Language:

Share this page on:

Data protection on provision of the website and production of logfiles

Description and scope of data processing

When you visit our website, data is collected from the web server for the transfer of data (information from the computer system of the requesting computer) and sometimes stored in log files on the web server, which give information on e.g. the end device and browser used, the time of access, the so-called referrer and the quantity of data transferred.

The following data is collected in this way:

  • IP address of the requesting computer
  • Date and time of the request
  • Name and URL of the retrieved file
  • Access status/http status code
  • Amount of data transmitted
  • Website from which the request is made (referrer URL)
  • Browser used, language and version of the browser software, the operating system and its interface
  • Name of the access provider
     

The data is stored in our system’s log files. This data is not stored together with the user’s other personal data.

Data retrieval / download

In detail, the following additional data record is stored for each retrieval:

  • Name of the retrieved file
  • Message whether the retrieval was successful
     

Data retrieval and download is stored in the regular log files. See above.

Legal basis for data processing

The legal basis for the temporary storage of the data and log files is Article 6(1)(f) GDPR.

Purpose of data processing

It is necessary for the system to store the IP address temporarily to enable the website to be sent to the user’s computer. For this purpose, the user’s IP address must be stored for the duration of the session. Storage in log files is carried out to ensure the functionality of the website. We also use the data to optimise the website and to ensure the security of our IT systems. An analysis of the data for marketing purposes is not carried out in this context. We reserve the right to subsequently check server log files if there are concrete indications of illegal use. We also have a legitimate interest in data processing for these purposes in accordance with Article 6(1)(f) GDPR.

Duration of storage

The data will be erased as soon as it is no longer required to achieve the purpose of its collection. When data is collected to operate a website, this is the case when the relevant session ends. When data is stored in log files, this is the case after fourteen days at the latest. Extended storage is possible. In this case, users’ IP addresses will be erased or distorted so that assignment to the requesting client is no longer possible.

Right to object and right to rectification

Recording data to operate the website and storing the data in log files is essential for running the website. Therefore, the user does not have any right to object.