Privacy Policy | SciBerg

1. General information

We are delighted that you have shown interest in SciBerg e.Kfm. Data protection is of particular importance to the management of SciBerg e.Kfm. The use of the SciBerg website is generally possible without providing personal data. However, if a data subject wishes to use special services via the website, processing of personal data may become necessary.

If personal data processing is necessary and there is no statutory basis for such processing, SciBerg e.Kfm. generally obtains consent from the data subject.

Processing of personal data, such as name, address, e-mail address, telephone number, online identifiers, or other data relating to an identified or identifiable natural person, is carried out in line with the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to SciBerg e.Kfm.

As controller, SciBerg e.Kfm. has implemented technical and organisational measures to ensure the most complete protection possible of personal data processed through this website. Internet-based data transmissions may nevertheless have security gaps. Absolute protection cannot be guaranteed, and every data subject is free to transfer personal data by alternative means, for example by telephone.

2. Definitions

This privacy policy uses terminology from the GDPR. The following terms are used in particular:

Personal data: any information relating to an identified or identifiable natural person.

Data subject: an identified or identifiable natural person whose personal data are processed.

Processing: any operation performed on personal data, including collection, recording, organisation, storage, alteration, retrieval, disclosure, restriction, erasure, or destruction.

Restriction of processing: marking stored personal data with the aim of limiting future processing.

Profiling: automated processing of personal data to evaluate personal aspects of a natural person.

Pseudonymisation: processing personal data so that they can no longer be attributed to a specific data subject without additional information kept separately.

Controller: the natural or legal person that determines the purposes and means of processing personal data.

Processor: a natural or legal person, authority, agency, or other body processing personal data on behalf of the controller.

Recipient: a natural or legal person, public authority, agency, or other body to which personal data are disclosed.

Third party: a natural or legal person, authority, agency, or body other than the data subject, controller, processor, and authorised persons under their direct authority.

Consent: any freely given, specific, informed, and unambiguous indication of the data subject's wishes by which the data subject agrees to processing of personal data.

3. Name and address of the controller

Controller for the purposes of the GDPR, other data protection laws applicable in Member States of the European Union, and other data protection provisions is:

Company: SciBerg e.Kfm.

Owner: Dr. Andrey Turchinovich

Address: James-Monroe-Ring 107, 68309 Mannheim, Germany

Phone: +49 171 1908276

Email: info@sciberg.com

Website: sciberg.com

4. Cookies

The SciBerg website uses cookies. Cookies are text files stored on a computer system through an internet browser. Many websites and servers use cookies. Many cookies contain a cookie ID that allows a website or server to recognise a specific browser.

Cookies allow SciBerg to optimise information and services with the user in mind. Cookies may make it easier for users to use the website, for example by recognising a browser or storing settings.

The data subject may prevent cookies from being set by adjusting the settings of the internet browser used and may permanently object to the setting of cookies. Existing cookies may be deleted at any time through the browser or other software. If cookies are deactivated, not all functions of this website may be fully usable.

5. Collection of general data and information

The website may collect general data and information when a data subject or automated system accesses it. This information may include browser types and versions, operating system, referrer website, sub-pages accessed, date and time of access, internet protocol address, internet service provider, and other technical information used for security and optimisation.

SciBerg e.Kfm. does not use such general data to draw conclusions about the data subject. Anonymous server log data are stored separately from all personal data provided by a data subject.

6. Registration on the website

If registration features are made available, the data subject may register by providing personal data. Which personal data are transmitted is determined by the input mask used for the registration. Data entered by the data subject are collected and stored for internal use by SciBerg e.Kfm. and for the purposes specified.

During registration, the IP address assigned by the internet service provider, the date, and the time of registration may also be stored to prevent misuse and, where necessary, to investigate offences.

7. Google Analytics

The current SciBerg privacy policy states that Google Analytics with anonymisation functionality may be integrated on the website. Google Analytics is a web analytics service that collects and analyses data about website visitor behaviour.

For web analytics, the controller may use IP anonymisation so that Google shortens and anonymises the IP address of the data subject when the website is accessed from the European Union or the European Economic Area.

Google Analytics may set cookies and transmit data to Google. The data subject may prevent the setting of cookies through browser settings and may also use the Google Analytics browser add-on to object to the collection and processing of data by Google Analytics.

8. Newsletter and newsletter tracking

If SciBerg e.Kfm. offers newsletter subscription features, users may subscribe by providing the data requested in the respective input mask. During newsletter registration, the IP address, date, and time of registration may be stored to document consent and prevent misuse.

Personal data collected for newsletter subscription are used to send the newsletter and related service information. The subscription may be terminated at any time, and consent to the storage of personal data for newsletter shipping may be revoked at any time.

Newsletters may contain tracking pixels that enable statistical analysis of newsletter opening and link interaction. Such data may be used to optimise newsletter delivery and content. The data subject may revoke consent at any time; after revocation, these personal data will be deleted by the controller.

9. Contact possibility via the website

The SciBerg website contains information enabling quick electronic contact and direct communication, including a general e-mail address. If a data subject contacts SciBerg e.Kfm. by e-mail or through a contact form, the personal data transmitted voluntarily by the data subject are stored automatically.

Such personal data are stored for the purpose of processing the request or contacting the data subject. These data are not transferred to third parties unless legally required or necessary for the requested communication.

10. Comments and comment subscriptions

If blog or comment functions are made available on the website, comments made by the data subject may be stored and published together with the date of the comment and the pseudonym chosen by the data subject.

The IP address assigned by the internet service provider may also be logged for security reasons and in case the data subject violates rights of third parties or posts unlawful content. These data are not passed to third parties unless such transfer is required by law or serves the defence of the controller.

If comment subscription features are offered, the controller may send an automatic confirmation e-mail using a double opt-in procedure. The option to subscribe to comments may be terminated at any time.

11. Routine erasure and blocking of personal data

The controller processes and stores personal data only for the period necessary to achieve the purpose of storage or as long as permitted or required by European or national law. If the storage purpose no longer applies, or if a legally prescribed storage period expires, personal data are routinely blocked or erased in accordance with legal requirements.

12. Rights of the data subject

Every data subject has rights granted by the GDPR and may contact SciBerg e.Kfm. at any time to exercise them.

Right of confirmation The right to obtain confirmation as to whether personal data concerning the data subject are processed.

Right of access The right to obtain information about stored personal data and receive a copy of such information.

Right to rectification The right to obtain correction of inaccurate personal data and completion of incomplete personal data.

Right to erasure The right to request erasure of personal data where one of the GDPR grounds applies.

Right to restriction The right to request restriction of processing under the conditions defined by the GDPR.

Right to data portability The right to receive personal data in a structured, commonly used, machine-readable format.

Right to object The right to object to processing based on legitimate interest or public-interest grounds, including profiling based on these provisions.

Right to withdraw consent The right to withdraw consent to personal-data processing at any time.

Automated decisions The right not to be subject to a solely automated decision, including profiling, that produces legal or similarly significant effects, subject to GDPR exceptions.

Complaint The right to lodge a complaint with a supervisory authority.

13. Data protection for applications and application procedures

The controller may collect and process personal data of applicants for the purpose of handling application procedures. Processing may also be carried out electronically, especially if an applicant submits application documents by e-mail or through a web form.

If SciBerg e.Kfm. concludes an employment contract with an applicant, the submitted data are stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded, application documents are erased after the applicable retention period unless another legitimate interest prevents erasure, such as the need to provide evidence in proceedings under the General Equal Treatment Act (AGG).

14. Social media and third-party components

The current SciBerg privacy policy includes provisions concerning third-party services and social media components, including Facebook, Google services, and Twitter/X components. If such components are integrated, the respective provider may receive information that the data subject has accessed the SciBerg website.

If the data subject is logged into the relevant third-party service at the same time, that provider may assign the website visit or interaction to the data subject's user account. Data subjects who wish to prevent such assignment should log out of the relevant third-party account before visiting the website or interacting with embedded components.

The privacy policies and settings of the respective third-party providers apply to their processing operations.

15. Legal basis for processing

Processing operations may be based on one or more legal bases under Article 6 GDPR:

Consent under Art. 6(1)(a) GDPR, where consent is obtained for a specific processing purpose.
Contract performance under Art. 6(1)(b) GDPR, where processing is necessary for a contract or pre-contractual measures.
Legal obligation under Art. 6(1)(c) GDPR, where processing is required by law.
Vital interests under Art. 6(1)(d) GDPR, where processing is necessary to protect vital interests.
Public interest or official authority under Art. 6(1)(e) GDPR, where applicable.
Legitimate interests under Art. 6(1)(f) GDPR, where processing is necessary for the legitimate interests of SciBerg e.Kfm. or a third party, provided these interests are not overridden by the interests or fundamental rights and freedoms of the data subject.

Legitimate interests

Where processing is based on Art. 6(1)(f) GDPR, SciBerg e.Kfm.'s legitimate interest is to carry out its business activities in favour of the well-being of employees and stakeholders.

16. Period for which personal data will be stored

The criterion used to determine the storage period of personal data is the respective statutory retention period. After expiration of that period, the corresponding data are routinely deleted if they are no longer necessary for fulfilment of a contract or initiation of a contract.

17. Provision of personal data as a statutory or contractual requirement

The provision of personal data may be required by law, for example under tax regulations, or may result from contractual provisions. Sometimes it may be necessary for concluding a contract that the data subject provides personal data that must subsequently be processed.

Before providing personal data, the data subject may contact SciBerg e.Kfm. to clarify whether the provision of personal data is required by law or contract, whether it is necessary for conclusion of a contract, whether there is an obligation to provide the data, and what consequences non-provision would have.

18. Existence of automated decision-making

As a responsible company, SciBerg e.Kfm. does not use automatic decision-making or profiling that produces legal effects concerning a data subject or similarly significantly affects the data subject.