Privacy policy


Privacy Policy
Responsible entity in terms of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Berlin Governance Platform - BGP gGmbH
Pariser Platz 6 (Allianz Forum)
10117 Berlin/Germany

If you have any questions about data protection, please email us at the person responsible for data protection in our organization: Datenschutz[at]governance-platform.org

Your data subject rights
You can exercise the following rights at any time using the contact details provided for our person responsible for data protection:

  • Information about your data stored by us and its processing,
  • Correction of inaccurate personal data,
  • Deletion of your data stored with us,
  • Restriction of data processing if we are not yet allowed to delete your data due to legal obligations,
  • Object to the processing of your data by us,
  • Data portability, provided that you have consented to the data processing or have concluded a contract with us.

If you have given us consent, you can revoke this at any time with effect for the future.
You can contact the supervisory authority responsible for you at any time with a complaint. Your competent supervisory authority depends on the federal state of your residence, your work or the alleged violation. You can find a list of supervisory authorities (for the non-public sector) with address here.

Purposes of data processing by the controller and third parties
We process your personal data only for the purposes stated in this privacy policy . We do not transfer your personal data to third parties for purposes other than those stated. We will only disclose your personal data to third parties if:

  • you have given your express consent to this,
  • the processing is necessary for the performance of a contract with you,
  • the processing is necessary for compliance with a legal obligation,
  • the processing is necessary to protect legitimate interests and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data.

Deletion or blocking of data
We adhere to the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes stated here or as stipulated by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.

Collection of general information when visiting our website
When you access our website, information of a general nature is automatically collected by means of a cookie. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your Internet service provider and the like. This is exclusively information that does not allow any conclusions to be drawn about your person.
This information is technically necessary in order to correctly deliver the content of web pages requested by you and is mandatory when using the Internet. In particular, it is processed for the following purposes:

  • Ensuring that the website connection is established without any problems,
  • Ensuring a smooth use of our website,
  • Evaluation of system security and stability as well as for other administrative purposes.

The processing of your personal data is based on our legitimate interest from the aforementioned purposes for data collection. We do not use your data to draw conclusions about your person. Recipients of the data are only the responsible body and, if applicable, order processors.
Anonymous information of this kind is statistically evaluated by us, if necessary, in order to optimize our Internet presence and the technology behind it.

Cookies
Like many other websites, we also use so-called "cookies". Cookies are small text files that are transferred from a website server to your hard drive. Through this, we automatically receive certain data such as IP address, browser used, operating system and your connection to the Internet.
Cookies cannot be used to launch programs or transfer viruses to a computer. On the basis of the information contained in cookies, we can facilitate your navigation and enable the correct display of our web pages.
Under no circumstances will the data we collect be passed on to third parties or linked to personal data without your consent.
Of course, you can also view our website without cookies in principle. Internet browsers are regularly set to accept cookies. In general, you can deactivate the use of cookies at any time via your browser settings. Please use the help functions of your Internet browser to find out how to change these settings. Please note that individual functions of our website may not work if you have disabled the use of cookies.

Contact form
If you contact us by e-mail regarding questions of any kind, you give us your voluntary consent for the purpose of contacting you. For this purpose, it is necessary to provide a valid e-mail address. This is used for the assignment of the inquiry and the subsequent response to the same. The provision of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions. After completion of your request, personal data will be deleted automatically.

Use of script libraries
In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries such as Google Webfonts on this website. Google Web Fonts are transferred to your browser's cache to avoid multiple loads. If the browser does not support Google web fonts or prevents access, content is displayed in a standard font.
Calling up script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible - but currently also unclear whether and, if so, for what purposes - that operators of corresponding libraries collect data.
The privacy policy of the library operator Google can be found here.

Use of Google Maps
Our website uses Google Maps API to visually display geographical information. When using Google Maps, Google also collects, processes and uses data about visitors' use of the map functions. You can find more information about data processing by Google in the Google privacy policy. There you can also change your personal privacy settings in the Privacy Center.
Detailed instructions on managing your own data in connection with Google products can be found here.

Embedded YouTube videos
We embed YouTube videos on some of our websites. The operator of the corresponding plugins is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit a page with the YouTube plugin, a connection to YouTube servers is established. This tells YouTube which pages you are visiting. If you are logged into your YouTube account, YouTube can assign your surfing behavior to you personally. You can prevent this by logging out of your YouTube account beforehand.
If a YouTube video is started, the provider uses cookies that collect information about user behavior.
Anyone who has deactivated the saving of cookies for the Google Ad program will not have to expect any such cookies when watching YouTube videos. However, YouTube also stores non-personal usage information in other cookies. If you would like to prevent this, you must block the storage of cookies in the browser.
Further information on data protection at YouTube can be found in the provider's privacy policy here.

Twitter
We have integrated functions and content of the service Twitter, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. This may include, for example, content such as images, videos or texts and buttons with which users can announce their liking of the content, the authors of the content or subscribe to our posts. If the users are members of the Twitter platform, Twitter can assign the call of the above-mentioned content and functions to the profiles of the users there. Twitter is certified under the Privacy Shield agreement and thus offers a guarantee of compliance with European data protection law:
For more information on data protection at Twitter, please see the provider's privacy policy here.

Administration, financial accounting, office organization, contact management
We process data in the context of administrative tasks as well as organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In this regard, we process the same data that we process in the course of providing our contractual services. The processing bases are Art. 6 para. 1 lit. c. DSGVO, Art. 6 para. 1 lit. f. DSGVO. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve the maintenance of our business activities, performance of our tasks and provision of our services. The deletion of data with regard to contractual services and contractual communication corresponds to the information mentioned in these processing activities.
We disclose or transmit data to the tax authorities, consultants, such as tax advisors or auditors, as well as other fee offices and payment service providers.
Furthermore, we store information on suppliers, organizers and other business partners on the basis of our business interests, e.g. for the purpose of later contact. This data, most of which is company-related, is generally stored permanently.

Provision of our statutory and business services
We process the data of our supporters, interested parties, event participants, customers or other persons in accordance with Art. 6 para. 1 lit. b. DSGVO, insofar as we offer them contractual services or within the framework of existing business relationships. Otherwise, we process the data of data subjects pursuant to Art. 6 para. 1 lit. f. DSGVO on the basis of our legitimate interests, e.g. if it is a matter of administrative tasks or public relations.
The data processed here, the type, scope and purpose and the necessity of their processing are determined by the underlying contractual relationship. In principle, this includes inventory and master data of persons (e.g., name, address, etc.), as well as contact data (e.g., e-mail address, telephone, etc.), contract data (e.g., services used, content and information provided, names of contact persons) and, if we offer payable services or products, payment data (e.g., bank details, payment history, etc.).
We delete data that is no longer required to fulfill our statutory and business purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we retain the data for as long as they may be relevant to the business transaction, as well as with regard to any warranty or liability obligations. The necessity of retaining the data is reviewed every three years; otherwise, the statutory retention obligations apply.

Data protection information in the application process
We process applicant data and applicant data only for the purpose of and within the scope of the application process in accordance with the statutory requirements. The processing of applicant data and applicant data is carried out for the fulfillment of our (pre)contractual obligations in the context of the application procedure in accordance with Art. 6 para. 1 lit. b. DSGVO Art. 6 para. 1 lit. f. DSGVO insofar as the data processing becomes necessary for us, e.g. within the scope of legal procedures, and additionally § 26 BDSG).
The application procedure requires that applicants provide us with the application data. The necessary application data is derived from the job descriptions and generally includes personal details, postal and contact addresses and the application documents such as cover letter, CV and certificates. In addition, applicants may voluntarily provide us with additional information, such as writing samples.
By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process in the manner and to the extent set out in this privacy policy.
Insofar as special categories of personal data within the meaning of Art. 9 (1) DSGVO are voluntarily communicated within the scope of the application procedure, their processing is additionally carried out in accordance with Art. 9 (2) lit. b DSGVO (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 (1) DSGVO are requested from applicants as part of the application process, their processing is additionally carried out in accordance with Art. 9 (2) a DSGVO (e.g. health data, if this is necessary for the exercise of the profession).
Applicants can send us their applications via e-mail. However, please note that e-mails are generally not encrypted and applicants must ensure encryption themselves. We can therefore accept no responsibility for the transmission path of the application between the sender and receipt on our server.
In the event of a successful application, the data provided by the applicants may be processed by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is not successful, the data of the applicants will be deleted. The same applies if an application is withdrawn.
Subject to a justified revocation by the applicants, the data will be deleted after the expiry of a period of six months so that we can answer any follow-up questions about the application and satisfy our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses will be archived in accordance with tax law requirements.

Contact
When contacting us (e.g. by contact form, e-mail, telephone or via social media), the user's details are processed for the purpose of handling the contact request and its processing pursuant to Art. 6 para. 1 lit. b) DSGVO. The user's details may be stored in a customer relationship management system ("CRM system") or comparable inquiry organization.
We delete the inquiries if they are no longer necessary. We review the necessity every two years; Furthermore, the legal archiving obligations apply.

Newsletter
With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to the receipt and the described procedures .
Contents of the newsletter: We send newsletters, e-mails and other electronic notifications with promotional information (hereinafter "newsletter") only with the consent of the recipients or a legal permission. If the contents of the Newsletter are specifically described in the context of a registration, they are decisive for the consent of the users. Apart from that, our newsletters contain information about our services and us.
Double-Opt-In and logging: The registration for our newsletter takes place in a so-called double-opt-in procedure. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Changes to your data stored with the dispatch service provider are also logged.
Registration data: To register for the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to provide a name, for the purpose of personal address in the newsletter.
The dispatch of the newsletter and the associated performance measurement are based on the consent of the recipients pursuant to Art. 6 para. 1 lit. a, Art. 7 DSGVO in conjunction with § 7 para. 2 No. 3 UWG or, if consent is not required, on the basis of our legitimate interests in direct marketing pursuant to Art. 6 para. 1 lt. f. DSGVO in conjunction with. § 7 (3) UWG.
The logging of the registration process is based on our legitimate interests pursuant to Art. 6 (1) lit. f DSGVO. Our interest is directed towards the use of a user-friendly as well as secure newsletter system that serves our business interests as well as meets the expectations of the users and furthermore allows us to prove consent.
Cancellation/Revocation - You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to cancel the newsletter at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them to be able to prove consent formerly given. The processing of this data is limited to the purpose of a possible defense against claims. An individual deletion request is possible at any time, provided that the former existence of consent is confirmed at the same time.

The Municipal Integration and Development Initiative (MIDI) uses the services of MailChimp to send newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.MailChimp is a service with which, among other things, the sending of newsletters can be organized and analyzed. If you enter data for the purpose of receiving newsletters (e.g. e-mail address), this data will be stored on MailChimp's servers in the USA.

MailChimp is certified according to the "EU-US Privacy Shield". The "Privacy Shield" is an agreement between the European Union (EU) and the USA, which is intended to ensure compliance with European data protection standards in the USA.

With the help of MailChimp, we can analyze our newsletter campaigns. When you open an email sent with MailChimp, a file contained in the email (so-called web beacon) connects to MailChimp's servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). They are used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.If you do not want any analysis by MailChimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message.

We have concluded a so-called "Data-Processing-Agreement" with MailChimp, in which we oblige MailChimp to protect the data of our customers and not to pass them on to third parties. This agreement can be viewed at the following link: https://mailchimp.com/legal/forms/data-processing-agreement/sample-agreement/.

For more details, please refer to MailChimp's privacy policy at: https://mailchimp.com/legal/terms/

E-mail dispatch
We, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of our online offer pursuant to Art. 6 para. 1 lit. f DSGVO in conjunction with Art. 28 DSGVO. Art. 28 DSGVO.

Collection of access data and log files
We, or rather our hosting provider, collects data about every access to the server on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. DSGVO, we collect data about each access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.
log file information is stored for a maximum of 7 days for security reasons (e.g. to clarify acts of abuse or fraud) and then deleted. Data whose further storage is required for evidentiary purposes is excluded from deletion until the final clarification of the respective incident.

Changes to our privacy policy
We reserve the right to adapt this privacy policy so that it always complies with the current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.

The data protection declaration was created with the data protection declaration generator of activeMind AG and partially changed and supplemented by us.

Berlin Governance Platform - BGP gGmbH, Pariser Platz 6, D - 10117 Berlin Sitz Berlin - AG Berlin-Charlottenburg - HRB 162500 B - Geschäftsführung: Daphne Büllesbach