Home>Privacy Policy

Privacy Statement for histocon.de

Pursuant to Articles 13 and 14 of Regulation (EU) 2016/679 (General Data Protection Regulation / GDPR)

A. Contact data and Controller


1. Name and address of the Controller

The Controller in the sense of the GDPR, national data protection laws of the EU Member States and other data protection regulations is the:

Federal Agency for Civic Education (Bundeszentrale für politische Bildung / bpb)
Adenauerallee 86, 53115 Bonn, Germany
Tel.: +49 (0)228 99515-0
E-mail: info@bpb.de
DE-mail: de-mail-poststelle@bpb-bund.de-mail.de
Website: www.bpb.de


2. Name and address of the data protection officer

The Controller’s data protection officer is:

Mr Rhaban Schulze Horn
Adenauerallee 131a
53113 Bonn
Germany
Tel.: +49 (0)228 99515-0
E-mail: datenschutz@bpb.de

B. General information on data processing


1. Scope of processing of personal data

We only collect and use personal data of users to the extent required to ensure that our website works as intended and to provide content and services. Personal data of users are only collected and used with their consent. Exceptions are only admissible if and when it is impossible to obtain their prior consent for tangible reasons and the use of their data is permitted by law in the cases concerned.


2. Legal basis for processing personal data

To the extent that we obtain the consent of affected individuals for processing their personal data, the legal basis for doing so is point (a) of Article 6 (1) of the GDPR. The legal basis for processing personal data when this is required for performance of a contract to which the affected person is party (e.g. an order placed in the bpb shop) is point (b) of Article 6 (1) of the GDPR. This also applies to data processing which is required for implementing precontractual measures. When personal data must be processed for compliance with a legal obligation to which our agency is subject as the Controller, the legal basis for doing so is point (c) of Article 6 (1) of the GDPR. To the extent that this processing is necessary in order to perform our tasks in the public interest and/or exercise official authority, the legal basis for doing so is point (e) of Article 6 (1) of the GDPR in conjunction with Section 3 of the German Data Protection Act.


3. Erasure of data and duration of storage

Personal data of an affected individual are erased or blocked as soon as the purpose for which they were stored has lapsed. Data may also be stored if this is provided for by European or national regulations, laws or other rules to which the Controller is subject, such as the time limits on storing written documents defined by the Registry Directive supplementing the Joint Rules of Procedure of the German federal ministries. Data are also blocked or erased when a time limit prescribed by one of the just-mentioned standards expires, unless it should be necessary to continue storing the data in order to conclude or perform a contract.

C. Data processing when the histocon.de website is visited


I. Provision of the website and generation of log files


1. Description and scope of data processing

Every time that our website is called, our system automatically captures data and information from and on the computer system used to call it.

The following data are collected:

(1) The type and version of the browser used
(2) The user’s operating system
(3) The user’s IP address
(4) The date and time of access
(5) Other websites, if any, from which the user’s system accessed our website
(6) The visited URL

These data are also stored in our system’s log files. The data are not stored together with other personal data of the user. The IP addresses of users are not normally stored as such, being anonymised instead by a proxy server inserted ahead of bpb.de as a privacy shield. In the event of faulty or aborted access to the intervening proxy server, however, the actual IP address is stored. For technical reasons, it is impossible for us to prevent this.


2. Legal basis for data processing

The legal basis for temporarily storing data and log files is point (e) of Article 6 (1) of the GDPR in conjunction with Section 3 of the German Data Protection Act.


3. Purpose of data processing

The system must temporarily store the IP address of the user’s computer in order to make the website available to it. The user’s IP address must remain stored for this purpose during the entire session. It is stored in log files to ensure the proper functioning of the website. We also use the data to improve our website and strengthen the security of our IT systems. The data are not analysed for marketing purposes in this context. Processing of them is required in order for us to perform our tasks in the public interest and/or exercise official authority; the legal basis for doing so is point (e) of Article 6 (1) of the GDPR in conjunction with Section 3 of the German Data Protection Act.


4. Duration of storage

Data are erased are soon as they are no longer needed for the purposes for which they had been collected. Regarding data collected for the purpose of making the website available, this is the case when a session ends. When anonymised data are stored in log files, this is the case after five weeks at the latest.


5. Possibility of objecting and requesting erasure

It is essential to collect these data and store them in log files in order to operate the website and make it available to users. Users therefore have no grounds to object to this.


II. Use of cookies


1. Description and scope of data processing

Our website uses cookies. Cookies are small text files which are stored in the browser or by the browser on the user’s computer. If a user calls our website, a cookie may therefore be stored in their operating system. This cookie contains a unique sequence of characters which makes it possible to unambiguously identify the browser if and when it subsequently calls our website again.

We use cookies in order to make our website more user-friendly. Some parts of our website also require the ability to continue recognising a browser after it accesses a different page. The following data are stored in the cookies and communicated:

(1) Articles in a shopping cart
(2) Execution of JavaScript
(3) Search terms and results
(4) Use of a mobile device
(5) Consent to the cookie disclaimer
(6) Consent to play third-party content

We also use cookies on our website for analysing how users navigate within it. You can find a list of the stored and communicated data in Section III on Matomo (formerly Piwik) and in Section IV on the Next-Generation Scalable Centralised Measuring System (nGSCMS) of INFOnline GmbH.


2. Legal basis for data processing

The legal basis for processing personal data with the use of cookies is point (e) of Article 6 (1) of the GDPR in conjunction with Section 3 of the German Data Protection Act.


3. Purpose of data processing

The purpose of these technically required cookies is to make it easier to use websites. Some functionality of our website would be impossible to provide without cookies (e.g. the shopping cart and the mobile website version). These require a means of ensuring that the browser continues to be recognised after it navigates to a different page.

We require cookies for the following purposes:

(1) Remembering content for the shopping cart
(2) Remembering search terms and results
(3) Remembering content for generating PDF and EPUB files
(4) Enabling a website version for mobile devices
(5) Making the cookie disclaimer disappear after it has been acknowledged
(6) Enabling the playing of third-party content

User data collected by technical cookies are not used to generate user profiles.

Analysis cookies are used to improve the quality of our website and its content. They tell us how our website is used so that we can steadily improve our offering. We also use cookies for the following purposes:

(1) Web analysis with Matomo (formerly Piwik), see Section III
(2) Web statistics collected with the Next-Generation Scalable Centralised Measuring System (nGSCMS) of INFOnline GmbH (see Section IV)

We provide opt-out functions for both applications. If you choose to opt out, a cookie is also set for that.

For this purpose, data processing is required in order for us to perform our tasks in the public interest and/or exercise official authority; the legal basis for doing so is point (e) of Article 6 (1) of the GDPR in conjunction with Section 3 of the German Data Protection Act.


4. Duration of storage; possibility of objecting or requesting erasure

Cookies are stored on your computer and transferred from there to our website. The technically required cookies are only stored until the end of the current session (‘session cookies’). The cookie for ‘stop showing the cookie disclaimer’ is stored for up to seven days. The cookies for Matomo (formerly Piwik) are stored for up to six months. The