EU network of mesocosms facilities for research on marine and freshwater ecosystems open for global collaboration.

AQUACOSM-plus Privacy Policy

1.  Data privacy statement

1.1  Privacy Policy in accordance with the General Data Protection Regulation (GDPR)

Thank you for visiting of the AQUACOSM network projects website and for your interest in mesocosm research. Below you will find detailed information about how your data is handled.

In compliance with the applicable data protection laws, we process personal data that is collected when you visit our websites. We will not publish your data or disclose it to any third parties without prior authorisation. In the following sections, we explain which data we collect when you visit our websites, and exactly how this data is used.

1.2  Name and address of the Controller

The Controller Organisation for the H2020 AQUACOSM and AQUACOSM-plus projects, within the meaning of the General Data Protection Regulation, is:

Leibniz-Institute of Freshwater Ecology and Inland Fisheries (IGB) in the Forschungsverbund Berlin e.V.

Müggelseedamm 310

12587 Berlin

Germany

Telephone: +49 (0)30 641815

Email: info(at)igb-berlin.de

Website: www.igb-berlin.de

1.3  Name and address of the Data Protection Officer

The controller’s Data Protection Officer is:

Johannes Höper

Forschungsverbund Berlin e.V.

Rudower Chaussee 17

12489 Berlin

Germany
Telephone: +49 (0)30 63923311

Email: datenschutz(at)fv-berlin.de

Website: www.fv-berlin.de

2.  General information about data processing

2.1  Scope of personal data processing

In general, we only process personal data concerning our users where necessary in order to provide a functional website and to provide our content and services. Personal data concerning our users will only be processed regularly if the user has given his or her consent. An exemption applies in such cases where it is impossible, for reasons of fact, to gain prior consent and the processing of data is permitted by law.

2.2  Legal basis for personal data processing

Where we obtain the consent of the data subject for processing procedures, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is party, Article 6(1)(b) GDPR serves as the legal basis. The same applies for processing procedures that are necessary in order to take steps prior to entering into a contract.

Where it is necessary to process personal data for compliance with a legal obligation that IGB must meet, Article 6(1)(c) GDPR serves as the legal basis.

In the event that the vital interests of the data subject or of another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.

If processing is necessary for the purposes of the legitimate interests pursued by the Controller Organisation or by a third party and if the aforementioned interests are not overridden by the interests or fundamental rights and freedoms of the data subject, then Article 6(1)(f) GDPR serves as the legal basis for processing.

2.3  Erasure of data and storage period

The personal data concerning the data subject will be erased or made unavailable as soon as the purpose of storage ceases to apply. Data may also be stored where provision has been made for this by European or national legislators in Union regulations, laws or other provisions to which the Controller’s Organisation is subject. Data will also be made unavailable or erased where a storage period prescribed by the aforementioned legislation expires, unless there is a need for the further retention of the data for the purpose of entering into or performing a contract.

3.  Provision of the website and creation of log files

Every time our website is visited, our system automatically collects data and information from the computer system of the requesting computer in so-called log files.

The following data is collected in this connection and stored in our systems’ log files:

  • Date and time of access
  • User’s IP address
  • Websites called up from the user’s system via our website
  • Websites from which the user’s system reached our website
  • Information about the browser type and version
  • Information about the user’s operating system
  • Information about the user’s internet service provider

This data will not be stored together with other personal data concerning the user and will not be individually identified.

Data is stored in log files in order to ensure the functionality of the website. In addition, the data serves the purpose of optimizing the website, of eliminating any possible malfunctions and of preserving the security of our information technology systems.

Data is deleted as soon as it is no longer necessary for the purpose for which it was collected.

Log file data is deleted after seven days. If the Controller’s Organisation has a need to store log file data for a longer period due to technical requirements or security aspects, the data is suitably edited to prevent user’s identification.

Such storage is essential and cannot be objected to by the user.

The legal basis for the storage of data and log files is Article 6(1)(f) GDPR.

4.  Use of cookies

4.1  Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user’s computer system. When a user requests a website, a cookie can be stored on the user’s operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when you next visit the website.

4.2  Essential cookies

We use cookies to make our website more user-friendly. Some elements of our website require that the requesting browser can also be identified after changing to a different website.

In the process, the cookies store and transmit the following data:

  • Log-in information (session data)

These cookies are deleted when you close the session. No user profiles are created by essential cookies. The legal basis for the use of such cookies can be found in Article 6(1)(f) GDPR.

4.3  Non-essential cookies

In addition, we also use cookies on the AQUACOSM website that enable the analysis of users’ surfing behaviour. Concerning this, please read Section “Web analytics”:

5.  Web analytics

5.1  Google Analytics

Our website uses Google Analytics for statistical data collection. Using cookies and JavaScript, this information is collected and stored. The following data and information is collected every time the user visits the website:

  • Referrer URL
  • Name and version of the user’s operating system
  • Name, version and language setting of the user’s browser
  • Search terms entered
  • Frequency of page views

When JavaScript is enabled, the following information is additionally collected:

  • URLs visited on this website
  • Time when the website was visited
  • Nature of the HTML query
  • Screen resolution and colour depth
  • Technologies and formats supported by the browser (e.g. cookies, Java, Flash, PDF, Windows Media, QuickTime, Realplayer, Director, SilverLight, Google Gears) 

This data is stored within the Google Analytics platform only. Data is not disclosed to any third parties. 

In this way, The Datacontroller’s Organisation obtains information about how the individual components of a website are used. This enables us to improve online content and the usability of the website. The user is notified accordingly when requesting the website.

The legal basis for the personal data processing required for this task involving the use of cookies is the legitimate interest of the provider in accordance with Article 6(1)(f) GDPR.

5.2  Opt-out

When requesting our websites, the user is notified of this type of data collection. You may of course object to data being collected. The following independent opt-outs are available for this purpose:

  1. Enable the “Do Not Track” setting in your browser. As long as this setting is enabled, our server will not store any data concerning you whatsoever. Note: the Do Not Track instruction usually only applies for the device and the browser in which you enabled the setting. If you use several devices/browsers, then you must enable the Do Not Track function separately for each one.
  2. Use our Google Analytics opt-out function. Click on the check in the checkbox stop or re-enable data collection.

Some websites that are accessible via a link from the www.aquacosm.eu website use different analytical software. Although the type of information collected by such software may differ slightly, an opt-out possibility is also available there.

5.3  Duration of storage, possibility of objection and removal

Cookies are stored on the user’s computer and transmitted from there to our website. As the user, you therefore have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been stored can be deleted at any time. This can also take place automatically. If cookies are disabled for our website, you may not be able to use the full functionality of the website.

6.  Newsletter

On our website, you can subscribe to a newsletter – the AQUACOSM-Newsletter – that is free of charge. When registering for the newsletter, the following data was transmitted to us:

  • Username
  • Email address
  • First name
  • Last name
  • Institution
  • Telephone
  • Organisation Type:
    • Public
    • Policy
    • Research
    • Education
    • Industry
    • SME

As part of the registration process, we notify you of the specific processing of this data, and obtain your consent. In addition, reference is made to this Privacy Policy. The data will only be used for the purpose of sending the newsletter.

The legal basis for the processing of data after registration for the newsletter is the user’s consent in accordance with Article 6(1)(a) GDPR. Data is collected for the purpose of sending the newsletter. Data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. The user’s email address will therefore be saved as long as the newsletter subscription is active. The user concerned may terminate his or her subscription to the newsletter at any time. Each newsletter contains a link for this purpose.

7.  Contact form

Our website contains a contact form that can be used to establish contact electronically. If a user uses this option, the data entered in the input mask is transmitted to us and saved. In this connection, the data usually consists of:

  • Name (obligatory)
  • Email (obligatory)
  • Telephone (optional)
  • Institution (optional)
  • Organisation Type (optional)
    • Public
    • Policy
    • Research
    • Education
    • Industry
    • SME

At the time of sending the contact form, the following additional information is also collected automatically:

  • The user’s IP address
  • Date and time of registration

The automatically collected data mentioned above serve the purpose of ensuring the proper operation of IT. It is deleted after 7 days.

During the process of using the contact form, we notify you of the specific processing of the data, and obtain your consent. In addition, reference is made to this Privacy Policy. The data will only be used for the purpose of processing the conversation. 

The legal basis for the processing of data in the context of using the contact form, if the user’s consent has been given, is Article 6(1)(a) GDPR. Personal data is processed solely for the purpose of processing the contact request. Data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. This is the case when the relevant conversation with the user has ended or when the user’s request has finally been processed. The conversation has ended when it can be gathered from the circumstances that the issue in question has finally been clarified. The user may at any time withdraw his or her consent to the processing of personal data vis-à-vis the contact persons listed.

7.1  Improper use of contact form

In order to prevent the improper use of the contact form, particularly automatic mass use, the website administrators reserve the right to add a control function to the contact form. This may involve the additional transmission of information from the user’s computer to our central server and possibly to a third party (manufacturer of the control function). The legal basis for this is the provider’s legitimate interest in the processing of data in accordance with Article 6(1)(f) GDPR. A reference in the contact form enables you to find out about data processing from the manufacturer of the control function. 

There is no possibility to object to the use of the control function.

  • Two bytes of the IP address of the user’s requesting system
  • The requested website
  • The website from which the user accessed the requested website (referrer)
  • The subpages called up from the requested website
  • The time spent visiting the website
  • The frequency of requesting the website

In the process, the software runs on our website’s servers. The user’s personal data is only stored there. Data is not disclosed to any third parties.

8.  RSS-Feeds-Copyright

RSS is an electronic news presentation format that allows the user to subscribe to the content of a website – or parts thereof – as so-called RSS feeds or even integrate them into other websites. The Datacontroller grants (revocable) authorisation for other websites to integrate the content of its RSS feeds using active links to the original article, provided the source is named. The feeds may not be displayed in frames, and must instead open in a new browser window. We only allow the integration of headings and teasers. Unfortunately, we cannot allow the integration of pictures from RSS feeds. Other extracts and in particular the integration or dissemination of full reports or other articles from our website are not permitted. The statutory provisions of copyright and trademark law apply.

The Datacontroller reserves the right to deny the use or integration of RSS feeds without stating reasons. We do not guarantee any availability and we do not provide any services in the scope of this offer. In particular, we reserve the right to technically modify, revise or completely discontinue the feeds at any time without notice.

If you integrate our RSS feeds into third-party websites, please send the link to: pr(at)igb-berlin.de

9.  Plug-ins

9.1  Links to YouTube videos

The website of the AQUACOSM network projects uses a plugin of the company YouTube, a subsidiary of Google.inc. When you visit a page that contains this plugin, a connection is made to the servers of YouTube and YouTube learns that a video has been accessed via the website of the AQUACOSM network projects. If you happen to be logged into your YouTube account at the same time, then YouTube can identify you as the viewer of this video. If you do not wish your viewing history to be recorded, then you should log out of your YouTube account before using the plugin. More information on how YouTube collects and uses your data can be found at www.google.com/intl/en/policies/privacy/.

9.2  Facebook-Disclaimer

The AQUACOSM network projects maintain a representation (pages) on the social network Facebook (Address: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland). You may access these pages via access points (plugins) on the IGB website. The plugins used here are the facebook company logo or the “Like” button. A list of different facebook-plugins may be found here.

On visiting the website of the AQUACOSM network projects this plugin creates a connection between your browser and a Facebook-server, thus informing facebook about a contact between your IP-address with our website. If you click the like-button while simultaneously being logged into your Facebook-account, content of our website will be connected to your Facebook-account. This will enable Facebook to link your account to your visit of our pages.

The Datacontroller has no knowledge about the content or the data transferred with this connection and also has no information about the use of said data by Facebook. We refer, however, to the Facebook privacy policy.

Should you object to a connection of the AQUACOSM-content to your Facebook-account, we recommend to log off facebook before visiting our website or the AQUACOSM(-plus) pages on facebook.

9.3  Use of Twitter functions

Twitter is a microblogging service of the company Twitter Inc. On Twitter registered users can spread telegram-like short messages. The website of the ITUC contains functions of the company Twitter Inc. (Address: 795 Folsom Street, Suite 600, San Francisco, CA 94107, USA). If you use Twitter, in particular the function “Re-Tweet”, Twitter links your Twitter account with your visited websites. This will be announced to other users on Twitter, eszpecially the subscribers of your Tweet messages (“followers”). In this case a data transmission on Twitter takes place.

Although the AQUACOSM network projects provide a website with Twitter functions, the Datacontroller’s organisation is not informed by the company Twitter about the content of the transmitted data or data use.

We refer to the privacy policy of the company Twitter. If desired, you can change your privacy settings at Twitter in your local account settings under http://twitter.com/account/settings.

10.  Data transmission

Your personal data will only be transmitted to state institutions and authorities when required by legislation or for the purpose of prosecution for attacks on our network infrastructure. Data will not be disclosed to third parties for any other purpose.

11.  Personal Information in the Context of the AQUACOSM-plus Transnational Access Programme

If you apply for Transnational Access, a number of personal information is stored and processed. We take the protection of your personal information very seriously. The AQUACOSM network projects collect personal data from users, which will be stored and used for processing your Transnational Access application, for statistical and administrative purposes according to the EC funding and reporting obligations as well as for statistical analysis of the AQUACOSM network projects’ services and user community. Data collected by the AQUACOSM network projects on behalf of the European Commission will be forwarded to the European Commission for official use only, and will remain confidential. The AQUACOSM network projects will not make personal details available to other organisations without the knowledge of the users, unless obliged by law.

Applicants are referred to this statement on the start page of the proposal submission tool. In addition, during the electronic proposal submission procedure they are asked to confirm their consent that the data collected for the processing of their application may be used as indicated in this statement.

11.1  Public information about Transnational Access projects

The following information on Transnational Access projects will appear on the AQUACOSM.eu webpages:

  • proposal number and title,
  • year of completion,
  • PI’s name and affiliation.
  • To be amended

12.  Rights of the data subject

If personal data concerning you is processed, you are the data subject within the meaning of the General Data Protection Regulation and have the following rights vis-à-vis the Datacontroller – unless statutory exceptions apply in specific cases:

  • Withdrawal of consent (Article 7(3) GDPR)
  • Access (Article 15 GDPR)
  • Rectification (Article 16 GDPR)
  • Erasure (Article 17(1) GDPR)
  • Restriction of processing (Article 18 GDPR)
  • Data portability (Article 20 GDPR)
  • Objection to processing (Article 21 GDPR)
  • Lodging of a complaint with the supervisory authority (Article 77 GDPR)

For Forschungsverbund Berlin e.V. and IGB as Datacontroller for the AQUACOSM network projects, the supervisory authority is: The Berlin Commissioner for Data Protection and Freedom of Information, Friedrichstr. 219, 10969 Berlin, Germany.