Data Protection Policy for the Service sciebo

Date: 25.05.2018

1. General Provisions of Data Processing

  1. The following regulation informs the user about the processing of personal data with the usage of sciebo. Personal data is all data that personally identifies you, e.g. your name, address, e-mail address or non-anonymised user behaviour.
  2. This data protection regulation refers to data which is collected in the context of the usage of sciebo and it also refers to data which is stored in sciebo by the user. The terms of usage define which data you may upload in sciebo.

2. Name and Address of Responsible Persons of Data Processing

Institution Address Representative Internally responsible for operation Data Protection Officer
DSHS Köln Deutsche Sporthochschule Köln
Am Sportpark Müngersdorf 6
50933 Köln
T: +49 221 4982 0
E: infopoint@dshs-koeln.de
Prof. Dr. Heiko Strüder Zentrale Betriebseinheit Informationstechnologie (ze.IT)
Am Sportpark Müngersdorf 6
50933 Köln
T: +49 221 4982 2850
E: support@dshs-koeln.de
Tom-Christian Fragel
HG/Ärztetrakt, Raum 31
Am Sportpark Müngersdorf 6
50933 Köln
T: +49 221 4982 3520
E: t.fragel@dshs-koeln.de
FH Aachen FH Aachen
Bayernallee 11
52066 Aachen
T: +49 241 6009 0
Prof. Dr. rer. nat. Marcus Baumann DVZ
Goethestr. 3
52064 Aachen
T: +49 241 6009 52915
E: dvz@FH-aachen.de
Thomas Lex
Bayernallee 11
52066 Aachen
T: +49 241 6009 51043
E: lex@fh-aachen.de
FH Dortmund Fachhochschule Dortmund
Sonnenstraße 96
44139 Dortmund
T: +49 0231 9112 0
Prof. Dr. Wilhelm Schwick

Dezernat VI - Hochschul-IT
Sonnenstraße 100
44139 Dortmund

E: v-dezvi@fh-dortmund.de

Dr. Thilo Groll
Hohe Straße 28
44139 Dortmund
T: +49 0231 9112 170
E: thilo.groll@fh-dortmund.de
FH Münster Fachhochschule Münster
Hüfferstraße 27
D-48149 Münster
T: +46 251 83 0
Prof. Dr. Ute von Lojewski Datenverarbeitungszentrale (DVZ)
Corrensstraße 25, Raum C 105
Robert-Koch-Straße 30, Raum 110.128
T: +49 251 83 64 911
E: it-support@fh-muenster.de
Ass. jur. Anna Paluch
Hüfferstraße 27
48149 Münster
Raum: C 3.06
T: +49 251 83 64004
E: justiziariat@fh-muenster.de
FH Südwestfalen Fachhochschule Südwestfalen
Baarstraße 6
58636 Iserlohn
T: +49 2371 566 0
E: info@fh-swf.de
Prof. Dr. Claus Schuster Fachhochschule Südwestfalen
Dezernat 6: IT-Services
Haldener Straße 182
58095 Hagen
T: +49 2331 9330 666
E: raschke.holger@fh-swf.de
Britta Ebenfeld
Dezernat 2
Baarstraße 6
58636 Iserlohn
T: +49 2371 566 133
E: ebenfeld.britta@fh-swf.de
FZ Jülich Forschungszentrum Jülich GmbH
Wilhelm-Johnen-Straße
52428 Jülich
T: +49 2461 61 0
E: info@fz-juelich.de
Prof. W. Marquardt Geschäftsbereich IT-Services (ITS)
Forschungszentrum Jülich GmbH
Institute for Advanced Simulation (IAS)
Jülich Supercomputing Centre (JSC)
Wilhelm-Johnen-Straße
52425 Jülich
T: +49 2461 61 6440
E: junet-helpdesk@fz-juelich.de
Frank Rinkens
Forschungszentrum Jülich GmbH
Wilhelm-Johnen-Strasse
52428 Jülich
T: +49 2461 61 9005
E: DSB@fz-juelich.de
HS Bochum Hochschule Bochum
Bochum University of Applied Sciences
Lennershofstr. 140
44801 Bochum
T: +49 234 32 202
Prof. Dr. rer. oec. Jürgen Bock Campus IT der Hochschule Bochum
B-Gebäude, Ebene 0
Lennershofstr. 140
44801 Bochum
T: +49 234 32 10027
E: it-support@hs-bochum.de
Dipl.-Ing. Axel Günther
Hochschule Bochum
Lennershofstraße 140
44801 Bochum
T: +49 234 3210720
E: axel.guenther@hs-bochum.de
HS Bonn-Rhein-Sieg Hochschule Bonn-Rhein-Sieg
Grantham-Allee 20
53757 Sankt Augustin
T: +49 2241 865 0
Prof. Dr. Hartmut Institut für IT-Service
Grantham Allee 20
53757 Sankt Augustin
Rainer Pieters
Sankt Augustin
Grantham-Allee 20
53721 Sankt Augustin
T: +49 2241 865 102
E: rainer.pieters@h-brs.de
HS für Gesundheit Hochschule für Gesundheit
Gesundheitscampus 6-8
44801 Bochum
T: +49 234 77727 0
E: info@hs-gesundheit.de
Prof. Dr. Anne Friedrichs Dezernat II -  Infrastruktur und Informationstechnik
Gesundheitscampus 6‒8
44801 Bochum
T: +49 234 77727-337
E: rainer.poetschke@hs-gesundheit.de
Dr. Anna Schnepper
stellv. Datenschutzbeauftragte
Stellvertreterin der Dezernentin für Studium und Akademisches
T: +49 234 77727 130
E: anna.schnepper@hs-gesundheit.de
HS Hamm-Lippstadt Hochschule Hamm-Lippstadt
Marker Allee 76-78
59063 Hamm
T: +49 2381 8789 106
E: info@hshl.de
Prof. Dr. Klaus Zeppenfeld Zentrum für Wissensmanagement
Prof. Dr. Gregor Hohenberg
Marker Allee 76-78
59063 Hamm
T: +49 2381 8789 150
E: gregor.hohenberg@hshl.de
Birgit Müller
Justiziariat und Datenschutz
Marker Allee 76-78
59063 Hamm
T: +49 2381 8789 212
E: birgit.mueller@hshl.de
HS Niederrhein Hochschule Niederrhein
University of Applied Sciences
Reinarzstraße 49
47805 Krefeld
T: +49 2151 822 0
E: webmaster@hs-niederrhein.de
Prof. Dr. Hans-Hennig von Grünberg IT-Servicecenter Krefeld Süd
Reinarzstr.49
47805 Krefeld
T: +49 2151 822 2222
E: it-support@hs-niederrhein.de
Dorothea Weiler
Richard-Wagner-Straße 101
41065 Mönchengladbach
T: +49 2161 186 2230
E: it-support@hs-niederrhein.de
HS Rhein-Waal Hochschule Rhein-Waal
Kleve Campus
Marie-Curie-Straße 1
47533 Kleve
T: +49 2821 806 73 0

Kamp-Lintfort Campus
Friedrich-Heinrich-Allee 25
47475 Kamp-Lintfort
T: +49 2842 908 25 0
Dr. Heide Naderer Dezernat Informationstechnik
Herr Dipl.-Inform. (FH) Marcus Proest
Kleve Campus
Marie-Curie-Straße 1
47533 Kleve
T: +49 2821 806 73 199
E: it-support@hochschule-rhein-waal.de
Herr Andreas Braam, LL.M.
Innenrevision, Compliance, Datenschutz
Kleve Campus
Marie-Curie-Straße 1
47533 Kleve
T: +49 2821 806 73 9864
E: andreas.braam@hochschule-rhein-waal.de
HS Ruhr West Hochschule Ruhr West
Duisburger Straße 100
45479 Mülheim an der Ruhr
T: +49 208 882 54 0
E: info@hs-ruhrwest.de
Prof. Dr.-Ing. Gudrun Stockmanns Dezernat III (IT und Medientechnik, E-Learning, Bibliothek)
Duisburger Str. 100
45479 Mülheim an der Ruhr
T: +49 208 88 254 666
E: support@hs-ruhrwest.de
Lukas Raimund Urbanowicz
Duisburger Str. 100, Gebäude 03
45479 Mülheim an der Ruhr
T: +49 208 88254 199
E: lukas.urbanowicz@hs-ruhrwest.de
Kunstakademie Münster Kunstakademie Münster
Leonardo-Campus 2
48149 Münster
T: +49 251 83 61330
E: rektorat@kunstakademie-muenster.de
Rektor Prof. Maik Löbbert Zentrum für Informationsverarbeitung (ZIV)
Röntgenstraße 7-13
48149 Münster
T: +49 251 83 31600
E: info@sciebo.de
Gesa Diekmann
Hochschule für Musik und Tanz Köln
Unter Krahnenbäumen 87
50668 Köln
T: +49 221 91 28 18 114
E: datenschutz@hfmt-koeln.de

KuAk Münster
Markus Gröne
Leonardo Campus 2
48149 Münster
T: +49 251 8361 314
E: m.groene@kunstakademie-muenster.de
RFH Köln Rheinische Fachhochschule Köln gGmbH
Vogelsanger Straße 295
50825 Köln
T: +49 221 20302 0
Prof. Dr. Martin Wortmann Rechenzentrum
Helpdesk/RZ-Service
Vogelsanger Str. 295
50825 Köln
T: +49 221 546 87 50
Ralf Jansen
Vogelsanger Str. 295
50825 Köln
Ruhr-Universität Bochum Ruhr-Universität Bochum
Universitätsstraße 150
44801 Bochum
T: +49 234 32 201
E: webmaster@ruhr-uni-bochum.de
Prof. Dr. Axel Schölmerich IT.SERVICES
Servicecenter
Ruhr-Universität Bochum
44780 Bochum
T: +49 234 32 24025
E: its-helpdesk@ruhr-uni-bochum.de
Dr. Kai-Uwe Loser
Ruhr-Universität Bochum
Datenschutzbeauftragter – NB 1/68
Universitätsstraße 150
44780 Bochum
T: +49 234 322 8720
E: kai-uwe.loser@rub.de
RWTH Aachen RWTH Aachen
Templergraben 55
52062 Aachen
T: +49 241 80 1
Prof. Dr.-Ing. Ernst M. Schmachtenberg IT Center der RWTH Aachen
Seffenter Weg 23
52074 Aachen
T: +49 241 80 24680
E: servicedesk@itc.rwth-aachen.de
Dipl.-Ing. Helmut Löbner
Gebäude: 1131 (ehem. HKW)
Wüllnerstraße 3b
52062 Aachen
T: +49 241 80 93665
E: dsb@rwth-aachen.de
TH Köln TH Köln
Claudiusstr. 1
50678 Köln
T: +49 221 8275 0
E: poststelle@th-koeln.de
Prof. Dr. Stefan Herzig Campus IT
Campus Deutz
Betzdorfer Straße 2
50679 Köln
T: +49 221 8275 2323
E: support@campus-it.th-koeln.de
Walter Keens
Campus Südstadt
Claudiusstr.1
50678 Köln
T: +49 221 8275 3108
E: walter.keens@th-koeln.de
Uni Bielefeld Universität Bielefeld
Universitätsstraße 25
33615 Bielefeld
T: +49 521 106-00
Prof. Dr. Ing. Gerhard Sagerer Universität Bielefeld
Bielefelder IT-Servicezentrum
Universitätsstraße 25
33615 Bielefeld
T: +49 521 106 4951
E: bits@uni-bielefeld.de
Anja Schmid
Universitätsstraße 25
33615 Bielefeld
T:  +49 521 106 5225 
E: datenschutzbeauftragte@uni-bielefeld.de
Uni Bonn Rheinische Friedrich-Wilhelms-Universität Bonn
Regina-Pacis-Weg 3
53113 Bonn
T: +49 228 73 0
E: kommunikation@uni-bonn.de
 
Prof. Dr. Dr. h. c. Michael Hoch Hochschulrechenzentrum Universität Bonn
Wegelerstr. 6
53115 Bonn
T: +49 228 73 2751
E: info-hrz@uni-bonn.de
Dr. Jörg Hartmann
T: 73-6758
E: joerg.hartmann@uni-bonn.de
Uni Düsseldorf Heinrich-Heine-Universität Düsseldorf
Universitätsstraße 1
40225 Düsseldorf
T: +49 211 81 11118
Prof. Dr. Anja Steinbeck Zentrum für Informations- und Medientechnologie
Universitätsstr. 1
Gebäude: 25.41
40225 Düsseldorf
T: +49 211 8110111
E: zim@hhu.de
Kurt Finkbeiner
Universitätsstr. 1
Gebäude: 16.11, Raum: 01.81
40225 Düsseldorf
T.: +49 211 81 13214
Uni Duisburg-Essen Campus Duisburg:
Forsthausweg 2
47057 Duisburg
T: +49 203 379 0

Campus Essen:
Universitätsstraße 2
45141 Essen
T: +49 201 183 0
Prof. Dr. Ulrich Radtke

Zentrum für Informations- und Mediendienste der Universität Duisburg-Essen
Campus Duisburg
Forsthausweg 2
47048 Duisburg
T: +49 203 379 4230

Campus Essen
Schützenbahn 70
45127 Essen
T: +49 201 183 2890
E: zim-webmaster@uni-due.de

Dr. Kai-Uwe Loser
(Behördlicher Datenschutzbeauftragter der Universität Duisburg-Essen)
Forsthausweg 2
47057 Duisburg
T: 0234 32 28720
E: kai-uwe.loser@uni-due.de
Uni Köln Universität zu Köln
Albertus-Magnus-Platz
50923 Köln
T: 0221 470 0
E:online-redaktion@uni-koeln.de
Prof. Dr. Axel Freimuth Rechenzentrum
Gebäude 133
Weyertal 121
50931 Köln
T: +49 221 470 89555
Alexander May, LL.M.
Datenschutzbeauftragter, Ass. jur.
T: +49 221 470 3872
E: a.may@verw.uni-koeln.de
Uni Münster Westfälische Wilhelms-Universität Münster
Schlossplatz 2
48149 Münster
T: +49 251 83 0
E: verwaltung@uni-muenster.de
Prof. Dr. Johannes Wessels Zentrum für Informationsverarbeitung (ZIV)
Röntgenstraße 7-13
48149 Münster
T: +49 251 83 31600
E: info@sciebo.de
Nina Meyer-Pachur
Universität Münster
Schlossplatz 2
48149 Münster
T: +49 251 83 22446
E: Nina.Meyer-Pachur@uni-muenster.de
Uni Paderborn Universität Paderborn
Warburger Str. 100
33098 Paderborn
Deutschland
T: +49 5251 60 0
E: webmaster@uni-paderborn.de
Prof. Dr. Birgitt Riegraf Universität Paderborn
Zentrum für Informations- und Medientechnologien (IMT)
Warburger Str. 100
33098 Paderborn
T: +49 5251 60 2398
E: sekretariat@imt.upb.de
Andreas Brennecke
Warburger Str. 100
33098 Paderborn
T: +49 5251 60 2400
E: datenschutz@upb.de
Uni Siegen Universität Siegen
Adolf-Reichwein-Straße 2a
57076 Siegen
E: presse@uni-siegen.de
T: +49 271 740 0
Prof. Dr. Holger Burckhart Zentrum für Informations- und Medientechnologie
Hölderlinstr. 3
57068 Siegen
T: +49 271 740 4777
E: sciebo@uni-siegen.de
Sebastian Zimmermann
Adolf-Reichwein-Str. 2a /Gebäude NA
57076 Siegen
T: +49 271 740 5147
E: Sebastian.Zimmermann@zv.uni-siegen.de
Uni Wuppertal Bergische Universität Wuppertal
Gaußstraße 20
42119 Wuppertal
T: +49 202 439 0
E: webmaster@uni-wuppertal.de
Prof. Dr. Lambert T. Koch. Bergische Universität Wuppertal
Zentrum für Informations- und Medienverarbeitung
42097 Wuppertal
T: +49 202 439 3295
E: zimber@uni-wuppertal.de
Beate Märtin
Gaußstraße 20
42097 Wuppertal
Gebäude B-06.11,
T: +49 202 439 2220
E: maertin@uni-wuppertal.de
Westfälische Hochschule Westfälische Hochschule
Gelsenkirchen Bocholt Recklinghausen
University of Applied Sciences
45877 Gelsenkirchen
T: +49 209 9596 0
Prof. Dr. Bernd Kriegesmann Zentrum für Informationstechnik und Medien Abt. 3 (ZIM IT)
Neidenburger Str. 43
45897 Gelsenkirchen
T: 0209/9596 235
E: sciebo@w-hs.de
Kristina Homscheid
Stabsstelle Justiziariat
Neidenburger Str. 43
45897 Gelsenkirchen
T: +49 209 9596 410
E: kristina.homscheid@w-hs.de

3. Scope and Types of Data Processing
While operating the service sciebo you have to differentiate between data collected by the WWU which is required for the performance of sciebo (in addition to 4. a. and b.) and data the user sets for storage in context of the usage of sciebo (in addition to 4.c.) as well as data generated for the search of other users (in addition 4.d.).

  1. For registration and the usage of sciebo the following data is collected and saved for the duration of use: first name, last name, university, email-address of the university, user ID/Login, user status (student/employee). The user ID/Login is created by the university to which you are registered and will be transmitted to the WWU as a part of your registration for sciebo. The WWU has no influence on the creation of the user ID. Under data protection law the user's university is responsible for the data transfer during the registration process.
  2. The users' IP-address and the date of use are stored for seven days. After that all data is deleted.

4. Locations of Data Processing
Data is only processed on servers that are being administrated by the WWU. The server locations are Münster, Bonn and Essen. Also the servers in Bonn and Essen are being administrated by the WWU.

5. Lawfulness of Data Processing
Lawfulness of data processing is the consent, according to article 6 (1) lit. a) GDPR. By accepting the terms of usage and this data privacy statement you agree to processing your personal data for special purposes as described in this data privacy statement. The consent refers to your personal data, which is collected and stored during the registration process at sciebo and the data that is uploaded for storage in the context of the usage of sciebo, as well as data shared with other users. In addition, you consent to data processing and transmission resulting from the use of address, calendar and search functions. 

5. Withdrawal of Consent
You have the possibility to withdraw consent at any time. By your withdrawal, your sciebo-usage ends and all data will be deleted. You can send a revocation by clicking at „MySciebo“ and „Logout/Delete data“.

6. Deletion of Data
After the contract is terminated, all data will be permanently deleted. The contract ends either due to withdrawal of consent/de-registration from the service or failure to re-authenticate. In case of withdrawal all data will be deleted immediately. In the absence of re-authentication, data will be deleted after a transitional period of three months.

7. Rights of the Data Subject
You are a data subject as defined by the GDPR and you have the following rights against the controller:

a. Right of Access

You have the right to obtain from the controller confirmation as to whether or not personal data concerning you is being processed. In this case, you can demand information from the controller about:
(1) the purposes for which the personal data is processed;
(2) the categories of personal data which is processed;
(3) the recipients or categories of recipients to whom the personal data has been or is still being disclosed;
(4) the envisaged period for which the personal data will be stored, or if that is not possible, the criteria used to determine that period;
(5) the existence of the right to request from the controller rectification or deletion of personal data or restriction of processing of personal data concerning the data subject or to object to such processing
(6) the right to lodge a complaint with a supervisory authority;
(7) any available information of the data source if the personal data is not collected from the data subject
 You have the right to get information whether your personal data is transmitted to countries outside the European Union or to other international organisations. In that case, you can demand to be informed of the appropriate guarantees according to Art. 46 GDPR.

b. Right of Correction

You have a right of correction and/ or complement to the responsible person in case the processed data is false or fragmentary. The controller has to correct the information immediately.

c. Right to Limitation of Processing

Under the permission of the following conditions, you can demand the restriction of processing your personal data:
(1) if you dispute the accuracy of the personal data for a period of time that enables the data controller to verify the accuracy of the personal data;
(2) if the processing is illegal and you disclaim the deletion of your personal data and instead of that ask for the restriction of the usage of your personal data;
(3) the person in charge no longer needs your personal data for processing, while you need them for asserting, exercising or defending legal claims, or
(4) if you appeal against the processing according to Art. 21 (1) GDPR and it has not yet been determined if the legitimate reasons of the person in charge outweigh yours.
If the processing of your personal data is limited, this data - apart from storage - may only be processed with your permission or for assertion, exercise or defence of legal claim or the protection of rights of another natural or legal person or for reasons of important public interests of the European Union or a member state. If the processing has been restricted under the requirements named above, the person in charge will inform you before the limitation is cancelled.

d. Right of Deletion

You may request the data controller to delete the personal data immediately and the data controller is obliged to delete such data immediately if one of the following reasons applies:
(1) The purpose of processing your personal data for which it was collected or otherwise processed are no longer necessary.
(2) You revoke the consent on which the processing referred to in Art. 6 Abs. 1 lit. a) and there is no other legal base for processing.
(3) You file an objection to the processing according to Art. 21 para. 1 GDPR and there are no overriding legitimate grounds for processing or you file an objection to the processing according to Art. 21 para. 2 GDPR.
(4) The personal data has been processed unlawfully.
The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subjected. The personal data has been collected in relation to information society services offered according to Art. 8 para. 1 GDPR. If the data controller has made the personal data public and is obliged to delete it according to Art. 17 (1) GDPR the controller, taking account of the available technology and the implementation costs, has to take reasonable steps, including technical measures, to inform other controllers that you as the data subject have requested the deletion of all links, copies and replications of this personal data. The right of deletion does not exist, if the processing is necessary
(1) to exercise the right of freedom of expression and information;
(2) for compliance with a legal obligation which requires processing under the law of Union or of the Member States to which the controller is subject or for the performance of tasks in the public interest or in the exercise of official authority conferred on the controller;
(3) on the ground of public interest in the field of public health according to Article 9(2) lit. (h) and (i) and Article 9 (3) GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes according to Art. 89 (1) GPDR as far as the law referred to under a) is likely to render impossible or seriously impair the attainment of the objectives of such processing, or
(5) to assert, exercise or defend legal claim.

e. Right of Information

If you have assert your right to have the data controller correct, delete or limit the processing, he/she is obliged to inform all recipients to whom the personal data has been disclosed of this correction, deletion of the data or restriction on processing unless this prove is impossible or involves a disproportionate effort. You have the right to be informed about the recipient by the controller.

f. Right of Data Transferability

You have the right to receive the personal data that you have provided to a controller in a structured common and machine-readable format. In addition, you have the right to transmit those data to another controller without hindrance by the controller to which the personal data has been provided, where
(1) the processing is based on a consent according to Art. 6 (1) lit. a) GDPR or on a contract according to Art. 6 (1) lit b) GDPR and
(2) the processing is carried by  automated procedure.
In exercising this right you also have the right to request that the personal data is transmitted directly from one data controller to another data controller, as far as as this is technically feasible. The freedoms and rights of other persons must not be affected by this. The right to data portability does not apply for processing personal data which is necessary for the performance of a task in the public interest or in the exercise of official authority, vested in the controller.

g. Right of Appeal to a Supervisory Authority

Without prejudice to other provisions, you have the right to lodge a complaint with supervisory authority in particular in the Member State of your habitual residence, your place of work or place of the alleged infrigement, if you consider that the processing of your personal data infringes the GDPR. The supervisory authority with which the complaint has been lodged has to inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 GDPR. To exercise your rights, please use our contact form.