The Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH values the responsible and transparent handling of personal data. Below, you will find
- information on how to contact GIZ about data protection,
- what data is processed when you visit the website, subscribe to newsletters or press releases, or use other GIZ online services,
- what options you have to object to the storage of your data,
- and what rights you have vis-à-vis us.
1. Data Controller and Data Protection Officer
The data controller is the Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH.
Address:
Friedrich-Ebert-Allee 32 + 36, 53113 Bonn
Dag-Hammarskjöld-Weg 1-5, 65760 Eschborn
Contact: info@partnerschaften2030.de
If you have specific questions about the protection of your data, please contact the GIZ Data Protection Officer: datenschutzbeauftragte@giz.de
2. Information on the collection of personal data
2.1 General information
GIZ processes personal data exclusively in accordance with the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
Personal data includes, for example, names, addresses, e-mail addresses, and user behavior.
GIZ processes personal data only to the extent necessary. Which data is required and processed for which purpose and on what basis depends mainly on the type of service you use and the purpose for which it is necessary.
2.2 Collection of personal data when you visit our website
When you visit the Partnerschaften2030 website, your browser automatically transmits data stored in a log file. GIZ only processes the technically necessary data to display the website correctly and to ensure its stability and security.
For each access, the following information is stored: the page accessed, the IP address of the accessing device, the page from which the user was redirected, and the date and time of access. A detailed list of the information stored can be found here.
Log file fields
| Field | Shown as | Description |
| Date | date | The date on which the activity occurred. |
| Time | time | The time, in coordinated universal time (UTC), at which the activity occurred. |
| Server IP Address | s-ip | The IP address of the server on which the log file entry was generated. |
| Client IP Address | c-ip | The IP address of the client that made the request. |
| HTTP Status Code | sc-status | The status code returned by the server (e.g., 200 for success, 404 for not found). |
| Request Method | cs-method | The HTTP method used for the request (e.g., GET, POST). |
| User Agent | cs(User-Agent) | Information about the client software making the request, such as browser type and version. |
| Error Message | message | Details about the error encountered by the server or script. |
| File Path | c-ip | The file path where the error occurred. |
| Event Type | event-type | The type of event recorded, such as system error, warning, or informational message. |
| Requested Resource | cs-uri-stem | The URL or file requested by the user |
| Referrer URL | cs(Referrer) | The website that redirected the user to the current request. |
| Action | cs-action | Indicates the action performed by the user, such as UPLOAD, DOWNLOAD, or DELETE. |
| File | cs-file | Specifies the file that the user uploaded, downloaded, or modified. |
| User Query | Query | The SQL query submitted by he user to the database. |
| Query Errors | db-error | Displays errors that occur when users send invalid or incomplete queries. |
Further information on the storage and transmission of data:
GIZ is obliged to store data beyond the time of the visit to ensure protection against attacks on GIZ’s Internet infrastructure and the Federal Government’s communication technology (basis: Art. 6 para. 1 lit. e GDPR in conjunction with § 5 BSI Act). In the event of attacks on communication technology, this data is analyzed and used to initiate legal and criminal prosecution.
Data that is logged when you access the GIZ website will only be passed on to third parties if this is required by law or if, in the event of attacks on the Federal Government’s communications technology, this is necessary for legal or criminal prosecution. In all other cases, the data will not be passed on. GIZ will not combine this data with other data sources.
2.3 Cookies
When you visit our website, small text files called cookies are stored on your computer. They are used to make the website more user-friendly and effective. Cookies cannot run programs or transmit viruses to your computer.
The GIZ website uses cookies that are automatically deleted when the browser in which the page is displayed is closed (so-called temporary or session cookies). This type of cookie allows a browser to assign different requests to a session and recognize the browser when it visits the website again (session ID).
2.4 Matomo analysis service (user analysis)
GIZ uses the web analysis service “Matomo” on its website, which is operated by InnoCraft Ltd. from Wellington (New Zealand). The data is stored and analyzed anonymously. The data generated by Matomo is processed and stored by Matomo on behalf of GIZ exclusively in Europe and New Zealand. More information about Matomo’s privacy policy can be found here: Matomo Cloud Privacy Policy – Matomo Analytics
Further information on user analysis
Matomo uses cookies that enable a statistical analysis of the use of the GIZ website. Matomo cookies do not contain any information that can be used to identify a user. Each time a user accesses the GIZ website and each time a file is retrieved, data about this process is temporarily stored and processed in a log file. Before being stored, each data record is anonymized by changing the IP address.
GIZ evaluates the usage data for statistical purposes as part of its public relations work and to ensure that information is provided in line with requirements within the scope of its tasks (basis: Art. 6 para. 1 lit. e GDPR in conjunction with § 3 BDSG).
Users who do not agree with the completely anonymous storage and evaluation of data from their visit can object to the storage and use of this data at any time with a mouse click.
The button is located at the bottom of the page.
3 Processing of personal data when contacting us
When users contact us, the data provided is processed in order to process the request. The following means of contact are available:
By e-mail: info@partnerschaften2030.de
By telephone: +49 228 4460-3539
3.1 Contact by e-mail
Alternatively, you can contact GIZ using the e-mail addresses provided. In this case, the user’s personal data transmitted in the e-mail (e.g. last name, first name, address), but at least the e-mail address, as well as the information contained in the e-mail, will be stored exclusively for the purpose of establishing contact and processing the request.
The legal basis for the processing of data collected during the sending of an e-mail is Art. 6 par. 1 lit. e GDPR.
3.2 Telephone contact
When you contact us by telephone, personal data will be processed to the extent necessary to process your request.
The legal basis for data processing provided during a telephone call is Art. 6 par. 1 lit. e GDPR.
4. Newsletter
Our website offers a free newsletter. Personal data is used to process the respective newsletter. The data is processed and used solely to send the newsletter. When registering for the newsletter, the data from the input mask is transmitted to us.
After entering the email address, users will receive an email with a confirmation link to confirm the authenticity of the address and the subscription (“double opt-in”). The data will be deleted immediately if you do not confirm your registration using the link in this e-mail.
The legal basis for processing the data used to send the newsletter is your consent according to Art. 6 par. 1 lit. a GDPR.
You can unsubscribe from the newsletter at any time. If you unsubscribe, all personal data will be deleted from our database.
5 Processing of personal data in connection with the use of social networks
On its website, GIZ offers the possibility of visiting company presences on social networks and platforms such as YouTube.
These online presences are operated in order to interact with the users active there and to provide information about projects and services. Clicking on the logo of a social network will take you to GIZ’s presence on that network.
When visiting these platforms, no personal data is collected, used or stored by GIZ, but by the operators of the respective social network. This is also the case if visitors do not themselves have a profile on the social network in question.
The individual data processing operations and their scope vary depending on the operator of the respective social network. GIZ has no influence on the data collection and its further use by the social network operators. We have no comprehensive knowledge of whether, where, and for how long data is stored, whether the networks comply with existing deletion obligations, what analyses and links are made with the data, and to whom the data is passed.
Access to GIZ’s social media presence is subject to the terms of use and privacy policies of the respective operators. Click here for contact information and links to the privacy policies of the social media sites where GIZ is present.
Social media with GIZ appearances
The privacy policy for the social network YouTube, which is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, can be viewed at https://www.gstatic.com/policies/privacy/pdf/20190122/f3294e95/google_privacy_policy_de_eu.pdf; 6. Disclosure to third parties GIZ does not disclose personal data to third parties unless it is legally obliged or entitled to do so.
7. transfer of data to third countries
GIZ does not transfer personal data to third countries. When using social media, the data protection regulations of the respective provider apply.
8 Duration of data storage
User data will not be stored for longer than is necessary for the purpose for which it is processed or as required by law.
9 IT security of user data
The protection of personal data is essential to GIZ. For this reason, technical and organizational security measures are in place to ensure that data is protected against accidental or intentional manipulation, accidental deletion and unauthorized access. These measures are updated in line with technical developments and constantly adapted to the risks.
10 Information on the rights of users
Visitors to the GIZ website have the right to:
- obtain information about the data we have stored about them (Art. 15 GDPR)
- request that we correct the data we have stored about them (Art. 16 GDPR)
- request that we delete the data we have stored about them (Art. 17 GDPR)
- request that we restrict the processing of the data we have stored about them (Art. 18 GDPR)
- object to storing your data if it is to be processed based on Art. 6 para. 1 sentence 1 lit. f and e GDPR (Art. 21 GDPR) to receive the data concerning you in a commonly used, machine-readable format from the controller in order to have it transmitted to another controller (right to data portability, Art. 20 GDPR)
- to withdraw your consent, provided that the data were processed on the basis of your consent (Art. 6 para. 1 a) GDPR). The lawfulness of the processing based on the consent given remains unaffected until the revocation is received.
- According to Art. 77 GDPR, you have the right to lodge a complaint with the competent data protection authority. The competent authority for GIZ is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
If you have any questions about processing your personal data, please contact the GIZ Data Protection Officer at datenschutzbeauftragte@giz.de.