Privacy Statement

Welcome to our website. We have put together some information for you here about the way we process your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).

Who is responsible?

The function named in the "Legal Notice" section of this website is responsible for data processing as described below.

What data do we use?

When you visit our websites, our web server temporarily stores data referred to as usage data in the form of a protocol for statistical purposes and in order to improve the quality of our websites. This dataset comprises:

  • name and address of the content accessed,
  • date and time of enquiry,
  • quantity of data transmitted,
  • access status (transmitted content, content not found),
  • description of web browser and operating system,
  • referral link, which tells us the page from where you reached ours,
  • IP address of the source computer of the enquiry in abbreviated form to prevent
  • any personal identification.

The protocol data listed above are only evaluated anonymously.

Storage of IP address for security purposes

In addition to the above, we save the full IP address sent by your device for strictly purpose-related reasons for 14 days, the legitimate interest being to enable identification, limitation and elimination of attacks on our websites. When this period expires, we delete and/or anonymise the IP address. The legal basis for this is Art.  6 Paragraph 1 S. 1 lit. f GDPR.

Data security

We take technical and organisational measures in order to protect your data as comprehensively as possible against unwanted access. We use encryption on our websites. Any details sent via the internet from your computer to our server or vice-versa are transmitted by means of TLS encryption. You can usually recognise this if the padlock symbol in the status bar of your browser is displayed in locked position and the URL is displayed in your browser's address bar starting with https://.

Necessary cookies

Our website places cookies that are essential for its operation.

Cookies are small text files that can be stored and read out on your terminal device. There is a distinction between session cookies, which are deleted again as soon as you shut down your browser, and permanent cookies, which are saved beyond the individual session.

We do not use the necessary cookies we place for analysis, tracking or advertising purposes.

Some of these cookies contain only information for particular settings and are not related to personal data. They may be necessary to enable user navigation, security and practical realisation of the website.

We use this kind of cookies as permitted under Art. 6 paragraph 1 S. 1 lit. f GDPR.

You can adjust the settings of your browser so that it informs you about the placing of cookies. In this way, the use of cookies is transparent to you. You can also delete cookies and prevent the placement of new cookies via the appropriate browser settings. Please note that, in this case, our websites may not be displayed or certain technical functions may not be available. You will find a list of the cookies we use under the "Privacy Settings" tab on the left side of your screen.


Third-party tracking technologies for advertising purposes

We use cross-device tracking technologies that enable us to display targeted advertising to you on other web pages based on your visit to our website and to determine how effective our advertising has been.

Data is processed on the basis of your consent if you have consented accordingly through one of our banners. Your consent is voluntary and can be withdrawn at any time.

How does tracking work?

When you visit our web pages, the third-party providers mentioned below may retrieve data by which your browser can be identified (e.g., data called a 'browser fingerprint') or your IP address evaluated, or may store or retrieve data from your device by which the device can be identified (e.g., cookies), or access individual tracking pixels.

Such identifying data may be used by these third parties to recognise your device when you access other internet pages. We may commission such third parties to display advertising to you on websites based on the sites you visited before.

What does cross-device tracking mean?

When you log on to a third-party site with your user credentials, identifiers collected from different browsers and devices can be linked to each other. If the third-party provider has created its own identifier for the laptop, desktop, smart phone or tablet you are using to access their site, the different identifiers can be linked to each other as soon you use the third-party service while logged in with your own user credentials. This way, third-party providers can display our campaigns in a targeted manner even across various devices.

Which third-party providers do we use for this?

Below, we list the third-party providers we cooperate with for the purpose of delivering adverts. Insofar as data is processed outside the EU or EEA for this purpose, please note that there is a risk that authorities may access such data for reasons of security and supervision without the requirement to notify you of this or the possibility for you to seek redress. To the extent that we commission service providers in unsafe third countries and you have given us your consent, data is transmitted to the third country on the basis of Art. 49 Para. 1 lit. a GDPR.

Providersadequate level of data protection how to object

Facebook (USA and/or Irland)

             

No adequate level of data protection. Data is transmitted on the basis of Art. 49 Para. 1 lit. a GDPR.

If you wish to withdraw your consent, please click on the purple 'Privacy Settings' tab on the right and adjust the settings accordingly.

Google LLC (USA)

No adequate level of data protection. Data is transmitted on the basis of Art. 49 Para. 1 lit. a GDPR.

If you wish to withdraw your consent, please click on the purple 'Privacy Settings' tab on the right and adjust the settings accordingly.

 

Anonymous visitor measurement

In addition, we carry out anonymous visitor measurement on our websites. For this purpose, the log data of the web server and the shortened IP address are evaluated. It is not possible to draw any conclusions about your person.

Contact form 

If you wish to contact us via our contact form, we will need you to provide the data marked as mandatory entries in our contact form.

We require this information to provide you with an answer and use it in compliance with Art. 6 Paragraph 1 S. 1 lit. f GDPR.

Otherwise, you can decide for yourself whether you wish to send any further details to us. Any such data is given voluntarily and is not absolutely necessary for establishing contact. We process your voluntarily given data with your consent under Art. 6 Paragraph 1 S. 1 lit. a GDPR.

We process your data solely for the purpose of replying to your question. Any of the following regional DJH Associations (Landesverbände) may be in receipt of your data if it is in a better position to answer your enquiry:

  • Landesverband Baden-Württemberg e. V., Fritz-Walter-Weg 19, 70372 Stuttgart - Bad Cannstatt
  • Landesverband Bayern e.V. (Bavaria), Mauerkircherstrasse 5, 81679 Munich
  • Landesverband Berlin-Brandenburg e.V., Schulstrasse 9, 14482 Potsdam-Babelsberg
  • Landesverband Hannover e. V. (Hanover), Ferdinand-Wilhelm-Fricke-Weg 1, 30169 Hanover
  • Landesverband Hessen e.V. (Hesse), Berner Str. 119, 60437 Frankfurt am Main
  • Landesverband Mecklenburg-Vorpommern e.V. (Mecklenburg and Western Pomerania), Konrad-Zuse-Strasse 2, 18057 Rostock
  • Landesverband Nordmark e.V., Rennbahnstrasse 100, 22111 Hamburg
  • Landesverband Rheinland e. V. (Rhineland), Düsseldorfer Strasse 1a, 40545 Düsseldorf
  • Die Jugendherbergen in Rheinland-Pfalz und im Saarland (Rhineland-Palatinate and Saarland Region), In der Meielache 1, 55122 Mainz
  • Landesverband Sachsen e. V. (Saxony), Zschopauer Strasse 216, 09126 Chemnitz
  • Landesverband Sachsen-Anhalt e. V. (Saxony-Anhalt), Leiterstrasse 10, 39104 Magdeburg
  • Landesverband Thüringen e.V. (Thuringia), Zum Wilden Graben 12, 99425 Weimar
  • Die JugendHerbergen gemeinnützige GmbH (Bremen), Woltmershauser Allee 8, 28199 Bremen
  • DJH Landesverband Westfalen-Lippe gemeinnützige GmbH (Westphalia and Lippe region), Eppenhauser Strasse 65, 58093 Hagen

We delete your data as soon as they are no longer needed, provided there is no legal storage obligation.

You may withdraw permission to process the data you send via the contact form based on Art. 6 Paragraph 1 S. 1 lit. f GDPR at any time. You can also revoke your consent to the processing of your voluntarily given data at any time. To do so, please refer to the email address given in the "Legal Notice" paragraph of this website.

Contact via Userlike Live Chat app

Our website offers the Userlike facility to chat online with one of our customer services staff. This is a live chat app. When you use the chat feature, you are automatically using the services of Userlike UG, a private limited liability company under German law.

The Userlike system uses cookies, small text files that are saved on your computer, which enable real-time personal conversation as a chat function on the website. If you decide to use Userlike, the chat thread is recorded, processed and saved in Germany together with your page history. These data are not transmitted to any third party and serve only for protection and internal statistics to improve the quality of the service we offer.

Location data are also captured via your IP address. This data is only linked with your registration data (if any) if you give your voluntary consent, for example via communicating this during the live chat (e.g., giving details for a catalogue order). This also applies to all your other personal data. Captured data is not used to identify the visitor to this website in person, nor is it combined with personal data concerning the bearer of a pseudonym. Further information is obtainable from the Userlike Data Protection Declaration at www.userlike.com/de/terms

The legal provisions governing the use of Userlike live chat are Art. 6 Paragraph 1 S. 1 lit. a GDPR, subject to your consent via our banner. You may withdraw your consent at any time. To do so, please open the purple "Privacy Settings" tab on the left of the screen and change your settings there.

Embedded videos

The videos that we embed in our websites are not stored on our own servers. In order to avoid automatic uploading of content from third-party providers when accessing web pages with embedded videos, we display only locally stored preview images of the videos in the first step. This way, the third-party provider does not receive any information. Only when you click on the preview image is content from the third party loaded with it. In this way, the third-party provider receives the information that you have accessed our website plus the technically necessary usage data. The third-party provider would now be enabled to install tracking technology. 

We have no influence on further data processing by the third-party providers. A click on the preview image means that you are giving your consent to load third-party content. Embedding is legally permitted Art. 6 Paragraph 1 S. 1 lit a GDPR once you have given your consent by clicking on the preview image. Please note that a click on many of the preview images for embedded videos leads to your data being processed outside the EU or EEC, respectively. In some countries, there is a risk that government agencies may access data for security and monitoring purposes without your knowledge and without any appeal procedure. If we use providers in third countries and you give your consent, any transfer to an insecure third country is subject to Art. 49 Paragraph 1 lit. a GDPR.

Provider

Appropriate Data Protection Level

Facility to lodge Objection

YouTube / Google (U.S.A.)

No appropriate data protection level. Transmission on the basis of Art. 49 Paragraph 1 lit. a GDPR.

When you have clicked on a preview image, the third-party provider's content is loaded immediately. If you do not wish it to be loaded, please do not click on the preview images.


Subscription and mailing of newsletter

You are welcome to subscribe to our newsletter on our internet page. Please note that we require certain data (minimum: your email address) in order to take your subscription to the newsletter. 

The newsletter will be mailed only if you have explicitly given us your consent according to Art. 6 Paragraph 1 S. 1 lit. a GDPR. To this end, we use AGNITAS AG, Werner-Eckert-Strasse 6, 81829 Munich, Germany, as our service provider (data processor). This company has undertaken to adhere strictly to our instructions and set out these obligations in a binding contract.

After successfully subscribing via our websites, you will receive email confirmation to the email address you have given us (this is known as double opt-in). Your consent can be revoked at any time. An uncomplicated way to unsubscribe is to follow the unsubscribe link that is present in every newsletter.

As part of the subscription to the newsletter, we store some additional necessary data in addition to those described above, as proof if needed that you have ordered the newsletter. This may include the complete IP address at the time of subscribing and/or confirmation of the newsletter, and a copy of the email confirmation sent by us. The corresponding data processing is governed by Art. 6 Paragraph 1 S. 1 lit. f GDPR and serves the legitimate interest of accountability for the Newsletter.

Map services

Map services not saved on our servers are embedded in our websites. In order to prevent automatic loading of third-party content when accessing our websites with embedded map services, we display only locally saved preview images of the maps in the first step. At this stage, the third-party provider receives no information.

Third-party content is loaded only when the preview image is clicked. The third-party provider now receives the information that you have accessed our page together with the technically necessary usage data. We have no influence on further processing by the third-party. With your click on the preview image, you are giving your consent to download third-party content. 

Embedding is based on your consent according to Art. 6 Paragraph 1 S. 1 lit. a GDPR and/or Art. 15 Paragraph 3 S. 1 TMG, respectively, which you have given by means of a click on the preview image. 

Please note that using the embedded map services can lead to your data being processed outside the EU or EEC, respectively. In some countries, there is a risk that government agencies may access data for security and surveillance purposes without your knowledge and without any appeal procedure. If we use providers in third countries and you give your consent, transfer to an insecure third country is subject to Art. 49 Paragraph 1 lit. a GDPR.

Provider

Appropriate Data Protection Level

Revocation of Consent

Google LLC (U.S.A.)

No appropriate data protection level. Transmission subject to Art. 49 Paragraph 1 lit. a GDPR.

You can revoke your consent at any time. Open the purple "Privacy Settings" tab to the left of your screen.


Other data processors

We pass on your data in connection with commissioned data processing according to Art. 28 GDPR to service providers who support us in operating our websites and running associated processes, for example to web hosting service providers. Our service providers have undertaken to adhere strictly to our instructions and set out these obligations in a binding contract.

The data processors with whom we cooperate are listed below unless already named in the previous text of this Privacy Statement. Should any data be transferred outside the EU and/or EEC respectively, we will give details of the data protection level.

Data processor

Purpose of processing

Appropriate data protection Level

DJH Computer Centre

Web hosting and support

Processing within EU/EEC

AGNITAS AG

Newsletter mailing

Processing within EU/EWR


Your Rights as Data Subject

The General Data Protection Regulation (GDPR) grants you certain rights concerning your personal data.

Right of access (Art. 15 GDPR)

You have the right to demand confirmation whether personal data affecting you are being processed; if this is the case, you are entitled to receive information about the personal data in question and the details of information detailed in Art. 15 GDPR.

Right of rectification (Art. 16 GDPR)

You are entitled to demand immediate rectification of incorrect personal details and, if appropriate, completion of incomplete data.

Right to erasure (Art. 17 GDPR)

You have the right to demand that personal data relating to you be deleted without delay on any of the grounds listed in Art. 17 GDPR.

Right to restriction of processing (Art. 18 GDPR)

You are entitled to demand restriction of processing if any of the conditions listed in Art. 18 GDPR is given, e.g., if you have lodged a complaint against processing, for the duration of examination by the responsible person.

Right to data portability (Art. 20 GDPR)

In specific cases, as listed in Art. 20 GDPR, you have the right to receive the personal data in question in a structured, common and machine-readable format and/or demand that these data be sent to a third party.

Right of revocation (Art. 7 GDPR)

Inasmuch as the processing of data takes place on the basis of your consent, you are entitled under Art. 7 Paragraph 3 GDPR to withdraw your consent to the use of your personal data at any time. Please note that revocation of consent is only effective for the future. Processing that has taken place before you revoke your consent is not affected retrospectively.

Right to object (Art. 21 GDPR)

If data are captured on the basis of Art. 6 Paragraph 1 S. 1 lit. f GDPR (data processing in a legitimate interest) or on the basis of Art. 6 Paragraph 1 S. 1 lit. e GDPR (data processing in the public interest or the exercise of public powers), you are entitled at any time to object to such processing on grounds arising from your particular situation. We will then no longer process the personal data unless urgent and compelling reasons for such processing can be evidentially proved and override your interests, rights and liberties, or the processing serves the assertion, exercise or defence of legal claims.

Right of complaint to supervisory authority (Art. 77 GDPR)

You have the right under Art. 77 GDPR to lodge a complaint to a supervisory body if you are of the opinion that the processing of your personal data breaches data protection law. In particular, you can lodge your complaint with a supervisory body in the member state of your main residence, of your usual place of work or the place where the alleged breach occurred.

Asserting your rights

If not covered by the above, you may turn to the office named in the Legal Notice section of this website to claim redress as the victim of unlawful use of personal data.

Contact the Data Protection Officer

Our independent Data Protection Officer will be happy to give you information in connection with data protection matters. Here is the contact address:

datenschutz nord GmbH
Konsul-Smidt-Strasse 88
28217 Bremen
Web: www.datenschutz-nord-gruppe.de
E-Mail: office@datenschutz-nord.de

If you wish to address our Data Protection Officer, please state the responsible function named in the Legal Notice" section of our website.