Privacy Policy

 

Welcome to our website. Data protection is of high importance for Nehemiah Gateway gGmbH. The use of our website is possible without any indication of personal data. If you as a user wish to take advantage of special services of our organization through our website, it may be necessary to process personal data. If we cannot claim a legal basis for this, we will collect your explicit consent for this. 

The processing of personal data, including e.g. name, address, e-mail address or telephone number, takes place in compliance with the basic data protection regulation and in accordance with the country-specific data protection regulations valid for us. In the following we inform you about the nature, scope and purpose of the personal data collected, used and processed by us as well as about your vested rights.

We have implemented a number of technical and organizational measures to keep the protection of your data as complete as possible. However, data transmissions on the Internet can have security vulnerabilities so that absolute protection cannot be guaranteed. You are therefore free to send personal data to us in classic ways.

 

1. First, a few short explanations of terms:

The privacy policy of the Nehemiah Gateway gGmbH is based on the terminology used by the European directive and regulation provider in the adoption of the basic Data Protection Regulation (DS-GMO).

Our data protection declaration is intended for the public as well as for our donors and business partners and should be easy to read and understand. In order to ensure this, we would like to explain the used terminology. We use the following terms in this privacy statement, among others:

 

a) Personal data 

In this context, personal data are all information relating to an identified or identifiable natural person. An identifiable person is considered to be an individual who can be identified, directly or indirectly, in particular by assigning it to an identifier such as a name, an identification number, location data, an online identifier or to one or more special characteristics by which the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.

 

b) The person concerned 

The person concerned is any identified or identifiable natural person whose personal data is processed by the party responsible for data processing.

 

c) Processing 

Processing is any operation performed with or without the help of automated procedures or any such series of operations in connection with personal data such as: collection, recording, organization, arranging, storage, adaptation or alteration, reading, retrieval, use, disclosure by transmission, dissemination or any other form of provision, matching or linking, restriction, deletion or destruction.

 

d) Limitation of processing 

Limitation of processing is the marking/highlighting of stored personal data with the aim of limiting its future processing.

 

e) Profiling 

Profiling is any form of automated processing of personal data, which consists in the use of such personal data with the aim to assess certain personal aspects relating to a natural person, in particular to analyze and forecast the performance, economic situation, health, personal preferences, interests, reliability, behavior, whereabouts or location change of this natural person.

 

f) Pseudonymisation

Pseudonymisation is the processing of personal data in a manner that the personal data can no longer be assigned to a specific person without the addition of additional information, provided that these additional information shall be kept separately and subject to technical and organizational measures to ensure that the personal data are not assigned to an identified or identifiable natural person.

 

e) Responsible or responsible for processing 

Responsible or responsible for processing is the natural or legal person, authority, institution or other body that decides alone or jointly with others about the purposes and means of processing personal data. Where the purposes and means of such processing are determined by union law or by the law of the Member States, the party responsible respectively the specific criteria of his designation can be stipulated in accordance with Union law or the law of the Member States.

 

f) Processor

A processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the person or entity responsible.

 

i) Recipient

The recipient is a natural or legal person, authority, institution or other body to whom personal data is disclosed, regardless of whether it is a third party or not. However, authorities which may receive personal data under a specific investigation mandate under Union law or the law of the Member States shall not be considered as recipients.

 

j) Third Party 

Third Party is a natural or legal person, authority, institution or other body other than the person concerned or the party responsible, the processor or persons under the direct responsibility of the party responsible or the processors, who are authorized to process the personal data.

 

k) Consent 

Consent is every declaration of intention by the person concerned which is given voluntarily for the particular case in an informed and unambiguous manner, in the form of a declaration or any other clearly affirming act by which the person concerned indicates that he/she agrees to the processing of the personal data relating to him/her.

 

2. Name and address of the party responsible

The party responsible according to the basic data protection regulation and other privacy laws applicable in the Member States of the European Union as well as other provisions that are intended to protect data is:

NEHEMIAH GATEWAY GEMEINNÜTZIGE GMBH
Authorized representatives:
Dr. iur. Elis Tarelli, Arlinda Merdani, Elvira Zeitler
Phone: +49 911 6000 9969

E-mail: office(at)nehemiah-gateway.org

Website:www.nehemiah-gateway.org

 

3. Collection of general data and information

With every access of our website by you as a person concerned, our website collects a number of data of the accessing system, which are stored in the logfiles of the server. 

These are:

-       Browser type and version used

-       Operating system used by the accessing system

-       Internet site from which a comprehensive system reaches our website (so-called Referrer

-       Under websites that are controlled on our website

-       Date and time of access to the website

-       Internet Protocol address (IP address)

-       Internet service provider of the accessing system

-       Other similar data and information related to security in the event of attacks on our information technology systems.  

However, when using this general data and information, we do not draw any conclusions as to the person concerned. 

This information is needed to deliver content from our website, to optimize the content of our website and to promote it, to ensure the permanent functioning of our information technology systems and the technology of our Website and to provide law enforcement authorities in the case of cyber-attacks the information necessary for prosecution. This anonymously collected data and information are therefore evaluated by us statistically and with the aim of increasing the data protection and data security in our system, so that an optimal level of protection for the personal data can be ensured. The anonymous data of the server logfiles are stored separately from all personal data specified by you as the person concerned.

 

4. Use of cookies

Our web presence uses cookies. These are text files that are stored and saved through an Internet browser on a computer system and contain a cookie ID, which is a unique identifier of the cookie, consisting of a character string through which Internet pages and servers can be related to the Internet browser in which the cookie was stored. This allows the visited websites and servers to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified by the unique cookie ID. Without the use of cookies, the functionality of our website could not be maintained.

By using cookies, we can provide users of our website with more user-friendly services that would not be possible without cookie-setting. Otherwise, you as the user would have to enter access data before each visit to our website. 

However, as a person concerned, you may at any time prevent our website from setting cookies by making the appropriate settings in the Internet browser you are using and thus permanently contradicting the cookies. Cookies that we have already set can be deleted at any time via the Internet browser. Please note that in this case  not all functions of our website are fully usable.

 

5. Routine deletion and blocking of personal data

We, as the controller, process and store your personal data only for the period required to achieve the purpose of storage, or where provided for in regulations, guidelines, laws or regulations.
If the purpose of storage is omitted or a prescribed storage period expires, the personal data are routinely blocked or deleted in accordance with the legal regulations.

 

6. Rights of the person concerned

 

a) Right of confirmation

Each person concerned has the right to require the controller to get information of the processing of personal data relating to him or her. If a person concerned wishes to avail himself of this right of confirmation, he or she may at any time contact an employee of the controller.

Any person affected by the processing of personal data has the right to receive free of charge information about the personal data stored on his person and a copy of this information at any time by the controller. 

 

b) Right of information

In addition, each person concerned has the right to request information on the following:

1.  The processing purposes

2.  The categories of personal data that are processed

3.  The recipients or categories of recipients to whom the personal data has been disclosed or is still disclosed, in particular to recipients in third countries or to international organizations
If possible, the planned duration for which the personal data is stored, or, if this is not possible, the criteria for determining this duration

4.  The existence of a right to rectify or delete the personal data relating to it or to restrict the processing by the party responsible or a right of objection against such processing

5.  The existence of a right of appeal by a supervisory authority

6.  All available information on the origin of the data, if the personal data were not collected from the person concerned

7.  The existence of automated decision-making, including profiling and, in these cases, conclusive information on the logic involved, the scope and the intended effects of such processing for the person concerned.

8.  Whether personal data has been transmitted to a third country or to an international organization. (If this is the case, the person concerned is also entitled to obtain information on the appropriate guarantees in connection with the transmission)

 

c) Right to rectification

Any person concerned by the processing of personal data shall have the right to request the immediate rectification of any incorrect personal data relating to them. In addition, the person concerned is entitled to demand the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.

D) Right to deletion (right to be forgotten)

Any person concerned by the processing of personal data shall have the right to require the controller to delete the personal data relating to him/her without delay, provided that one of the following reasons applies and that the processing is not required:

1.  The personal data were collected for such purposes or processed in any other way for which they are no longer necessary

2.  The person concerned revokes the consent to which the processing was based and there is no other legal basis for processing

3.  The person concerned disagrees with the processing and there are no overriding reasons for the processing, or the person concerned disagrees with the processing in the case of direct advertising.

4.  The personal data has been processed unlawfully

5.  The deletion of personal data is necessary for the fulfilment of a legal obligation under union law or the law of the Member States to which the party responsible is subject

6.  The personal data have been collected in relation to services of the information society offered directly to a child if the child has not completed the sixteenth year of life or has not been given consent by the holder of parental responsibility for the child.

If the personal data have been made by us and our company is obligated to delete the personal data, we take appropriate measures, also of a technical nature, taking into account the available technology and the implementation costs, to inform other data controllers who have processed the published personal data that you, as a person concerned, have requested the deletion of all other data that controllers have processed, of links to these personal data or of copies or replicas of such personal data, as long as the processing is not required.

 

e) Right to limitation of processing

Any person concerned by the processing of personal data has the right to require the controller to restrict the processing if one of the following conditions is met:

1.  The correctness of the personal data is disputed by the person concerned, for a period of time, which enables the controller to verify the accuracy of the personal data.

2.  The processing is unlawful, the person concerned rejects the deletion of the personal data and instead requires the restriction of the use of the personal data

3.  The party responsible no longer needs the personal data for the purposes of processing, but the individual needs it for the assertion, exercise or defense of legal claims

4.  The person concerned has appealed against the processing in accordance with article 21 (1) of the DS-GVO and it is not yet determined whether the legitimate reasons of the party responsible outweigh those of the person concerned.

If one of the above conditions is met and a person concerned wants to request restriction of his/her personal data stored by Nehemiah Gateway gGmbH, he/she may at any time contact our data protection officer or another employee of the controller. The data protection officer of the Nehemiah Gateway gGmbH or another employee will arrange for the restriction of processing.

 

f) Right to data transferability

Any person concerned by the processing of personal data has the right granted by the European directive and regulation provider, to receive the personal data which has been made available by him/her to a party responsible, in a structured, common and machine-readable format. He/she also has the right to transmit this data to another party responsible without hindrance by the party responsible wo was  provided with the personal data, provided that the processing is based on the consent of the regulatory authorities (art. 6, 9 DSGVO) or on the contract (art. 6 DSGVO) and the processing is carried out using automated procedures, provided that the processing is not necessary for the performance of a task which is in the public interest or is carried out in the exercise of public authority, which has been transferred to the party responsible.

Furthermore, as a person concerned, when exercising your right to transfer data, you have the right to obtain that the personal data are transmitted directly by us as party responsible to another party responsible, to the extent that this is technically feasible and does not affect the rights and freedoms of other persons.

 

g) Right to objection

Any person concerned by the processing of personal data shall have the right, at any time, for reasons arising from their particular situation, to appeal the processing of personal data relating to them, which are based on article 6 (1) (e) or (f) DS-GMO. This also applies to profiling based on these provisions. 

Nehemiah Gateway gGmbH will no longer process the personal data in the event of appeal, unless we can prove compelling reasons for the processing that outweigh the interests, rights and freedoms of the person concerned, or the processing is for the assertion, exercise or defense of legal claims. If we process personal data for the purpose of direct advertising, you as the person concerned have the right to object to the processing of personal data at any time for the purpose of such advertising. This also applies to profiling as far as it is related to such direct advertising. If you, as the person concerned, object to our processing for direct marketing purposes, we will no longer process the personal data for these purposes.

 

h) Automated decisions in individual cases including profiling

Any person affected by the processing of personal data has the right not to be subjected to a decision based solely on automated processing, including profiling, which will have legal effect on him/her or affects him/her in a similar manner, if the decision is not necessary for the conclusion or fulfilment of a contract between the person concerned t and the party responsible, or because of legislation of the European Union or of the Member States to which the party responsible is subject, and where such legislation contains appropriate measures to safeguard the rights and freedoms and the legitimate interests of the data subject or, with the express consent of the person concerned.

If the decision to conclude or fulfil a contract between the data subject and the party responsible is required or if it is made with the explicit consent of the person concerned, we shall take appropriate measures to safeguard the rights and freedoms and the legitimate interests of the person concerned, including at least the right to a person's intervention on the part of the party responsible, the presentation of his/her own position and the challenge of the decision.

If the data subject wishes to assert rights with regard to automated decisions, the person concerned may at any time contact our privacy officer or another employee of the controller.

 

i) Right to revoke a data protection consent

Any person affected by the processing of personal data has the right to revoke consent to the processing of personal data at any time.

If the person concerned wishes to assert his/her right to revoke a consent, the person concerned may at any time contact our privacy officer or another employee of the controller.


7. Privacy statement for the use of Facebook plug-ins (like-button)

We have integrated on our website functionalities of the company Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. Responsible for the processing of personal data if a person concerned lives outside the United States or Canada, is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

By each visit of one of the individual pages of this internet site, which is operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the Internet browser on the person concerned’s information technology system will be automatically induced by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be retrieved at Https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook will be informed about the individual page of our website that is visited by the person concerned.

If the person concerned is logged on to Facebook simultaneously, Facebook recognizes at each visit of the person concerned on our website and for the entire duration of the respective stay on our website, which individual pages of our website are visited. This information is collected by the Facebook component and is assigned by Facebook to the respective Facebook account of the person concerned. If the person concerned presses one of the Facebook buttons on our website, such as the "like" button, or gives a comment, Facebook assigns this information to the personal Facebook user account of the the person concerned and stores such personal data.

 If the person concerned is logged on to Facebook at the time of the visit of our Internet site, Facebook always receives information by means of the Facebook component that the data subject has visited our website; this takes place regardless of whether the person concerned clicks on the Facebook component or not. If such information is not intended to be transmitted to Facebook by the data subject, it may prevent the transmission by logging out of your Facebook account prior to visiting our website.

The data policy published by Facebook, which is available under https://de-de.facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. It also explains the options Facebook offers to protect the privacy of the person concerned. In addition, different applications are available that allow to suppress data transmission to Facebook. Such applications may be used by the person concerned in order to suppress the transmission of information to Facebook.

 

8. Privacy policy for use of Google Analytics (with anonymization feature)

We have integrated the functionalities of Google Analytics with anonymization function on our website. Google Analytics is a Web analysis service that collects, gathers, and evaluates data, analyzing the behavior of visitors to Web sites. This includes the referrer page, subpages, and the dwell time. 

The operating company of the Google Analytics component is the Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

We use the addition "_gat. _anonymizeIp" for web analytics via Google. By means of this suffix, the IP address of the Internet connection of the data subject is shortened and made anonymous by Google if access to our Internet pages comes from a Member State of the European Union or from another Contracting State of the Agreement on The European Economic Area.

The purpose of the Google Analytics component is to analyze the traffic flows on our website. Google uses the collected data and information, among other things, to evaluate the use of our website in order to compile for us online reports, which show the activities on our Internet pages, and to provide further services related to the website.

Google Analytics sets a cookie on your computer unit. Through each visit of one of the individual pages of our internet site, Google Analytics causes the Internet browser to transmit data to Google for the purpose of online analysis. As part of this technical process, Google is given knowledge of personal data such as the IP address, which Google uses, among other things, to trace the origin of the visitors and clicks and to enable the subsequent commission settlements. 

By means of the cookie, personal information, e.g. access time and access point, as well as the frequency of visits to our website are transferred to Google in the USA and stored there. Google may pass on this personal data collected via the technical procedure to third parties. You can always prevent cookies from being set and stored, also with regard to the Google cookie, by means of a corresponding setting. In addition, a cookie already set by Google Analytics can be deleted at any time through your Internet browser or other software programs.

You may also object to and prevent Google from capturing the data generated by Google Analytics and related to the use of our web site and the processing of such data. To do this, download and install the browser add-on that you can find here: Https://tools.google.com/dlpage/gaoptout. This browser add-on tells Google Analytics about JavaScript that no data and information about visiting websites should be sent to Google Analytics; The installation of the add-on is considered by Google as an objection.

Google's information and privacy policy can be retrieved at  https://www.google.de/intl/de/policies/privacy/and under Http://www.google.com/analytics/terms/de.html. Google Analytics is displayed and explained in detail at this link https://www.google.com/intl/de_de/analytics/.

 

9. Privacy policy for use of YouTube

The controller has integrated components of YouTube on this website. YouTube is an Internet video portal that allows video publishers to freely upload video clips and allows other users free viewing, evaluation and commentary. YouTube allows the publication of all kinds of videos, which is why both complete film and TV programs, as well as music videos, trailers or user-produced videos can be accessed via the You Tube Internet portal.

The operating company of YouTube is the YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. The YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

By each visit at one of the individual pages of this internet site, which is operated by the controller and on which a YouTube component (YouTube video) has been integrated, the Internet browser on the person concerned’s information technology system is automatically induced by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. For more information about YouTube, see www.youtube.com/yt/about/de/. As part of this technical process, YouTube and Google will be aware of the specific subpage of our website being visited by the person concerned.

If the affected person is logged on to YouTube simultaneously, YouTube recognizes with the visit of a sub-page containing a YouTube video, which specific subpage of our website the person concerned visits. This information is collected by YouTube and Google and is associated with the relevant YouTube account of the person concerned.

YouTube and Google will receive information from the YouTube component about the fact that the person concerned has visited our website, if the data subject is logged on to YouTube at the time of the visit of our Internet site; this takes place regardless of whether the person concerned clicks on a YouTube video or not. If such information is not intended to be transmitted to YouTube and Google by the data subject, it may be prevented by logging out of your YouTube account prior to visiting our website.

The data protection provisions published by YouTube, which are available at  www.google.de/intl/de/policies/privacyprovide information about the collection, processing and use of personal data by YouTube and Google.

 

10. Legal basis for processing

We must obtain consent for a particular processing purpose on a regular basis before we implement it. If the processing of personal data is necessary for the fulfillment of a contract to which the person concerned is a party, as is the case for, for example, processing operations for the supply of goods or the provision of other services or return-services necessary, this processing serves the performance of a contract and does not require consent. The same applies to such processing operations, which are necessary for the implementation of pre-contractual measures, for example in cases of inquiries concerning our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as to fulfil tax obligations, we are also not legally obligated to collect your consent. In rare cases, the processing of personal data could be necessary to protect your vital interests or any other natural person. Finally, the processing of data may also be necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and fundamental freedoms of the person concerned do not prevail. We are particularly permitted to do such processing because it has been specifically mentioned by the European legislator. In this respect, he considered that a legitimate interest could be assumed if the person concerned was in a contractual relationship with the one who processed data.

 

11. Legitimate interests in the processing pursued by the person in charge or a third party

The processing of personal data is based on article 6 I lit. F DS-GMO is our legitimate interest in carrying out our business activities in favor of the well-being of all our employees and shareholders.

 

12. The duration for which the personal data is stored

The criterion for the duration of the storage of personal data is the respective legal retention period. At the end of the period, the corresponding data are routinely deleted, if they are no longer necessary for the performance of the contract or the initiation of the contract. 

 

13. Existence of automated decision-making

As a responsible company, we dispense with automatic decision-making or profiling.

 

14. Legal or contractual requirements for the provision of personal data; necessity for the conclusion of the contract; obligation of the person concerned to provide personal data; Possible consequences if personal data is not provided

We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual regulations (e.g. information about the contract partner). Sometimes it may be necessary for a contract to be concluded that a person concerned provides us with personal data which must subsequently be processed by us. The person concerned, for example, is obligated to provide us with personal data when our company concludes a contract with him/her. Non-provision of personal data would lead to the failure to close the contract with the person concerned. Prior to the provision of personal data by the person concerned, the person concerned must contact our data protection officer. Our data protection officer clarifies the individual case in question as to whether the provision of personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to personal data and the consequences of non-provision of personal data.

 

15. Newsletter

You can subscribe to our newsletter via our website. For this we need your e-mail address and your statement that you agree with the subscription to the newsletter.

Once you have signed up for the newsletter, we will send you a confirmation email with a link to confirm your registration.

You can cancel the subscription to the newsletter at any time. Please send your cancellation to the following e-mail address: compact-news(at)nehemiah-gateway.org. We will then immediately delete your data in connection with the sending of newsletters. 

 

16. Encrypted payment transactions

Our donation form is provided by Altruja GmbH. We have chosen this service provider to ensure the highest level of data security for your data. Your personal data will be transmitted to us via a secure connection. The payment data is transferred directly to the respective payment service provider with an encrypted connection. You can find up-to-date information on the security procedure used here: Https://www.altruja.de/datenschutz-und-sicherheit.html.

Donations by direct debit

If you donate by direct debit (Lastschrift), the data will be transferred to our bank Sparkasse Nürnberg after sending the donation form via an encrypted connection.

Donate by Sofortüberweisung

If you donate by the instant transfer service “Sofortüberweisung”, you will be forwarded directly to the payment provider's website immediately after sending the donation form. We will not receive your account information and will only be informed of the successful payment.

 

17. Storage and processing of data in the contact form

Our website contains-we are obliged to offer you an appropriate possibility of quick contact-, a general address, under which you can reach us by electronic mail (e-mail address). In this case, the personal data of the user transmitted via e-mail will be stored. However, the data will not be passed on to third parties in any case. The data is used exclusively for the processing of communication with you.

We also offer a contact form for this purpose. 

The data entered in the input form is transmitted to us and stored. This is your name, postal and e-mail address and the message body.

When the message is sent, the following data are also stored:

1.  IP address of the user

2.  Date and time

 The processing of all data is done in order to be able to communicate with you and therefore to fulfil your request as well as to be able to carry out the contractual relationship with you as well as in our legitimate interest to be able to communicate with you after having contacted you.

If you would like to contact us regarding the information requirements or rights described in this privacy policy, or if you have questions or suggestions in general, please do not hesitate. You can reach us:

 

NEHEMIAH GATEWAY GEMEINNÜTZIGE GMBH
Authorized representatives:
Dr. iur. 
Elis Tarelli, Arlinda Merdani, Elvira Zeitler
Phone: +49 911 6000 9969

E-mail: office(at)nehemiah-gateway.org

Website:www.nehemiah-gateway.org

 

We are also available for all other questions, please just contact us.

This privacy statement is currently valid and will be updated continuously. It can be accessed and printed at any time on our website.

 

 

Last Update: 07/02/18

 

 

 

Nach Oben