Personal data is any data that can be used to identify you personally.
This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
As the operator of the website, we take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory provisions of the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and all other relevant data protection regulations as well as this privacy policy.

We would also like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible

1 General information

The responsible provider of this website in terms of data protection law is

CiS Solutions GmbH
Konrad-Zuse-Str. 14
99099 Erfurt
Phone: +49 361 663 1410
E-Mail: info@cis-solutions-gmbh.de

URL: https://www.cis-solutions-gmbh.de

Managing directors: Prof. Dr. Thomas Ortlepp and Thomas Brock
Jena Local Court, HRB 522510

Data Protection Officer:

No data protection officer has been appointed, as none of the criteria specified in GDPR Article 37 (1) and Section 38 BDSG (19) apply.
To assert your rights, report data protection incidents and for suggestions and complaints regarding the processing of your personal data and to withdraw your consent, please contact the controller named above.

1.1 Legal basis

Below you will find an overview of the legal bases of the GDPR, on the basis of which we process personal data. In addition to the provisions of the GDPR, other national data protection regulations may apply.

• Consent (Art. 6 para. 1 sentence 1 lit. a. GDPR) – The data subject has given their express consent to the processing of their personal data for a specific purpose or several specific purposes. You can revoke your consent at any time with effect for the future. Processing that took place before the revocation is not affected by this.
• Performance of a contract and processing of pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR) – Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
• Legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject, e.g. in the context of legal obligations to retain business documents.
• Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

1.2 Security measures

Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

These measures serve in particular to ensure the confidentiality, integrity and availability of data, services and systems, the input, disclosure, safeguarding of availability and separation of data. We have established procedures that ensure the exercise of data subject rights, the deletion of data and responses to data threats. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

1.3 Deletion of data

Your data processed when using our website will be deleted or blocked as soon as the purpose of storage no longer applies, the deletion of the data does not conflict with any statutory retention obligations and no other information is provided below on individual processing procedures.

 

2 Provision and use of the website / server log files / cookies

In order to be able to provide our online offer securely, we use the services of external web hosting providers with whom we have concluded an order processing agreement. This is a contract prescribed by data protection law, which ensures that the personal data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

SSL encryption (https): We use SSL encryption to protect your data transmitted via our website. You can recognize such encrypted connections by a lock symbol or the prefix https:// in the address bar of your browser.

2.1 Hosting and server logs

Purposes of processing: For technical reasons, in particular to ensure a secure and stable Internet presence and convenient use of our website, data is transmitted to us or to our web host by your Internet browser and stored in so-called server log files.

Processed data types: These server log files include the address and name of the web pages and files accessed, date and time of access, data volumes transferred, notification of successful access, browser type and language and version, the user’s operating system, referrer URL (the previously visited page) and, as a rule, the IP address of the requesting end device and the requesting provider.

The data collected in this way is stored temporarily, but not together with other data about you.

Data subjects: Users/visitors to our website

Legal basis: This storage takes place on the legal basis of Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality and security of our website. If a corresponding consent has been requested on our website, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.

Recipient of the data: The log data is received by our web host, who works for us under a data processing agreement.

Service providers used:

• ALL-INKL.COM – Neue Medien Münnich, Owner: René Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany; Website: https://all-inkl.com/; Privacy Policy: https://all-inkl.com/datenschutzinformationen/

Storage period: The data will be deleted after 7 days at the latest, unless further storage is required for evidence purposes. Otherwise, the data is exempt from deletion in whole or in part until the incident has been finally clarified.

Disclosure to third parties: The log data (access, browser type and language, date and time of access, IP address) will not be passed on to third parties – with the exception of our web host. Our web host reserves the right to check the above-mentioned log data retrospectively if there are concrete indications of unlawful use.

Right to object: You have the right to object to the processing of the above-mentioned log data. If you wish to exercise your right to object, simply send an e-mail to info@cis-solutions-gmbh.de

You are neither legally nor contractually obliged to provide your personal data. However, failure to provide it may mean that you cannot use our website or cannot use it to its full extent.

2.2 Content Management System

Our website uses WordPress with the following plugins:

• Classic Editor
• Insert HTML snippet
• Pretix widget
• New photo gallery
• Superb Addon

These plugins only process data to the extent necessary to display the website.

2.3 Submission of conference papers and participation in conferences

We integrate an online conference management system via our website that is used to plan, organize and hold specialist conferences.
We also provide an e-ticket system via our website, which participants can use to pay participation fees.

Processed data types and data subjects:

Participant data

We collect the following data when you register:

• Personal master data (name, affiliation)
• Communication data (telephone, e-mail, address)
• Contract master data
• Customer history
• Contract billing and payment data
• Planning and control data

Additional data from speakers

Lecturers are additionally charged:

• Content of the speech
• Names of the co-authors
• Biographical information for the conference program

Program Committee

From members of the program committee we process:

• Names, titles
• University/Organization
• Communication data

Legal basis: Fulfilment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. GDPR), Legal obligation (Art. 6 Para. 1 S. 1 lit. c. GDPR), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR). Our legitimate interest lies in planning and ensuring a smooth process for each participant.

Recipient of the data: The above-mentioned data is received by our company and by processors with whom we have concluded a data processing agreement. Within our company, we ensure that only those persons are granted access to your data who are authorized to do so on the basis of contractual or legal obligations.

Service providers used (processors)

• See chap. 3

Storage period: We delete the data once the contract has been fully processed, but must observe the retention periods under tax and commercial law.

Disclosure to third parties: In the context of contract processing, we pass on your data to co-organizers/organizers, to the program committee, to processors and to financial service providers, insofar as the transfer is necessary for payment purposes. The legal basis for the transfer of data is then Art. 6 para. 1 lit. b) GDPR.

Right to object: You have the right to object to the processing of your personal data. If you wish to exercise your right to object, simply send an e-mail to info@cis-solutions-gmbh.de

2.4 Cookies

Only technically necessary cookies are used on our website by our processor rami.io. This means that there is no obligation to provide a cookie declaration and no consent is required from you. The cookies are only used for the operation and security of the shopping cart function in the Pretix e-ticket system.

Using the widget

Cookies are only set when the user interacts with the widget (= selection of a product and start of the purchase process). The following cookie is set in the context of the embedded website:

Name	Technology	Data collected	Storage duration	Intended use
pretix_widget_<url_ des_ticketshops>	Cookie	Shopping cart number	30 days	The cookie is used so that if the purchase is canceled, e.g. if the browser crashes, the user can continue the purchase process when the page is called up again and the reserved tickets are not lost. In our opinion, the cookie is technically necessary and therefore does not require consent.

Furthermore, the cookies mentioned below under „Ticket purchase“ are also set as part of the ticket purchase when using the widget.

Ticket purchase

When purchasing tickets or otherwise interacting directly with the ticket store, the following cookies are set with a pretix standard configuration.

 

Name	Technology	Data collected	Storage duration	Intended use
proxy_session	Cookie	Random ID	7 days	Security token to implement capacity control for high access numbers to the ticket store. In our opinion, the cookie is technically necessary and therefore does not require consent. The IDs of individual users are not merged with other databases or tracked based on them.
Host- pretix_csrftoken	Cookie	Random ID	365 days	Security token for form transmission, protection against CSRF-type attacks. In our opinion, the cookie is technically necessary and therefore does not require consent. The IDs of individual users are not merged with other databases or tracked based on them.
pretix_language	Cookie	Language abbreviation, e.g. „de“ or „en“	10 years	Saves the display language of the ticket store selected by the user so that the same language can be used again at a later call. Is only set if the user explicitly selects the language.
				In our opinion, the cookie is technically necessary for the language selection function and therefore does not require consent. Identification or tracking of the user based on this feature is already impossible due to the small amount of information it contains.
Host- pretix_session	Cookie	Random ID	14 days	This cookie is used to recognize the user for all functions that make this necessary, in particular the management of the shopping cart or realization of a login if the customer account function is available. The cookie is only set when the user uses a function that requires the cookie for the first time. In our opinion, the cookie is technically necessary and therefore does not require consent. It is not used for tracking and advertising purposes in the standard configuration.
cookie-consent- <ticketshop>	LocalStorage	Consent	permanent	If our cookie consent module is used for third-party cookies (e.g. tracking providers), the LocalStorage stores which cookies the user has consented to and which cookies they have objected to so that this can be technically guaranteed. Due to the nature of LocalStorage technology, the data is not transmitted to our servers and is only processed in the browser itself.

Other cookies may result from the use of plugins, e.g. through the integration of payment providers or tracking providers.

This storage takes place on the legal basis of Art. 6 para. 1 lit. f) GDPR. The legitimate interest in the storage of cookies is the technically error-free and optimized provision of the services. Further details can be found in chapter 3.

 

3 Processors, service providers, joint controllers

We use third parties as processors and ancillary service providers.  To ensure data protection, we have concluded a data processing agreement with processors who process data exclusively on our behalf and in accordance with our instructions.

3.1 Event management

We use the IVAM e.V. Microtechnology Network, Joseph-von-Fraunhofer-Str. 13, 44227 Dortmund, Germany, E-Mail: info@ivam.de, Phone: +49 231 9742 168, Website: https://www.ivam.de. Privacy policy: https://www.ivam.de/about/privacy?lang=en for:

• Support with the organization of the conference,
• Administration of the pretalx conference management system,
• Setting up and maintaining the pretix ticket store and
• Support in the communication (see chapter 4) and support of conference participants and speakers.

3.2 Conference contributions

We use pretalx via our processor IVAM, operator: rixx.de software development, Tobias Kunze, Mühlenbecker Weg 1, 16515 Oranienburg, Germany, VAT ID: DE309062289, Website: https://pretalx.com, E-Mail: support@pretalx.com, Phone: +49 6201 71 09 778), Server location: Germany (Hetzner Falkenstein, Backup at netcup Nuremberg), Privacy policy: https://pretalx.com/p/privacy for:

• the submission of contributions,
• the abstract management and
• the review process (selection of presentations)

3.3 Ticketing

For ticket booking we use pretix, operator and processor: rami.io GmbH, Berthold-Mogel-Straße 1, 69126 Heidelberg, Germany, Website: https://rami.io, E-Mail: support-pretix.eu, Phone: +49 6221 32177-50, Server location: Germany, Privacy policy: https://pretix.eu/about/de/privacy.

• Every connection from your computer to Pretix and between the Pretix servers is protected by encryption in accordance with current standards.
• When you purchase a ticket, Pretix uses technically necessary cookies to track your shopping cart and improve the ordering process (for cookie details, see chapter 4)
• Pretix does not store IP addresses, browser information or other unnecessary metadata beyond the duration of your request
• The Pretix team has technical access to your data, but only uses it in the event of a support request for error analysis.
• Pretix does not use the data itself and does not link it to your purchases from other organizers.
• Order notifications:
  If you provide an e-mail address from Outlook or similar providers, Pretix may deliver e-mails to you via rapidmail, a German e-mail provider, as Outlook tends to reject direct e-mails from Pretix as spam.
  The first time you click on a link in an e-mail Pretix sends you about an order, Pretix stores the information that your e-mail address appears to work. Pretix does not store anything else about this click and does not make any automatic decisions based on this information, but the information is useful for the organizer and Pretix customer service to get to the bottom of problems.

3.4 Payment processing

Payment for tickets to the conference will be processed in the e-ticket system pretix via the external payment service provider Mollie B.V., Keizersgracht 126, 1015CW Amsterdam, Netherlands, Website: https://www.mollie.com, E-Mail: info@mollie.com, Phone: +49 89 201 940 95, Privacy policy: https://www.mollie.com/de/privacy.

• Only credit card payment is permitted as a payment method.
• Credit cards such as Visa (https://www.visa.de/datenschutz), Mastercard (https://www.mastercard.de/de-de/datenschutz.html) or American Express (https://www.americanexpress.com/de/legal/datenschutzrichtlinien.html)

When you make the payment, the payment data you enter will be transmitted to both Mollie and the payment provider you have selected. The transmission of your data to Mollie is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the performance of a contract).

You have the option of withdrawing your consent to data processing at any time. A revocation does not affect the effectiveness of data processing operations that took place in the past.

Payment transactions are subject to the terms and conditions and the data protection notices of the respective payment service providers, which can also be accessed on the respective websites or transaction applications. We also refer to these for further information and the assertion of rights of revocation, information and other rights of data subjects. Details on payment via the payment service provider Mollie can be found at the following link: https://www.mollie.com/de/privacy

Mollie is the controller within the meaning of the General Data Protection Regulation (EU) 2016/679.

3.5 Consulting, scientific support and science communication

We use CiS Forschungsinstitut für Mikrosensorik GmbH, Konrad-Zuse-Str. 14, 99099 Erfurt, Germany for consulting, scientific support and scientific communication of our specialist events under joint responsibility, Website: https://www.cismst.de, E-Mail: info@cismst.de, Phone: +49 361 663 1410, Privacy policy: https://www.cismst.de/en/contact/privacy/.

3.6 Hosting of the website

See chapter 2.1

3.7 Conference mail server

See chapter 4.2

 

4 Communication

4.1 By telephone

You can contact us via the telephone number published on our website.

Processed data types: Telephone number, date and time of your call as well as information resulting from the conversation and – if requested – your surname, first name and e-mail address.

Purposes of processing: Your data is processed in order to process your contact request and to be able to contact you to answer your request.

Affected persons: Communication partners, business and contractual partners

Legal basis: The above-mentioned data is processed on the legal basis of Art. 6 para. 1 lit. b GDPR, insofar as your contact request is in connection with the initiation of a contract (e.g. request for a quote, appointment).

The above-mentioned data is processed for all other contact requests on the legal basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in being able to contact you and respond to your request at any time.

Recipients of the processed data: The above-mentioned data is received by our company. Within our company, we ensure that only those persons are granted access to your data who are authorized to do so on the basis of contractual or legal obligations.

Storage period of the processed data: The above-mentioned data will only be processed for as long as is necessary to process your contact request.

Disclosure of processed data to third parties: The above-mentioned data will only be passed on to our processors for the fulfillment of the purpose.

Right to object: You have the right to object to the processing of the above-mentioned data. If you wish to exercise your right to object, simply send an e-mail to info@cis-solutions-gmbh.de

You are neither legally nor contractually obliged to provide your personal data. However, failure to do so may mean that we are unable to respond to your request in full.

4.2 By e-mail via conference mail server @isec2025.org

If you contact us by e-mail, the data you provide will be used to process your request.

Processed data types: Master data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (inquiry content).

Purposes of processing: The provision of the data is necessary for processing and answering your request – without their provision, we cannot answer your request or can only answer it to a limited extent.

Affected persons: Communication partners, business and contractual partners

Legal basis: The above-mentioned data is processed on the legal basis of Art. 6 para. 1 lit. b GDPR, insofar as your contact request is in connection with the initiation of a contract (e.g. request for a quote, appointment).

The above-mentioned data is processed for all other contact requests on the legal basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in being able to contact you and respond to your request at any time.

Recipients of the processed data: The above-mentioned data is received by our company. Within our company, we ensure that only those persons are granted access to your data who are authorized to do so on the basis of contractual or legal obligations.

Service providers used:

• ALL-INKL.COM – Neue Medien Münnich, Owner: René Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany; Website: https://all-inkl.com/; Privacy Policy: https://all-inkl.com/datenschutzinformationen/

Storage period: Your data will be deleted if your request has been finally answered and the deletion does not conflict with any statutory retention obligations, such as in the case of any subsequent contract processing.

Disclosure to third parties: The above-mentioned data will only be passed on to our processors for the fulfillment of the purpose.

Right to object: You can object to the processing of the data collected at any time by contacting us at the following address: info@cis-solutions-gmbh.de

You are neither legally nor contractually obliged to provide your personal data. However, failure to do so may mean that we are unable to respond to your request in full.

 

5 International data transfers

5.1 Principles

Data processing generally takes place in the EU. If we process data in a third country (i.e. countries outside the European Economic Area) or if the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this will only take place in accordance with the legal requirements.

5.2 Guarantees

Subject to express consent or transfer required by contract or law, we only process or have the data processed in third countries with an adequate level of data protection. To this end, companies or organizations in these third countries must comply with suitable guarantees, such as the EU-US Data Privacy Framework (DPF) and/or undertake to comply with the so-called standard protection clauses of the EU Commission (Art. 44 to 49 GDPR).

 

6 Publications and marketing

In the area of science communication, we work closely with CiS Forschungsinstitut für Mikrosensorik GmbH as joint responsible parties. We are also supported by the Technical University of Ilmenau.

6.1 Conference program

• A printed program booklet will be published for the conference, stating the author’s name and affiliation.

6.2 Social Media

We use the communication channels of CiS Forschungsinstitut für Mikrosensorik GmbH, respectively LinkedIn, Xing and Bluesky for:

• Conference announcements and application
• Brief information on speakers (name, affiliation, lecture title)

Responsibilities and assertion of your rights as a data subject

With regard to the operation of the individual social media channels, we act as joint controllers together with the respective social media operator, unless the individual social media operators qualify as sole controllers. However, we do not have full access to the data collected by the social media operators and your profile data. Therefore, please read our privacy policy together with the privacy policy of the social media operator to obtain a comprehensive overview.

Purposes: The processing of personal data serves to expand and improve our website, to establish contact with potential customers, to maintain existing customer contacts and to interact in the community.

Legal basis: The processing takes place on the legal basis of Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in making our online presence functional and comprehensive.

The data processing processes initiated by the social networks may be based on different legal bases, which must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 para. 1 lit. a GDPR).

Types of data processed: We have access to your publicly visible data (e.g. name and profile picture if you make a public comment on our social media channel).

We process the following data for anonymous statistics:

• Followers: Number of people who follow our social media channel.
• Reach: Number of people who see a specific post; number of interactions with a post; this can be used in particular to determine which content attracts widespread interest in the community.

Affected persons: Users/visitors to our social media channels

Recipient of the data: Users and operators of the social media platforms

Storage period: The data collected directly by us via the respective social media channel is deleted from our systems as soon as the purpose for its storage no longer applies, you request us to delete it, you revoke your consent to storage or the purpose for data storage no longer applies. Stored cookies remain on your end device until you delete them.

We have no influence on the storage period of your data that is stored by the operators of the social networks for their own purposes. You can find details on this directly from the operators of the social networks (e.g. in their privacy policies, see the following subchapters).

Disclosure to third parties: We do not pass on any data to third parties. For information on the forwarding of data by the platform operators, please refer to the respective data protection information.

Right to object: You have the right to object to the processing of the above-mentioned data. If you wish to exercise your right to object, simply send an e-mail to info@cis-solutions-gmbh.de

6.2.1 LinkedIn

We use the channel of CiS Forschungsinstitut für Mikrosensorik GmbH to present our company and our services and to communicate with customers/prospects. LinkedIn is a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA.

In this respect, we would like to point out that there is a possibility that user data may be processed outside the European Union, in particular in the USA. This may result in increased risks for users in that, for example, subsequent access to user data may be made more difficult. We also have no access to this user data. The access option lies exclusively with LinkedIn.

The purpose and scope of the data collection and the further processing and use of the data by LinkedIn as well as your rights in this regard and setting options to protect your privacy can be found in LinkedIn’s data protection information at https://www.linkedin.com/legal/privacy-policy,
You can find an opt-out option at https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

6.2.2 XING

We use the channel of CiS Forschungsinstitut für Mikrosensorik GmbH to present our company and our services and to communicate with customers/prospects. XING is a service of XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany.

The purpose and scope of the data collection and the further processing and use of the data by Xing as well as your rights in this regard and setting options for protecting your privacy can be found in XING’s data protection information at https://privacy.xing.com/de/datenschutzerklaerung.

6.2.3 Bluesky

We use the channel of CiS Forschungsinstitut für Mikrosensorik GmbH to present our company and our services and to communicate with customers/interested parties. Bluesky is a service of Bluesky PBLLC, Seattle, WA, USA, E-Mail: support@bsky.app

The purpose and scope of the data collection and the further processing and use of the data by Bluesky as well as your rights in this regard and setting options to protect your privacy can be found in Bluesky’s data protection information at https://blueskyweb.xyz/support/privacy-policy.

6.3 Photographs

Purposes of processing: Photos are stored, processed and published for the purpose of documenting the event and as part of our public relations work. If you do not wish to be photographed, please contact us or the photographer directly so that your request can be taken into account.

Processed data types: Personal photos

Affected persons: Participants of our specialist events

Legal basis: The legal basis for the creation, storage and use of photographs is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in these purposes.

Recipients of the data: Within our organization, access to the photographs is granted to those departments and areas that require them to fulfil the above-mentioned purposes and that are authorized to process this data.

Service providers used: An external photographer may be commissioned to take the photographs.

Storage period: The data you provide will be processed for as long as it is necessary to protect our legitimate interests or you object to processing by us.

Publications in online media or information from the Internet are accessible worldwide and can be linked to other information in order to create personality profiles. It should be noted that information (including photographs) on the Internet can be accessed by anyone. It cannot be ruled out that such persons will continue to use the photos or pass them on to other persons. There are specialized archiving services whose aim is to permanently document the status of certain websites on certain dates. This can mean that information published on the Internet can still be found elsewhere even after it has been deleted from the original site.

Disclosure to third parties:  In the event of publication, photographs may be passed on to involved service providers (e.g. editorial offices or agencies)
The photos will be published on our website http://www.isec2025.org and on social media (LinkedIn, Xing, Bluesky).

Right to object: You have the right to object to the processing of the above-mentioned data. If you wish to exercise your right to object, simply send an e-mail to info@cis-solutions-gmbh.de

Publication on our website and in social media makes the data accessible to third parties, meaning that we can only delete the data to a limited extent after publication. If you object, we will remove the data from the internet platforms directly accessible to us (our website, our social media profiles). We cannot influence the storage period for other third parties who have gained access to the data through publication.

The provision of personal data is not required by law or contract or necessary for the conclusion of a contract. There is also no obligation to provide us with this data.

 

7 Your rights

7.1 Rights of data subjects

You have the following rights:

• to confirmation as to whether data concerning them is being processed, to information about the processed data, to further information about the data processing and to copies of the data (cf. also Art. 15 GDPR);
• to rectification or completion of incorrect or incomplete data (see also Art. 16 GDPR);
• to the immediate erasure of the data concerning them (see also Art. 17 GDPR) or, alternatively, if further processing is required in accordance with Art. 17 (3) GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
• to revoke consent given at any time with effect for the future (see also Art. 7 para. 3 in conjunction with Art. 17 para. 1. Art. 17 para. 1.
• to receive the data concerning them and provided by them and to transfer this data to other providers/controllers (cf. also Art. 20 GDPR);
• to lodge a complaint with the supervisory authority if they are of the opinion that the data concerning them is being processed by the provider in breach of data protection regulations (see also Art. 77 GDPR).

poststelle@datenschutz.thueringen.de

7.2 Right of objection

In accordance with Art. 21 GDPR, data subjects also have the right to object to the future processing of data concerning them, provided that the data is processed by the provider in accordance with Art. 6 para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permitted

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims. Please address your objection to the data protection officer at: info@cis-solutions-gmbh.de

 

8 Changes

We reserve the right to adapt this privacy policy. You will always find the current version on our website.

The previous version will be archived by us if it is replaced by a new version.

 

History:

07.02.2025	· Creation	V. 1.0
10.03.2025	· Change from company to conference data privacy policy	V. 2.0
31.03.2025	· Consent as legal basis in chapter 2.1 Hosting · Conference contributions (formerly Chapter 3) moved; now subchapter in Chapter 2; information on service providers also shortened there and detailed information, including addresses of processors, now included in Chapter 3 Processors. · Chapter Cookies expanded to include detailed information on cookies in Pretix · Section 4.2 Detailed information on mail communication via external conference mail server added.	V. 2.1