zum Benedikt Anliegen

Website data protection notice

The Tagespost Foundation for Catholic Journalism welcomes you to the Benedict XVI website (hereinafter also referred to as the “website”). We are pleased about your interest and would like to make your visit to our website as pleasant as possible. For us, this also includes making sure that your data are responsibly handled, in full compliance with the legal requirements.

Within the meaning of Art. 4 No. 7 General Data Protection Regulation (GDPR) as well as other data protection laws applicable in the member states of the EU and other provisions of a data protection nature, the following is responsible:

Die Tagespost Stiftung für katholische Publizistik

represented by:

Attorney Christoph Konopka (Trustee), Langemarckstrasse 56a, 53227 Bonn
info(at)dietagespoststiftung.org

Contact:

Dr. Norbert Neuhaus, Bernhard Müller (Board of Management)
c/o Johann-Wilhelm-Naumann-Verlag GmbH, Berner Straße 2, 97084 Würzburg

This data protection notice applies to this website, which is operated by the Tagespost Foundation for Catholic Journalism itself. If services from other suppliers (“third-party services”) are accessible from our website, our data protection notice does not apply to these third-party services. In this case, we are also not responsible for the processing of your personal data as part of such third-party services within the meaning of Art. 4 No. 7 GDPR.

Collection of general data and information, so-called log files

If you visit our website for informative purposes only, without providing personal data, only the internet connection data that your browser transmits to our server will be processed. Our website collects a series of general data and information with each visit, which is temporarily stored in log files of a server. A log file is created as part of an automatic log of the processing computer system. The following can be logged:

  • access to the website (date, time and frequency);
  • how you arrived at the website (previous page, hyperlink, etc.);
  • amount of data transmitted;
  • which browser and browser version you are using;
  • the operating system you are using;
  • which internet service provider you use;
  • your IP address that your internet access provider assigns to your computer when you connect to the internet.

The legal basis for this data processing is Art. 6 para. 1 sentence 1 lit. b GDPR, as the collection and storage of these data is necessary for the operation of the website in order to ensure the functionality of the website and to deliver the contents of our website correctly. In addition, the data help us to optimize our website and to ensure the security of our IT systems and the processing based on Art. 6 para. 1 lit. f GDPR. For this reason, the data are stored for a maximum of 7 days as a technical precaution.

Your rights as a visitor to our website

Of course, you have rights regarding the collection of your data, about which we are pleased to inform you herewith. If you would like to make use of one of the following gratuitous rights, a simple message to us will suffice. You also have the right to withdraw any consent you have already given. In both cases, you can use the following contact data for this purpose without incurring any costs other than the forwarding costs:

via email: info(at)dietagespoststiftung.org

via post: Die Tagespost Stiftung für katholische Publizistik , c/o Johann-Wilhelm-Naumann-Verlag GmbH, Berner Straße 2, 97084 Würzburg

For your own protection, we reserve the right, in the case of an existing request, to obtain further information necessary to confirm your identity and, if identification is not possible, to refuse to process the request.

Right to information
You have the right to request information and/or copies of the personal data stored about you.

Right to rectification
You have the right to request that personal data concerning you be corrected and/or completed without delay.

Right to restrict processing of data
You have the right to request the restriction of the processing of your personal data, insofar as:

  • the accuracy of the data in question is contested;
  • the processing is unlawful, but you do not want the data to be erased;
  • the data are no longer needed for the original purpose but may not be deleted yet because of legal grounds;
  • the decision on your objection to processing is pending.

Right to erasure 
You have the right to request the deletion of your personal data stored by us, unless:

  • the data are being used to exercise the right of freedom of expression and information;
  • the data are being used to comply with a legal ruling or obligation;
  • the data are being used to perform a task that is being carried out in the public interest;
  • the data are being used for the establishment of a legal defense or in the exercise of other legal claims.

Right to object
Insofar as your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, you have the right to object to the processing at any time pursuant to Art. 21 para. 1 GDPR.

Right to withdraw consent
You have the right to withdraw your consent to the collection of data at any time with effect for the future. Any data that were collected before the withdrawal of consent becomes legally effective remain unaffected. Please understand that the implementation of your withdrawal of consent may take a little time for technical reasons and that you may still receive messages from us in the meantime.

Right to complain to a supervisory authority;
If the processing of your personal data violates data protection law, or if your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority.

No automated decision-making including profiling
Automated decision-making including profiling pursuant to Art. 22 paras. 1 and 4 GDPR does not occur on our part.

Scope, processing and processing purpose of your personal data:

As a matter of principle, we collect and use personal data from you only to the extent that this is necessary for the provision of a functional website and our content and services. We use the data collected when you visit our website in order to operate our pages as conveniently as possible for you and to protect our IT systems from attacks and other illegal activities. Insofar as you have provided us with personal data, we use these exclusively to fulfil your wishes and requests, such as to answer your query or to process a donation. An exception applies in those cases in which prior consent is not possible for actual reasons and the processing of the data is permitted by legal regulations.

The security of your personal data is a high priority for us. We therefore protect your data stored with us using technical and organizational means to effectively prevent loss or misuse by third parties. To protect your personal data, they are transmitted in encrypted form. For example, we use SSL=Secure Sockets Layer for communication via your internet browser. You can recognize this by the lock symbol which your browser displays when a Secure Sockets Layer (SSL) connection is established. In order to ensure the permanent protection of your data, the technical security measures are regularly checked and, if necessary, adapted to the state of the art.

When you contact us by email, the data you provide will be stored by us based on Art. 6 para. 1 lit. b GDPR, insofar as it is necessary to answer your questions. The contact is logged in order to be able to prove the contact in accordance with the legal requirements. We delete the data accruing in this context when the respective conversation with you has ended and the facts concerned have been conclusively clarified.

Donations

If you donate via the donation form on our website, your personal data that you enter via the forms on the donation page will be transmitted in encrypted form via a secure connection (SSL) to the FundraisingBox service for the processing of donations and the creation of donation receipts on the basis of a commission processing agreement within the meaning of Art. 28 GDPR. The data processing takes place in each case based on your consent, which can be withdrawn at any time, in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. The SSL (Secure Sockets Layer) security procedure meets the highest security standards in Germany.

The FundraisingBox service is provided by Wikando GmbH, Schießgrabenstraße 32, 86150 Augsburg. Wikando GmbH undertakes neither to use the data for its own purposes nor to pass it on. Further information on data protection and the security standards of the FundraisingBox service can be found  here and here.

In order for your donation to be processed, we need your name and a contact address as well as mandatory details for bank or credit card collection. Once you have entered your data in the donation form and submitted it, you will receive an email notification that your donation has been collected.

Your data entered in the donation form are processed by our service provider Wikando GmbH. Depending on the selected payment method, your data will also be forwarded to the corresponding financial service provider:

  • In case of direct debit payment to our house bank and Wikando GmbH.
  • For payment via PayPal to PayPal. PayPal is a service of PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg. Information on data protection at PayPal can be found here.
  • When paying by credit card to Stripe. If you donate using a credit card, your credit card details will be forwarded to the service provider Stripe using SSL encryption after you have clicked the “Donate now!” button. Stripe is a service of Stripe Inc., 185 Berry Street, Suite 550, San Francisco, CA 94107, United States of America. The Tagespost Foundation for Catholic Journalism does not receive your credit card details and is only informed about the successful payment. The service provider Stripe Inc. is not based within the European Union/European Economic Area. It can therefore not be ruled out that Stripe also transmits the information to a server in a third country. According to privacyshield.gov, Stripe Inc. has a Privacy-Shield-certification

    Accordingly, Stripe has committed to comply with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework on the collection, use and retention of personal data from the member states of the EU and Switzerland, respectively. Stripe has declared through this certification that it complies with the Privacy Shield Principles. Further information from the provider Stripe on this can be found here.

If you wish to receive a donation receipt, the FundraisingBox service of the Tagespost Foundation for Catholic Journalism will transmit your first and last name or, in the case of a donation by a company, the company name and full address. The data processing is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a and lit. b GDPR for the proper processing of your donation and on the basis of your consent to the issue of a donation receipt.

In any case, your data will be stored together with the information on the donation amount, donation frequency and donation purpose/project and kept for ten years. As a non-profit organization, we use your address data for the purpose of soliciting donations after considering your interests in accordance with Art. 6 para. 1 lit. f GDPR in order to send you information about our non-profit and charitable work in connection with soliciting donations, unless you have objected.

Personal data are only transferred to state institutions and authorities if we are legally obliged to do so. Furthermore, we only transmit data to third parties if and insofar as you have given your consent for this.

We expressly ensure you that your data will only be processed for these purposes and only by the Tagespost Foundation for Catholic Journalism, as well as by the Johann-Wilhelm-Naumann-Verlag GmbH in line with your active consent. The addresses of donors or supporters will neither be sold nor leased; nor will they be passed on to companies or other (also: like-minded) organisations with a similar idealistic and ideological orientation, unless you have expressly given your consent for this.

You can object to this use at any time. An objection is also possible simply by email or by post.

If you have decided to make a recurring donation, you can stop it at any time without giving any reason. You can revoke your direct debit order within six weeks at the bank.

Data erasure and storage period

Unless specifically stated otherwise, we only store personal data for as long as is necessary to fulfil the purposes pursued.

Your personal data will be deleted as soon as the purpose of the data processing no longer applies. If there are legitimate reasons for deletion in the sense of Art. 17 para. 3 GDPR, such as a legal obligation to retain data, the processing of the data will be restricted for this period. In this case, the data will be deleted when the reason for further storage no longer applies, e.g. the legally prescribed storage period expires.

Disclosure of personal data

Your data will only be passed on to third parties with your express consent. The only exceptions to this are transfers to our cooperation partners and service providers that we need in order to fulfil our agreements with you and have commissioned accordingly (for example, technical service providers, freelancers). In line with this, a transfer of your data to such service providers and cooperation partners takes place for the purposes of contract fulfilment pursuant to Art. 6 para. 1 lit. b GDPR or for the protection of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, provided that this is expressly stated in this privacy policy. For example, it may be necessary for us to pass on your address to external suppliers in the case of commissions. Otherwise, personal data will only be passed on to service providers with whom we have previously made a contract on commissioned processing in accordance with Art. 28 GDPR.

Insofar as we pass on data to service providers as part of our processing, we strictly observe the requirements of the GDPR, as do our service providers and cooperation partners. Before passing on your personal data, we naturally ensure that our service providers and cooperation partners have taken the necessary technical and organizational measures to guarantee an appropriate level of protection. The scope of the data transfer is limited to the minimum necessary in each case.

The transfer to state institutions and authorities entitled to receive information only takes place within the scope of the legal obligations to provide information or if we are obliged to provide information by a court or official decision. In this case, the transfer of your data is required by Art. 6 para. 1 lit. c GDPR for the fulfilment of a legal obligation to which we are subject.

Use of cookies and analytics

We use cookies and web analytics services on our website.

Necessary cookies:
We mainly use so-called essential cookies, which are necessary for the operation of the website and the provision of essential functionalities. The essential cookies are used to manage the internet connection during your visit and to display the functions of our website. In addition, certain functionalities of our website can only be provided to you by using cookies. Finally, the essential cookies also serve the security of our website and the protection of the communication between your browser and our servers.

The cookies that are necessary for the purposes described above are usually deleted automatically after you close your browser (so-called session cookies). Only in a few individual cases do these cookies remain stored on your terminal device after you close the browser and enable us to recognize your browser the next time you visit our website, even if you had closed the browser in the meantime, e.g. so that we can more easily recognize whether you have consented to certain functions of the website and the associated data processing (so-called persistent cookies). In these cases, the maximum storage period is one (1) year.

Data processing for the purposes described above is based on Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide visitors to our website with a properly functioning, attractive internet presence as explained above and to make visiting and using the website as pleasant and efficient as possible.

Some browsers already allow cookies in the default setting. If you do not want them, you can change the setting of your browser. Please refer to the browser manufacturer's instructions on how to do this. If you decide not to accept cookies, it may be that parts of our website cannot be used.

FundraisingBox (donation campaigns)
We use the FundraisingBox software on our website::
https://www.fundraisingbox.com/tour/

FundraisingBox offers organizations, institutions, associations and foundations the possibility of online fundraising and donation management with the support of a software. To process online donations, we use the service FundraisingBox of the provider Wikando GmbH, Schießgrabenstr. 32, 86150 Augsburg, Federal Republic of Germany.

The data necessary for processing donations (name, address, email, account or credit card data) are requested in a form provided by FundraisingBox on our website, linked to donation date and time, encrypted and transmitted directly to FundraisingBox. Your data are then stored on servers of Wikando GmbH in the Federal Republic of Germany until deletion and are exported to our own donation database for the purpose of further processing and, if necessary, contacting you. Under no circumstances will these data be passed on, sold, leased or otherwise commercially disposed of without your express consent.

For security reasons, the IP address is only stored for a period of 24 hours and then deleted.

If you would like to learn more about FundraisingBox's privacy policy, please click the following link: https://www.fundraisingbox.com/privacy.

For the provision of the donation form, the following cookies can be stored and read in your browser:

Designation Function duration Can be accessed by third parties Domain Typ
AWSALB 7 days yes secure.fundraisingbox.com Third-Party-Cookie
AWSALBCORS 7 days yes secure.fundraisingbox.com Third-Party-Cookie
box 24 hours yes secure.fundraisingbox.com Third-Party-Cookie

Performance cookies:
Statistical data help us to continuously improve our web presence and to enable the greatest possible user convenience. Insofar as we use these options, we do so on the basis of anonymized evaluations. In this way, we know, for example, which areas of our website were visited frequently and which were not visited at all or only visited for a short time.

We only use cookies for statistical purposes with your consent in accordance with Art. 6 para. 1 lit. a GDPR.

Google Analytics (_gid, _gat_gtag und _ga):
We would like to tailor the content of our websites as precisely as possible to your interests and in this way improve our services for you. To identify usage preferences and particularly popular areas of the websites, we use Google Analytics.

When using these analytics services, data may be transferred to servers located in the United States of America and processed there. Please note the following: From the perspective of the European Union, there is no "adequate level of protection" for the processing of personal data in the United States of America that corresponds to EU standards. However, this level of protection can be replaced for individual companies by certification under the so-called “EU-US Privacy Shield”.

Google Analytics is a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses cookies to enable an analysis of the use of our website. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. However, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting States of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States of America and shortened there. The IP address transmitted by your browser using Google Analytics will not be merged with other data from Google. The cookies stored by Google Analytics are deleted after 24 months at the latest.

The following links provide you with information on data protection and the terms of use at Google Analytics.

If you do not wish to do so, you can edit your cookie settings again in our footer and revoke your consent of the performance cookies.

Scope of this privacy policy

This data protection statement only applies to the content on our website and the data processing on the servers we use. They do not include such content and third-party websites to which our offer merely links. This applies, for example, to social networks such as Twitter, YouTube and the like. The processing of your personal data via these social networks is carried out by the respective operator of the network without us having any influence on this processing. This also applies with regard to your personal data that you provide to us via such a platform, for example by writing to our profile in the respective social network. Information on the handling of your personal data and its protection on these platforms can be found in the privacy policy of the respective platform.

However, if we store your personal data, which you have communicated to us via a social network or which we receive from a social network, on our own servers and use it for the purpose of processing your query or request or for other purposes, our explanations of this data protection declaration shall of course apply in this respect.

Change to the data protection notice

In order to ensure that our data protection information always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the data protection information has to be adapted due to new or revised offers or services.

Status: 05. March 2021, Version 1