The responsible party in sense of the General Data Protection Regulation is:
80539 Munich, Germany
Responsible data processing office:
Faculty of Psychology and Education
Department of Pedagogy and Rehabilitation
Professorship of Special Education – Focus on Hearing and Communication including Inclusive Pedagogy
80802 Munich, Germany
Name and address of the data protection officer of the University of Munich
Ludwig Maximilian University of Munich
Data Protection Officer
80539 Munich, Germany
Phone: +49 (0) 89 2180-2414
Purposes and legal basis for the processing of personal data
Pursuant to Art. 2 BayHIG, Art. 4, 5, 17, 19 Bavarian Digital Act (BayDiG), we offer our services and administrative services as well as information for the public about our activities on our websites.
Personal data is processed on the website of the ReaDi project only insofar as this is necessary for the provision of a functional website, for the presentation of the respective contents or the provision of certain services or offers. The processing of personal data takes place either on the basis of a legal basis or user-related consent. Insofar as the processing of personal data is based on consent, this is done on the basis of Art. 6 (1) lit. a DSGVO. Where the processing of personal data is necessary for the performance of a contract to which the user is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. Insofar as processing of personal data is necessary for compliance with a legal obligation to which LMU is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis. In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) (d) DSGVO serves as the legal basis. Processing may also be necessary for the performance of a task assigned to LMU that is in the public interest (Art. 6 (1) (e), (3) (b) DSGVO in conjunction with Art. 4 (1) BayDSG). Further legal bases may also result from special statutory or other legal regulations, which will be referred to in the respective individual case.
Specific information on data processing on the website of the ReaDi project.
Logging and creation of log files
Each time the ReaDi website is called up, data and information are automatically recorded by the computer system of the respective calling computer. In addition, we process your personal data if you provide it via the ReaDi project website. When processing your personal data, we take into account in particular the data protection principles of lawfulness, processing in good faith, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity and confidentiality.
The stored data is used for the purpose of identifying and tracking unauthorized access attempts and accesses, for maintaining the functionality of the Internet site on the Internet server and – in anonymized form – for optimizing the Internet offering.
Temporary storage of the IP address is also necessary to enable delivery of the ReaDi project website to your computer. For this purpose, the IP address must also remain stored for the duration of the use of the session. Storage together with other personal data at the LMU does not take place.
Depending on the access protocol used, the log data record contains information with the following content:
The temporary data processing is carried out pursuant to Art. 6 para. 1 lit. e, para. 3 DSGVO in conjunction with. Art. 4 para. 1 BayDSG.
The logged data is stored for a maximum of seven days and then deleted. Longer storage may take place in individual cases if a security-relevant breach has been identified. Regardless of this, storage beyond this period is possible. In this case, your IP address will be deleted or alienated, so that an assignment of the calling client is no longer possible.
As far as the data for the provision of the website and the storage of the data in the log files are absolutely necessary for the operation of the website, you do not have the possibility to object.
Use of active components and cookies
In some cases, cookies are set on the ReaDi website in order to make the website user-friendly. Some elements of our website also require the identification of user sessions.
Only a session ID is stored in the cookies to identify the user session (session cookie). Session cookies are small information units that a provider stores in the RAM of the visitor’s computer. Session cookies contain, in addition to a randomly generated unique identification number, information about the origin and the storage period. These cookies cannot store any other data.
The following technically necessary cookies are used:
Saving consent for embedding external content from Twitter, Facebook, YouTube, Vimeo and Instagram for the duration of the website visit.
Deleted when the session ends or the browser is closed.
Deleted when the session is ended or the browser is closed.
Saving the session ID
Saving the session ID
Saving a session ID of the payment provider for the donation tool
Saving a session ID of the payment provider for the donation tool
The following data is stored and transmitted in the cookies:
_pk_id, _pk_ses, MWF_SESSIONID, __stripe_mid, __stripe_sid, AWSALB, AWSALBCORS
Data processing is carried out in accordance with Art. 6 para. 1 letter e, para. 3 DSGVO in conjunction with. Art. 4 para. 1 BayDSG, Art. 4, 16, 17 BayDiG. If the data processing is based on consent, this is done in accordance with Art. 6 Para. 1 Letter a DSGVO, § 25 TTDSG.
The session cookies are automatically deleted after the end of your visit when you close your browser or exit the website.
Use of social media icons or Internet links
When using social media icons from Facebook, Twitter, Instagram, YouTube, etc. on LMU websites, no automatic transfer of your personal data takes place. To avoid automatic data transfers to the social media providers, the integration of these offers on LMU’s internet pages is based on an internet link. The use of active social media plugins does not take place for data protection reasons.
Our social media presences are part of our public relations work. Our aim is to inform and exchange information with you in a way that is appropriate for the target group.
All of our social media providers are certified under the EU-US Privacy Shield and visible to any person, so that there is a legally adequate level of protection for personal data, e.g.:
Use of RSS
An RSS feed is a form of the classic newsletter that you can read either with your browser or with a special program (RSS reader). If we offer an RSS feed, we will use it to inform you about current events. A list of the central RSS feeds is provided at https://www.uni-muenchen.de/funktionen/rss.
If personal data is collected in the course of subscribing to an RSS feed, it will be processed solely for the purpose of implementing the RSS and deleted as soon as the purpose is no longer pursued, i.e. either as a result of your unsubscribing or the discontinuation of the RSS.
Contact form and e-mail use
You can contact LMU electronically via the internet pages of the ReaDi project. For this purpose, please use the deposited contact form or the e-mail address mentioned on the website.
If you use the option of a contact form, the data entered in the respective input mask will be transmitted to LMU and stored. As a rule, this involves the surname, first name and an e-mail address. Please refer to the respective contact form or the respective notice of the institution responsible for the content of the respective website for the concrete details. Mandatory information, without which the request cannot be processed, is marked as such in the contact form. For the processing of the data, your consent is obtained during the sending process and reference is made to this data protection declaration and, if applicable, to further specific data protection information at the bottom of this page.
At the time of sending the message, the following data will also be stored in addition to the data provided by you:
On the application server:
The personal data processed during the registration process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
In the context of using a contact form, you will be informed about the data collected in each case and your respective rights.
In addition to the contact form, it is also possible to send an e-mail to an LMU e-mail address provided for use on the respective website. If you send us an e-mail, your e-mail address and the other data you provide will only be used for correspondence with you and stored for as long as is necessary for this purpose, unless another legal basis justifies further processing.
Please note that the use of an unencrypted e-mail is fundamentally insecure, i.e. it can potentially be read, modified or intercepted by third parties on the transmission path. Please take this into account when sending us information by e-mail. Therefore, please use the postal service for sending messages requiring protection, or please use the public S/MIME (X509-) certificate for encrypting your message.
Please use only this key to encrypt your e-mail addressed to us, otherwise we may not be able to read your e-mail.
In order for us to be able to send you messages worthy of protection, please also provide us with your postal address when making inquiries. Otherwise, it is possible that no information can be provided.
In case you want to send us an unencrypted e-mail, please preferably use a functional address of LMU, if such an address is indicated on the website.
Please note that in the case of an e-mail request, we cannot verify your identity and do not know who is behind the e-mail address. Legally secure communication through a simple unsigned e-mail is not guaranteed, even if it is encrypted.
At LMU, we sometimes use filters against unwanted advertising (so-called spam filters), which can also incorrectly classify e-mails as unwanted advertising in individual cases and delete them. E-mails that may contain harmful programs, e.g. viruses, are automatically deleted.
If you wish to receive an encrypted e-mail from us, please provide us with the necessary information.
Google Custom Search
Data protection rights
1 Right to information
In accordance with Article 15 of the DSGVO, you may request confirmation from LMU as to whether personal data concerning you are being processed by us.
If such processing exists, you may request information about the personal data processed and the following additional information:
The right of access is subject to legal limitations and does not apply absolutely, but finds its limit in particular in the following cases:
4 Right to deletion
5 Right to information
If you have asserted the right to rectification, erasure or restriction of processing against LMU, we are obliged pursuant to Art. 19 DSGVO to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right against LMU to be informed about these recipients.
6 Right to data portability
Subject to the requirements of Article 20 DSGVO, you have the right to receive the personal data concerning you that you have provided to LMU in a structured, common and machine-readable format. In addition, you have the right to transmit this data to a controller or another controller without hindrance by LMU, provided that the processing is based on consent pursuant to Art. 6(1)(a) DSGVO or Art. 9(2)(a) DSGVO or on a contract pursuant to Art. 6(1)(b) DSGVO and the processing is carried out with the help of automated procedures.
In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from LMU to another controller or another responsible party, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.
The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in LMU.
7 Right of objection
Subject to the conditions of Article 21 DSGVO, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO.
LMU will no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.
You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EG, to exercise your right to object by means of automated procedures using technical specifications.
In the case of processing of personal data concerning you for scientific or historical research purposes and for statistical purposes pursuant to Article 89(1) of the DSGVO, you also have the right to object to such data processing on grounds relating to your particular situation.
Your right to object may be restricted to the extent that it is likely to make the realization of the research or statistical purposes impossible or seriously impair them and the restriction is necessary for the fulfillment of the research or statistical purposes (Art. 25 BayDSG).
8 Right to revoke the declaration of consent under data protection law
You have the right to revoke your declaration of consent under data protection law at any time with effect for the future, whereby the revocation does not affect the lawfulness of the data processing carried out on the basis of the consent until the revocation (Art. 7 (3) DSGVO). The revocation must always be declared to the office within LMU that obtained the consent or to whom you gave the consent.
9 Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the DSGVO (Article 77 DSGVO).
The data protection supervisory authority directly responsible for LMU is the Bavarian State Commissioner for Data Protection (https://www.datenschutz-bayern.de). The supervisory authority to which the complaint has been submitted will inform the complainant about the status and the results of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 DSGVO.
10 Assertion of rights
If you believe that the processing of personal data concerning you violates the DSGVO or if you wish to exercise your rights in other respects, we request that you first contact the contact person responsible for the content of the respective website, as named in the imprint, and/or the competent department with which you were in contact with regard to the data processing in question, as this will enable a prompt review and, if necessary, remedy in your interest. This applies in particular if you wish to revoke your consent. In addition, you can also contact the official data protection officer at LMU. It is our goal and claim to clarify all arising data protection issues immediately and to solve possible data protection problems without delay.