Navigation and service

Privacy Policy of the Federal Office for Radiation Protection (BfS)

Information for data subjects to be provided according to Articles 13 and 14 of the EU Data Protection Regulation (GDPR)

We, the Federal Office for Radiation Protection, are pleased that you have visited our website and would like to thank you for your interest.

In the following, we inform you about the handling of your personal data when you visit and use our website. We also inform you about your rights in this context – in particular, to whom you can address your questions and complaints.

The term "personal data" is defined in the General Data Protection Regulation (hereinafter referred to as the "GDPR"). It defines "personal data" as any information relating to an identified or identifiable natural person. This includes your civil name, your address, your telephone number, and your date of birth. Information about how you use this or other websites may also count as personal data. This also includes the special categories of personal data that are sensitive data (e.g. health data).

Responsible persons and data protection officersShow / Hide

The responsible body in accordance with Article 4, para. 7 GDPR is the

Federal Office for Radiation Protection (BfS)
President Dr Inge Paulini
Willy-Brandt-Straße 5
38226 Salzgitter

Phone: +49 (0) 3018 333-0
Fax: +49 (0) 3018 333-1885
E-mail: ePost@bfs.de

If you have any questions or suggestions regarding data protection in connection with our website, please do not hesitate to contact us. We will do our best to answer your questions as quickly as possible and implement your suggestions.

You can reach our data protection officer as follows

Adina Inan
Willy-Brandt-Straße 5
38226 Salzgitter

Phone: +49 (0) 3018 333-1410
E-mail: datenschutzbeauftragte@bfs.de

1. Which personal data do we process?Show / Hide

As part of the fulfilment of our tasks, we process the following personal data in particular:

  • personal/contact data (e.g. first name, surname, address, telephone number, fax, email)
  • communication data in connection with correspondence (emails, correspondence)
  • contract and billing data (e.g. bank details, goods/services ordered, invoice data)
  • health data (e.g. in connection with citizens’ enquiries)
  • exposure data (e.g. the entries in the radiation protection register).

In addition, we process data that we have permissibly obtained from publicly accessible sources (e.g. press, Internet, commercial register).

2. Information about the collection and processing of your dataShow / Hide

2.1. Contact form

If you contact us via our contact form, your details, including the contact data you provide (title, name, email address, telephone number, and other personal data you provide in your message), will be stored and processed by us for the purpose of processing the enquiry and providing feedback.

The legal basis for processing is your consent (Article 6, para. 1, sentence 1, lit. a GDPR).

2.2. Email contact

If you contact us via the email address provided by us, the personal data transmitted with the email will be stored and processed for the purpose of communication with you.

The legal basis for processing may be your consent (Article 6, para. 1, sentence 1, lit. a GDPR), serve the fulfilment of a contract (Article 6, para. 1, sentence 1, lit. b GDPR), or be necessary for the fulfilment of a legal obligation (Article 6, para. 1, sentence 1, lit. c GDPR); this depends on the context of the email.

2.3. Newsletter and orders

If you contact us regarding subscription to newsletters or orders, your details, including the contact data you provide (title, name, email address, telephone number, and other personal data you provide in your message), will be stored and processed by us for the purpose of processing the enquiry and providing feedback.

The legal basis for processing is your consent (Article 6, para. 1, sentence 1, lit. a GDPR).

2.4. Applications

We advertise job vacancies on our website. You can contact us by email. In the course of your application and recruitment, you provide personal data, which is used by the BfS to fulfil its legal and contractual obligations.

Purpose of the processing

In the selection and recruitment process, we process your personal application data insofar as these are necessary to assess your suitability, ability, and professional performance with regard to the position for which you are applying (cf Article 33, para. 2 German Basic Law). Additional legal requirements for the selection procedure result in particular from the General Act on Equal Treatment (AGG), the Social Code IX, and budgetary law.

Legal basis

For employees, trainees, apprentices, interns, and guest students, personal data for the purpose of establishing an employment or service relationship are collected on the basis of Section 26, para. 1 BDSG; for civil servants, data are collected in accordance with Section 106, paragraph 4 Federal Civil Servants Act; for applications, data are collected in based on the collective bargaining sector in corresponding application.

Insofar as special categories of personal data within the meaning of Article 9, para. 1 GDPR are communicated or requested in the context of the application procedure (e.g. health data such as severely disabled status, official medical certificate from the public health department) or data revealing political opinions or religious or ideological convictions, the legal basis is also Article 9, para. 2, lit. b, g, and/or h GDPR. Insofar as an official certificate of good conduct is requested as part of the application procedure, the processing of the data contained therein is based on Article 6, para. 1, lit. b, Article 88 GDPR, Section 26 BDSG in conjunction with Article 10 GDPR.

Which personal data are processed?

In order to be able to carry out the application procedure, we process the following data from you provided you have given us this information:

  • personal details (including name, address, telephone, date of birth, email address)
  • further details in the curriculum vitae, proof of qualifications such as school, training, study and work certificates, references given, certificates
  • salary data, social security data, tax data, health data

The personal data collected from third parties in the course of recruitment are – if required – information on health suitability for public service (occupational or official medical examination result) and possible previous convictions subject to entry in the Federal Central Criminal Register according to Section 32 (criminal record certificate). Furthermore, the third party enquiry may extend to your personnel file – requested with your consent from previous departments.

Disclosure of your personal data to third parties

Within the BfS, your personal data will be accessed only by those offices that need it to fulfil our contractual and legal obligations. In addition to the responsible personnel officers, these are – as far as legally required – the staff council, the representative for severely disabled persons, and the equal opportunities officer.

Your personal data will be disclosed to external recipients (e.g. public agencies of the Federal Government or the Federal States, contractual partners of the BfS, and parties involved in administrative proceedings) only if we are obliged to provide information, report, or pass on data in order to fulfil legal requirements or if you have consented to the transfer of your personal data.

Duration of storage of your personal data

We store your personal data as long as it is necessary to achieve the processing purposes and/or to comply with legal retention obligations. Under certain circumstances, we will also retain your data for the duration of the statutory limitation period in accordance with Sections 195 et seq. German Civil Code (BGB).

If an employment or service relationship is established between you and us, we will include the personal data in the personnel file to the extent necessary and store them for at least the duration of the employment or service relationship.

Voluntary nature of the provision of your data

The provision of personal data in the context of an application procedure is neither legally nor contractually required. You are therefore not obliged to provide information about your personal data. However, please note that these are required for the application process. If you do not provide us with any personal data in the course of your application, the BfS cannot consider you in the application process. It is recommended that you provide only personal data that is necessary for the application process.

Automated decision making

Because the decision on your application is not based exclusively on automated processing, no automated decision in individual cases within the meaning of Article 22 GDPR takes place.

2.5. Administrative procedure

In order to properly fulfil our tasks, we also process personal data (e.g. in the context of enquiries or administrative procedures). In doing so, the requirements of the GDPR and those of the BDSG are taken into account and complied with. Special data protection provisions in other laws (e.g. the Radiation Protection Act) also apply in individual cases.

We are an independent scientific and technical higher federal authority within the area of responsibility of the Federal Environment Ministry. We work for the safety and protection of people and the environment from harm caused by ionising and non-ionising radiation. Your personal data are processed for these purposes and in compliance with the provisions of the GDPR, the BDSG, and all other applicable laws.

2.6. For the fulfilment of a contract or the implementation of pre-contractual measures

Among other things, the processing of your personal data serves to fulfil contracts that we have concluded with you or your institution or company. This also includes the implementation of pre-contractual measures, Article 6, para. 1, lit. b GDPR.

On the basis of legal requirements (Article 6, para. 1, lit. c GDPR) or in the public interest (Article 6, para. 1, lit. e GDPR in conjunction with Section 2 of the Act on the Establishment of a Federal Office for Radiation Protection in conjunction with special legal regulations such as from radiation protection law, freedom of information law, or civil service law).

2.7. Within the scope of our statutory duties under the Act on the Establishment of a Federal Office for Radiation Protection.

The processing of your personal data is part of our statutory duties, in particular:

  • Federal administrative tasks in the fields of radiation protection, including emergency protection, assigned to us on the basis of the Radiation Protection Act or other federal laws such as

  • the technical and scientific support to the Federal Environment Ministry in the fields of radiation protection, including emergency protection
  • the scientific research to fulfil our tasks in the fields of radiation protection, including emergency protection
  • the support of competent authorities, at their request, in cases of the loss or discovery of radioactive substances or radioactively contaminated substances as well as in cases of a suspected criminal offence in connection with such substances, in the investigation and analysis of such substances, and in protective measures in the context of their seizure
  • the answering of questions from private individuals in the field of radiation protection
  • the informing of the public about the effects and risks of ionising and non-ionising radiation
2.8. On the basis of consent

Insofar as you have given us consent to process personal data for specific purposes, the data processing is based on your consent. Consent given can be revoked at any time with effect for the future. This applies also to the revocation of declarations of consent given to the BfS before the GDPR came into force (i.e. before 25 May 2018). Please note that the revocation is effective only for the future.

Processing that took place before the revocation shall not be not affected by this, Article 6, para. 1, lit. a GDPR.

3. How long do we store your personal data?Show / Hide

For the performance of BfS tasks, personal data are stored in paper as well as in electronic form in accordance with the specifications for the management of written records. After expiry of the retention periods, the documents, including the personal data contained therein, are offered to the Federal Archives and are taken over by the Federal Archives if they deemed worthy of archiving. Personal data may be deleted only if and when this has been agreed in writing with the Federal Archives for the relevant records.

The only exceptions to this are data for which legal provisions other than the GDPR explicitly stipulate deletion.

The administration of documents is regulated in a BfS service instruction. This contains information on the retention periods of various types of records as well as on the modalities according to which records are offered by the BfS to the Federal Archives. Any records not accepted by the Federal Archives are destroyed.

Otherwise, the data will be deleted after the purpose has expired, Article 5, para. 1, lit. b GDPR provided that no statutory retention periods are to be observed.

4. Cookies / web analysisShow / Hide

4.1. Necessary cookies

Cookies are required for our website to function properly. The legal basis for the use of technically necessary cookies is Section 25, para. 2 No. 2 TTDSG (Telecommunications and Telemedia Data Protection Act).

The technically necessary cookies include the following session IDs and load balancing cookies.

JSESSIONID -

  • cookie for the session management of the application server
  • does not contain any personal data
  • in particular is not based on the IP of the user or any other information that can be traced back to the actual user
  • the session ID is valid only on the respective server and is not synchronised across different server instances
  • the validity ends at the end of the current session

AL-SESS-S / AL_LB -

  • cookies from upstream systems (load balancers, firewalls, proxies) in order to always forward requests from a user to the same server within a session
  • serve the sole purpose of load distribution
  • the validity ends at the end of the current session
4.2. Web analysis by Matomo

On this website, we use the web analysis service Matomo in order to analyse and check the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

We operate Matomo in a version that does not require cookies. This means that no Matomo cookies are stored on your end device for the purpose of web analysis.

The following data are stored when individual pages of our website are accessed:

  • Three bytes of the IP address of the calling system of the user(s) (xxx.xxx.xxx.???)
  • anonymisation: the user’s IP address is truncated by 2 bytes before hash generation and is not stored anywhere in full (77.87.229.100 becomes 77.87.0.0).
  • the website called up
  • the website from which the user accessed the website (referrer)
  • the sub-pages that are accessed from the website accessed
  • the time spent on the website
  • the frequency of visits to the website
  • search terms entered
  • frequency of page views

Because the last byte of the IP address is masked, your personal data are not stored. The anonymised data are evaluated on our servers.

Because the data are anonymised and cannot be traced back to an individual user, it can be made permanently available for evaluation purposes.

Matomo respects the DoNotTrack setting provided that this was consciously set by the user.

  • The data obtained are analysed only in the restricted area of a website (no determination of the provider or use of geo-IP, no multi-domain tracking).
  • The visitor logs are deleted after 30 days; after this time, only the already aggregated reports are available.
  • The data remain within the company and will not be disclosed to third parties (neither for advertising nor marketing purposes).

5. Use of video conferencing systemsShow / Hide

The BfS uses video conferencing systems for communication.

With the following information, we inform you about the processing of your personal data when using the video conferencing system.

Cisco-Webex

Webex is a service of Cisco International Limited (hereinafter Cisco), which has its registered office at 9-11 New Square Park, Bedfont Lakes, Feltham, England TW14 8HA, United Kingdom.

Note: If you access the Webex website, Cisco is responsible for data processing. However, accessing the website is necessary only to download the software for the use of Webex.

You can also use Webex if you enter the respective meeting ID and, if applicable, further access data for the meeting directly in the Webex app.

If you do not want to or cannot use the Webex app, the basic functions can also be used via a browser version, which you can also find on the Webex website.

Purpose of the processing

We use the Webex tool to conduct telephone conferences, on-line meetings, video conferences, and/or web seminars (hereinafter collectively referred to as "on-line meetings").

Which personal data are processed?

When using Webex, different types of data are processed. The scope of the data also depends on the information you provide before or during participation in an on-line meeting.

The following personal data are subject to processing:

  • Information about the user: First name, last name, telephone (optional), email address, password (if single sign-on is not used), profile picture (optional), division (optional)
  • Meeting meta-data: subject, description (optional), participant IP addresses, device/hardware information.
  • For recordings (optional): MP4 file of all video, audio, and presentation recordings, M4A file of all audio recordings, and text file of the on-line meeting chat.
  • When dialling in via telephone: Incoming and outgoing call number, country name, and start and end time. If necessary, further connection data such as the IP address of the device can be saved.
  • Text, audio, and video data: You may have the opportunity to use the chat, question, or poll functions in an on-line meeting. In this respect, the text entries you make are processed in order to display them in the on-line meeting and, if necessary, to record them. In order to enable the display of video and the playback of audio, data from the microphone and any video camera of your end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time via the Webex apps.

In order join an on-line meeting or enter the meeting room, you must provide at least your name.

To what extent are personal data processed?

We use Webex to conduct on-line meetings. If we want to record on-line meetings, we will tell you transparently in advance and – where necessary – ask for your consent. The fact of the recording is also shown to you in the Webex app.

If it is necessary for the purposes of logging the results of an on-line meeting, we will log the chat content. However, this will usually not be the case.

In the case of web seminars, we may also process questions asked by web seminar participants for the purposes of recording and following up on web seminars.

If you are registered as a Webex user, reports of on-line meetings (meeting meta-data, telephone dial-in data, questions and answers in web seminars, and survey function in web seminars) can be stored at Webex for up to one month.

The possibility of software-based attention monitoring (attention tracking) that exists in on-line meeting tools such as Webex is deactivated.

Automated decision-making in the sense of Article 22 GDPR is not used.

Legal basis of the processing of your personal data

If you use Webex as part of your employment at BfS, the Section 26 of the BDSG is the legal basis for the processing of your personal data.

Furthermore, the legal basis for data processing when conducting on-line meetings is Article 6, para. 1, lit. b GDPR insofar as the meetings are conducted within the framework of contractual relationships.

If there is no contractual relationship, the legal basis is Article 6, para. 1, lit. e GDPR in conjunction with Section 2 of the Act on the Establishment of a Federal Office for Radiation Protection and Section 3 BDSG.

Participation in this video conferencing tool can also take place through your consent in accordance with Article 6, para. 1, lit. a GDPR.

Disclosure of your data to third parties

Personal data processed in connection with participation in on-line meetings will not be disclosed to third parties (except to Cisco with whom an order processing agreement has been concluded). Cisco necessarily obtains knowledge of the aforementioned data collected precisely for the purpose of using Webex according to the arrangements provided for in our order processing agreement with Cisco.

Because Cisco is based in the UK, personal data are processed outside the EU or EEA (third country). However, this refers to the processing of contractual data only. Other personal data, in particular those of the meeting participants, are processed exclusively on servers in the EU.

We have concluded an order processing contract with Cisco that complies with the requirements of Article 28 GDPR. Furthermore, EU standard contractual clauses were concluded.

Duration of storage of your personal data

Your personal data will be stored only for as long as is necessary to achieve the aforementioned purposes.

The data protection notices of Cisco that apply beyond this can be viewed here: https://www.cisco.com/c/de_de/about/legal/privacy-full.html

Zoom

Zoom Video Communications, Inc. is a video conferencing tool provider headquartered in San Jose, California, US.

Purpose of the processing

The data collected by the BfS are processed for the purpose of real-time communication in the format of a video conference.

Note: If you access the "Zoom" website, Zoom Video Communications, Inc. is responsible for data processing. For the use of "Zoom", calling up the Internet site is necessary only in order to download the software for the use of "Zoom".

Processing of personal data

When using "Zoom", different types of data are processed. The scope of the data also depends on the information you provide before or during participation in the video conference.

Which personal data are processed?
  • Information on the user: First name, last name, telephone (optional), email address (optional), profile picture (optional), and affiliation to an organisation (optional)
  • Meeting meta-data: subject, meeting name and description, meeting duration, participant IP addresses, chat status, and device/hardware information
  • Text data: You have the possibility to use the chat and question functions in the video conference. In this respect, the text entries you make will be processed in order to transmit them to the BfS as organiser and moderator of the video conference.
  • Information on the processing of cookies can be found in the Cookie Policy of Zoom.

If you are registered as a user with Zoom, reports on on-line meetings (meeting meta-data, telephone dial-in data, questions and answers in on-line seminars, and survey functions in on-line seminars) can be stored with Zoom for up to one month.

For participation in the video conference, only the first name and surname are required by the BfS to verify registration and participation if this is necessary for issuing a certificate of attendance. If the chat, question, or survey function is used, text data (questions asked) are further processed at the BfS exclusively in anonymised form (i.e. without personal reference). The video camera (video data and image) and the microphone (audio data) as well as corresponding recordings (video, audio and presentation recordings) are not released.

Automated decision-making in the sense of Article 22 GDPR is not used.

Note: Further information on the processing of personal data at "Zoom" can be found at https://explore.zoom.us/de/privacy/.

Legal basis of the processing of your personal data

The respective legal basis must be seen in the context of the specific purpose of use.

If you use Zoom as part of your employment at BfS, Section 26 BDSG in conjunction with Article 88, para 1 GDPR is the legal basis for the processing of your personal data.

Furthermore, the legal basis for data processing when conducting on-line meetings is Article 6, para. 1, lit. b GDPR insofar as the meetings are conducted within the framework of contractual relationships.

If there is no contractual relationship, the legal basis is Article 6, para. 1, lit. e GDPR in conjunction with Section 2 of the Act on the Establishment of a Federal Office for Radiation Protection and Section 3 BDSG.

Participation in this video conferencing tool can also take place through your consent in accordance with Article 6, para. 1, lit. a GDPR.

Data processing outside the EU/EEA

Zoom Video Communications, Inc. is headquartered in San Jose, California, US.

A contract processing agreement has been concluded with "Zoom"; this complies with the requirements of Article 28 GDPR.

On 10 July 2023, the EU Commission adopted the adequacy decision for the EU-U.S. Data Privacy Framework (EU-U.S.DPF). It states that the US guarantees an adequate level of protection – compared to that of the EU – for the transfer of personal data insofar as the personal data are transferred from the European Economic Area to companies in the US participating in the EU-U.S. Data Privacy Framework.

This means that personal data can be transferred from the European Economic Area to companies in the US unhindered and securely without the need for additional guarantees.

Zoom participates in the EU-U.S. Data Privacy Framework and is certified accordingly.

In order find out more about the Data Privacy Framework (DPF) programme and to view the Zoom certification: https://www.dataprivacyframework.gov/.

Note on the use of Zoom at information events:

The personal data collected by the BfS during the information event on "Zoom" will, in principle, not be disclosed to third parties. The names of the participants ("viewers") and the questions they ask in the chat are visible only to the BfS staff participating in the information event. There is no contact between the viewers.

Duration of storage of your personal data

The personal data collected by the BfS (your name, email address, and organisational affiliation) will be deleted as soon as the purpose of the data processing (verification of registration before the start of the event and issuance of the certificate of attendance after the event) has been achieved.

Further notes on the use of "Zoom"

As a rule, no content that requires a high level of protection or is strictly confidential should be exchanged via "Zoom".

Keep the video conferencing software (or the browser you use to join the video conference) up to date.

If you use the chat channel, you should express yourself only in such a way that accidental publication of the chat does not lead to any damage for you.

6. Will your data be disclosed?Show / Hide

Within the BfS, your personal data will be accessed only by those offices that need it to fulfil the legal tasks within their responsibility.

6.1. Disclosure of data to service providers

Insofar as we involve service providers who support us in the processing of personal data or otherwise (e.g. web designers, hosting providers, or other IT service providers) and who may come into contact with your personal data in the process, this takes place only after the prior conclusion of a contract for order processing in accordance with Article 28, para. 2 GDPR in which we oblige our service providers to process personal data only in accordance with our instructions and to treat it confidentially. The processors will have access only to personal data that are required to fulfil your services for us.

6.2. Disclosure of data to third parties

Your personal data will be passed on to external recipients (e.g. public agencies of the Federal Government or the Federal States, contractual partners of the BfS, and parties involved in administrative proceedings) only if we are obliged to provide information, report, or pass on data in order to fulfil legal requirements or if you have consented to the transfer of your personal data in accordance with Article 6, para. 1, sentence 1, lit. c GDPR, Article 6, para. 1, sentence 1, lit. a GDPR.

6.3. Will your data be transferred to third countries?

Data are transferred to countries outside the EU or the EEA (third countries) only if this is necessary for the fulfilment of the aforementioned purposes or is required by law, if you have given your consent, or if this is within the scope of order processing. If your personal data are transferred to a third country, we have taken appropriate measures to ensure that the level of protection for natural persons guaranteed by the GDPR is not compromised. In particular, we have concluded standard contractual clauses with processors who process personal data in a third country.

7. On-line presence in social networksShow / Hide

7.1. Purposes and risks

We are represented on various social networks in order to provide you with information about us, present the Federal Office for Radiation Protection, and communicate with active users.

We do not process any personal data via the social network image logos integrated on our website. Only active clicking on the image logos activates the direct redirection to our on-line presence in the corresponding social network, which is linked in the background. Personal data are processed by the respective network during your visit. For your information, we have linked the respective data protection notices of the networks we use below.

We would like to point out that the data of users of social networks are generally processed by these networks for market research and advertising purposes. User profiles can be created on the basis of user behaviour. Among other things, these can be used to place adverts outside the network.

We would also like to point out that when using social networks, data may be processed outside the European Union. This may result in risks for you (e.g. more difficult legal enforcement).

A detailed description of the respective forms of processing, the insights created, and the opt-out options can be found in the privacy policies and other information provided by the operators of the respective networks.

The most effective way to request information and assert your rights as a data subject is to contact the operator.

7.2. Types of data processed

Contact data (e.g. email, telephone numbers), inventory data (e.g. names, addresses, age), content data (e.g. text entries, photographs, videos), usage data (e.g. websites visited, interest in content, access times), and communication data (e.g. device information, IP addresses) may be processed when you visit us on the social networks.

If social networks provide us with statistical information about visitors to our profiles/fan pages, this is done in aggregated (summarised, anonymised) form; it is not possible for us to draw conclusions about individual users or access individual user profiles.

7.3. Persons concerned

Data are collected from website visitors and registered users of social networks.

7.4. Legal basis

We consider it necessary for the fulfilment of our tasks to present the Federal Office for Radiation Protection in social media in order to provide information about our work and to communicate with users in this way (Article 6, para. 1, sentence 1, lit. e GDPR in conjunction with Section 3 BDSG).

7.5. Services used

Instagram: Social network
Provider: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Website: www.instagram.com
Privacy policy: help.instagram.com/519522125107875
on the personalisation of adverts: www.facebook.com/login.php
General information about adverts: www.facebook.com/ads/about/

YouTube: Video portal
Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Website: www.youtube.com
Privacy policy: policies.google.com/privacy
Personalisation of advertising settings: adssettings.google.com/anonymous
Personalisation of privacy settings: myaccount.google.com/intro/privacycheckup

X Corp.: Social network
Provider: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, US
Website: twitter.com
Privacy policy: twitter.com/en/privacy
Privacy settings: twitter.com/personalization
Deactivation of the display of interest-based advertising: optout.aboutads.info
on cookies and privacy settings: help.twitter.com/de/rules-and-policies/twitter-cookies

Mastodon: Social network
Provider: Mastodon gGmbH, Mühlenstraße 8a, 14167 Berlin
Website: https://joinmastodon.org/de/about
Privacy policy: https://social.bund.de/terms

LinkedIn: Professional network
Provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Website: https://www.linkedin.com/
Cookies and data protection: https://www.linkedin.com/legal/privacy-policy

XING: Professional network
Provider: Hamburger New Work SE, Am Strandkai 1, 20457 Hamburg, Germany
Website: https://www.xing.com
Privacy policy: https://privacy.xing.com/en/privacy-policy

Kununu: Portal for employer ratings
Provider: Hamburger New Work SE, Am Strandkai 1, 20457 Hamburg, Germany
Website: https://www.kununu.com
Privacy policy: https://privacy.xing.com/en/privacy-policy

9. What rights do you have with regard to your data?Show / Hide

You have the right:

  • to revoke any consent you have given in accordance with Article 7, para. 3 GDPR with effect for the future The legality of the processing carried out on the basis of the consent until the revocation remains unaffected by this.
  • to request information about your personal data processed by us in accordance with Article 15 GDPR In particular, you may request information on the purposes of the processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the duration of the retention envisaged, the existence of a right of rectification, erasure, limitation or opposition, the existence of a right of appeal, and the origin of your data (if these were not collected by us) as well as the existence of automated decision-making process, including profiling and, where appropriate, meaningful information on its details The restrictions in accordance with Section 34 BDSG shall apply;
  • to immediately request the correction of incorrect or incomplete personal data stored by us in accordance with Article 16 GDPR;
  • in accordance with Article 17 GDPR, you have the right to request the deletion of your personal data stored by us unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest, or to assert, exercise, or defend legal claims the restrictions in accordance with Section 35 BDSG shall apply;
  • in accordance with Article 18 GDPR, you have the right to request the limitation of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it, and we no longer needs the data but you need it to assert, exercise, or defend legal claims, or you have lodged an objection to the processing in accordance with Article 21 GDPR;
  • to receive your personal data that you have provided to us in a structured, common, and machine-readable format or to request transmission to another responsible person in accordance with Article 20 GDPR;
  • to complain to a supervisory authority in accordance with Art 77 GDPR The supervisory authority responsible is: The Federal Commissioner for Data Protection and Freedom of Information, address: Graurheindorfer Straße 153, 53117 Bonn / Friedrichstraße 50, 10117 Berlin – Central telephone number: 0228/997799-0 Central email address: poststelle@bfdi.bund.de;
  • In addition, in accordance with Article 21 GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you that is carried out on the basis of Article 6, para. 1, sentence 1, lit. e or f GDPR; this also applies to profiling based on these provisions. We will then no longer process the personal data unless there are compelling legitimate grounds for the processing that override your interests, rights, and freedoms as the data subject or the processing serves the establishment, exercise, or defence of legal claims.

The best way to exercise your rights is to contact our data protection officer. You can find the contact details above.

8. Video surveillanceShow / Hide

Some of the BfS properties are monitored by a video surveillance system in order to safeguard domiciliary rights and for the purposes of security and law enforcement. The data collected in this way are assigned to a specific person only in exceptional cases in the event of a breach of domiciliary rights. In the case of video surveillance of laboratories and measuring equipment for the safety of the data subjects, these persons shall be informed separately.

The processing is carried out on the basis of Article 6, para. 1, lit. e GDPR in conjunction with Section 4 BDSG.

Right to information: Any person who claims to have been within a monitored area for a certain period of time can request access to the recording according to Article 15 GDPR provided it is still available (observe the deletion cycle). To do so, they can contact the BfS via the aforementioned channels.

State of 2024.01.12

Site information and functions

© Bundesamt für Strahlenschutz