Website data protection notice
The Tagespost Foundation for Catholic Journalism welcomes you to the Benedict XVI website (hereinafter also referred to as the “website”). We are pleased about your interest and would like to make your visit to our website as pleasant as possible. For us, this also includes making sure that your data are responsibly handled, in full compliance with the legal requirements.
Within the meaning of Art. 4 No. 7 General Data Protection Regulation (GDPR) as well as other data protection laws applicable in the member states of the EU and other provisions of a data protection nature, the following is responsible:
Die Tagespost Stiftung für katholische Publizistik
represented by:
Attorney Christoph Konopka (Trustee), Langemarckstrasse 56a, 53227 Bonn
info(at)dietagespoststiftung.org
Contact:
Dr. Norbert Neuhaus, Bernhard Müller (Board of Management)
c/o Johann-Wilhelm-Naumann-Verlag GmbH, Berner Straße 2, 97084 Würzburg
This data protection notice applies to this website, which is operated by the Tagespost Foundation for Catholic Journalism itself. If services from other suppliers (“third-party services”) are accessible from our website, our data protection notice does not apply to these third-party services. In this case, we are also not responsible for the processing of your personal data as part of such third-party services within the meaning of Art. 4 No. 7 GDPR.
Collection of general data and information, so-called log files
If you visit our website for informative purposes only, without providing personal data, only the internet connection data that your browser transmits to our server will be processed. Our website collects a series of general data and information with each visit, which is temporarily stored in log files of a server. A log file is created as part of an automatic log of the processing computer system. The following can be logged:
- access to the website (date, time and frequency);
- how you arrived at the website (previous page, hyperlink, etc.);
- amount of data transmitted;
- which browser and browser version you are using;
- the operating system you are using;
- which internet service provider you use;
- your IP address that your internet access provider assigns to your computer when you connect to the internet.
The legal basis for this data processing is Art. 6 para. 1 sentence 1 lit. b GDPR, as the collection and storage of these data is necessary for the operation of the website in order to ensure the functionality of the website and to deliver the contents of our website correctly. In addition, the data help us to optimize our website and to ensure the security of our IT systems and the processing based on Art. 6 para. 1 lit. f GDPR. For this reason, the data are stored for a maximum of 7 days as a technical precaution.
Your rights as a visitor to our website
Of course, you have rights regarding the collection of your data, about which we are pleased to inform you herewith. If you would like to make use of one of the following gratuitous rights, a simple message to us will suffice. You also have the right to withdraw any consent you have already given. In both cases, you can use the following contact data for this purpose without incurring any costs other than the forwarding costs:
via email: info(at)dietagespoststiftung.org
via post: Die Tagespost Stiftung für katholische Publizistik , c/o Johann-Wilhelm-Naumann-Verlag GmbH, Berner Straße 2, 97084 Würzburg
For your own protection, we reserve the right, in the case of an existing request, to obtain further information necessary to confirm your identity and, if identification is not possible, to refuse to process the request.
Right to information
You have the right to request information and/or copies of the personal data stored about you.
Right to rectification
You have the right to request that personal data concerning you be corrected and/or completed without delay.
Right to restrict processing of data
You have the right to request the restriction of the processing of your personal data, insofar as:
- the accuracy of the data in question is contested;
- the processing is unlawful, but you do not want the data to be erased;
- the data are no longer needed for the original purpose but may not be deleted yet because of legal grounds;
- the decision on your objection to processing is pending.
Right to erasure
You have the right to request the deletion of your personal data stored by us, unless:
- the data are being used to exercise the right of freedom of expression and information;
- the data are being used to comply with a legal ruling or obligation;
- the data are being used to perform a task that is being carried out in the public interest;
- the data are being used for the establishment of a legal defense or in the exercise of other legal claims.
Right to object
Insofar as your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, you have the right to object to the processing at any time pursuant to Art. 21 para. 1 GDPR.
Right to withdraw consent
You have the right to withdraw your consent to the collection of data at any time with effect for the future. Any data that were collected before the withdrawal of consent becomes legally effective remain unaffected. Please understand that the implementation of your withdrawal of consent may take a little time for technical reasons and that you may still receive messages from us in the meantime.
Right to complain to a supervisory authority;
If the processing of your personal data violates data protection law, or if your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority.
No automated decision-making including profiling
Automated decision-making including profiling pursuant to Art. 22 paras. 1 and 4 GDPR does not occur on our part.
Scope, processing and processing purpose of your personal data:
As a matter of principle, we collect and use personal data from you only to the extent that this is necessary for the provision of a functional website and our content and services. We use the data collected when you visit our website in order to operate our pages as conveniently as possible for you and to protect our IT systems from attacks and other illegal activities. Insofar as you have provided us with personal data, we use these exclusively to fulfil your wishes and requests, such as to answer your query or to process a donation. An exception applies in those cases in which prior consent is not possible for actual reasons and the processing of the data is permitted by legal regulations.
The security of your personal data is a high priority for us. We therefore protect your data stored with us using technical and organizational means to effectively prevent loss or misuse by third parties. To protect your personal data, they are transmitted in encrypted form. For example, we use SSL=Secure Sockets Layer for communication via your internet browser. You can recognize this by the lock symbol which your browser displays when a Secure Sockets Layer (SSL) connection is established. In order to ensure the permanent protection of your data, the technical security measures are regularly checked and, if necessary, adapted to the state of the art.
When you contact us by email, the data you provide will be stored by us based on Art. 6 para. 1 lit. b GDPR, insofar as it is necessary to answer your questions. The contact is logged in order to be able to prove the contact in accordance with the legal requirements. We delete the data accruing in this context when the respective conversation with you has ended and the facts concerned have been conclusively clarified.
Donations
If you donate via the donation form on our website, your personal data that you enter via the forms on the donation page will be transmitted in encrypted form via a secure connection (SSL) to the FundraisingBox service for the processing of donations and the creation of donation receipts on the basis of a commission processing agreement within the meaning of Art. 28 GDPR. The data processing takes place in each case based on your consent, which can be withdrawn at any time, in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. The SSL (Secure Sockets Layer) security procedure meets the highest security standards in Germany.
The FundraisingBox service is provided by Wikando GmbH, Schießgrabenstraße 32, 86150 Augsburg. Wikando GmbH undertakes neither to use the data for its own purposes nor to pass it on. Further information on data protection and the security standards of the FundraisingBox service can be found here and here.
In order for your donation to be processed, we need your name and a contact address as well as mandatory details for bank or credit card collection. Once you have entered your data in the donation form and submitted it, you will receive an email notification that your donation has been collected.
Your data entered in the donation form are processed by our service provider Wikando GmbH. Depending on the selected payment method, your data will also be forwarded to the corresponding financial service provider:
- In case of direct debit payment to our house bank and Wikando GmbH.
- For payment via PayPal to PayPal. PayPal is a service of PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg. Information on data protection at PayPal can be found here.
- When paying by credit card to Stripe. If you donate using a credit card, your credit card details will be forwarded to the service provider Stripe using SSL encryption after you have clicked the “Donate now!” button. Stripe is a service of Stripe Inc., 185 Berry Street, Suite 550, San Francisco, CA 94107, United States of America. The Tagespost Foundation for Catholic Journalism does not receive your credit card details and is only informed about the successful payment. The service provider Stripe Inc. is not based within the European Union/European Economic Area. It can therefore not be ruled out that Stripe also transmits the information to a server in a third country. According to privacyshield.gov, Stripe Inc. has a Privacy-Shield-certification.
Accordingly, Stripe has committed to comply with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework on the collection, use and retention of personal data from the member states of the EU and Switzerland, respectively. Stripe has declared through this certification that it complies with the Privacy Shield Principles. Further information from the provider Stripe on this can be found here.
If you wish to receive a donation receipt, the FundraisingBox service of the Tagespost Foundation for Catholic Journalism will transmit your first and last name or, in the case of a donation by a company, the company name and full address. The data processing is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a and lit. b GDPR for the proper processing of your donation and on the basis of your consent to the issue of a donation receipt.
In any case, your data will be stored together with the information on the donation amount, donation frequency and donation purpose/project and kept for ten years. As a non-profit organization, we use your address data for the purpose of soliciting donations after considering your interests in accordance with Art. 6 para. 1 lit. f GDPR in order to send you information about our non-profit and charitable work in connection with soliciting donations, unless you have objected.
Personal data are only transferred to state institutions and authorities if we are legally obliged to do so. Furthermore, we only transmit data to third parties if and insofar as you have given your consent for this.
We expressly ensure you that your data will only be processed for these purposes and only by the Tagespost Foundation for Catholic Journalism, as well as by the Johann-Wilhelm-Naumann-Verlag GmbH in line with your active consent. The addresses of donors or supporters will neither be sold nor leased; nor will they be passed on to companies or other (also: like-minded) organisations with a similar idealistic and ideological orientation, unless you have expressly given your consent for this.
You can object to this use at any time. An objection is also possible simply by email or by post.
If you have decided to make a recurring donation, you can stop it at any time without giving any reason. You can revoke your direct debit order within six weeks at the bank.
Data erasure and storage period
Unless specifically stated otherwise, we only store personal data for as long as is necessary to fulfil the purposes pursued.
Your personal data will be deleted as soon as the purpose of the data processing no longer applies. If there are legitimate reasons for deletion in the sense of Art. 17 para. 3 GDPR, such as a legal obligation to retain data, the processing of the data will be restricted for this period. In this case, the data will be deleted when the reason for further storage no longer applies, e.g. the legally prescribed storage period expires.
Disclosure of personal data
Your data will only be passed on to third parties with your express consent. The only exceptions to this are transfers to our cooperation partners and service providers that we need in order to fulfil our agreements with you and have commissioned accordingly (for example, technical service providers, freelancers). In line with this, a transfer of your data to such service providers and cooperation partners takes place for the purposes of contract fulfilment pursuant to Art. 6 para. 1 lit. b GDPR or for the protection of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, provided that this is expressly stated in this privacy policy. For example, it may be necessary for us to pass on your address to external suppliers in the case of commissions. Otherwise, personal data will only be passed on to service providers with whom we have previously made a contract on commissioned processing in accordance with Art. 28 GDPR.
Insofar as we pass on data to service providers as part of our processing, we strictly observe the requirements of the GDPR, as do our service providers and cooperation partners. Before passing on your personal data, we naturally ensure that our service providers and cooperation partners have taken the necessary technical and organizational measures to guarantee an appropriate level of protection. The scope of the data transfer is limited to the minimum necessary in each case.
The transfer to state institutions and authorities entitled to receive information only takes place within the scope of the legal obligations to provide information or if we are obliged to provide information by a court or official decision. In this case, the transfer of your data is required by Art. 6 para. 1 lit. c GDPR for the fulfilment of a legal obligation to which we are subject.
Use of cookies and analytics
We use cookies and web analytics services on our website.
Necessary cookies:
We mainly use so-called essential cookies, which are necessary for the operation of the website and the provision of essential functionalities. The essential cookies are used to manage the internet connection during your visit and to display the functions of our website. In addition, certain functionalities of our website can only be provided to you by using cookies. Finally, the essential cookies also serve the security of our website and the protection of the communication between your browser and our servers.
The cookies that are necessary for the purposes described above are usually deleted automatically after you close your browser (so-called session cookies). Only in a few individual cases do these cookies remain stored on your terminal device after you close the browser and enable us to recognize your browser the next time you visit our website, even if you had closed the browser in the meantime, e.g. so that we can more easily recognize whether you have consented to certain functions of the website and the associated data processing (so-called persistent cookies). In these cases, the maximum storage period is one (1) year.
Data processing for the purposes described above is based on Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide visitors to our website with a properly functioning, attractive internet presence as explained above and to make visiting and using the website as pleasant and efficient as possible.
Some browsers already allow cookies in the default setting. If you do not want them, you can change the setting of your browser. Please refer to the browser manufacturer's instructions on how to do this. If you decide not to accept cookies, it may be that parts of our website cannot be used.
FundraisingBox (donation campaigns)
We use the FundraisingBox software on our website::
https://www.fundraisingbox.com/tour/
FundraisingBox offers organizations, institutions, associations and foundations the possibility of online fundraising and donation management with the support of a software. To process online donations, we use the service FundraisingBox of the provider Wikando GmbH, Schießgrabenstr. 32, 86150 Augsburg, Federal Republic of Germany.
The data necessary for processing donations (name, address, email, account or credit card data) are requested in a form provided by FundraisingBox on our website, linked to donation date and time, encrypted and transmitted directly to FundraisingBox. Your data are then stored on servers of Wikando GmbH in the Federal Republic of Germany until deletion and are exported to our own donation database for the purpose of further processing and, if necessary, contacting you. Under no circumstances will these data be passed on, sold, leased or otherwise commercially disposed of without your express consent.
For security reasons, the IP address is only stored for a period of 24 hours and then deleted.
If you would like to learn more about FundraisingBox's privacy policy, please click the following link: https://www.fundraisingbox.com/privacy.
For the provision of the donation form, the following cookies can be stored and read in your browser:
Designation | Function duration | Can be accessed by third parties | Domain | Typ |
AWSALB | 7 days | yes | secure.fundraisingbox.com | Third-Party-Cookie |
AWSALBCORS | 7 days | yes | secure.fundraisingbox.com | Third-Party-Cookie |
box | 24 hours | yes | secure.fundraisingbox.com | Third-Party-Cookie |
Performance cookies:
Statistical data help us to continuously improve our web presence and to enable the greatest possible user convenience. Insofar as we use these options, we do so on the basis of anonymized evaluations. In this way, we know, for example, which areas of our website were visited frequently and which were not visited at all or only visited for a short time.
We only use cookies for statistical purposes with your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Google Analytics (_gid, _gat_gtag und _ga):
We would like to tailor the content of our websites as precisely as possible to your interests and in this way improve our services for you. To identify usage preferences and particularly popular areas of the websites, we use Google Analytics.
When using these analytics services, data may be transferred to servers located in the United States of America and processed there. Please note the following: From the perspective of the European Union, there is no "adequate level of protection" for the processing of personal data in the United States of America that corresponds to EU standards. However, this level of protection can be replaced for individual companies by certification under the so-called “EU-US Privacy Shield”.
Google Analytics is a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses cookies to enable an analysis of the use of our website. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. However, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting States of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States of America and shortened there. The IP address transmitted by your browser using Google Analytics will not be merged with other data from Google. The cookies stored by Google Analytics are deleted after 24 months at the latest.
The following links provide you with information on data protection and the terms of use at Google Analytics.
If you do not wish to do so, you can edit your cookie settings again in our footer and revoke your consent of the performance cookies.
Embedding of YouTube videos
We have embedded YouTube videos into our website. These videos are stored on the YouTube platform at https://www.YouTube.com and may be played directly from our website. The videos are all embedded in the “enhanced data protection mode”. This data protection mode is provided by YouTube; it ensures that YouTube does not automatically store any cookies on your device; i.e. that no information about you as user will be transferred to YouTube if you do not play the videos. Only when you play the videos will the information described in the following paragraph be transferred. In addition, you are given the option to agree to the playing of YouTube videos on this site in the context of our cookie notification. We have no control over the transfer of data.
When you visit the website, YouTube is informed that you have opened the particular page on our website. In addition, the data listed under “Collection of general data and information, so-called log files” is transferred. This occurs regardless of whether you are logged into a user account provided by YouTube or no such user account exists. If you are logged into Google, your data is directly associated with your account. If you do not wish to be associated with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses it for purposes of advertising, market research, and/or tailored website design. This analysis (which applies even to anonymous users) is primarily used for placing tailored advertisements and informing other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, but in order to exercise this right you must contact YouTube.
For more information about the purpose and scope of data collection and processing by YouTube, please refer to Google’s privacy policy and terms of service.
Information on Google’s privacy policy and terms of service can be found in the links below.
If you do not wish to do this, you may amend your cookie settings in our footer and revoke your consent with regard to YouTube videos.
Newsletter
We offer you the possibility to subscribe to a newsletter on our website.
Our regular email newsletters are sent via the technical service provider CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede (“CleverReach”), to whom we pass on the data provided by the user when registering for the newsletter. The data entered by users for the purpose of newsletter subscription (e.g. email address) is stored on CleverReach’s servers in Germany.
If you have given us separate consent to send this to you by email, the corresponding processing is based on Art. 6 (1) (1) (a) GDPR.
CleverReach uses this information to send and statistically evaluate the newsletters on our behalf. For the evaluation, the sent emails contain so-called web beacons or tracking pixels, which are single-pixel image files that are stored on our website. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. With the help of so-called conversion tracking, it can also be analyzed whether a predefined action has taken place after clicking on the link in the newsletter. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). The data is collected exclusively pseudonymously and is not linked to other personal data of the users; a direct reference to the user’s person is excluded. This data is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
The disclosure of the users’ personal data enables us to use a promotionally effective, secure and user-friendly newsletter system that can be optimized.
These purposes are also our legitimate interest in processing the data according to Art. 6 (1) (f) GDPR. By anonymizing the IP address, the interest of users in the protection of their personal data is sufficiently taken into account.
If we process your personal data on the basis of your consent, you can revoke your consent at any time without this affecting the lawfulness of the processing that has taken place to date. If consent is revoked, we will cease the corresponding data processing.
If you no longer wish to receive the newsletter in the future, you can also simply unsubscribe at any time, e.g. by emailing info(at)dietagespoststiftung.org, or by clicking on the link to unsubscribe from the newsletter, which you will find in every newsletter email. Your newsletter data will be deleted within 3 months after you have stopped receiving the newsletter, provided that there are no legal obligations to retain the data.
Blog post/congratulations
You have the option to post a comment on our blog/congratulations page if you have consented accordingly. For this purpose, we need your name and email address. When you send your comment, your IP address is also stored along with the time and date. The email and IP addresses are not published by us and are not visible to other users of our blog.
This is done for our own protection, in order to be able to check and, if necessary, initiate legal steps in the event of unlawful comment content. The email address is used to communicate with you in relation to your blog comment and, if you have subscribed to subsequent comments, to notify you of them. We will only send you other non-administrative emails if you request this and have given us your consent for this purpose.
The data are generally stored until you cancel your registration or you object to the publication of your contribution. The IP address together with the date and time of the comment will not be deleted as long as this comment is publicly accessible. However, all data will be stored in the event of an unlawful comment until the follow-up proceedings have been concluded or are no longer imminent.
You have the right to cancel your registration at any time / to object to the publication at any time and to change your stored data, as well as to revoke your consent with effect for the future.
Scope of this privacy policy
This data protection statement only applies to the content on our website and the data processing on the servers we use. They do not include such content and third-party websites to which our offer merely links. This applies, for example, to social networks such as Twitter, YouTube and the like. The processing of your personal data via these social networks is carried out by the respective operator of the network without us having any influence on this processing. This also applies with regard to your personal data that you provide to us via such a platform, for example by writing to our profile in the respective social network. Information on the handling of your personal data and its protection on these platforms can be found in the privacy policy of the respective platform.
However, if we store your personal data, which you have communicated to us via a social network or which we receive from a social network, on our own servers and use it for the purpose of processing your query or request or for other purposes, our explanations of this data protection declaration shall of course apply in this respect.
Change to the data protection notice
In order to ensure that our data protection information always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the data protection information has to be adapted due to new or revised offers or services.
Status: 05. March 2021, Version 1