The protection of personal data (such as names, email addresses or telephone numbers) is of particular importance to eucrim. Our data protection practice complies with the provisions of the German Federal Data Protection Act [Bundesdatenschutzgesetz] as well as the Regulation (EU) 2016/679 - the General Data Protection Regulation (GDPR).
The following declaration provides you with an overview as to how we ensure data protection regulations. According to the GDPR you have various rights which you can assert in relation to us. This includes, among others, the right to withdraw consent to the processing of personal data that is highlighted typographically.
Responsible for the contents of this website
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. (MPG)
Telefon: +49 (89) 2108-0.
The EUCRIM Data Protection Officer, Heidi Schuster, can be contacted by e-mail:
Purpose of data processing, legal basis, and legitimate interests that are pursued by eucrim.eu or a third party, and categories of recipients
Surfing on this website
EUCRIM.EU gathers and automatically stores log file information in its server, which your browser deposited with us while you were surfing. Examples of information that we gather and analyze include the Internet Protocol Address (IP), which connects your computer with the Internet, as well as acknowledgments of receipt and reading confirmations of emails, logins, email addresses, passwords, information about the computer and connection to the Internet such as type of browser, browser version and number, operating system and platform. Furthermore, we record the complete Uniform Resource Locator (URL) Clickstream through and from our website, i.e. the sequence of the pages of our website that you visit, including date and time, cookie or flash cookie number, and the content that you viewed or for which you searched.
In brief, we store the following key data:
- Type of browser/browser version
- The operating system used
- Referrer URL (the page visited previously)
- URLs / pages on this website that have been accessed
- IP address of the accessing computer along with its name
- Time of the server request
- Visitor history
The legal basis for the processing of the IP address is Article 6, para 1 f) of the GDPR. Our legitimate interest results from the following list of purposes of the data processing. Please note that it is neither possible for us to draw any direct conclusions about your identity on the basis of the data collected, nor do we attempt to draw such conclusions.
The IP address of your device and the remaining data listed above is used by us for the following purposes:
- Ensuring a seamless establishment of the connection
- Ensuring the comfortable use of our website
- Assessing the system security and stability
The data is saved for a period of seven days, after which it is automatically deleted or anonymized. Further, we make use of so-called cookies and a tracking tool for our website. Section III.4 below exactly clarifies what process is undertaken and how your data is used for.
In order to stay informed on a regular basis, you can subscribe to our newsletter via e-mail (email@example.com). Within the scope of making a subscription, we will save your name and email address. We solely use this data for the distribution of the newsletter mailing. Your data will not be processed or used for consulting, advertising or market research purposes. After entering your address you will receive an email with a confirmation link to confirm the authenticity of the address and your order. The order can be cancelled at any time. If the subscription is cancelled, all personal data will be deleted from our database. Your declared consent can be withdrawn conveniently by sending an e-mail to firstname.lastname@example.org or by replying to one of our emails with the subject "unsubscribe".
Our newsletters are sent from email@example.com via MAILMAN and are not processed by a third party newsletter platform or programme. MAILMAN is a computer programme that allows the administration of membership and setting of subscription rules. The membership data are only accessible by the managing editor of eucrim, and an assistant of the Max Planck Institute for Foreign and International Criminal Law. They can also block junk mails, so that they are not sent to the group of subscribers.
When using the contact form, your surname, first name and e-mail address are processed. The processing is carried out on the basis of Art. 6 para. 1 b) GDPR for the purpose of receiving the request formulated in the contact form. The data will not be passed on to third parties. The data is transmitted to EUCRIM via an SSL-encrypted connection, making unauthorised access considerably more difficult. As well as requests sent to EUCRIM by e-mail, requests via the contact form will be deleted after a retention period of ten years [or after completion].
Use of the eucrim.eu members area
On our website, members of the European Criminal Law Associations have the opportunity to register to our eucrim.eu members area by providing personal data. The data is entered into an input mask and transmitted to us. A transfer of data to third parties does not take place. The following data is collected during the registration process:
- Family name
- First name
- E-mail address
- IP address
- Date and time of registration.
The legal basis for this is Article 6, Para 1 b) of the GDPR, i.e. you make the data available to us on the basis of the contractual relationship between yourself and us.
Registration is required for the provision of certain content and services intended only for our members, e.g. creating an account or replying to your contact inquiry.
Personal data is routinely deleted if it is no longer necessary to fulfil the contract, if there is no separate consent from the persons concerned and if legally prescribed retention obligations and periods do not require longer data retention. However, after the conclusion of the contract, there may be a need to store personal data of the contracting party in order to comply with contractual or legal obligations. After expiry, we retain the information regarding the contractual relationship that is required by commercial law and tax law for the legally determined period. For this period of time (generally 10 years from the conclusion of the contract), the data will only be re-processed in the case of an audit by the taxation authorities.
Online presence and website optimization
These cookies are automatically deleted after a respectively defined period of time. You can, however, configure your browser so that no cookies are stored on your computer, or so that a warning appears before a new cookie is created. However, the complete deactivation of cookies can result in you not being able to use all functions on our website. The storage duration of the cookies is dependent on their purpose and is not the same for all.
In the cookies that we use, we store the following:
- an anonymous session id
- a token preventing cross site request forgery
- session information, see "Matomo (formerly Piwik)"
Matomo (formerly Piwik)
If you do not agree with the storage and analysis of data from your visit, you can dissent to the storage and analysis at any time by checking the opt-out checkbox below (at the end of this page). In this case, an opt-out cookie will be set in your browser, after which Matomo will collect no data from your sessions on this website. Please note: if you delete your cookies, this will also result in your Opt-Out cookie being deleted, so that you will need to reactivate it.
Social Media Plugins
We do not use any social media plugins on our website.
Alongside the right to withdraw the consent given to us, you also have the following rights, when the respective legal conditions are extant:
- Right of information regarding your personal data stored by us in accordance with Article 15 of the GDPR; in particular, you can obtain information about the purpose of processing, the category of personal data, the category of recipient for whom your data is or has been made available, the planned period of retention, the origin of your data, insofar as it was not collected directly from you,
- Right of rectification of erroneous or to completion of correct data in accordance with Article 16 of the GDPR,
- Right to deletion of your data stored by us in accordance with Article 17 of the GDPR, insofar as there are no legal or contractual requirements to retain the data, or other legal obligations or rights to the continued retention of the data,
- Right to limit the processing of your data in accordance with Article 18 of the GDPR, insofar as you dispute the correctness of the data, the processing is illegal, but you oppose the deletion of said data; the data controller no longer requires the data, but you require said data for the assertion, exercise or defense of legal claims, or you have filed an objection to the processing in accordance with Article 21 of the GDPR,
- Right to data portability in accordance with Article 20 of the GDPR, i.e. the right to receive selected data about you stored by us in a standard, machine-readable format, or to have this transmitted to another data controller,
- Right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your normal place of residence or work, or of our association headquarters to do this.
Right to object
Under the conditions of Article 21, Para 1 of the GDPR, the data processing can be objected to on grounds arising out of the special situation of the person affected.
Forwarding to third parties
The data collected by us is not sold. We provide information that we obtain to third parties exclusively to the extent described in the following:
- Affiliated companies
- Service providers
- Protection of EUCRIM.EU and third parties
We disclose personal data when we are legally obliged to do so, or when such disclosure is necessary to protect our rights and those of third parties.
- Recipients outside of the EU
We do not forward your data to recipients with headquarters outside of the EU.
Further information and notes
If you have any questions or complaints about this website, please contact the Data Protection Officer above. They also have the right of appeal to the competent data protection supervisory authority. The responsible authority is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).