Privacy statement
Data privacy information for the pilot environment and bridge solution Link and Learn
As the Link and Learn project team, we take the privacy of your personal data very seriously. In the following, we would like to inform you how we process your data and what rights you have in connection with your personal data.
1. Who is responsible for processing personal data and can the data protection commissioner be contacted?
Responsibility for data protection lies with:
Contact details of office responsible
SKA Dez Gdl/WE Dig Ausb SK
Pascalstraße 10s
53125 Bonn
Germany
Telefon: +49 228 5504 2893
If you have any questions, suggestions or complaints, we can be contacted at the above postal address, telephone number or e-mail address.
2. What categories of personal data are processed and where does this data come from?
a) Server infrastructure log files
Each time a user accesses content or calls up a file in the Bundeswehr learning management system, data on this activity are stored in a log file and processed for a limited period. After 60 days, these log files are automatically deleted.
In detail, the following data on each such activity are stored:
- IP address of the requesting computer
- URL of the page called up or name of the data called up
- Date and time accessed
- Information on whether the activity was successful
- Browser type, version and language
- Device and operating system used
- Volume of data transferred
Data are evaluated for error analysis purposes and to improve the services offered. The data are only used for other purposes or forwarded to third parties if there is a legal obligation to do so or if this is ruled by a court decision.
b) Establishing contact by e-mail/contact form
If you contact one of the contact persons specified on a Bundeswehr Internet/Intranet page, the data you provide (in particular surname and first name or at least your e-mail address and the information/personal data contained in the e-mail) are processed in accordance with the deadlines that apply to the storage of records. These data are processed on the basis of Article 6 (1) (e) of the EU GDPR (European General Data Protection Regulation) in conjunction with Section 3 of the Federal Data Protection Act (BDSG). It is necessary to process the personal data you provide so that you can be contacted and your request can be handled.
Your IP address is also forwarded. Your IP address is only used as part of governmental criminal prosecution and hazard prevention measures in compliance with the legal requirements.
3. For what purposes are the data processed and on what legal basis is it permitted to do so?
When determining which specific regulations are applicable, it is always necessary to take into account the nature of the personal data and the specific purpose for which they are processed. We collect and process your personal data to conduct training, information activities and administration work and in order to maintain information security. The data are thus processed for completing or fulfilling a task (Article 6 (1) (e) of the EU GDPR in conjunction with Section 3 of the Federal Data Protection Act (BDSG)) or with the explicit consent of the data subject (Article 6 (1) (a) of the EU GDPR).
4. To which categories of recipients are the personal data forwarded?
We handle your processed personal data confidentially. For this reason, only those organisational elements and personnel for which/whom this is necessary to fulfil the above-mentioned purposes are given access to the personal data. Hence only those members of the Link and Learn project team and those persons at the Bundeswehr Communication and Information Systems School as the processing agency for whom your personal data is essential to fulfil a task have access to them.
We would like to point out that data communication on the Internet (e.g. communication via e-mail) can involve security gaps. Absolute protection of your data against access by third parties is not possible.
5. Are the data also forwarded to recipients in countries outside the scope of the European General Data Protection Regulation?
Your data are not forwarded abroad but only to recipients within the territorial scope of the GDPR, which guarantees a high level of data protection at all times.
6. What about the security of the data?
State-of-the-art technical and organisational security measures are taken in order to protect personal data provided to us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The security measures are continuously improved to reflect the latest technological developments.
7. Are you obliged to provide your data and what would the consequences be for you if you do not provide the data?
Obligatory data are used to register, administer and observe information security requirements. Failure to provide the data can result in restriction of website use.
8. For how long are personal data stored?
We process and store your data until the purposes specified under points 2 and 3 have been achieved and we are no longer under a legal obligation to store your data.
9. What rights do you have with regard to your data?
You have the right to:
- information on the processing of your personal data (including information on the purpose, recipient and duration of storage) in accordance with Art. 15 of the EU GDPR,
- rectification of inaccurate personal data (Art. 16, EU GDPR),
- erasure in accordance with Art. 17, EU GDPR,
- restriction of processing (in accordance with Art. 18, EU GDPR),
- data portability (Art. 20, EU GDPR), and
- object to the processing of your data at any time (Art. 21, EU GDPR). If you object, your personal data will no longer be processed. An exception is made if there are compelling reasons worthy of protection that prevail over your interests
10. Do you have the right to lodge a complaint with a supervisory authority?
To safeguard all the rights specified in this paragraph, any data subject may contact the data protection officer.
In addition, if you believe that your data are not being processed in compliance with data protection regulations, you may lodge a complaint with the Commissioner for Data Protection and Freedom of Information, Graurheindorfer Straße 153, 53117 Bonn, Germany. (Art. 77, EU GDPR)
The data protection officer:
Datenschutzbeauftragte(r) für den Geschäftsbereich BMVg, DSB GB BMVg
Fontainengraben 150
52123 Bonn
Germany
E-mail: DSBGBBMVg@bmvg.bund.de
11. Are the data used as a basis for making automatic decisions? If so, how is this done and what effects does it have on the individual?
No, decisions are not made automatically.
12. Can this information be changed and, if so, how do you find out about it?
Since our data processing is subject to changes, we will also adapt our data protection information from time to time. We will provide information on changes to our data protection regulations at this point.