1. An overview of data protection
Data collection on our website
Who is responsible for the data collection on this website?
Party responsible for data processing according to Art. 4 par. 7 EU-General Data Protection Regulation (GDPR) is Frankfurt School of Finance & Management gGmbH, Adickesallee 32-34, 60322 Frankfurt am Main, Telephone: +49 (0) 69 154008-0, E-Mail: firstname.lastname@example.org (further information contained in Imprint)
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you send us via E-Mail.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.
What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent supervisory authorities.
Analytics and third-party tools
You can object to this analysis. We will inform you below about how to exercise your options in this regard.
2. General information and mandatory information
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
Who is the data controller?
The data controller for the data processing on this website is:
Frankfurt School of Finance and Managment gGmbH
60322 Frankfurt am Main
Phone: 069 154008-0
The data controller is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).
Rights of data subjects
Right of access: You have the right to obtain confirmation as to whether the data in question are processed and to obtain access to such data, as well as further information and a copy of the data.
Right of rectification: You have the right to request the completion of the data concerning you or the rectification of inaccurate data concerning you.
Right to erasure and restriction of processing: In accordance with the legal regulations, you have the right to demand that the data concerned be erased or, alternatively, to demand that the processing of the data be restricted.
Right to data transfer: You have the right to receive data concerning you which you have made available to us in a structured, common and machine-readable format in accordance with the legal regulations or to demand its transfer to another data controller.
Complaint to supervisory authority: You also have the right to file a complaint to the supervisory authority in accordance with the legal regulations.
Right of revocation: You have the right to object to any consent given with effect for the future.
Right of objection: You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data on the basis of Art. 6 para. 1 lit. e or f GDPR. This also applies to profiling based on these conditions. If your personal data are processed for the purpose of direct advertising, you have the right at any time to object to the processing of the personal data for the purpose of such advertising. This also applies to profiling insofar as it is connected with such direct advertising.
You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
3. Data protection officer
Statutory data protection officer
We have appointed a data protection officer for our company.
Our data protection officer can be reached at email@example.com or our postal address with the addition “the data protection officer”.
4. Data collection on our website
Some the cookies we usually use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
[borlabs-cookie type=”btn-cookie-preference” title=”Change Cookie Settings”/]
Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. The data is stored for 14 days. These are:
• Browser type and browser version
• Referrer URL
• Time of the server request
• IP address
These data will not be combined with data from other sources.
The basis for data processing is Art. 6 (1) (f) GDPR. Our legitimate interest is to ensure confidentiality and integrity.
Processing of data (contanct data, stock data)
When you contact us, for example by e-mail or our contact form, we process the data you have provided us with in this context. If your details are used for the purpose of handling the contact enquiry and its processing within the framework of contractual/pre-contractual relationships, the legal basis is Art. 6 Para. 1 lit. b GDPR. For other inquiries, Art. 6 Para. 1 lit. f GDPR is the legal basis for the processing.
We delete your data if they are no longer required for the purpose for which they were collected and if there are no legal retention periods to the contrary.
5. Analysis tools and advertising
This website uses Google Analytics, a web analytics service. It is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services related to website and Internet use.
The legal basis for the use of Google Analytics is your consent in accordance with Art. 6 para. 1 lit. a GDPR
The recipient of the collected data is Google.
Personal data will be transferred to the USA under the EU-US Privacy Shield on the basis of the European Commission’s adequacy decision. You can download the certificate https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI
The data sent by us and linked to cookies, user-identifiers (e.g. User-IDs) or advertising-identifiers are automatically deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month.
You can revoke your consent at any time with effect for the future by blocking the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functionalities of this website to their full extent.
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the https://tools.google.com/dlpage/gaoptout?hl=en . Opt-out cookies will prevent future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt-out on all systems used. If you click here, the opt-out cookie will be set:
Outsourced data processing
We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
6. other tools and integration of third parties
Within our website, we offer content or services from third parties in order to integrate their content and services on the basis of our legitimate interests (i.e. optimisation and economic operation of our online services, Art. 6 Para. 1 lit. f GDPR)
This always requires that the third-party providers receive the IP address of the user, since they would not be able to send the content to their browser without the IP address.
We incorporate the fonts (“Google Fonts”) of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. According to Google, user data is used only for the purpose of displaying fonts in the user’s browser. The integration takes place on the basis of our legitimate interests in a technically secure and efficient use of fonts and their uniform presentation. For more information please visit https://www.google.com/policies/privacy/.
Functions and contents offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated into our website. This may include, for example, content such as images, videos or texts and buttons with which users can share content from this online service within Twitter.
if you are logged in to Twitter during your visit to our website, Twitter can assign the call of the above-mentioned contents and functions to your profile. Twitter is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). For information about data protection please visit https://twitter.com/de/privacy, Opt-Out: https://twitter.com/personalization.
7. Changes to the data protection declaration
We reserve the right to change or amend this data protection declaration at any time, taking account of applicable data protection regulations.