Document Actions

You are here: Home Privacy Policy

Privacy Policy

1. Responsible institution for data protection purposes:
Albert-Ludwigs-Universität Freiburg
Friedrichstraße 39
79098 Freiburg
++49 (0)761/203-0


2. Data protection representative
University of Freiburg
Data protection representative


Note
This information on data protection/data protection declaration refers to the central website of the University of Freiburg (www.uni-freiburg.de), which is operated by the IT Services Department of the University of Freiburg. Other websites and web servers operated by departments and faculties of the university may have their own policies for dealing with personal data and therefore have other data protection declarations.

In general terms, we take the private sphere of our visitors very seriously and collect only data that are necessary for optimizing the functionality and usability of the web pages.


4. Collection of personal data
Unless otherwise specified on the particular web pages, personal data are collected as follows:

4.1. Availability of web pages and creation of log files
4.1.1. Description and categories of data

When you visit this or other web pages, you send data to our web server via your web browser. The following data are retained temporarily in a log file during an ongoing connection only in the case of an error:

  • IP address of the requesting computer
  • Date and time of the access
  • Name, URL, and amount of transferred data from the requested file
  • Access status (requested file transferred, not found, etc.)
  • Browser type and operating system (if sent by the requesting web browser)
  • Web page from which access was obtained (if sent by the requesting web browser)


The data in this log file are processed as follows:

  • In individual cases, i.e., reported defects, errors, and security incidents, a manual analysis is conducted.


4.1.2. Purpose
The system needs to temporarily store the user’s IP address to enable the website to be sent to the user’s computer. The user’s IP address must be retained for the duration of the session.
The data are stored in a log file as a means of ensuring the proper functioning of the website. In addition, we use the data to optimize the website and guarantee the security of our information technology systems. The IP addresses included in the log entries are not combined with other retained data unless there are actual indications that there has been a disruption of proper operation.
These purposes also constitute our legitimate interest in processing data in accordance with § 6 para. 1 lit. f GDPR (General Data Protection Regulation).

4.1.3. Legal basis
The legal basis for the temporary retention of the data and the log files is § 6 para. 1 lit. f GDPR.

4.1.4. Recipient
In the case that investigative measures are initiated due to attacks on our information technology system, the data and log files named above under 4.1. may be passed on to state investigative bodies (e.g., police, public prosecutor).
The same applies if these bodies or courts direct inquiries at the university and the university is obligated to comply with them.

4.1.5. Duration of data retention
The data are deleted as soon as they are no longer needed to achieve the purpose for which they were collected. In the case of data collected to make the website available, this is the case at the end of the relevant session.
The data retained in log files are deleted after seven days.

4.1.6. Consequences of nondisclosure, possibility of objection or removal

The collection of data for the purpose of making the website available and the storage of the data in log files is absolutely necessary for the operation of the website. Users who do not want their data to be processed as described may contact the university in other ways (by telephone, in writing, in person) to obtain information or perform functions available on the website.

4.2. Use of cookies
4.2.1. Description and categories of data
Our website uses cookies. Cookies are text files stored on the user’s computer system by the internet browser. When a user visits a website, a cookie can be stored on the user’s computer system. This cookie includes a distinctive sequence of characters that enables a clear identification of the browser the next time the user visits the website.
The following data are stored in cookies and sent to the user’s computer system by this website:

OriginNameContent (examplePurposeValidity
uni-freiburg.de serverid p4wn15-4 Load balancer classification Until the end of the browser session
uni-freiburg.de I18N_LANGUAGE „en“ Language selection Until the end of the browser session
uni-freiburg.de _ZopeId "73763172A9gmf636tqo" Browser session Until the end of the browser session
uni-freiburg.de __ac "1BPiIECrqd8cOmDbWCdcvbYK4Z
lnJqK%2Be%2BuNrdsbu7k1YjFlPD
Y3YXdlYm1hc3RlciE%3D"
Login to restricted areas for content maintenance Until the end of the browser session
piwik.mw.uni-freiburg.de _pk_id.18.9670 6115f19b10e69a82.1533817677.1.
1533817708.1533817677.
Matomo referrer 13 months
piwik.mw.uni-freiburg.de _pk_ses.18.9670 * Tracking of visitor’s page views Until the end of the browser session
videoportal.uni-freiburg.de framework kfaosr57pe1i31es2282u9q3v5 Session-ID 7 days
videoportal.uni-freiburg.de cookieAccepted 1 Cookies from visitor allowed 10 years



For more information on the individual functions that use cookies (Matomo, video portal), please consult the relevant section of this declaration.

4.2.2. Purpose
The purpose of using the technically necessary cookies named under 4.2.1 is to simplify the use of the website for the user. Some functions of our website cannot be offered without the use of cookies. For these functions, it is necessary for the browser to be recognized when the user visits the website again later after leaving it.

The purpose of each cookie is listed in the table under 4.2.1.

The user data collected by the cookies are not used to create user profiles.

These purposes also constitute our legitimate interest in processing personal data in accordance with § 6 para. 1 lit. f GDPR.

4.2.3. Legal basis
The legal basis for the processing of personal data using cookies is § 6 para. 1 lit. f GDPR.

4.2.4. Recipient
The recipient of the information contained in the cookies is exclusively the authorized web server, i.e., the university web server that sent the cookie.

4.2.5. Duration of data retention
The cookies are retained for the periods listed in the table under 4.2.1.

Since the cookies are stored on your computer, you also have the possibility of deleting them earlier. For more information, please read the following section.

4.2.6. Consequences of nondisclosure, possibility of objection or removal
Cookies are stored on the user’s computer and transmitted to our site from it. As the user, you therefore also have complete control over the use of cookies – irrespective of the retention periods listed above. You can deactivate or limit the transfer of cookies by changing the settings of your web browser. You can also delete already stored cookies at any time. You can even set your browser to do this automatically. If you deactivate cookies for our website, you may no longer be able to use all functions of the website to their full extent.

4.3. Use of Matomo
We use Matomo on our website to analyze the usage behavior of our visitors. Matomo collects data on things like the referrer website a particular user accessed before visiting our website, the subpages of the website the user visits, the amount of time the user spends on a web page, or how often the user visits the page.

The IP address you use to access our website is anonymized. Matomo is configured to mask two bytes of the IP address (e.g.: 192.168.xxx.xxx). This makes it impossible to associate the IP address with the device used to access the site.

Matomo sends text files (so-called cookies) to your web browser. For the analysis of web page behavior, the usage information stored on the cookie is sent to our computers. These data are stored exclusively on University of Freiburg servers. The stored usage data are not passed on to third parties. They are not combined with data collected from other pages requiring a disclosure of personal data.

The analysis of the usage behavior of our visitors helps us to optimize our website and make it more user-friendly. This constitutes our legitimate interest in processing data in accordance with § 6 para. 1 lit. f GDPR.
By anonymizing the IP address, we take into sufficient account the interest of the users in protecting their personal data.

You can prevent cookies from being stored on your computer via a corresponding browser setting; however, we would like to point out that if you do so you will not be able to use some functions of our website to their full extent (see section "Use of Cookies").

As an alternative, we offer our users the possibility to opt out of the analytics procedure. If you choose this option, another cookie that tells Matomo to not collect any usage data is stored on your system. Note: If you delete all of your cookies, you will have to reactivate the opt-out cookie.

For more information configuring privacy settings in Matomo, please click on the following link: https://matomo.org/docs/privacy.


4.3.1. Description and categories of data
We use the open-source software tool Matomo on our website. The application places two cookies on the user’s computer:

  • a cookie for the recognition of users. The content stored on the cookie does not allow any conclusions to be drawn regarding the user’s identity (example: "36f024c36c193b2f.1525433399.1.1525433726.1525433399.")
  • a session cookie whose sole content is “*.”


The following data are stored when a user visits individual pages of our website:

  1. two bytes of the IP address of the user’s system (The software is configured to not store the complete IP addresses but to mask two bytes of the IP address [e.g.: 192.168.xxx.xxx]. This makes it impossible to associate the IP address with the device used to access the site.)
  2. the web page visited
  3. the website accessed before visiting our website (referrer).
  4. The subpages accessed from the web page visited
  5. the duration of the visit
  6. how often the web page is accessed


The software runs exclusively on the servers of our website. User data are stored exclusively on our servers. The data are not passed on to third parties.
Personal data are temporarily processed only inasmuch as the complete IP address is processed in volatile memory prior to being stored on the server.

4.3.2. Purpose
The processing of the user’s personal data enables us to analyze the usage behavior of our users. An analysis of the data thus obtained allows us to collect information on the use of individual components of our website. This helps us to continually improve our website and make it more user-friendly. This also constitutes our legitimate interest in processing data in accordance with § 6 para. 1 lit. f GDPR. By anonymizing the IP address, we take into sufficient account the interest of the users in protecting their personal data.


4.3.3. Legal basis
The legal basis for the retention of the shortened IP address and the temporary processing of the personal data of users is § 6 para. 1 lit. f GDPR.


4.3.4. Recipient
As no personal data are collected, there is no recipient for them.

4.3.5. Duration of data retention
The cookie for the recognition of users is valid for 13 months. The content does not allow any conclusions to be drawn regarding the user’s identity.
The session cookie is valid for 30 minutes.

4.3.6. Consequences of nondisclosure, possibility of objection or removal
Cookies are stored on the user’s computer and transferred from there to our site. As the user, you therefore have complete control over the use of cookies. You can deactivate or limit the transfer of cookies by changing the settings of your web browser. You can also delete already stored cookies at any time. You can even set your browser to do this automatically. If you deactivate cookies for our website, you may no longer be able to use all functions of the website to their full extent.
Our website observes the “do not track” setting on your browser.
Your current status:


If your browser does not offer a “do not track” setting and you do not wish to have your access data retained and analyzed by Matomo, click on the following link to have the Matomo deactivation cookie placed on your browser.
Your visit to this website is currently being tracked by Matomo web analytics. Click here to stop your visit from being tracked.
Warning: As a result of deleting your cookies, the opt-out cookie is also deleted and might have to be reactivated.

4.4. VIMP / University of Freiburg video portal

4.4.1. Description and categories of data

Videos from the University of Freiburg’s video portal are integrated into our website and shown with a player. When you visit a page with a video integrated into it, the cookies named in 4.1. are used.

4.4.2. Purpose
Our web pages should provide you with the necessary information and create a pleasant media experience. This also includes the integration of videos.
This purpose also constitutes our legitimate interest in processing data in accordance with § 6 para. 1 lit. f GDPR.

4.4.3. Legal basis
The legal basis for the processing of personal user data is § 6 para. 1 lit. f GDPR.

4.4.4. Recipient
The data are used by the server that places the cookie, video.uni-freiburg.de.

4.4.5. Duration of data retention
See 4.1.

4.4.6. Consequences of nondisclosure, possibility of objection or removal
If you do not wish to use videos from the university’s video portal, you can avoid using the web pages with integrated videos.

5. Your rights
You have the right to receive information on the personal data retained when you visit the website and/or have retained data that is incorrect corrected.
You also have the right to demand that your data be deleted or that the processing thereof be restricted as well as to object to the processing of your data.
To exercise these rights, please contact .
You have the right to file a complaint with the regulating authority if you believe that the processing of your personal data is in violation of the law.
The responsible regulating authority is Baden-Württemberg’s state commissioner for data protection and freedom of information (Landesbeauftragte für den Datenschutz und die Informationsfreiheit).