Datenschutz
The Diocese of Aachen takes the protection of personal data very seriously and treats your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy. Personal data is only collected on the website of the Diocese of Aachen to the extent technically necessary. Under no circumstances will the collected data be sold or passed on to third parties for other reasons.
In the Diocese of Aachen, as in all German (arch)dioceses, the collection, processing, and use of personal data are governed by the provisions of the Church Data Protection Act (KDG, found at the end of the text) as well as other applicable church and state data protection regulations.
Personal data is information that can be used to determine the identity of a user. This includes information such as a real name, address, postal address, or telephone number. Information that cannot be directly associated with the real identity (such as favorite websites or the number of users of a site) is not included.
The following explanations provide an overview of what kind of data is collected for what purpose.
Data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data with which you can be personally identified. Detailed information on data protection can be found in our privacy policy listed below this text.
Data collection on our website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find the contact details of the website operator in the imprint of this website.
How do we collect your data?
Your data is collected in part by you providing it to us. This can be, for example, data that you enter into a contact form.
Other data is automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Some of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking, or deletion of this data. For this purpose and for further questions regarding data protection, you can contact us at any time.
Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Analysis tools and third-party tools
When you visit our website, your surfing behavior may be statistically evaluated. This is mainly done with cookies and with so-called analysis programs. The analysis of your surfing behavior is usually anonymous; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information on this can be found in the following privacy policy.
You can object to this analysis. We will inform you about the possibilities to object in this privacy policy.
General information and mandatory information
Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the Internet (e.g., when communicating by e-mail) may have security vulnerabilities. Complete protection of data from access by third parties is not possible.
Responsible party
The responsible party for data processing on this website is:
Diocese of Aachen Public Corporation Represented by: General Vicar Dr. Andreas Frick Klosterplatz 7 52062 Aachen
Telephone: +49 241 / 452-0 Email: kommunikation@bistum-aachen.de
Revocation of Your Consent for Data Processing
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. An informal notification by email to us is sufficient for this purpose. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
Right to Lodge a Complaint with the Supervisory Authority
In the event of violations of data protection law, the data subject has the right to lodge a complaint with the supervisory authority. The supervisory authority responsible for us in data protection matters is:
Catholic Data Protection Center Brackeler Hellweg 144 44309 Dortmund Germany
Website: https://www.katholisches-datenschutzzentrum.de
Represented by:
The Catholic Data Protection Center is a public corporation and is represented by the Diocesan Data Protection Officer appointed by the (arch)bishops of the member dioceses (Cologne, Paderborn, Aachen, Essen, Münster). The Diocesan Data Protection Officer is Steffen Pau (contact via the above or below details).
Contact:
Telephone: +49 231 / 13 89 85 – 0 Fax: +49 231 / 13 89 85 – 22 Email: info@kdsz.de
Right to Data Portability
You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a standard, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent technically feasible.
SSL Encryption
For security reasons and to protect the transmission of confidential content, such as event registrations or inquiries you send to us as the site operator, all pages within this platform use SSL encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
When SSL encryption is activated, the data you transmit to us cannot be read by third parties.
Information, Restriction of Processing, Deletion
You have the right, within the framework of the applicable legal provisions, to free information about your stored personal data, its origin and recipient, and the purpose of data processing at any time, as well as a right to correction, blocking, or deletion of this data. For this purpose and for further questions regarding personal data, you can contact us at any time using the address provided in the imprint.
Objection to Promotional Emails
The use of contact data published within the framework of the imprint obligation for sending unsolicited advertising and informational materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of promotional information, such as spam emails.
Data Protection Officer
Legally mandated data protection officer
Data Protection Officer for the Diocese of Aachen:
Audit firm CURACON GmbH Am Mittelhafen 14 48155 Münster Tel: +49 251/92208247 Email: datenschutz@bistum-aachen.de
Data Protection Officer for the parishes and parish associations in the Diocese of Aachen:
Ms. Christiane Banse Klosterplatz 7 52062 Aachen Tel: +49 241 452-260 Email: christiane.banse@bistum-aachen.de
Data Collection on Our Website
Cookies
Our website uses so-called cookies. Cookies do not harm your computer and do not contain viruses. They are used to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called "session cookies". They are automatically deleted after your visit or 24 hours after leaving the site. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser on your next visit. This includes, in particular, cookies used with Matomo (see below).
You can configure your browser settings to notify you when cookies are set, allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
Cookies that are necessary for the execution of the electronic communication process or for providing certain functions you desire (e.g., event registration) are stored based on Art. 6 para. 1 lit. f GDPR or § 6 para. 1 lit g KDG. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. This also includes a cookie that stores your consent and cookie settings for data collection on this website. If other cookies (e.g., cookies for analyzing your browsing behavior) are stored, they will be separately addressed in this privacy policy.
Cookie Settings / Privacy Settings Options
Select "Accept All" to activate all functions of this website using special cookies. By doing so, you activate cookies to load external content (such as videos from YouTube) and cookies for visitor measurement.
Select "Save" without checking the "External Content" and "Statistics" options if you only want to use the basic functions of this website. Cookies to load external content and for visitor measurement remain deactivated.
Necessary
External Content
Statistics
Server Log Files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:
Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
These data will not be merged with other data sources.
The basis for data processing is Art. 6 para. 1 lit. f GDPR or § 6 para. 1 lit g KDG, which permits the processing of data in the legitimate interest. Our legitimate interest lies in the fact that the processing and temporary storage of data by the system are necessary to enable the correct delivery of the web pages to the user's devices and to ensure the security of our information technology systems.
The data specified above are stored in log files for a period of 365 days and then deleted.
Email Contact
You have the option to contact us via the email addresses provided. In this case, we store the personal data transmitted with your email (your email address, your name, the date and time of contact, and any other personal data provided in your email.) The data is used exclusively to process your request.
The legal basis for the described data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR or § 6 para. 1 lit. b KDG. If the email contact is aimed at concluding a contract, additional legal basis for processing is Art. 6 para. 1 lit. b GDPR or § 6 para. 1 lit. c KDG.
The data you provide via email will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after completing the processing of your request). Mandatory legal provisions, especially retention periods, remain unaffected.
Plugins and Tools
OpenStreetMap
We use the map service provided by OpenStreetMap (OSM). The provider is the Open-Street-Map Foundation (OSMF), 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom. When you visit a website that includes OpenStreetMap, your IP address and other information about your behavior on this website may be transmitted to the OSMF. OpenStreetMap may store cookies in your browser or use similar recognition technologies for this purpose. Furthermore, your location may be recorded if you have allowed this in your device settings, e.g., on your mobile phone. The provider of this site has no influence on this data transmission. For details, please refer to the OpenStreetMap privacy policy at the following link: https://wiki.osmfoundation.org/wiki/Privacy_Policy.
The use of OpenStreetMap serves the purpose of presenting our online offerings in an appealing manner and facilitating the easy location of the places indicated on the website. This is based on § 6 para. 1 lit. g) KDG. To display the maps, consent is requested, and further data processing is carried out based on § 6 para. 1 lit. b) KDG.; the consent can be revoked at any time.
To display OpenStreetMap maps, we use the service maptiler: https://maptiler.de/.
You can object to the use of external content, such as OpenStreetMap. Adjust your privacy settings accordingly, as described above.
We do not store any personal data when displaying the map service. The data processing by Open Street Maps is subject to Open Street Maps' privacy policy.
Google Web Fonts
The Google fonts used are locally integrated on the server https://bistum-aachen.de.
Matomo (formerly Piwik)
This website uses the open-source web analytics service Matomo, which is hosted on its own servers. Matomo uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your website usage. The information generated by the cookie about your use of this website is stored on our server. The IP address is anonymized before storage.
Matomo cookies remain on your device for 30 minutes, 6 months, or 12 months unless you actively delete them.
Processing the personal data of users allows us to analyze the browsing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. This helps us to continuously improve our website and its user-friendliness. In these purposes lies our legitimate interest in processing the data according to Art. 6 para. 1 lit. f GDPR or § 6 para. 1 lit. g KDG. By anonymizing the IP address, the users' interest in protecting their personal data is adequately taken into account.
The information generated by the cookie about the use of this website will not be disclosed to third parties. You can prevent the storage of cookies by adjusting your browser settings accordingly; however, please note that if you do this, you may not be able to use all the features of this website to their full extent.
If you do not agree with the storage and use of your data, you can deactivate the storage and use. To do this, use the switch in the section "Cookie Settings / Privacy Settings Options" (slightly above in this privacy policy).
In this case, an opt-out cookie will be stored in your browser to prevent Matomo from storing usage data. If you delete your cookies, this will also delete the Matomo opt-out cookie. Disabling statistics must be reactivated when revisiting our site.
Regardless, there may be settings in your browser that prevent you from being tracked as a visitor to this website.
Links
On our website, we provide links to information and websites of other providers, such as press reports or other websites. These links are marked as such. When you click on them, you leave our website. The respective responsible party of the linked page is responsible for data processing.
Rights of Data Subjects under KDG
If your personal data is processed by us, you are a data subject within the meaning of KDG and you have the following rights against us as the data controller:
Right to information
You have the right to request confirmation from the data controller of whether personal data concerning you is being processed by us.
If such processing is taking place, you can request information from the data controller about this information.
Right to rectification
You have the right to request the data controller to correct and/or complete any personal data concerning you if it is incorrect or incomplete. The data controller must make the correction without delay.
Right to restriction of processing
Under the legally defined conditions, you can request the restriction of processing of personal data concerning you:
If the processing of the personal data concerning you has been restricted, these data may – apart from their storage – only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If the restriction of processing has been restricted under the above conditions, you will be informed by the data controller before the restriction is lifted.
Right to erasure
You can request the data controller to erase personal data concerning you without delay, and the data controller is obliged to erase this data without delay if one of the legally regulated reasons applies.
If the data controller has made the personal data concerning you public and is obliged to erase it in accordance with para. 1 KDG, the data controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform other controllers who process the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
If erasure is not possible or only possible with disproportionate effort due to the special nature of storage, the right to erasure shall be replaced by the right to restriction of processing pursuant to § 20 KDG. This does not apply if the personal data have been processed unlawfully. Blocking and the entry of a blocking notice shall also be considered as restriction of processing.
Right to notification
If you have exercised your right to rectify, erase or restrict the processing vis-à-vis the data controller, the data controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed by the data controller about these recipients.
Right to data portability
You have the right to receive the personal data concerning you that you have provided to the data controller in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another data controller without hindrance from the data controller to whom the personal data were provided.
In exercising this right, you also have the right to have the personal data concerning you transmitted directly from one data controller to another, where technically feasible. This shall not adversely affect the freedoms and rights of others.
The right to data portability shall not apply to processing of personal data that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller.
Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you that is based on § 6 para. 1 lit. f or g KDG; this also applies to profiling based on these provisions.
The data controller shall no longer process the personal data concerning you unless the data controller can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
If the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.
Right to lodge a complaint with the supervisory authority
You also have the right to lodge a complaint with the supervisory authority in accordance with § 48 KDG. The competent data protection authority for the responsible body has been mentioned above.
Ecclesiastical Data Protection according to KDG
Act on Ecclesiastical Data Protection (KDG-VDD) dated 23.04.2018
⬇️ KDG-VGG-Ecclesiastical-Data-Protection.pdf, 264.1 KB09.05.18