A. General Information, Data Protection Officer
(1) We are pleased about your interest in our project OpenGPT-X and would like you to feel secure with regard to the protection of your personal data when visiting our website.
2) The person responsible for processing your data on the internet page opengpt-x.de (hereinafter: “website”) is the Akademie für Künstliche Intelligenz AKI gGmbH (hereinafter: AKI). Further information on the person responsible can be found in the imprint.
(3) You can reach our data protection officer at the following address:
Data Protection Officer
KI Bundesverband e.V.
Im Haus der Bundespressekonferenz
or send an e-mail to: firstname.lastname@example.org.
4) The AKI takes the protection of your personal data very seriously. Personal data is all data that can be related to you personally, e.g. name, address, e-mail address, user behaviour. When you visit our website, personal data is collected which we process in compliance with the applicable data protection regulations. We do not publish this data or pass it on to third parties without authorisation.
(5) With this data protection declaration, we would like to inform you about the data we collect during your visit to our website and how this data is used.
(6) This online offer is not intended for children under the age of 16.
B. Data processing when visiting our website
I. Types of data collected
(1) During the mere informational use of our website, i.e. if you do not register or otherwise transmit information to us, we only process the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security (legal basis is Art. 6 para. 1 p. 1 lit. f of the General Data Protection Regulation (“GDPR”)):
• IP address
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Content of the request (specific page)
• Access status/HTTP status code
• Amount of data transferred in each case
• Website from which the request came
• Operating system and its interface
• language and version of the browser software
(2) The data is stored for a period of 7 days and then automatically deleted.
Furthermore, we use so-called cookies and tracking tools for our website. The exact procedures involved and how your data is used for this purpose are explained in more detail below under section B.II. and B.III.
II. Google Analytics
(1) Our website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). We use Google Analytics to analyse and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Art. 6 para. 1 lit. f DSGVO.
(2) Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of our website is usually transmitted to a Google server in the USA and stored there. In the event that IP anonymisation is activated on our website, however, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the KI Bundesverband, Google will use this information for the purpose of evaluating your use of our website, compiling reports on website activity and providing other services relating to website activity and internet usage to the KI Bundesverband.
(3) The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
(5) Our website uses Google Analytics with the extension “_anonymizeIp()”. This means that IP addresses are processed in a shortened form, thus excluding the possibility of personal references. If the data collected about you is personally identifiable, this is immediately excluded and the personal data is deleted immediately.
(6) Information of the third party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
(1) We use so-called cookies on our website on the basis of Art. 6 para. 1 p. 1 lit. f GDPR in order to optimise our website. Cookies are small text files that are stored on your hard drive in relation to the browser you are using and which provide the party setting the cookie (in this case us) with certain information. Cookies cannot execute programs or transfer viruses to your computer. They are used to make the website as a whole more user-friendly and effective.
(2) On our website we use so-called session cookies, which store data for technical session control in the memory of your browser. This data is not personal and is usually deleted at the latest when you close your browser. For some functionalities of our website, cookies are used which are also valid beyond the browser session. In exceptional cases, personal data may also be stored in cookies. However, we will draw your attention to this separately and ask for your consent.
(3) You can also use our website without cookies. To do this, you can generally block cookies in your browser settings or provide them with a prompt. In this case, however, you may not be able to use all the functions of our website to their full extent.
IV. Google Web Fonts
Google Webfonts (http://www.google.com/webfonts/) are used to improve the visual presentation of various information on this website. The web fonts are transferred to the browser’s cache when the page is called up so that they can be used for the display. If the browser does not support Google Web Fonts or prevents access, the text will be displayed in a standard font.
Data transmitted in connection with the page view are sent to resource-specific domains such as fonts.googleapis.com or fonts.gstatic.com. They are not associated with data that may be collected or used in connection with the parallel use of authenticated Google services such as Gmail.
You can set your browser so that the fonts are not loaded from Google servers (e.g. by installing add-ons such as NoScript or Ghostery for Firefox). If your browser does not support Google Fonts or you prevent access to the Google servers, the text will be displayed in the system’s default font.
Information on the data protection conditions of Google Web Fonts can be found at: https://developers.google.com/fonts/faq#Privacy
V. Links to Internet pages of other providers
Our website may contain links to websites of other providers. We would like to point out that this data protection declaration applies exclusively to the website of OpenGPT-X. We have no influence on and do not control that other providers comply with the applicable data protection regulations.
C. Data processing within the scope of the newsletter dispatch
I. Types of data collected and admissibility criteria
(1) If you register for our newsletter, we collect the following personal data or categories of personal data exclusively for the purpose of sending our newsletter:
a) e-mail address of the recipient
b) if applicable, name of the recipient
(2) In order to send you our newsletter, we use the so-called double opt-in procedure. Only if you have previously expressly confirmed to us that you wish to receive the newsletter, we will send you an activation e-mail and ask you to confirm that you wish to receive our newsletter by clicking on a link contained in this e-mail.
(3) The legal basis for this data processing is Art. 6 para. 1 p. 1 lit. a DSGVO. You may revoke this consent at any time with effect for the future without incurring any costs other than the transmission costs according to the base rates. A notification in text form to the contact data stated in section A.(2) (e.g. e-mail, fax, letter) is sufficient for this purpose. Please ensure that we are able to clearly identify you. Of course, you will also find an unsubscribe link in every newsletter.
II. Passing on collected data to third parties
D. Data processing in the context of contacting us
I. Types of data collected and admissibility criteria
(1) If you contact us by e-mail or via our contact form, the data you provide will be stored by us in order to process your enquiry. We delete the data accruing in this context after the storage is no longer necessary or restrict the processing if there are statutory retention obligations.
(2) The legal basis for this data processing by e-mail or via the online contact form is Art. 6 para. 1 p. 1 lit. a DSGVO. You can revoke this consent at any time with effect for the future. The lawfulness of the processing of your data until the revocation remains unaffected.
(3) To exercise the revocation, please use the information in section I. In doing so, please ensure that we are able to clearly identify you.
II. Passing on collected data to third parties
E. Data processing in the context of events
I. Types of data collected and admissibility criteria
(1) When you register for an event, we collect the following personal data or categories of personal data:
a) contact details of the participant
b) company details, if applicable
(2) Your data will be collected for the following purposes:
a) organisation and implementation of the respective event (Art. 6 para. 1 p. 1 lit. b GDPR);
b) issuing certificates of participation as well as duplicates thereof (Art. 6 para. 1 p. 1 lit. b GDPR);
c) to be able to carry out a statistical evaluation and processing of the events (Art. 6 para. 1 p. 1 lit. f GDPR). This is done to increase the efficiency of our events, among other things, by measuring customer satisfaction and for statistical processing of events.
(3) The personal data we collect will be stored for six months and then deleted, unless we are obliged to store it for a longer period in accordance with Art. 6 Para. 1 S. 1 lit. c GDPR due to storage and documentation obligations (from HGB, StGB or AO) or the participant has consented to storage beyond this in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR.
(4) We or a service provider commissioned by us shall collect and process personal data during the event in addition to the data specified in para. 1 in the form of photographs, film recordings and interviews of the participants, which we may disseminate and publicly display without any temporal, spatial or factual restrictions within the scope of our legitimate interest (Art. 6 para. 1 sentence 1 lit. f GDPR) in reporting on the event for journalistic purposes as well as appropriate advertising and marketing of our event activities for promotional purposes. All such personal data will be used for advertising purposes online and offline as well as in social networks. The participant waives his or her right to be named.
(5) The photographs, film recordings and interviews of the participants referred to in paragraph 4 are accessible worldwide upon publication on the Internet or in social networks. Further use and/or modification by third parties cannot be ruled out. A complete deletion of the published photos and video recordings on the internet cannot be guaranteed by the organiser, as e.g. other internet sites might have copied or changed the photos and videos. We cannot be held liable for the type and form of use by third parties, such as the downloading of photos and videos and their subsequent use and modification.
II. Disclosure of collected data to third parties
Insofar as this is necessary for the implementation of the event in accordance with Art. 6 Para. 1 Sentence 1 lit. b GDPR, personal data of the participant will be passed on to third parties. This includes in particular the passing on to trade fair and event companies, event cooperation partners, caterers, printers, advertising agencies, letter shops and stand builders. The data passed on may be used by the third parties exclusively for the purposes stated.
III. Consent to the processing of further personal data
Insofar as personal data is not collected and processed in accordance with section E.I., the participant expressly consents to the collection and processing of this data (Art. 6 para. 1 sentence 1 lit. a GDPR). These personal data are not marked as mandatory fields in the registration form and therefore do not have to be filled in.
F. Your rights
I. Right of revocation and objection
(1) Insofar as you have consented to data processing by us by means of a corresponding declaration (Art. 6 para. 1 lit. a GDPR) (see sections C and E.III.(1)), you may revoke your consent at any time for the future. The lawfulness of the data processing that took place on the basis of the consent is not affected by the revocation. Should a revocation take place before the start of the event, we cannot guarantee that your participation will be carried out properly.
(2) Insofar as data processing by us is based on the legal basis of Art. 6 para. 1 lit. f GDPR, the participant has the right to object to data processing by us at any time. We will then stop processing your data unless we can prove – in accordance with the legal requirements – compelling reasons worthy of protection for the further processing, which outweigh your rights.
II. Further data subject rights
In addition to the rights mentioned above, you have the right to
a) to request information about your personal data processed by us in accordance with Article 15 of the GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
b) in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or completion of your personal data stored by us;
c) pursuant to Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
d) in accordance with Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
e) pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller; and
f) complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose.
III. assertion of your rights
To assert your rights, please use the information in section I. Please ensure that we are able to clearly identify you.
G. Questions, suggestions and complaints
If you have any questions about our information on data protection and the processing of your personal data, or if you wish to exercise your rights under section F, you can contact our data protection officer directly (contact details in section A). Our data protection officer is available to you as a contact person.
H. Data security
The AKI uses technical and organisational security measures to protect your personal data against misuse, loss, destruction or against access by unauthorised persons. Our security measures correspond to the current state of the art.gegen den Zugriff unberechtigter Personen zu schützen. Unsere Sicherheitsmaßnahmen entsprechen dem aktuellen Stand der Technik.