also use pixel tags (invisible graphics also known as "web beacons") for statistical or marketing purposes. Using the pixel tags, information such as visitor traffic on the respective pages can be evaluated. Furthermore, the pseudonymous information can be stored in cookies on the users’ devices and may contain data including technical information about the browser and operating system, referring websites, access times, and additional data regarding the use of our online services; said information can also be connected with other such information from other sources.

The following outline offers an overview of Third-Party Providers and their Contents. It also provides links to their privacy policies which contain other information regarding data processing and opt-out options, some of which have already been described:

Maps sourced from the "Google Maps" service of the third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt out: https://www.google.com/settings/ads/
Fonts sources from “Google Fonts” service of the third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt out: https://www.google.com/settings/ads/
Videos from the "YouTube" platform of third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt out: https://www.google.com/settings/ads/

10. Our Users’ Rights

Upon request and authentication, we are happy to inform you in writing and in accordance with the applicable law if personal data concerning yourself have been processed. If this is the case, you are entitled to the disclosure of these personal data and of the information listed in detail in § 15 GDPR.

Should the personal data concerning yourself be incorrect, you have the right to immediately demand the rectification of inaccurate personal data or the completion of incomplete personal data (§ 16 GDPR). You have the right to demand that personal data concerning yourself be immediately deleted insofar as one of the particular reasons listed in § 17 GDPR applies, for example if the data are no longer required for their intended purpose (right to erasure).

You also have the right to demand the restriction of processing if one of the prerequisites listed in § 18 GDPR applies; for example, if you have objected to processing, this will apply for the duration of examination by the controller.

You have the right to object at any time to the processing of personal data concerning yourself for reasons arising from your particular situation. Our company will then cease to process said personal data unless we can prove compelling grounds for the processing or the processing serves to establish, exercise, or defend legal claims (§ 21 GDPR).

Without prejudice to any other administrative or judicial remedy, you have the right to file a complaint with the supervisory authority if you believe that the processing of personal data concerning yourself infringes the GDPR (§ 77 GDPR). You may exercise this right through a supervisory authority in the member state of your place of residence, of your place of employment, or of the place in which the alleged infraction occurred. In North Rhine–Westphalia, the following person has jurisdiction: The data protection officer for North Rhine–Westphalia (LDI) Kavalleriestrasse 2 - 4 40213 Düsseldorf Germany

11. Deleting Data

The data that we store are deleted as soon as they are no longer required for their intended purpose and erasure does not violate any statutory retention periods. Insofar as user data are not deleted because they are required for other legal purposes, the processing of the same is restricted. This means that the data are segregated and not processed for other purposes. This applies, for example, to user data that need to be stored for commercial or tax purposes.

In accordance with statutory regulations, data pursuant to § 257.1 HGB (German Commercial Code) must be retained for six years (annual financial statements, vouchers etc.), and data pursuant to § 147.1 AO (German Revenue Code) must be retained for ten years (books, records, management reports, vouchers, documentation relevant to taxation etc.).

12. Right to Object

Users can object to the future processing of their personal data, including processing for purposes of direct advertising. We respect your right to object provided that we are not legally obligated to process the data in question.

13. Liability for Links

We hereby expressly declare that no illegal Contents were identifiable on the linked pages at the time of the respective link’s creation. Deutsche Welthungerhilfe e.V. has no influence on the current and future design, Contents, or ownership of linked pages. Such being the case, we hereby expressly distance ourselves from all Contents on the linked pages that were changed after the link was created; this applies to all links and referrals contained in our own online services. Only the provider of the page receiving the referral and not the entity issuing the referral by way of link to the respective publication is liable for illegal, inaccurate, or incomplete Contents and particularly for damages arising from the use or disuse of information so provided.

14. Notice to Parents and Legal Guardians

Parents and legal guardians are responsible for protecting their children’s privacy. We ask that you talk with your children about how to handle personal data online in a safe and responsible manner.

15. Amendments to the Privacy Policy

We reserve the right to amend the Privacy Policy in order to accommodate changes to the law, to services, and to data processing. However, this applies only with regard to provisions regarding data processing. Insofar as user consent is required or components of the Privacy Policy contain regulations regarding the contractual relationship with the users, the amendments in question will only be made with the users’ consent.

We always upload amendments to our Privacy Policy here and recommend that you read this Policy on occasion.

16. Your Questions or Comments

You are welcome to contact our data protection officer with any questions, suggestions or complaints regarding our Privacy Policy. You can reach our data protection officer by email at [email protected] or by post at our postal address with the addition of "To the data protection officer". If you wish to receive information on your data, change or delete it, please contact the private donor service.