Privacy Policy

1 Person Responsible for Data Processing (Data Controller)

The person responsible within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

Rector of RWTH Aachen University
Templergraben 55
52062 Aachen (physical address)
52056 Aachen (mailing address)
Phone: +49 241 80 1
Fax: +49 241 80 92312
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Website: www.rwth-aachen.de/rectorate

2 Data Protection Officer

Contact data of the officially appointed Data Protection Officer:

RWTH Data Protection Officer
Templergraben 55
52062 Aachen (physical address)
52056 Aachen (mailing address)
Germany
Phone: +49 241 80 93665
Fax: +49 241 80 92678
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Website: www.rwth-aachen.de/dataprotection

3 Data Processing – General Information

3.1. Scope of the processing of personal data

RWTH Aachen processes personal data of visitors of the site only insofar as this is necessary to provide a functional website as well as our contents and services. The collection and processing of the personal data of our users take place only with the user's consent. An exception applies in those cases where prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.

3.2. Legal basis for the processing of personal data

Insofar as RWTH obtains the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a of the EU General Data Protection Regulation (GDPR) serves as a legal basis.

In the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as a legal basis. This also applies to processing operations required to carry out pre-contractual activities.

Insofar as the processing of personal data is required to fulfil a legal obligation to which RWTH Aachen University is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

If processing is necessary to safeguard a legitimate interest of the university or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing.

3.3 Deletion of Data and Duration of Storage

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to exist. Furthermore, data may be stored if this is required by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

4 Provision of the website and generation of log files

4.1. Description and scope of data processing

Each time our website is accessed, the RWTH Aachen system may collect automated data and information from the computer system of the user's computer.

In this process, the following data may be collected:

  • Information about the accessing device: operating system, browser and version information;
  • If applicable: the website from which our website was redirected (referrer information);
  • Date and time of access;
  • IP (Internet Protocol) address of the device used to access our website;
  • file request.

The data is stored in the log files of the University's system. This data is not stored together with other personal data of the user.

4.2. Legal basis for data processing

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

4.3. Purpose of data processing

Temporary storage of the IP address through the system is necessary to deliver the website to the user’s computer. To this end, the user’s IP address must be stored for the duration of the session.

The data is used for the purpose of optimizing the website and ensuring the safety of information technology systems. The data is not evaluated for marketing purposes in this context.

4.4. Duration of Storage

The data will be deleted as soon as it is no longer necessary for carrying out the purpose of its collection. Typically, data is deleted seven days after its storage at the latest. It is possible that the data is stored for a longer period. In this case, the user's IP address is deleted or anonymized, so that the client accessing the website can no longer be identified.

4.5. Possibility of Objection and Remedy

The collection of data for the purpose of providing the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

5 Use of cookies

Our Internet pages use so-called "cookies". Cookies are small data packets and do not cause do no harm to your terminal device. They are stored temporarily for the duration of a session (session cookies) are stored on your end device. Session cookies are automatically deleted at the end of your visit.

5.1. Description and scope of data processing

Our website uses session cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. When a user visits a website, a session cookie can be stored on the user's operating system. This session cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. We use session cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.

The following data is stored and transmitted in the session cookies:

  • Language settings
  • log-in status

5.2. Legal basis for data processing

The legal basis for the processing of personal data using session cookies is Art. 6 para. 1 lit. f DSGVO.

5.3. Purpose of data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized also after a page change. The user data collected by technically necessary cookies are not used to create user profiles.

Our legitimate interest in the processing of personal data in accordance with Art. 6 Para. 1 lit. f DSGVO also lies in these purposes.

5.4. Duration of Storage, possibility of Objection and Remedy

Cookies are stored on the user's computer and transmitted to our site by the user. Therefore, you as a user have full control over the use of cookies. You can deactivate or limit the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it is possible that all functions of the website can no longer be used to their full extent.

6  Newsletter

You can subscribe to the following free newsletters on our website:

  • information newsletter

When registering for the newsletter you only have to enter your e-mail address. In addition, the date and time of registration will be collected.
If you subscribe to a newsletter for an event during registration, your first name, surname, language and, optionally, title and salutation will also be stored.

By subscribing to our newsletter, you agree to its analysis through individual measurement, storage and evaluation of opening rates and click rates in recipient profiles for the purpose of designing future newsletters according to the interests of our readers. The consent can be revoked with effect for the future.

No data will be passed on to third parties in connection with data processing for the dispatch of newsletters. The data will be used exclusively for the dispatch of the newsletter.

The legal basis for the processing of the data by the user after registration for the newsletter is Art. 6 para. 1 lit. a GDPR if the user has given his consent.

Purpose of data processing: The collection of the user's e-mail address serves to deliver the newsletter.

Duration of storage: The data is deleted as soon as it is no longer required for the purpose of its collection. The user's e-mail address is therefore stored as long as the newsletter subscription is active.

Objection and removal option: The subscription to the newsletter can be cancelled by the user in question at any time. For this purpose, there is a corresponding link in every newsletter. This also enables the revocation of the consent to the storage of personal data collected during the registration process.