We are pleased about your interest in our web site. The protection of your privacy is important to us. In the following, we will inform you in detail about how we are handling your data.
You can visit our web site without giving out any personal data. We are merely storing access meta data in so-called server logfiles. These are:
This information by itself can not be used to identify a particular person. There is also no combination of this information with other sources of data. This data is used, if we have reasons to believe that our services are being misused in an unlawful manner. After four weeks, the collected data is automatically deleted from our servers.
This web site employs three different categories of so-called cookies; that is, small text files, which will be saved in your browsing device. Some of the employed cookies will automatically be deleted after you close your browser (so-called session cookies). Others remain on your device and enable us to recognise it on your next visit of this web site (so-called persistent cookies). You can configure your browser in a way that you are being alerted about the transmission of cookies, or deny their transmission entirely.
Cookie category 1: CSRF-protection cookie; to protect the web-site and its users from cross-site-request attacks. Does not contain any personal data and can in itself not be used to deduce the identity of the user. This category of a cookie can be suppressed by the user's browser, but is required by the web site to provide its basic functionality. Hence, there is currently no possibility or option to not transmit this category of a cookie.
Cookie category 2: state cookie (persistent); to store temporary state information that needs to be preserved by OOREP, if the user switches between the OOREP application and static HTML pages (e.g., login or register page). Such state includes, for example, the information that the user has confirmed the initial cookie popup (otherwise it would be presented over and over again). Does not contain any personal data and can in itself not be used to deduce the identity of the user. This category of a cookie can be suppressed by the user's browser, but is required by the web site to provide its basic functionality. This cookie will be transmitted upon user consent in the cookie dialog.
Cookie category 3: login cookie (persistent); will only be transmitted after the user has registered with this web site and logged in using his or her personal username and password. This category of a cookie contains the internal user ID, and, assuming access to the internal database, could then in theory be used to deduce the identity of the user. However, there is active protection against this in place in terms of firewalls and other security features. This cookie is irrelevant or rather: will not be transmitted, unless the user logs in using personalised username and password. The basic functionality of the web site is given even without transmission and use of this category of cookie.
This web site currently uses no external analytics software (e.g., Google Analytics), so-called trackers, external fonts (e.g., Google Fonts). Furthermore, there are no external advertisements included in this web site. That is, it is not possible that any third-party cookies will be transmitted to the user's browsing device by using this web site.
This web site does not employ any automated processes to make decisions on your behalf (including profiling), which are legally binding for you or constrain you in such a manner.
In order to protect the integrity of your data in transmission, we are using state-of-practice data encryption techniques (e.g., SSL) over HTTPS.
Under data protection regulations, you have rights over how your personal information is used by others.
If we, the web site provider, processes your personal data based on your given permission, you have the right to recall said permission for now and in the future.
Making use of the aforementioned rights is based on some legal prerequisites. In some cases, the extent to which you may execute a certain right may be restricted due to legal exceptions (e.g., Art. 17/3 and Art. 22/2 DSGVO). Should you have questions in this regard or wish to execute your rights, please contact us, the web site providers, at the given address in the impressum (see link at the bottom of this web site).