Data Privacy Notice | Zentrale Hebammenvermittlung

NOTES ON DATA PROTECTION (IN ACCORDANCE WITH SECTION 4 OF THE GERMAN TELEMEDIA ACT (TMG))

Safeguarding your personal data is of utmost importance to us. In this section, you will learn about the personal data we collect during your visit to our website and how we manage it. Our legal framework is governed by the Data Protection Act of the Protestant Church in Germany, along with the applicable regulations for providing telephone services and operating websites.

DATA CONTROLLER

The entity responsible, as defined by data protection regulations, is the following association:

Diakonisches Werk -Innere Mission- des Evang.-Luth. Dekanatsbezirks Würzburg e. V.

Friedrich-Ebert-Ring 24 | 97072 Würzburg | General email address | info@diakonie-wuerzburg.de | General homepage www.diakonie-wuerzburg.de

Managing Director: Dipl.-Kfm. Clemens Link (business graduate) VR 87 Würzburg Local Court| VAT-ID DE 134184157 | Tax-ID 257/147/10705 Würzburg Tax Office

as the sponsor of

For more information, please refer to the imprint.

In the following, the data controller will be referred to as "Diakonie Würzburg e.V", "Diakonie Würzburg", "we" or "us".

BASIC INFORMATION ON DATA PROCESSING

The legal basis for our data processing activities are the applicable data protection standards, with a particular focus on the Church Act on Data Protection of the Evangelical Church in Germany (DSG-EKD).

In the following, the term "user" includes our members, sponsors and online-service visitors.

The term "user" and all other personal terms used in the masculine form to streamline communication, are to be understood as gender-neutral (m/f/d).

In the processing of user's personal data, we adhere strictly to the relevant data protection regulations. This means that user data is exclusively used with legal permission or consent.

To safeguard the data under our management against accidental or intentional manipulation, loss, destruction, or unauthorized access, we implement state-of-the-art technical and organisational security measures. We also leverage all legal avenues to ensure compliance with data protection laws, both by us and by third parties engaged by us.

PROCESSING OF PERSONAL DATA

The users' personal data will be used for the following purposes, in addition to those expressly mentioned in this Privacy Policy:

The performance of our statutory responsibilities, provision of our services, maintenance and user support;
technical and business-related notifications related to our offerings.

The personal data shared with us online will only be collected, processed and used for the purpose outlined for the specific case. Any further collection, processing or use will only be conducted in strict accordance with the law.

In accordance with Section 6 DSG-EKD, data processing is only deemed lawful if at least one of the following conditions is met:

a legal provision permits or orders the processing of the personal data;
the data subject has granted consent for the processing of their personal data for one or more specific purposes;
The processing is necessary for the execution of the controller's tasks, including the exercise of ecclesiastical supervision;
the processing is essential for the fulfilment of another task carried out in the Church's interest;
processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject's request;
processing is necessary to adhere to a legal obligation which is binding for the ecclesiastical body;
the processing is necessary to protect the vital interests of the data subject or another natural person;
processing is necessary for safeguarding the legitimate interests of a third party, unless such interests are overridden by the data subject’s legitimate interests, in particular when the data subject is a minor.

RECIPIENTS OF PERSONAL DATA

When your data is processed electronically, the technical operation of our data processing systems is conducted by STRATO AG (see below DATA COLLECTION).

We only share data with third parties upon explicit consent, or if this is necessary for accounting purposes (e.g. carrying out bank transactions or sending goods and invoices by post), or otherwise in order to fulfil our contractual obligations to users, or if required by legal obligations. In cases where applicable, your data may be disclosed to the competent supervisory and auditing authorities for the purpose of exercising their respective control rights.

RIGHTS OF THE DATA SUBJECT:

You have the right to request, free of charge, information about the personal data we have stored about you.

You can withdraw your consent to data processing at any time, and this withdrawal will apply to future processing.

In cases with valid reasons, you possess the right to request corrections, deletions, limitations on processing, data portability, and the right to object to processing.

In instances of data protection law violations, visitors to this website hold the right to file a complaint with the competent supervisory authority.

COMPETENT SUPERVISORY AUTHORITY:

Commissioner for Data Protection of the Evangelical Churches in Germany (EKD)
Böttcher St. 7, 30419 Hannover
Telephone: +49 (0)511 768128-0
https://datenschutz.ekd.de
Ulm branch office
Dr. rer. nat. Axel Gutenkunst
Regional Representative
Hafenbad 22
D-89073 Ulm
Tel. +49 (0)731 140593-0
Fax +49 (0)731 140593-20
Email: axel.gutenkunst@datenschutz.ekd.de
Internet: https://datenschutz.ekd.de

LOCAL DATA PROTECTION OFFICER:

For questions regarding data protection, please contact the local data protection officer for Diakonie Würzburg e.V.:

Claudia M. Kaufhold
Friedrich-Ebert-Ring 24
97072 Würzburg
datenschutzbeauftragte@diakonie-wuerzburg.de

DATA COLLECTION:

The homepage is hosted by:
STRATO AG
Registered office of the public limited company: Pascal St. 10, 10587 Berlin
www.STRATO.de

Pursuant to Section 6 No. 4 of the German Data Protection Act of the Evangelical Church in Germany (DSG-EKD) and in compliance with the EU Basic Data Protection Regulation or the German Federal Data Protection Directive, this provider automatically stores so-called IP addresses on a server in Germany for a maximum of 14 days to ensure the functionality of its services and to protect against attacks.

We gather data for every access to the server hosting this offer (so-called server log files). The legal basis for this action is Section 6 No. 4 DSG-EKD.

When you access this website or any other Internet pages (e.g. via PC, notebook, smartphone, etc.), data is transmitted to our web server through your internet browser. The following information is recorded during an ongoing communication connection between your internet browser and our web server (logging):

date and time of the request
name of the requested file
page from which the file was requested
access status (file transferred, file not found, etc.)
web browser and operating system used
the previously visited page
complete IP address and the requesting provider
the amount of data transferred.

After the termination of the connection, the data is anonymised by shortening the IP address at domain level, so that it is no longer possible to establish a reference to individual users. Personal data is only stored if you provide it voluntarily, e.g. as part of a general enquiry by e-mail.

The IP address could potentially be used to determine the household from which the homepages were accessed, but only on the basis of a court order. IP addresses must therefore be treated as personal or personally identifiable data.

Upon request, the provider can furnish its customers with the IP addresses from which their homepages were accessed, enabling them to perform statistical analyses of their homepages if necessary. Currently, such use does not take place, but we reserve the right to do so. In such a case, log data would be used in an anonymised form, which means it is NOT associated with the identity of the user or used for profiling in accordance with legal regulations.

The collection of data for the website provision and the storage of the data in log files are crucial for the website’s operation. Therefore, users do not have the option to object.

Apart from that, we only collect data from the data subject themselves, unless otherwise stipulated by law.

SSL OR TLS ENCRYPTION

This website employs SSL or TLS encryption for safety reasons and to safeguard the transmission of confidential content, e.g. inquiries sent to us, as the site operator, or when submitting completed forms. You can easily recognize an encrypted connection by the change in the browser's address line from "http://" to "https://" and the presence of a lock symbol in your browser's address line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be accessed by third parties.

For midwife referral, we use the "WitchConnexion / Enna” programme. This is a management programme for midwife networks that has already proven itself in several other regions.

REFERRAL PORTAL

The purpose of the referral portal is to facilitate and establish contact between individuals seeking care from a midwife in the context of a pregnancy and the midwives themselves. This process involves the collection of personal data from both midwives and users. The referral requires the exchange of data between parties involved and consent for this data exchange is requested in the input mask. To safeguard privacy, the input mask cannot be completed without an indication (yes/no) regarding consent. Details of midwives and enquirers are exclusively stored on a local server at the provider. Enquirers' information is promptly deleted, however in each case, with a maximum retention period of one year following the referral.

Furthermore, the programme "Hebamio" is used.

SSL OR TLS ENCRYPTION

If SSL or TLS encryption is activated, the data you transmit to us cannot be accessed by third parties.

CONTACT FORMS

When you send us enquiries via the contact form, we will store your details provided in the enquiry form, including the contact details you have provided, for the purpose of processing the enquiry and addressing potential follow-up questions. We do not pass on this data without your consent. The processing of the data entered in the contact form is therefore based exclusively on your consent (Section 6 No. 2 DSG-EKD). You can revoke this consent at any time by sending us an informal e-mail message. The legality of data processing conducted prior to your withdrawal of consent remains unaffected by this. The data you entered in the contact form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular retention periods - remain unaffected by this.

ENQUIRIES VIA E-MAIL, TELEPHONE OR FAX

When you get in touch with us through e-mail, telephone, or fax, your inquiry, including all associated personal data (such as your name and the content of your enquiry), is stored and processed by us in order to process your request. We do not pass on this data without your consent. The processing of this data is based on Section 6 No. 5 DSG-EKD, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Section 6 No. 2 DSG-EKD), or one of the strict conditions for lawful processing pursuant to Section 6 DSG-EKD. This includes that the processing of your data is necessary for the fulfilment of our tasks. We cannot effectively process enquiries addressed to us without processing the relevant personal data of the enquirer. The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent for storage, or the purpose for data retention no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions – in particular retention periods – will not be affected by this.

Information that you send to us unencrypted by electronic mail (e-mail) may be accessible by third parties during transmission. As a rule, we cannot verify your identity and cannot ascertain the sender behind an email address. Consequently, legally secure communication through standard e-mail is not guaranteed. Like many e-mail providers, we use spam filters to counter unwanted advertising. In rare cases, these filters might unintentionally classify regular e-mails as spam and delete them. In any case, we automatically remove emails containing malicious programmes (“viruses”). If you wish to send messages to us that require protection, we recommend that you encrypt and sign them to prevent unauthorised access and falsification on the transmission path, or send us the message by post.

INTEGRATION OF THIRD-PARTY SERVICES AND CONTENT

It may happen that third-party content, such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites, is integrated on our website. This integration typically always necessitates that the providers of this content are aware of your IP address. Without the IP address, they wouldn't be able to deliver the content to your browser. The IP address is thus required for the display of this content.

Our website shows street maps with our locations on our contact pages. For this purpose, a server-side programme, a so-called API, of the map service Google Maps. (Provider: Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) is used.

Our website uses plugins from the YouTube site operated by Google. The operator of the site is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. Further information on the handling of user data can be found in Google's privacy policy at: https://www.google.de/intl/de/policies/privacy.

USE OF COOKIES

Cookies are pieces of information that are transmitted from our web server to your web browser and stored there for future retrieval. The legal basis for this action is Section 6 No. 4 DSG-EKD. It is also possible to view our website without cookies. If you prefer not to have cookies stored on your computer, you can deactivate this feature by adjusting the corresponding settings in your browser. You also have the option to delete stored cookies through your browser's system settings. Disabling cookies may result in certain functional limitations on this website.

WEB STATISTICS WITH MATOMO

This website uses Matomo, an open-source software designed for statistical analysis of visitor access. Matomo uses so-called "cookies", which are text files that are stored on your computer to help analyse your use of the website. The information generated by the cookie about your use of this website is stored on the provider's server located in Germany. The IP address is anonymised immediately after processing and before it is stored. You may refuse the installation of cookies by selecting the appropriate settings in your browser, however please note that doing so may limit your ability to use the full functionality of this website.

For more details on how Matomo manages user data, please refer to the Matomo privacy policy at https://matomo.org/privacy-policy.

INTEGRATION OF YOU-TUBE VIDEOS

Our website includes embedded videos from the external video platform, YouTube. By default, only deactivated images of the YouTube channel are embedded, which do not establish an automatic connection with YouTube's servers. This means that the operator does not receive any user data when the web pages are called up.

You can decide for yourself whether to activate YouTube videos. Only when you enable the video playback by clicking on "Permanent activation" do you give your consent for the necessary data (including the Internet address of the current page and the user's IP address) to be transmitted to the operator. To retain the user's preferred settings, we set a cookie that stores the parameters. When setting these cookies, however, we do not store any personal data. They exclusively contain anonymised data for browser customisation. The videos then become active and can be played by the user.

If you wish to deactivate the automatic loading of YouTube videos again, you can uncheck the consent option under the data protection icon. This action will also update the cookie settings.

USE OF SOCIAL MEDIA

According to Section 6 No. 4 DSG-EKD, the use of social media channels is in our legitimate interest and is necessary for the fulfilment of our statutory responsibilities.

The objectives of our social media presence are as follows:

to establish direct contact with our online visitors, with the aim of acquiring and retaining interested parties by offering modern communication channels,
to provide references to our posts and offers,
to conduct statistical analyses for our own market research purposes.

It is important to us to inform you as transparently as possible about the data protection-related matters for which we are actively responsible via our social media profiles, but also about consequences that are beyond our complete control.

Meta user profile (“Facebook”).

This service is provided by Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (Meta Company).

There is an agreement with Facebook on joint processing (Controller Addendum). In accordance with Art. 29 of the German Data Protection Act of Evangelical Churches (DSG-EKD), this agreement specifies the data processing operations for which we or Facebook are responsible when you visit our Facebook website. You can view this agreement under the following link: https://www.facebook.com/legal/terms/page_controller_addendum.

When you visit our Facebook page, Facebook collects, among other things, your IP address, as well as other information that is present on your end device in the form of cookies. This information is used to provide us, as the operator of the Facebook page, with statistical information about the use of our page. If you would like to avoid this, log out of Facebook or disable the “stay logged in” function and configure your browser so that cookies are not set or are deleted promptly. For more information on Facebook's use of cookies, please see their cookie policy. You can influence the way Facebook uses your data to a small extent in the advertising settings and in the general settings. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads.

According to Facebook, the data collected is also transferred to the USA and other third countries, based on the standard contractual clauses of the EU Commission. For more details, see: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381. Further details are available in Facebook's privacy policy: https://www.facebook.com/about/privacy/.

We currently use the basic functions on this site. The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook provides a general overview of the information it receives and how it is used in its Data Usage Guidelines.

FACEBOOK PIXEL

For conversion measurement, our website uses the Visitor Action Pixel from Facebook, Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). The use of the Facebook pixel takes place on the basis of § 6 No. 4 DS-EKD with your consent. In this regard, the website operator has no less intrusive means of reaching the target audiences. The storage period is: 1 year.

Through the use of this Facebook technology, the behaviour and activities of site visitors can be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of the Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimised.

The data collected is anonymous for us as the operator of this website, we cannot draw any conclusions about the identity of the users. However, Facebook stores and processes this data in a way that enables a connection to the respective user profile. Facebook can then utilize this data for its own advertising purposes in accordance with the Facebook data usage policy. This enables Facebook to place advertisements on Facebook pages as well as outside of Facebook. This use of the data cannot be influenced by us as the site operator.

You can deactivate the "Custom Audiences" remarketing function in the settings section for advertisements at www.facebook.com. To do this, you must be logged in to Facebook.

Further information on data processing by Facebook can be found in the following links: Privacy policy: www.facebook.com/about/privacy/
Opt out: www.facebook.com and www.youronlinechoices.com

If you do not have a Facebook account, you can opt out of usage-based advertising from Facebook on the European Interactive Digital Advertising Alliance website at: www.youronlinechoices.com

Instagram user profile.

The provider is Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA.
Here, too, data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find more details on this at: https://www.facebook.com/legal/EU_data_transfer_addendum and on the handling of your personal data in Instagram's privacy policy: https://help.instagram.com/519522125107875.

We wish to emphasise that Facebook, Instagram, and other entities are part of Meta Platforms Ireland Ltd., which, among other things, provides the following information in its privacy notices:

“Facebook and Instagram share infrastructure, systems and technology with other Meta companies (these include WhatsApp and Oculus), to provide an innovative, relevant, consistent and secure experience across all of the Meta companies’ products. For these purposes, we also process information about you across the Meta-Companies to the extent permitted by applicable law and in compliance with their terms of use and policies."

The data controller for Facebook and Instagram is Meta Platforms Ireland Limited. You can contact this company online or by post at:

Meta Platforms Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland

NOTE ON DATA TRANSFER TO THE USA

Among other things, tools from US-based companies (e.g. Google Maps, Facebook, Instagram, YouTube) are integrated on our website. When these tools are active, there is a possibility that your personal data may be transferred to the servers of these respective companies in the United States. We would like to point out that the USA is not considered a safe third country in the sense of EU data protection law. US companies are obligated to provide personal data to security authorities, and as a data subject, you may not have legal recourse against such actions. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, analyse and permanently store your data located on US servers for surveillance purposes. We have no control over these processing activities.

OBJECTION TO ADVERTISING E-MAILS

We hereby object to the use of contact data, which we are obliged to publish within the framework of the imprint and data protection obligations, for the purpose of sending advertising and information material that has not been expressly requested. The operator of the website reserves the right to take legal action in the event of the unsolicited sending of advertising information (e.g. via spam e-mails).

ORDER PROCESSING

We conclude order processing agreements with all partners – in accordance with Section 30 of the German Data Protection Act for Evangelical Churches (DSG-EKD) or in accordance with Art. 28 of the German Data Protection Regulation (DS-GVO), in conjunction with Section 30 of the German Data Protection Act (DSG-EKD) – who process personal data on our behalf for which we are responsible.

DISCLAIMER AND LIMITATION OF LIABILITY

As the contents of the publications, websites and social media presences of Diakonisches Werk Würzburg e.V. are regularly checked for possible legal violations, it is assumed that they are legally compliant. Should there nevertheless be grounds for complaint, we will immediately follow up on corresponding indications and, if justified, adapt or remove the corresponding content in every reasonable way.

With regard to the website, the operator is responsible as a service provider for its own content in accordance with Section 7 Para. 1 German Telemedia Act (TMG) under the general laws. Therefore, all information provided on this website has been compiled and verified to the best of our knowledge and belief. However, no guarantee is given for the topicality, correctness, completeness or quality and constant availability of the information provided.

According to Sections 8 to 10 of the TMG, the website operator is not obliged to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information in accordance with general laws remain unaffected by this.

We disclaim any liability for damages arising from or as a result of the use or non-use of the information presented on our website. No liability is accepted for any damage caused by computer viruses when accessing or downloading data or when installing or using software.

Pages bearing the names of individuals reflect the opinions and findings of those undersigned persons. The website operator expressly reserves the right to modify, supplement, remove or discontinue individual web pages or the entire website at any time without prior notice.

Insofar as cross-references or links are made to third-party offers, we merely provide access to the use of the content there without being responsible for it ourselves. When cross-references or links are established to third-party offerings, our intention is solely to provide access to the use of the content available there. We do not take responsibility for the content itself.

FURTHER DATA PROTECTION INFORMATION

When contacting us, please also take note of any additional information related to data protection law that may be available locally in our institutions and offices, in the application procedure and in other separate references.

We appreciate any suggestions regarding this privacy policy, and we will promptly implement any justified suggestions for optimisation. For legal reasons, we must reserve the right to update this information, so we encourage you to read it again from time to time.

Thank you for taking note of our privacy policy!