privacy policy

Thank you for visiting our website and for your interest in data protection. Below you will find an overview of what personal data is and how it is processed. In addition, we will inform you about your rights and other topics relevant to data protection.

RESPONSIBLE OFFICE

TIMBA non-profit UG (limited liability)

Bebelallee 129

22297 Hamburg

Commercial register: HRB 173508

Registry court: Hamburg Local Court

Represented by:

Shadi Sasani Nejad

Contact

Phone: +49 176 45 999 347

E-Mail: info@timba-charity.com

Editorially responsible

Shadi Sasani Nejad

Bebelallee 129

22297 Hamburg

PERSONAL DATA

According to Art. 4 No. 1 DSGVO, personal data is any information relating to an identifiable natural person. This includes, for example, the name, address, customer number, telephone number and also the IP address. In summary, any information about natural persons that can directly or indirectly identify the person is to be considered personal data.

Accordingly, you will be informed in this way about the way in which personal data is processed on our website.

DATA COLLECTION AND PROCESSING

The purpose of processing and collecting data on our website is, in addition to ensuring security, to provide information about our services and general information about the company.

During processing, we pay particular attention to the necessity and proportionality in accordance with Art. 5 DSGVO. Furthermore, personal data is only processed in accordance with Art. 6 of the DSGVO.

The transmission of your data takes place on the one hand by yourself when you contact us via our contact forms to inform you about our range of products and services, job opportunities and other company-related matters.

In addition to the voluntary transmission, an automatic transmission of your data also takes place. For example, when you access our site, metadata such as IP address, browser type and version, operating system used, amount of data transferred, time and date of access and referring URL are transmitted to our web servers. The collection of the data is necessary for the provision of our websites and the storage of the data in log files is mandatory for the operation of our websites and is based on the legal basis of Art. 6 para. 1 lit. f DSGVO. The servers on which these websites are operated are located in Germany. We have concluded a corresponding order processing agreement with the provider of the servers.

The IP address is thereby anonymized by shortening it, so that an identification of individual users is not possible at any time. For statistical purposes and to analyze user behavior, your data is used in anonymized form. In this way, we ensure that our offers are always up-to-date and tailored to your needs.

Your personal data will be deleted or blocked as soon as the purpose for storing it no longer applies. However, the deletion or blocking of data is prevented if we, as the responsible body, have to comply with corresponding obligations to retain data under commercial or tax law. Such a case exists, for example, if we process accounting-relevant data and must store it for 10 years in accordance with Section 147 (4) of the German Fiscal Code (AO).

When using service providers, we ensure that your data is handled in accordance with the law by concluding a contract processing agreement (CPA) with our service provider based on Art. 28 DSGVO. Our service provider processes on our behalf in accordance with instructions. Thus, the responsibility for proper data processing remains with us.

USE OF COOKIES

Our website uses cookies. Cookies are small text files that are stored in the Internet browser or in the user’s terminal device. The browser is recognized by unique identification the next time the user visits the website. Thus, among other things, cookies allow us to infer visitor preferences with regard to the website, which in turn helps us to make our website more user-friendly.

The stored data may include language settings, log in information, search terms entered, frequency of page views as well as the use of website functions.  The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f DSGVO.

You can find more information and how to change your cookie settings on this page: Cookie settings.

E-MAIL and Newsletter

You have the option to contact us via the email address provided. In this case, the personal data of the user transmitted with the email will be stored. The processing of the information and request is in accordance with Art. 6 para. 1 lit. f DSGVO.

If you send us an email, this email will be stored on our servers. The transmitted data will be deleted by us as soon as the purpose of collection ceases to apply. Emails are generally stored on our servers for up to 10 years. If you wish an early deletion, please contact us. For more information about your rights, please refer to the section “Rights of the data subject”.

We would like to point out that unencrypted e-mail communication is not guaranteed to be protected from unauthorized third-party access. On the other hand, you can use our online forms to send us your request in encrypted form.

If you are interested in receiving current information and offers regarding our company and our range of products and services, you can subscribe to our free newsletter with a valid e-mail address.

In order to prevent misuse of our services or the email address used, we collect not only the email address but also your IP address and the date and time of registration. You will then receive a confirmation email with a corresponding activation link as part of a double opt-in process, where you give us your consent to receive our newsletter in accordance with Art. 6 Para.1 lit. a by activating this activation link with a click. In addition, you provide us with proof that you are the owner of the registered email address. Your data will be used exclusively for sending the newsletter and will not be passed on to third parties.

The subscription can be cancelled by you at any time. For this purpose, you will find a corresponding link in the lower section of each newsletter.

Application procedure

In the context of an online application, personal data about you will be requested and collected. The transmission is encrypted according to the state of the art. This data will only be used by the respective recruiters and exclusively within the scope of the application procedure and for the purpose of processing your application. The legal basis for the processing here is § 26 BDSG, Art. 6 para. 1 lit. b. DSGVO and Art. 6 para. 1 lit. f. DSGVO.

After completion of the application process, your documents will be deleted after a period of 4 months. An exception to this exists if we are subject to a legal obligation pursuant to Art. 6 para. 1 lit. c.

GOOGLE MAPS

To display a map of the site, this website uses Google Maps from Google Inc -1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This processing is carried out in accordance with Art. 6 1 lit. F DSGVO and represents a legitimate interest of the responsible parties.

For more information, please refer to the Google Maps Terms of Use at https://www.google.com/intl/de_de/help/terms_maps.html.

Due to Google’s participation in Privacy Shield, an adequate level of data protection can be assumed for the processing of personal data despite a transfer to a third country.

GOOGLE AJAX & JQUERY LIBRARIES

We use the so-called Ajax & jQuery technologies on our site in order to be able to call up corresponding program libraries from Google, so-called CDN (content delivery network). By using Ajax and jQuery, we hope to optimize the loading speed. This can happen, for example, if a user has previously used CDN on another Google page and the browser falls back on the cached copy. If this is not the case, the browser will download Google CDN and transmit data and browser information to Google for this purpose. We would like to inform you that this could involve a transfer to the USA.  You can find more information on the pages of the providers or at: https://developers.google.com/speed/libraries/#jquery.

GOOGLE WEB FONTS

External fonts, the so-called Google Fonts, are used on these web pages. Google Fonts enable us to display the fonts on our web pages in a uniform manner. When you call up the website, your browser loads the web fonts into your browser cache.  The integration of these web fonts takes place through a server call, usually a Google server in the USA. For this purpose, it is transmitted to the server which of our web pages or sub-pages you have visited.  As a result, Google receives the IP address of the browser of the visitor’s terminal device. This processing is carried out in accordance with Art. 6 1 lit. F DSGVO and represents a legitimate interest of the responsible parties. For more information, see Google’s privacy policy: https://developers.google.com/fonts/faq – https://policies.google.com/privacy?hl=de

GOOGLE RECAPTCHA

To ensure sufficient data security when transmitting your data through forms, we use Google reCAPTCHA from Google Inc. In this way, we ensure that the entries in our contact forms are made by a natural person and not by an automated program. This in turn prevents misuse of your data (for example SPAM or automated spying). For this purpose, reCAPTCHA analyzes – in the background – the behavior of the website visitor based on various characteristics. Among other things, the IP address, data about mouse movements and previously visited web pages are transmitted to Google. In order to maintain the quality and security of our website, the use of reCAPTCHA is a legitimate interest pursuant to Art. 6 (1) lit f DSGVO.

The use of Google services constitutes a transfer of personal data to a third country (USA). Under data protection law, when data is processed in a non-EU member state, it must be ensured that it is handled in accordance with data protection law. Since Google is on the Privacy Shield list, we can assume an adequate level of data protection when processing personal data.

For more information about Google Inc.’s privacy policy, please visit http://www.google.de/intl/de/privacy or https://www.google.com/intl/de/policies/privacy/.

INTEGRATION OF VIDEOS – YOUTUBE & Vimeo

In the interest of an appealing presentation of our online offers, we embed some videos of the Google-operated site Youtube, pursuant to Art 6 para 1 lit. f, in our websites and social media pages. When you play or visit these pages, your data is stored on the servers of Youtube, which is based in the USA (YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA).

Among other things, information about visited pages, IP address and other data about your browser type are passed on to Youtube. If you are logged into your Youtube account, your surfing behavior can be assigned to your personal profile. If you do not wish this, you should log out of your account beforehand.

You can find more information about the processing of user data in Youtube’s privacy policy. https://www.google.de/intl/de/policies/privacy/

DONATION

We rely on competent partners for the collection of donations. We have concluded a corresponding data protection agreement with our partner. A passing on of the data to third parties does not take place. The negotiation takes place so that the donation contract can come into effect. 

SECURITY

We have taken extensive technical and administrative safeguards to protect your personal data against loss, destruction, manipulation and unauthorized access. To protect your data, we have required our employees and service providers to comply with applicable data protection laws.

The security of your data is very important to us. Therefore, the data transmission on our site takes place without exception with appropriate encryption methods, recognizable by the address line of the browser “https:. This ensures that your data cannot be misused by third parties.

RIGHTS OF THE DATA SUBJECT

Within the framework of the applicable legal provisions, you have the right to obtain information about your personal data stored by us at any time. You also have the right to have your data corrected or deleted (Art. 16 & 17 DSGVO).

You also have the right to restrict processing (Art. 18 DSGVO) and the right to object (Art. 21 DSGVO). Furthermore, you will find further rights of data subjects under Chapter III of the GDPR, such as the right to data portability (Article 20 of the GDPR). For questions and further information about your rights, please contact our data protection officer (see below for contact details).

If you believe that the processing of personal data concerning you violates the GDPR, you have the right to lodge a complaint with a supervisory authority pursuant to Article 77 of the GDPR. You can submit your complaint, for example, to the Bavarian State Office for Data Protection Supervision: https://datenschutz-hamburg.de/

CHANGES TO OUR PRIVACY POLICY

We reserve the right to adapt and supplement this privacy policy if this should be necessary due to new technologies, current and changing legal requirements or other reasons.