About us

The address for our website is: https://www.brigk.digital.

Controller

The operator of this website is:

brigk – Digitales Gründerzentrum der Region Ingolstadt GmbH
Schloßlände 26
85049 Ingolstadt
E-Mail: info@brigk.digital
Tel.: 0841-149081-90
Fax: 0841-149081-97

(hereinafter referred to as “we”)

We are very serious about protecting your personal data in the sense of the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States as well as other data protection provisions.

The controller has NOT appointed a data protection officer because this is not required pursuant to Art. 37 Sec. 1 GDPR in conjunction with § 38 Sec. 1 BDSG-new [Federal Data Protection Act]. Regardless of this, protecting personal data is the highest priority for the controller. If you have any questions or suggestions, the person responsible for data will be happy to help you at any time. Please contact:

Lisa Zill (no data protection officer)
brigk – Digitales Gründerzentrum der Region Ingolstadt GmbH
Schloßlände 26
85049 Ingolstadt
E-Mail: lisa.zill@brigk.digital

Tel.: 0841-149081-90
Fax: 0841-149081-97

General information about data processing

Scope of processing for personal data

We exclusively collect, process and use your personal data in compliance with the relevant data protection provisions and to the extent that this is necessary.

As a rule, it is possible to use our website without providing personal data. In addition, we do not perform any profiling activities. To the extent that personal data (for instance name, mailing address or email addresses) is collected on our pages, this always takes place on voluntary basis where possible. This data will not be shared with third parties without your explicit consent.

If we use service providers to perform and handle data processing, they are subject to the same strict rules in order to fulfill data protection laws.

Please note that data transmission via the internet (e.g. during email communications) may be subject to security gaps. It is not possible to seamlessly protect data from third-party access.

Legal basis for processing personal data

If we obtain consent from the data subject for processing personal data, Art. 6 Sec. 1 lt. a EU General Data Protection Regulation (GDPR) serves as the legal basis.

For processing personal data that is required in order to fulfill a contract whose party is the data subject, Art. 6 Sec. 1 lt. b GDPR serves as the legal basis. This also applies to processing transactions that are necessary in order to perform pre-contractual measures.

If processing of personal data is necessary in order to fulfill a legal obligation, Art. 6 Sec. 1 lt. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or of another natural person require the processing of personal data, Art. 6 Sec. 1 lt. d GDPR serves as the legal basis.

If processing is necessary in order to protect a legitimate interest of our company or of a third party, and if the data subject’s interests, basic rights and freedoms do not outweigh the former interest, Art. 6 Sec. 1 lt. f GDPR serves as the legal basis for processing.

Erasure and blocking of personal data

We follow the principles of data avoidance and data minimization. We only store your personal data for as long as this is required to achieve the purposes named herein, or according to the storage periods established by law. Once the respective purpose no longer applies and/or after the end of these periods, the corresponding data is routinely blocked or erased according to the statutory provisions.

Sharing of personal data

Under no circumstances will we share your personal data with third parties for advertising or marketing purposes, or without authorization for any other purpose. Your data will only be shared with third parties where this is permitted by law or where you have consented to such sharing.

Please note that operators of pages that have links integrated into www.brigk.digital can store and analyze data regarding visitors to the page. This also applies to pages operated by brigk – Digitales Gründerzentrum der Region Ingolstadt GmbH on external servers, such as Facebook or YouTube. Please observe the data protection information on the respective pages.

Contact

If you contact us via email, we will store your information from the email (name, email address, phone number, subject, free text field) in order to process the inquiry as well as for potential follow-up questions.

Collection, processing and use of usage data for the web pages

Description and scope of data processing

When visitors access our web pages, the brigk web servers temporarily save this information in a log file. Until it is erased automatically, we collect and store the following data:

We save this data to provide technical security, in particular to prevent attempted attacks on our web server and to monitor misuse in the event of a suspected criminal offense or to investigate suspected offenses. The IP address will only be analyzed in the event of an attack on our network infrastructure. Usage data stored by the servers is not linked with any natural person.

Legal basis for data processing

The legal basis for the temporary storage of data and log files is Art. 6 Sec. 1 lt. f GDPR.

Purpose of data processing

Temporary storage of the IP address by the system is necessary in order to allow the website to be delivered to the user’s computer. To this end, the user’s IP address must be stored for the duration of the session. Data is stored in log files in order to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our IT systems. The data is not analyzed for marketing purposes in this context. This purpose also constitutes our legitimate interest in data processing pursuant to Art. 6 Sec. 1 lt. f GDPR.

Storage period

Data is deleted as soon as it is no longer needed to achieve the purpose for which it was collected. If data is collected in order to make the website available, this is the case when the respective session ends. If data is stored in log files, this is the case after seven days at the most. Longer storage is possible. In this case, the user’s IP address will be erased or modified so that the accessing client can no longer be identified.

Objection and removal right

Collecting data in order to make the website available and saving this data in log files is mandatory in order to operate the website. Therefore the user does not have a right to object to this.

Informationen about Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses cookies, which are text files placed on your computer, to help analyze how you use the website. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. The data will be erased as soon as it is no longer needed for our recording purpose. In our case, this occurs after 26 months.

IP anonymization is enabled on this website, so the IP addresses of Google users are truncated within Member States of the European Union or in other countries that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and truncated there. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity, and providing the operator with other services relating to website activity and internet usage. The IP address transmitted by your browser in the context of Google Analytics will not be associated with any other data held by Google. You can prevent the use of cookies by adjusting the appropriate settings in your browser; however, please note that in this case you may not be able to use the full functionality of this website. In addition, you can prevent the collection of data generated by the cookie with regard to your use of the website (including your IP address) for Google, as well as the processing of this data by Google, by downloading and installing the browser plugin under the following link (http://tools.google.com/dlpage/gaoptout?hl=de).

You can prevent tracking by Google Analytics by clicking on the following link. This will place an opt-out cookie that prevents future collection of your data when you visit this website: Disable Google Analytics

More information about the terms of use and data protection can be found under Google Data Privacy and/or Google Policies. Please note that this website has added the code “anonymizeIp” to Google Analytics in order to guarantee the anonymized collection of IP addresses (known as IP masking).

General information about cookies

Description and scope of data processing

The brigk web pages use cookies in several places to make the web offering more user-friendly, effective and secure. Cookies are small text files. They are stored in the web browser’s temporary memory or on the site visitor’s hard drive to provide technical control of the sessions.

Legal basis for data processing

The legal basis for processing personal data using cookies is Art. 6 Sec. 1 lt. f GDPR.

Storage period, objection and removal right

Cookies are stored on the user’s computer and then transferred to our site. Therefore you as the user have complete control over the use of cookies. You can change the settings in your web browser to disable or restrict the transmission of cookies. Any cookies that have already been placed can be erased at any time. This can also take place automatically. If you disable cookies for our website, you may no longer be able to use the full functionality of this website.

Newsletter

Description and scope of data processing

When you subscribe to the brigk newsletter, the data you provide will exclusively be used for this purpose. Subscribers may also receive notifications via email about circumstances that are relevant for the service or for registration (for instance changes in the newsletter offerings or technical conditions). In order to subscribe via our contact form, you must provide a valid email address. In order to confirm that the subscription is actually being requested by the owner of the email address, we use a double opt-in procedure. To do so, we document the subscription request and email confirmation of subscription through the receipt of the requested response. No other data is collected. The data is exclusively used for the purpose of sending out the newsletter, and is not shared with third parties

Legal basis for data processing

The legal basis for processing data following a newsletter subscription request from the user, where the user has provided consent, is Art. 6 Sec. 1 lt. a GDPR. The legal basis for sending out the newsletter following the sale of goods or services is § 7 Sec. 3 UWG [Unfair Competition Act].

Purpose of data processing

Collecting the user’s email address allows us to deliver the newsletter. The collection of other personal data as part of the registration process serves to prevent any misuse of the services or of the provided email address.

Storage period

Data is erased as soon as it is no longer needed to achieve the purpose for which it was collected. The user’s email address is thus stored as long as the newsletter subscription is active.

As a rule, other personal data collected as part of the registration process is erased after a period of seven days.

Objection and removal right

The user in question can cancel the newsletter subscription at any time. Each newsletter includes a corresponding unsubscribe link. This link can also be used to withdraw consent for storage of the personal data collected during the registration process.

Integration of Social Plugins (Facebook, Twitter, Instagram, Live Chat)

Integrating social plugins means that simply accessing the site with the integrated plugin – even without clicking on the social plugin – allows your IP address to be documented by these services. Accordingly, the services can also track your further activities online.

In order to prevent this and to better protect your privacy, our website uses the 2-click method. Our site only embeds disabled buttons that do not automatically establish contact with the services associated with the social plugins, so they do not transmit any data when our website is accessed.

The button is only enabled if you click on it and agree to communicate with Facebook, Twitter or Instagram.

Facebook and Instagram

Our pages integrate plugins provided by the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, United States, and Instagram LLC, represented by Kevin Systrom and Mike Krieger, 1601 Willow Rd, Menlo Park CA 94025, United States. You can identify the Facebook and Instagram plugins by the Facebook and/or Instagram logo on our page. An overview of Facebook plugins can be found here: http://developers.facebook.com/docs/plugins/

When you visit our pages, the plugin creates a direct connection between your browser and the Facebook and/or Instagram server. Facebook and/or Instagram then receives the information that you visited our page, with your IP address. If you click on the Facebook and/or Instagram button while you are logged in to your Facebook and/or Instagram account, you can link the content of our pages to your Facebook profile and/or your Instagram account. This allows Facebook and/or Instagram to associate your visit to our pages with your user account. Please note that as the website provider, we do not receive any information about the content of the transmitted data or how it is used by Facebook and/or Instagram. More information about this can be found in Facebook’s Data Policy under https://de-de.facebook.com/policy.php and Instagram’s Data Policy under https://help.instagram.com/519522125107875?helpref=page_content.

If you do not want Facebook or Instagram to associate your visit to our site with your Facebook and/or Instagram account, please log out of the respective account.

Twitter

Functions from the Twitter service are integrated into our pages. These functions are provided by Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, United States. By using Twitter and the “Retweet” function, the web pages you visit are linked to your Twitter account and shared with other users. In the process, data is also transmitted to Twitter. Please note that as the website provider, we do not receive any information about the content of the transmitted data or how it is used by Twitter. More information about this can be found in Twitter’s Privacy Policy under http://twitter.com/privacy. You can change your data privacy settings for Twitter in the account settings under http://twitter.com/account/settings.

Live Chat

Functions of the Live Chat service are integrated into our website. These features are offered by LiveChat, Inc., One International Place, Suite 1400, Boston, MA 02110-2619. By using the chat function, data is transferred to LiveChat. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by LiveChat. You can find more information on this in Live Chat’s privacy policy: https://www.livechatinc.com/legal/privacy-policy/#main.

Your rights

If your personal data is processed, you are a data subject in the sense of the GDPR and you have the following rights with regard to the controller:

Right of access

You can request confirmation from the controller as to whether or not personal data concerning you is being processed by us.

If such processing is taking place, you can ask the controller for access to the following information:

(1) the purposes of processing the personal data;

(2) the categories of personal data being processed;

(3) the recipients or categories of recipients to whom your personal data has been or will be disclosed;

(4) the planned period for which your personal data will be stored or, if no specific information is available, the criteria used to determine this period;

(5) the existence of a right to rectification or erasure of personal data concerning you, a right to restrict processing by the controller, or a right to object to such processing;

(6) the existence of a right to lodge a complaint with a supervisory authority;

(7) all available information about the source of the data if personal data is not collected from the data subject;

You have the right to request confirmation as to whether your personal data is being transmitted to a third country or to an international organization. In this context, you can ask to be informed of the appropriate safeguards pursuant to Art. 46 GDPR relating to the transmission.

Right to rectification

You have the right to obtain from the controller rectification and/or completion if the processed personal data concerning you is inaccurate or incomplete. The controller must provide rectification immediately.

Right to restriction of processing

Under the following conditions, you can request a restriction of processing for the personal data concerning you:

(1) you contest the accuracy of the personal data, for a period enabling the controller to verify the accuracy of the personal data;

(2) the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead;

(3) the controller no longer needs the personal data for the purposes of the processing, but you need it to establish, exercise or defend legal claims; or

(4) you have objected to the processing pursuant to Art. 21 Sec. 1 GDPR pending verification as to whether the controller’s legitimate grounds override your grounds.

Where processing of your personal data has been restricted, this data – with the exception of storage – shall only be processed with your consent or in order to establish, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If processing has been restricted according to the abovementioned requirements, you shall be informed by the controller before the restriction is lifted.

Right to erasure

1 a) Erasure obligation

You have the right to obtain from the controller the immediate erasure of personal data concerning you, and the controller shall have the obligation to erase this data immediately where one of the following grounds applies:

(1) Your personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed.

(2) You withdraw your consent on which the processing was based pursuant to Art. 6 Sec. 1 lt. a or Art. 9 Sec. 2 lt. a GDPR, and there is no other legal basis for the processing. (3) You object to the processing pursuant to Art. 21 Sec. 1 GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 Sec. 2 GDPR.

(4) Your personal data was unlawfully processed.

(5) Erasure of your personal data is necessary in order to comply with a legal obligation under Union or Member State law to which the controller is subject.

(6) Your personal data was collected in relation to the offer of information society services pursuant to Art. 8 Sec. 1 GDPR.

1 b) Information provided to third parties

Where the controller has made your personal data public and is obliged pursuant to Art. 17 Sec. 1 GDPR to erase this personal data, the controller, taking into account the available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you as the data subject have requested the erasure by such controllers of any links to, or copy or replication of, this personal data.

1 c) Exceptions The erasure right shall not apply if processing is necessary

(1) to exercise the right of freedom of expression and information;

(2) to comply with a legal obligation that requires processing under Union or Member State law to which the controller is subject or to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;

(3) for reasons of public interest in the area of public health pursuant to Art. 9 Sec. 2 lt. h and i as well as Art. 9 Sec. 3 GDPR;

(4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Art. 89 Sec. 1 GDPR in so far as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or

(5) to establish, exercise or defend legal claims.

Right to notification

If you have asserted your right to rectification, erasure or restriction of processing against the controller, the controller is obligated to notify all recipients to whom your personal data was disclosed about this rectification or erasure of data or restriction of processing, unless this proves impossible or involves disproportionate effort. You have the right to receive information about these recipients from the controller.

Right to data portability

You have the right to receive the personal data concerning you, which you provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data was provided, where:

(1) the processing is based on consent pursuant to Art. 6 Sec. 1 lt. a GDPR or Art. 9 Sec. 2 lt. a GDPR or on a contract pursuant to Art. 6 Sec. 1 lt. b GDPR and

(2) the processing is carried out by automated means.

In exercising this right, you also have the right to have your personal data transmitted directly from one controller to another, where technically feasible. This shall not adversely affect the freedoms or rights of other persons.

The right to data portability does not apply to processing of personal data that is necessary to perform a task carried out in the public interest or in the exercise of official authority vested in the controller.

Right to object

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you that is based on Art. 6 Sec. 1 lt. e or f GDPR, including profiling based on those provisions.

The controller shall no longer process your personal data unless the controller demonstrates compelling legitimate grounds for the processing that override the interests, rights and freedoms of the data subject or in order to establish, exercise or defend legal claims.

Where your personal data is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.

Where you object to processing for such direct marketing purposes, your personal data shall no longer be processed for such purposes.

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.

Right to withdraw your declaration of consent under data protection law

You have the right to withdraw your declaration of consent under data protection law at any time. Withdrawing this consent shall not affect the lawfulness of any processing that took place on the basis of your consent before this was withdrawn.

Contact information:
E-Mail: info@brigk.digital, Tel.: 0841-14908190
Postanschrift: brigk – Digitales Gründerzentrum der Region Ingolstadt GmbH, Schloßlände 26, 85049 Ingolstadt

Changes to our Data Privacy Policy

We reserve the right to modify this Data Privacy Policy occasionally to ensure that it always complies with the current legal requirements and to integrate service-related changes into the Data Privacy Policy, e.g. when we introduce new services. The new Data Privacy Policy shall then apply to later visits.

Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant about the progress and the outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

References

    contact

    We are always happy to help and look forward to hearing from you. Mails and messages, calls and concerns, mail and posts please to:







    Address

    brigk
    Digitales Gründerzentrum der Region Ingolstadt GmbH
    Schloßlände 26
    85049 Ingolstadt