Privacy policy

A note from the Privacy team:

Below we also provide a legally compliant privacy policy, which, unfortunately, like almost all of its kind, is very incomprehensible. However, since a data protection declaration should be about informing the user of a website about what happens to his/her data, we have made a small explanation in our own words below about our handling of your data.

Privacy Policy (the comprehensible one)

We handle your data with confidence. We are not a for-profit group and have no interest in selling or otherwise sharing the information you provide. Therefore, we regularly delete all data that we do not need to operate this website.

Log files of the web server

The server on which our site is located automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This data includes, for example.B the browser type and version, operating system used, referrer URL (the previously visited page), IP address of the requesting computer, access date and time of the server request and the file request of the client (file name and URL).

This data is only used in exceptional cases for troubleshooting by the administrators and cannot be assigned to specific persons. This data is not merged with other data sources. The data will not be passed on to third parties. These log files are stored for a maximum of 14 days and then automatically deleted.

Third Party Service Providers & Cookies

We use third-party service providers to be able to offer you e.B services such as newsletters, appointment calendars or links to so-called social networks. If you use these areas (e.B. click on a link to a Facebook event), then the data processing guidelines of the respective employers also apply (unfortunately), as they now also have access to the data that your browser transmits to them. At this point, please note the security settings in your browser, where you can also select more restrictive behavior. Here you will find, for example, explained how to easily change the cookie settings in the browser 'Mozilla Firefox': https://support.mozilla.org/de/products/firefox/protect-your-privacy/cookies Similar is also available with other browsers.

Newsletter

We use two different newsletter service providers to inform you about current topics of climate justice. For persons who subscribe to our Graz newsletter, the data processing guidelines of Mail Chimp therefore also apply. For persons who subscribe to the Austria-wide newsletter, the data processing guidelines of Newsletter2go. Below you will find more detailed information. It is important for us to emphasize at this point that we only use your email address to send you a newsletter, namely the one for which you have registered. And we don't ask you for your name, address, etc.

Online forms

In some cases, we use online forms, which you can then use to register for a specific event, for example. In any case, we make sure to only ask for data that we need to carry out the event. And we will also not use this data for other purposes, unless you expressly request this (e.B. receipt of the newsletter).

Data Capitalism and the Internet

We would like to thank Ende Gelände for the inspiration for (and parts of) the above text – and would like to draw your attention to the Riseup collective. This network has set itself the task of creating online communication tools that put privacy and self-empowerment first. Riseup thus offers real alternatives to data-hungry services from Internet giants such as Facebook or Google. However, since, unlike those just mentioned, they earn absolutely no money through advertising, the Riseup collective is dependent on regular donations from its users. (That the services of Facebook & Co are by no means free, this person shows impressively in his books.)

Privacy Policy (the boring one)

We would like to thank the Fundraising Association Austria, the Civil Society Network, the law firm Dr. Thomas Schwenke and various online articles that helped us with the creation.

This data protection declaration clarifies the nature, scope and purpose of the processing of personal data (hereinafter referred to as "data") within our online offer and the associated websites, functions and content as well as external online presences, such as .B our social media profile. (hereinafter collectively referred to as the "Online Offer"). With regard to the terms used, such as .B"processing" or "controller", we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
E-mail: info[at] systemchange-not-climatechange.at
Link to imprint: https://systemchange-not-climatechange.at/de/impressum/

Types of data processed:

– Inventory data (e.B., Names, addresses).
– Contact details (e.B., E-mail, telephone numbers).
– Content data (e.B., Text inputs, photographs, videos).
– Usage data (e.B., websites visited, interest in content, access times).
– Meta/communication data (e.B., device information, IP addresses).

Purpose of processing

– Provision of the online offer, its functions and contents.
– Responding to contact requests and communicating with users.
– Security measures.
– Reach measurement/marketing

Terms used

"Personal data" means any information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.B. cookie) or to one or more special features that express the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

"Processing" means any operation or set of operations performed with or without the aid of automated procedures in connection with personal data. The term goes far and wide and covers virtually every handling of data.

"Controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Relevant legal bases

In accordance with Article 13 GDPR, we will inform you of the legal basis of our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies: The legal basis for obtaining consent is Article 6(1)(f) GDPR. a and Art. 7 GDPR, the legal basis for the processing for the fulfillment of our services and implementation of contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b GDPR, the legal basis for processing to fulfil our legal obligations is Article 6(1)(f) GDPR. c GDPR, and the legal basis for processing to safeguard our legitimate interests is Article 6(1)(f) GDPR. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(f) GDPR provides. d GDPR as the legal basis.

Security measures

We ask you to inform yourself regularly about the content of our data protection declaration. We will adjust the Privacy Policy as soon as the changes to the data processing we perform make this necessary. We will inform you as soon as the changes require your cooperation (e.B. consent) or other individual notification.

Cooperation with processors and third parties

If, in the context of our processing, we disclose data to other persons and companies (processors or third parties), transmit them to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.B. if a transmission of the data to third parties, such as to payment service providers, in accordance with Article 6 (1) lit. b GDPR is necessary for the fulfilment of the contract), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.B. when using agents, web hosts, etc.).

If we commission third parties with the processing of data on the basis of a so-called "order processing contract", this is done on the basis of Art. 28 GDPR.

Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this is done in the context of the use of third-party services or disclosure or transfer of data to third parties, this will only take place if it is done to fulfil our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only if the special requirements of Art. 44 et seq. GDPR are met. This means that the processing takes place e.B. on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to the EU (e.B. for the USA through the "Privacy Shield") or compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").

Rights of data subjects

You have the right to request confirmation as to whether the data in question is being processed and to obtain information about this data as well as further information and a copy of the data in accordance with Article 15 GDPR.

You have accordingly. Art. 16 GDPR, the right to request the completion of the data concerning you or the correction of the incorrect data concerning you.

In accordance with Article 17 GDPR, you have the right to demand that the data in question be deleted immediately or, alternatively, to demand a restriction of the processing of the data in accordance with Article 18 GDPR.

You have the right to request that the data concerning you that you have provided to us be received in accordance with Article 20 GDPR and to request their transmission to other controllers.

In accordance with Article 77 GDPR, you also have the right to lodge a complaint with the competent supervisory authority.

Withdrawal

You have the right to revoke your consent pursuant to Article 7 (3) GDPR with effect for the future

Right to object

You can object to the future processing of your data in accordance with Article 21 GDPR at any time. The objection can be made in particular against the processing for direct marketing purposes.

Cookies and right to object to direct marketing

"Cookies" are small files that are stored on users' computers. Different information can be stored within the cookies. A cookie is primarily used to store the information about a user (or .dem device on which the cookie is stored) during or after his visit within an online offer. Temporary cookies, or "session cookies" or "transient cookies", are cookies that are deleted after a user leaves an online offer and closes his browser. In such a cookie, for example.B the contents of a shopping cart in an online shop or a login jam can be stored. "Permanent" or "persistent" refers to cookies that remain stored even after closing the browser. For example.B the login status can be saved if the users visit it after several days. Likewise, such a cookie can store the interests of users, which are used for reach measurement or marketing purposes. "Third-party cookies" are cookies that are offered by providers other than the controller who operates the online offer (otherwise, if it is only their cookies, one speaks of "first-party cookies").

We may use temporary and permanent cookies and clarify this in the context of our privacy policy.

If users do not want cookies to be stored on their computer, they are asked to disable the corresponding option in the system settings of their browser. Saved cookies can be deleted in the browser's system settings. The exclusion of cookies may lead to functional limitations of this online offer.

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US site http://www.aboutads.info/choices/ or the EU site http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by switching them off in the settings of the browser. Please note that not all functions of this online offer may then be able to be used.

Deletion of data

The data processed by us will be deleted or restricted in their processing in accordance with Articles 17 and 18 GDPR. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory retention obligations. If the data is not deleted because it is necessary for other and legally permissible purposes, their processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example.B to data that must be stored for commercial or tax reasons.

According to legal requirements in Germany, the storage takes place in particular for 6 years in accordance with § 257 (1) HGB (trading books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with § 147 (1) AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant for taxation, etc.).

According to legal requirements in Austria, the storage takes place in particular for 7 years in accordance with § 132 para. 1 BAO (accounting documents, receipts/invoices, accounts, receipts, business papers, statement of income and expenses, etc.), for 22 years in connection with real estate and for 10 years for documents in connection with electronically supplied services, telecommunications, radio and television services provided to non-entrepreneurs in EU Member States and for which the Mini-One-Stop-Shop (MOSS).

Hosting

The hosting services used by us serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services, which we use for the purpose of operating this online offer.

In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of this online offer in accordance with Article 6 (1) lit. f GDPR in conjunction with .m Art. 28 GDPR (conclusion of order processing contract).

Collection of access data and log files

We, or our hosting provider, collect on the basis of our legitimate interests within the meaning of Article 6 (1) lit. f. GDPR data about each access to the server on which this service is located (so-called server log files). The access data includes the name of the retrieved website, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting providers.

Log file information is stored for security reasons (e.B. to investigate misuse or fraud) for a maximum of 7 days and then deleted. Data whose further storage is necessary for evidentiary purposes are excluded from deletion until the respective incident has been finally clarified.

Administration, financial accounting, office organization, contact management

We process data in the context of administrative tasks as well as organization of our operations, financial accounting and compliance with legal obligations, such as .B archiving. We process the same data that we process in the context of the provision of our contractual services. The processing bases are Article 6(1)(f) GDPR. c. GDPR, Art. 6 para. 1 lit. f. GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve to maintain our business activities, perform our tasks and provide our services. The deletion of the data with regard to contractual services and contractual communication corresponds to the information mentioned in these processing activities.

In doing so, we disclose or transmit data to the tax authorities, consultants, such as.B., Tax consultants or auditors as well as other fee offices and payment service providers.

Furthermore, on the basis of our business interests, we store information about suppliers, organizers and other business partners, e.B. for the purpose of later contact. In principle, we store this mostly company-related data permanently.

Contact

When contacting us (e.B. via contact form, e-mail, telephone or via social media), the user's details are used to process the contact request and its processing in accordance with Article 6 (1) (f) GDPR. b) GDPR. The information provided by users can be stored in a customer relationship management system ("CRM system") or comparable request organization.

We delete the requests if they are no longer necessary. We review the necessity every two years; Furthermore, the statutory archiving obligations apply.

Newsletter

[Österreich/Wien]

With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure as well as your rights of objection. By subscribing to our newsletter, you agree to the reception and the procedures described.
Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter referred to as "newsletter") only with the consent of the recipients or a legal permission. If the contents of the newsletter are specifically defined in the context of a registration for the newsletter, they are decisive for the consent of the users. In addition, our newsletters contain information about our services and us.
Double opt-in and logging: The registration for our newsletter takes place in a so-called double opt-in procedure. Specifically. After registration, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no one can log in with foreign e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the login and confirmation date, as well as the IP address. The changes to your data stored with the shipping service provider are also logged.

Registration details: To sign up for the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to provide a name for the purpose of personal address in the newsletter.

The dispatch of the newsletter and the associated performance measurement is based on the consent of the recipients in accordance with Article 6 (1) (f) GDPR. a, Art. 7 GDPR in conjunction with .m § 107 (2) TKG or on the basis of the legal permission pursuant to § 107 Para. 2 and 3 TKG.

The registration procedure is logged on the basis of our legitimate interests in accordance with Article 6(1)(f) GDPR. f GDPR. Our interest is in the use of a user-friendly and secure newsletter system that serves our business interests as well as the expectations of the users and also allows us to prove consent.

Termination/revocation – You can cancel the receipt of our newsletter at any time, i.e. Withdraw your consent. You will find a link to cancel the newsletter at the end of each newsletter. We may store the unsubscribed e-mail addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defence against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time.

[Graz]

Information on the newsletter of SC Graz/Styria and consents

With the following information, we clarify the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure as well as your rights of objection. By subscribing to our newsletter, you agree to the reception and the procedures described.

Content of the newsletter

We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter referred to as "newsletter") only with the consent of the recipients or a legal permission.If the contents of the newsletter are specifically described in the context of a registration for the newsletter, they are decisive for the consent of the users. In addition, our newsletters contain information on topics relating to climate justice and activities of the SC Graz Group (this may include, in particular, references to websites, lectures or workshops, our campaigns or online presences).

Double opt-in and logging

The registration for our newsletter takes place in a so-called double opt-in procedure. Specifically. After registration, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no one can log in with foreign e-mail addresses.

The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Likewise, the changes to your data stored at MailChimp are logged.

Use of the shipping service provider "MailChimp"

The newsletter is sent via "MailChimp", a newsletter distribution platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.

The e-mail addresses of our newsletter recipients, as well as their other data described in this notice, are stored on mailChimp's servers in the USA. MailChimp uses this information to send and evaluate the newsletter on our behalf. Furthermore, MailChimp may use this data according to its own information to optimize or improve its own services, e.B. for the technical optimization of the dispatch and presentation of the newsletter or for economic purposes to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients to write to them themselves or to pass them on to third parties.

We trust in the reliability and IT and data security of MailChimp.MailChimp is certified under the US-EU data protection agreement "Privacy Shield" and thus undertakes to comply with EU data protection regulations. Furthermore, we have concluded a "Data Processing Agreement" with MailChimp. This is a contract in which MailChimp undertakes to protect the data of our users, to process them on our behalf in accordance with their data protection regulations and, in particular, not to pass them on to third parties. The privacy policy of MailChimp can be viewed here.

To subscribe to the newsletter, it is sufficient to provide your e-mail address.

Statistical survey and analysis

The newsletters contain a so-called "web beacon", i.e. a pixel-sized file that is retrieved from the MailChimp server when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval are first collected. This information is used to improve the technical quality of the services based on the technical data or the target groups and their reading behaviour based on the locations (which can be determined by means of the IP address) or the access times.

The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our ambition nor that of MailChimp to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Online access and data management

There are cases in which we direct the newsletter recipients to the MailChimp websites. For .B, our newsletters contain a link with which the newsletter recipients can retrieve the newsletters online (e.B. in the event of display problems in the e-mail program). Furthermore, newsletter recipients can subsequently correct their data, such as .B e-mail address. Likewise, MailChimp's privacy policy is only available on their website.

In this context, we would like to point out that cookies are used on the MailChimp websites and thus personal data is processed by MailChimp, its partners and service providers (e.B. Google Analytics). We have no influence on this data collection. Further information can be found in MailChimp's privacy policy. We would also like to draw your attention to the possibilities of objecting to the collection of data for advertising purposes on the websites http://www.aboutads.info/choices/ and http://www.youronlinechoices.com/ (for the European area).

Termination/Revocation

You can cancel the receipt of our newsletter at any time, i.e. Withdraw your consent. At the same time, your consent to its sending via MailChimp and the statistical analyses expire. A separate revocation of the dispatch via MailChimp or the statistical evaluation is unfortunately not possible.

A link to cancel the newsletter can be found at the end of each newsletter or here..

Legal basis General Data Protection Regulation

In accordance with the provisions of the General Data Protection Regulation (GDPR) applicable from 25 May 2018, we inform you that the consent to the sending of e-mail addresses on the basis of Article 6 (1) lit. a, 7 GDPR as well as § 7 para. 2 no. 3, or para. 3 UWG. The use of the shipping service provider MailChimp, execution of the statistical surveys and analyses as well as logging of the registration procedure, are based on our legitimate interests in accordance with Article 6 (1) lit. f GDPR. We are interested in the use of a user-friendly and secure newsletter system that serves both our business interests and the expectations of users.

We would also like to point out that you can object to the future processing of your personal data in accordance with the legal requirements pursuant to Art. 21 GDPR at any time. The objection can be made in particular against the processing for direct marketing purposes.

Note on the newsletter based on the model of lawyer Dr. Thomas Schwenke

Online presence in social media

We maintain online presences within social networks and platforms in order to be able to communicate with customers, interested parties and users active there and to inform them about our services there. When accessing the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply.

Unless otherwise stated in our privacy policy, we process the data of the users if they communicate with us within the social networks and platforms, e.B write contributions on our online presences or send us messages.

Integration of third-party services and content

We set within our online offer on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR) content or service offers from third-party providers in order to integrate their content and services, such as e.B videos or fonts (hereinafter uniformly referred to as "content").

This always presupposes that the third-party providers of this content perceive the IP address of the users, since without the IP address they could not send the content to their browser. The IP address is therefore required for the presentation of this content. We endeavor to use only such content whose respective providers use the IP address only for the delivery of the content. Third parties may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies on the user's device and contain, among other things, technical information about the browser and operating system, referring websites, visit time and other information on the use of our online offer, as well as be combined with such information from other sources.

Vimeo

We can use the videos of the platform "Vimeo" of the provider Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA. Privacy Policy: https://vimeo.com/privacy. We would like to point out that Vimeo may use Google Analytics and refer to the data protection declaration (https://www.google.com/policies/privacy) as well as opt-out options for Google Analytics (http://tools.google.com/dlpage/gaoptout?hl=de) or Google's settings for data use for marketing purposes (https://adssettings.google.com/.).

Youtube

We integrate the videos of the platform "YouTube" of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Google Fonts

We integrate the fonts ("Google Fonts") of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Google Maps

We integrate the maps of the service "Google Maps" of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The processed data may include, in particular, IP addresses and location data of the users, which, however, are not collected without their consent (usually carried out as part of the settings of their mobile devices). The data may be processed in the USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Created with Datenschutz-Generator.de by RA Dr. Thomas Schwenke