External data protection officer
The external data protection officer at TÜV Hessen is not subject to our instruction and can therefore carry out checks at the Institute at any time without notice. As an objective, external authority, the data protection officer ensures the very high level of data protection at the Institute for Applied Statistics by means of suitable measures such as employee training and data privacy audits.
Nicolas Kurze
Email: datenschutzbeauftragte@istat.de
Phone: + 49 (0)561 - 953 796 85
Internal data protection coordinator
Dirk Reifenberg holds certification by the IHK as a company data protection officer and, in his function as internal data protection coordinator, ensures data privacy in the everyday work of the Institute. To this end, he draws up internal process records and data flow diagrams, for example.
Dirk Reifenberg
Email: datenschutz@istat.de
Phone: 0561 - 953 796 81
Data privacy policy
The Institute for Applied Statistics welcomes your visit to our website and your interest in our Institute. We take the protection of your personal data very seriously and want to ensure that you feel secure and comfortable when visiting our website. For this reason, we ask you to make note of the following information.
Basic information in accordance with Art. 13/14 GDPR
Controller for the data processing:
ISTAT – Institut für angewandte Statistik GmbH
Universitätsplatz 12
34127 Kassel
Email: datenschutz@istat.de
Phone: 0561 - 953 796 81
External data protection officer for ISTAT:
Nicolas Kurze
TÜV Technische Überwachung Hessen GmbH
Cyber- & Informationssicherheit
Robert-Bosch-Str. 16
64293 Darmstadt
Email: datenschutzbeauftragte@istat.de
Phone: + 49 (0)561 - 953 796 85
Supervisory authority:
If you are of the opinion that your personal data is being processed unlawfully, you can contact a data protection supervisory authority at any time with a complaint. The competent supervisory authority is:
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Postfach 3163
65021 Wiesbaden
Phone: +49 611 1408 - 0
Your rights
As a data subject, you have the right to request at any time information regarding the data pertaining to you that we have stored. You can also exercise the right to rectification, deletion or restriction of the processing or the right to object, at any time. The same applies to the right to data portability. You can revoke your consent to the processing of your data at any time.
Purpose and scope of the data processing
Visiting this website:
No data (and also no IP addresses) is saved when you visit this website.
Registration for an event:
The data is provided by you voluntarily. Legal basis is Art. 6 paragraph 1a GDPR. The data is used only for executing the respective event and is deleted one year after execution at the latest, unless we are required to save it (Art. 6 paragraph 1 sentence 1c GDPR) on the basis of statutory retention obligations (e.g. pursuant to Section 257 of the German Commercial Code (HGB) and Section 147 of the German Tax Code (AO)). Only the data provided by you is collected. This is: title, first name, surname, your address, telephone number and email address. A different billing address may also be collected.
Contact:
We collect personal data when you provide us with this, for example when you contact us. Naturally, we use personal data provided to us this way exclusively for the purpose for which you provided it by contacting us. This data is expressly provided voluntarily and with your consent. Insofar as the provided information concerns communication channels (e.g. email address, telephone number), you also consent to us contacting you via these communication channels to respond to your enquiry. Of course you may revoke your declarations of consent at any time with future effect. To do this, please get in touch with us or our data protection officer, whose contact details you will find below.
Transfer to third parties
You data will not be processed or used for the purposes of consulting, advertising or market research. It will not be sold, leased or provided to third parties in any other way. Personal data is transferred to state bodies and the authorities only in the context of mandatory national legislation.