The following overview summarizes the types of data processed and the purposes
of their processing and refers to the data subjects.
Types of data processed
Inventory data.
Payment data.
Contact data.
Content data.
Contract data.
Usage data.
Meta, communication and procedural data.
Image and recipient address data (postcard service).
Categories of data subjects.
Interested parties.
Communication partners.
Users.
Members.
Business and contractual partners.
Postcard recipients (third parties whose postal address a sender enters).
Purposes of processing.
Contact requests and communication.
Security measures.
Direct marketing.
Management and response to requests.
Feedback.
Provision of our online services and user experience.
Information technology infrastructure.
Error monitoring and stability of our online services.
Production and dispatch of physical postcards on behalf of donors.
Applicable legal basis
Below you will find an overview of the legal bases of the DSGVO, on the basis of
which we process personal data. Please note that in addition to the provisions
of the GDPR, national data protection regulations may apply in your or our
country of residence or domicile. Furthermore, should more specific legal bases
be relevant in individual cases, we will inform you of these in the data
protection declaration.
Consent (Art. 6(1) p. 1 lit. a) DSGVO) - The data subject has given
his/her consent to the processing of personal data concerning him/her for a
specific purpose or purposes.
Contractual performance and pre-contractual enquiries (Art. 6(1) p. 1 lit.
b) DSGVO) - Processing is necessary for the performance of a contract to
which the data subject is party or for the performance of pre-contractual
measures taken at the data subject’s request.
Legitimate interests (Art. 6(1) p. 1 lit. f) DSGVO) - Processing is
necessary for the purposes of the legitimate interests of the controller or a
third party, except where such interests are overridden by the interests or
fundamental rights and freedoms of the data subject which require the
protection of personal data.
Legal obligation (Art. 6(1) p. 1 lit. c) DSGVO) - Processing is necessary
for compliance with a legal obligation to which we are subject, in particular
bookkeeping and tax retention duties under §§ 257 HGB and 147 AO.
In addition to the data protection regulations of the GDPR, national regulations
on data protection apply in Germany. These include, in particular, the Federal
Data Protection Act (BDSG). In particular, the BDSG contains special regulations
on the right to information, the right to erasure, the right to object, the
processing of special categories of personal data, the processing for other
purposes and the transmission as well as automated decision-making in individual
cases including profiling. Furthermore, data protection laws of the individual
federal states may apply.
Security measures
We take appropriate technical and organisational measures to ensure a level of
protection appropriate to the risk in accordance with the legal requirements,
taking into account the state of the art, the implementation costs and the
nature, scope, circumstances and purposes of the processing as well as the
different probabilities of occurrence and the extent of the threat to the rights
and freedoms of natural persons.
The measures include, in particular, ensuring the confidentiality, integrity and
availability of data by controlling physical and electronic access to the data,
as well as access to, entry into, disclosure of, assurance of availability of
and segregation of the data. We also have procedures in place to ensure the
exercise of data subjects’ rights, the deletion of data and responses to data
compromise. Furthermore, we already take the protection of personal data into
account in the development or selection of hardware, software and procedures in
accordance with the principle of data protection, through technology design and
through data protection-friendly default settings.
TLS encryption (https): In order to protect your data transmitted via our online
offer, we use TLS encryption. You can recognise such encrypted connections by
the prefix https:// in the address bar of your browser.
Transfer of personal data
In the course of our processing of personal data, the data may be transferred to
or disclosed to other bodies, companies, legally independent organisational
units or persons. The recipients of this data may include, for example, service
providers commissioned with IT tasks or providers of services and content that
are integrated into a website. In such cases, we observe the legal requirements
and, in particular, conclude corresponding contracts or agreements that serve to
protect your data with the recipients of your data.
Data processing in third countries
If we process data in a third country (i.e., outside the European Union (EU),
the European Economic Area (EEA)) or the processing takes place in the context
of the use of third-party services or the disclosure or transfer of data to
other persons, bodies or companies, this is only done in accordance with the
legal requirements.
Subject to express consent or contractually or legally required transfer, we
only process or allow data to be processed in third countries with a recognised
level of data protection, contractual obligation through so-called standard
protection clauses of the EU Commission, in the presence of certifications or
binding internal data protection regulations (Art. 44 to 49 DSGVO, information
page of the EU Commission:
https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en
).
The following providers process data in the USA on the basis of the EU-US Data
Privacy Framework and/or the EU Standard Contractual Clauses: Netlify Inc.,
Stripe Inc., Cloudinary Ltd. (US operations), Functional Software Inc. (Sentry),
Rocket Science Group LLC (Mailchimp), PostHog Inc. (US entity; processing takes
place on the EU cluster), Google LLC (Drive, Sheets, YouTube fallback domains).
Deletion of data
The data processed by us will be deleted in accordance with the legal
requirements as soon as their consents permitted for processing are revoked or
other permissions cease to apply (e.g. if the purpose of processing this data
has ceased to apply or it is not required for the purpose). If the data are not
deleted because they are required for other and legally permissible purposes,
their processing is limited to these purposes. I.e. the data is blocked and not
processed for other purposes. This applies, for example, to data that must be
retained for reasons of commercial or tax law or whose storage is necessary for
the assertion, exercise or defence of legal claims or for the protection of the
rights of another natural or legal person.
Retention periods we apply:
Donation and membership accounting records (incl. names, addresses, amounts,
bank/Stripe payment references): 10 years from the end of the calendar year in
which the transaction occurred (§ 257(4) HGB, § 147(3) AO).
Server log files: max. 30 days, then deleted or anonymised.
Newsletter unsubscribe records (email + timestamp): up to 3 years on the basis
of our legitimate interest in proving prior consent.
Postcard recipient data: deleted from our systems no later than 90 days after
the postcard has been printed and dispatched. Print-One and Google Drive
retain copies according to their own retention rules.
Contact form messages: kept for as long as needed to respond and resolve the
matter, typically deleted within 12 months unless ongoing communication
requires longer retention.
Sentry error events: 90 days (default platform retention).
PostHog analytics events: 12 months.
Performance of duties according to statutes or rules of procedure
We process the data of our members, supporters, interested parties, business
partners or other persons (collectively “data subjects”) if we have a membership
or other business relationship with them and perform our tasks and are
recipients of services and benefits. In addition, we process the data of data
subjects on the basis of our legitimate interests, e.g. when it concerns
administrative tasks or public relations work.
The data processed in this context, the type, scope and purpose and the
necessity of its processing are determined by the underlying membership or
contractual relationship, which also determines the necessity of any data
disclosures (we also refer to required data).
We delete data that is no longer required to fulfil our statutory and business
purposes. This is determined according to the respective tasks and contractual
relationships. We retain the data for as long as they may be relevant for the
processing of the business, as well as with regard to any warranty or liability
obligations on the basis of our legitimate interest in their regulation. The
necessity of retaining the data is reviewed regularly; in all other respects,
the statutory retention obligations apply.
Types of data processed: Inventory data (e.g. names, addresses); payment
data (e.g. bank details, invoices, payment history); contact data (e.g.
e-mail, telephone numbers); contract data (e.g. subject matter of contract,
term, customer category).
Data subjects: Users (e.g. website visitors, users of online services);
members; business and contractual partners.
Purposes of processing: Providing contractual services and customer
service; contact requests and communication; managing and responding to
requests.
Legal basis: Contract performance and pre-contractual enquiries (Art. 6
para. 1 p. 1 lit. b) DSGVO); Legitimate interests (Art. 6 para. 1 p. 1 lit. f)
DSGVO); Legal obligation (Art. 6 para. 1 p. 1 lit. c) DSGVO) for accounting
retention.
Payment procedure
Within the framework of contractual and other legal relationships, due to legal
obligations or otherwise on the basis of our legitimate interests, we offer data
subjects efficient and secure payment options and use other service providers
for this purpose in addition to banks and credit institutions (collectively
“payment service providers”).
The data processed by the payment service providers include inventory data, such
as the name and address, bank data, such as account numbers or credit card
numbers, passwords, TANs and checksums, as well as the contract, sum and
recipient-related details. The information is required to carry out the
transactions. However, the data entered is only processed by the payment service
providers and stored with them. I.e. we do not receive any account or credit
card related information, but only information with confirmation or negative
information of the payment. Under certain circumstances, the payment service
providers may transmit the data to credit agencies. The purpose of this
transmission is to check identity and creditworthiness. Please refer to the
general terms and conditions and the data protection information of the payment
service providers.
The terms and conditions and data protection notices of the respective payment
service providers apply to the payment transactions and can be accessed within
the respective websites or transaction applications. We also refer to these for
further information and the assertion of revocation, information and other data
subject rights.
Types of data processed: Inventory data (e.g. names, addresses); payment
data (e.g. bank details, invoices, payment history); contract data (e.g.
subject matter of contract, term, customer category); usage data (e.g.
websites visited, interest in content, access times); meta, communication and
procedural data (e.g. IP addresses, time data, identification numbers, consent
status).
People concerned: Clients; Interested parties.
Purposes of processing: Provision of contractual services and customer
service.
Legal basis: Contract performance and pre-contractual enquiries (Art. 6
para. 1 p. 1 lit. b) DSGVO).
Further guidance on processing operations, procedures and services:
Stripe: Payment services (technical connection of online payment methods);
Service provider: Stripe Payments Europe, Ltd., 1 Grand Canal Street
Lower, Grand Canal Dock, Dublin, Ireland (controller for EU customers, with
onward transfer to Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103,
USA); Legal basis: Contract performance and pre-contractual requests (Art.
6 para. 1 p. 1 lit. b) DSGVO); Website:https://stripe.com
; Data protection statement:https://stripe.com/de/privacy
.
Provision of the online offer and web hosting
We process users’ data in order to provide them with our online services. For
this purpose, we process the user’s IP address, which is necessary to transmit
the content and functions of our online services to the user’s browser or
terminal device.
Types of data processed: Usage data (e.g. web pages visited, interest in
content, access times); meta, communication and procedural data (e.g. IP
addresses, time data, identification numbers, consent status).
People concerned: Users (e.g. website visitors, users of online services).
Purposes of processing: Provision of our online offer and
user-friendliness; Information technology infrastructure (operation and
provision of information systems and technical equipment (computers, servers,
etc.).); Security measures.
Further guidance on processing operations, procedures and services:
For the provision of our online offer, we use storage space, computing
capacity, serverless functions and form-submission infrastructure that we rent
from a server provider (also called “web hoster”). Netlify: Service
provider is the American company Netlify Inc., 512 2nd Street, Fl. 2, San
Francisco, CA 94107, USA. Netlify hosts the static site, executes our
serverless API functions, and receives submissions from our contact form via
Netlify Forms. Data protection statement:https://www.netlify.com/privacy/Legal
basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).
The access to our online offer is logged in the form of so-called “server log
files”. The server log files may include the address and name of the web pages
and files accessed, the date and time of access, the volume of data
transferred, notification of successful access, browser type and version, the
user’s operating system, referrer URL (the previously visited page) and, as a
rule, IP addresses and the requesting provider. The server log files may be
used on the one hand for security purposes, e.g. to avoid overloading the
servers (especially in the case of abusive attacks, so-called DDoS attacks)
and on the other hand to ensure the utilisation of the servers and their
stability; Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f)
DSGVO); Deletion of data: Log file information is stored for a maximum of
30 days and then deleted or anonymised. Data whose further storage is
necessary for evidentiary purposes is exempt from deletion until the final
clarification of the respective incident.
Image, video and audio delivery (CDN)
We deliver images, videos and audio files through a content delivery network
(CDN). When you access a page on our site, your browser requests the relevant
media files directly from the CDN’s servers. To deliver the file, the CDN
processes your IP address, the requested URL, the time of access and technical
headers your browser sends (user-agent, accept-language, etc.). This is
technically necessary for the display of our pages.
Types of data processed: Usage data; meta, communication and procedural
data (e.g. IP addresses, time data, request headers).
People concerned: Users (e.g. website visitors).
Purposes of processing: Provision of our online offer; performance and
bandwidth optimisation; security measures.
Further guidance on processing operations, procedures and services:
Cloudinary: Image and video CDN, optimisation and transformation;
Service provider: Cloudinary Ltd., 3400 Central Expressway, Suite 110,
Santa Clara, CA 95051, USA, with EU subsidiary Cloudinary Ltd., Tel Aviv,
Israel (Israel is recognised by the EU Commission as providing an adequate
level of data protection); Legal basis: Legitimate interests (Art. 6 para.
1 p. 1 lit. f) DSGVO); Website:https://cloudinary.com
; Data protection
statement:https://cloudinary.com/privacy
.
Error monitoring
In our serverless backend functions (donation flow, newsletter signup, postcard
service, contact form), we use an error-monitoring service to capture unexpected
errors, stack traces and the request context (e.g. function name, HTTP method,
truncated request body) so that we can identify and fix problems quickly. Where
an error event relates to an identified user (e.g. a donor whose checkout
failed), we may attach an internal identifier or e-mail address to the event in
order to follow up.
Types of data processed: Meta, communication and procedural data (e.g. IP
addresses, time data); content data (request payload excerpts); occasionally
contact data (e-mail) for identified failures.
People concerned: Users; donors; members.
Purposes of processing: Security measures; stability of our online
services; debugging.
Further guidance on processing operations, procedures and services:
Sentry: Error and performance monitoring; Service provider: Functional
Software, Inc. dba Sentry, 45 Fremont Street, 8th Floor, San Francisco, CA
94105, USA; Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f)
DSGVO); Website:https://sentry.io
; Data protection
statement:https://sentry.io/privacy/
;
Standard contractual clauses are concluded as part of the data processing
addendum.
Contact and enquiry management
When contacting us (e.g. by post, contact form, email, telephone or via social
media) as well as in the context of existing user and business relationships,
the information of the enquiring persons is processed to the extent necessary to
answer the contact enquiries and any measures requested.
Our contact form is provided by Netlify Forms. When you submit the form, your
entries (name, email address, message and any further fields), your IP address
and the submission timestamp are transmitted to Netlify and made available to us
in the Netlify dashboard. We are notified by e-mail of each submission.
Types of data processed: Contact data (e.g. e-mail, telephone numbers);
content data (e.g. entries in online forms); usage data (e.g. websites
visited, interest in content, access times); meta, communication and
procedural data (e.g. IP addresses, time data, identification numbers, consent
status).
People concerned: Communication partner.
Purposes of processing: Contact requests and communication; managing and
responding to requests; feedback (e.g. collecting feedback via online form);
providing our online offer and user experience.
Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO);
contract performance and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit.
b) DSGVO).
Further guidance on processing operations, procedures and services:
Netlify Forms: Form submission backend; Service provider: Netlify
Inc., 512 2nd Street, Fl. 2, San Francisco, CA 94107, USA. Data protection
statement:https://www.netlify.com/privacy/Legal
basis: Contract fulfilment and pre-contractual requests (Art. 6 para. 1 p. 1
lit. b) DSGVO), Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).
Postcard service (gift donations)
In our gift-donation flow you can have us send a physical postcard to a third
party (e.g. the person you are gifting the donation to). To do this you give us
the recipient’s name and postal address, optionally a personal message, and your
own name as sender. We forward this information to our postcard-printing
provider, who prints and dispatches the postcard via the regular postal system.
If you upload a photo, the photo is stored in our cloud drive provider so that
we can review and archive the artwork.
Because the recipient is typically a third party who has not been in contact
with us themselves, we rely on your assurance that you are entitled to provide
the recipient’s address for this purpose, and we limit our processing of the
recipient’s data strictly to producing and dispatching the postcard.
Types of data processed: Inventory data (sender name, recipient name);
contact data (recipient postal address); content data (personal message,
optionally uploaded photo); meta, communication and procedural data (IP
address of submitter, timestamps).
People concerned: Donors; postcard recipients (third parties).
Purposes of processing: Production and dispatch of physical postcards on
behalf of donors; management of gift donations.
Legal basis: Contract performance and pre-contractual enquiries (Art. 6
para. 1 p. 1 lit. b) DSGVO) toward the donor; Legitimate interests (Art. 6
para. 1 p. 1 lit. f) DSGVO) toward the recipient, namely the donor’s
legitimate interest in having a personalised postcard delivered, balanced
against the limited and expected nature of the data flow.
Further guidance on processing operations, procedures and services:
Print.one: Postcard printing and dispatch; Service provider: Print.one
B.V., De Witbogt 2, 5652 AG Eindhoven, Netherlands; Legal basis: Contract
performance (Art. 6 para. 1 p. 1 lit. b) DSGVO); Website:https://print.one
; Data protection statement:https://www.print.one/en/privacy
.
Google Drive (for postcard photo uploads): Cloud file storage; Service
provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4,
Ireland (controller for EEA), with onward transfer to Google LLC, 1600
Amphitheatre Parkway, Mountain View, CA 94043, USA; Legal basis:
Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO); Website:https://drive.google.com
; Data protection
statement:https://policies.google.com/privacy
.
Campaign data
We maintain the list of donation campaigns and campaign items in a Google Sheets
document. This document contains the campaign descriptions and unit prices
only - it does not contain any visitor or donor personal data. When a page is
built or updated, our backend reads this sheet via the Google Sheets API. We
mention this here for transparency about our third-country processing
relationships.
Service provider: Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland, with onward transfer to Google LLC, USA; Legal basis:
Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO); Data protection
statement:https://policies.google.com/privacy
.
Newsletter and electronic notifications
We send newsletters, e-mails and other electronic notifications (hereinafter
“newsletter”) only with the consent of the recipients or a legal permission. If
the contents of a newsletter are specifically described in the course of
registration, they are decisive for the consent of the user. Otherwise, our
newsletters contain information about our services and us.
To subscribe to our newsletters, it is generally sufficient to provide your
e-mail address. However, we may ask you to provide a name for the purpose of a
personal address in the newsletter, or further details if these are required for
the purposes of the newsletter.
Double opt-in procedure: Registration for our newsletter is always carried
out in a so-called double opt-in procedure. This means that after registration
you will receive an e-mail asking you to confirm your registration. This
confirmation is necessary so that no one can register with other people’s email
addresses. The registrations for the newsletter are logged in order to be able
to prove the registration process in accordance with the legal requirements.
This includes the storage of the registration and confirmation time as well as
the IP address. Changes to your data stored with the dispatch service provider
are also logged.
Deletion and restriction of processing: We may store unsubscribed email
addresses for up to three years on the basis of our legitimate interests before
deleting them in order to be able to prove consent formerly given. The
processing of this data is limited to the purpose of a possible defence against
claims. An individual request for deletion is possible at any time, provided
that the former existence of consent is confirmed at the same time. In the case
of obligations to permanently observe objections, we reserve the right to store
the email address in a block list (so-called “block list”) for this purpose
alone.
The logging of the registration process is carried out on the basis of our
legitimate interests for the purpose of proving that it has been carried out
properly. If we commission a service provider to send e-mails, this is done on
the basis of our legitimate interests in an efficient and secure sending system.
Contents:
Information about us, our services, promotions and offers.
Types of data processed: Inventory data (e.g. names, addresses); contact
data (e.g. e-mail, telephone numbers); meta, communication and procedural data
(e.g. IP addresses, time data, identification numbers, consent status); usage
data (e.g. websites visited, interest in content, access times).
People concerned: Communication partner.
Purposes of processing: Direct marketing (e.g. by e-mail or post).
Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a) DSGVO).
You can cancel the receipt of our newsletter at any time, i.e. revoke your
consent or object to further receipt. You will find a link to cancel the
newsletter either at the end of each newsletter or you can use one of the
contact options given above, preferably e-mail, for this purpose.
Further guidance on processing operations, procedures and services:
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that
is retrieved from our server when the newsletter is opened or, if we use a
delivery service provider, from their server. Within the scope of this
retrieval, technical information such as information on the browser and your
system, as well as your IP address and the time of the retrieval, are
initially collected. This information is used for the technical improvement of
our newsletter on the basis of the technical data or the target groups and
their reading behaviour on the basis of their retrieval locations (which can
be determined with the help of the IP address) or the access times. This
analysis also includes determining whether the newsletters are opened, when
they are opened and which links are clicked. This information is assigned to
the individual newsletter recipients and stored in their profiles until they
are deleted. The analyses help us to recognise the reading habits of our users
and to adapt our content to them or to send different content according to the
interests of our users. The measurement of opening rates and click rates as
well as storage of the measurement results in the profiles of the users;
Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a) DSGVO).
Mailchimp: Email sending and email marketing platform; Service
provider: Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000,
Atlanta, GA 30308, USA; Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a)
DSGVO); Website:https://mailchimp.com
; Data
protection statement:https://mailchimp.com/legal/
; Contractual
processing agreement:https://mailchimp.com/legal/
; Standard
contractual clauses (guaranteeing the level of data protection in the case of
processing in third countries): Inclusion in the contractual processing
agreement; Further information: Special security measures:
https://mailchimp.com/help/Mailchimp-european-data-transfers/
.
Plugins and embedded features and content
We integrate functional and content elements into our online offer that are
obtained from the servers of their respective providers (hereinafter referred to
as “third-party providers”). These can be, for example, graphics, videos or city
maps (hereinafter uniformly referred to as “content”).
The integration always requires that the third-party providers of this content
process the IP address of the user, as without the IP address they would not be
able to send the content to their browser. The IP address is thus required for
the display of this content or function. We endeavour to only use content whose
respective providers only use the IP address to deliver the content. Third-party
providers may also use so-called pixel tags (invisible graphics, also known as
“web beacons”) for statistical or marketing purposes. The “pixel tags” can be
used to analyse information such as visitor traffic on the pages of this
website. The pseudonymous information may also be stored in cookies on the
user’s device and may contain, among other things, technical information about
the browser and operating system, referring websites, time of visit and other
information about the use of our online offering, as well as being linked to
such information from other sources.
We use a click-to-play preview for embedded YouTube videos: no data is
transmitted to YouTube until you actively click on the preview image. Embeds are
then served from the privacy-enhanced domain youtube-nocookie.com, which only
sets cookies after the video is played.
Types of data processed: Usage data (e.g. websites visited, interest in
content, access times); meta, communication and procedural data (e.g. IP
addresses, time data, identification numbers, consent status); inventory data
(e.g. names, addresses); contact data (e.g. e-mail, telephone numbers);
content data (e.g. entries in online forms).
People concerned: Users (e.g. website visitors, users of online services).
Purposes of processing: Provision of our online offer and
user-friendliness.
Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a) DSGVO) for the loading
of embedded third-party content.
Further guidance on processing operations, procedures and services:
YouTube videos (privacy-enhanced mode): Video content, served from
youtube-nocookie.com after click-to-play; Service provider: Google
Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal
basis: Consent (Art. 6 para. 1 p. 1 lit. a) DSGVO); Website:https://www.youtube.com
; Data protection
statement:https://policies.google.com/privacy
;
Opt-out:https://adssettings.google.com/authenticated
.
Analytics tools
We use PostHog to understand how our website is used and to improve it. PostHog
is offered by PostHog Inc., 2261 Market Street #4008, San Francisco, CA 94114,
USA. Although the corporate entity is in the USA, our installation is configured
to send and store all event data on PostHog’s EU cluster (eu.i.posthog.com,
hosted in Frankfurt, Germany). Requests from our website are routed to PostHog
through a reverse proxy on our own domain (/g/...).
Our PostHog setup operates in one of three states:
Consent given: We capture pseudonymous usage events (page views, button
clicks, custom events) together with a session identifier stored in a
first-party cookie (ph_*). Where you identify yourself by completing a
donation or signing up to the newsletter, we may link your subsequent events
to that identifier so we can understand the donor journey.
Cookieless mode (consent declined or not yet given): Events are sent
without persistent cookies; PostHog derives a short-lived, rotating identifier
from request-level signals. No cross-session profile is built.
Capturing disabled: If you decline analytics, no events are sent at all.
You can change your choice at any time via the “Reset cookie preferences” button
at the top of this page.
Types of data processed: Usage data (page views, events, clicks); meta,
communication and procedural data (IP address - truncated before storage on
the EU cluster, user-agent, referrer, screen size, session identifier).
People concerned: Users (website visitors).
Purposes of processing: Analysis of website use; product improvement;
feature flagging.
Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a) DSGVO) for analytics
with persistent identifier; Legitimate interests (Art. 6 para. 1 p. 1 lit. f)
DSGVO) for the cookieless aggregate mode.
Service provider: PostHog Inc., USA, processing on EU infrastructure
(Hetzner, Frankfurt); Data protection statement:https://posthog.com/privacy
; Data processing
addendum and standard contractual clauses are concluded.
Amendment and update of the privacy policy
We ask you to regularly inform yourself about the content of our data protection
declaration. We adapt the data protection declaration as soon as the changes in
the data processing carried out by us make this necessary. We will inform you as
soon as the changes require an act of cooperation on your part (e.g. consent) or
other individual notification.
Where we provide addresses and contact details of companies and organisations in
this privacy statement, please note that the addresses may change over time and
please check the details before contacting us.
Rights of the data subjects
As a data subject, you are entitled to various rights under the GDPR, which
arise in particular from Art. 15 to 21 GDPR:
You have the right to object at any time, on grounds relating to your
particular situation, to the processing of personal data concerning you which
is carried out on the basis of Article 6(1)(e) or (f) of the GDPR; this also
applies to profiling based on these provisions. If the personal data
concerning you are processed for the purposes of direct marketing, you have
the right to object at any time to the processing of personal data concerning
you for the purposes of such marketing; this also applies to profiling insofar
as it is related to such direct marketing.
Right of withdrawal of consent: You have the right to withdraw consent at
any time.
Right of access: You have the right to request confirmation as to whether
data in question is being processed and to be informed of this data and to
receive further information and a copy of the data in accordance with the
legal requirements.
Right to rectification: In accordance with the law, you have the right to
request that data concerning you be completed or that inaccurate data
concerning you be rectified.
Right to erasure and restriction of processing: You have the right, in
accordance with the law, to request that data relating to you be erased
without delay or, alternatively, to request restriction of the processing of
the data in accordance with the law.
Right to data portability: You have the right to receive data relating to
you that you have provided to us in a structured, common and machine-readable
format, or to request that it be transferred to another controller, in
accordance with the law.
Without prejudice to any other administrative or judicial remedy, you have the
right to lodge a complaint with a supervisory authority, in particular in the
Member State of your habitual residence, place of work or place of the alleged
infringement, if you consider that the processing of personal data relating to
you infringes the provisions of the GDPR. For Pamoja Africa e. V., the
competent supervisory authority is the State Commissioner for Data Protection
of Baden-Württemberg
(https://www.baden-wuerttemberg.datenschutz.de
).