The Stiftung Preußischer Kulturbesitz (Prussian Cultural Heritage Foundation) is committed to handling your personal data responsibly. All data processing procedures follow the guiding principles of integrity, confidentiality, earmarked usage and data economy. In the following, we want to explain the most important facts regarding data protection in the usage of SPKtrum.
Although no registration is required to view and download the content published on SPKtrum, personal data is nevertheless stored with the intention of obtaining statistical information on the frequency of access to individual contributions. For this purpose, SPKtrum uses the open source tool electronic Publications Statistics (ePuSta), which is operated by the Verbundzentrale des Gemeinsamen Bibliotheksverbunds (Platz der Göttinger Sieben 1, D-37073 Göttingen, email@example.com).
To use SPKtrum as a publication platform for Open-Access-Publishing of multimedia content related to the SPK, a personal registration at SPKtrum is needed. According to Art. 4 Nr. 11 of the EU General Data Protection Regulation, this registration is understood as consent to the processing of relevant personal data. For registration with SPKtrum, it is necessary to provide data on personal and family name of the author or another person entrusted with the publication (secretary etc.) as well as an valid email address. In addition, servers collect and protocol date and time of the last login of the respective account. Only the following persons have access to personal data in the server-based user accounts: Persons responsible for the fulfillment of the commissioned data processing and members of the SPKtrum team who have administrator rights. Emails that are sent in the course of the initial registration with SPKtrum are, on the other hand, visible to all members of the SPKtrum team. Since in all likelihood no serious risk to the rights and freedom of concerned persons is to be expected, a data protection impact assessment is not necessary.
In addition, for the purpose of a public domain publication, descriptive metadata relating to the form and the content are requested and, where appropriate, can be linked with the data in the Gemeinsamen Normdatei of Deutsche Nationalbibliothek. All information to be provided in this context is voluntary and is in agreement with the purpose of making research known to the public, as is the purpose of SPKtrum Open Access Repository. The collection of other personal data during the registration process (IP address, date and time of registration) serves to prevent misuse of the services.
The legal basis for processing login-data is Art. 6 para. 1 lit. e DSGVO in conjunction with § 3 BDSG. The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this, the IP address of the user must be saved for the duration of the session. The storage in log files is necessary to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology system. Data will not be used for marketing purposes. These purposes also constitute the legitimate interest of SPKtrum in the processing of data according to Art. 6 para. 1 lit. f DSGVO.
All collected personal data will be saved on the server infrastructure of Verbundzentrale des Gemeinsamen Bibliotheksverbunds (Platz der Göttinger Sieben 1, D-37073 Göttingen, https://www.gbv.de, firstname.lastname@example.org). All transfer of data is encoded securely in a tap-proof manner using the Internet communication standard Hypertext Transfer Protocol Secure (HTTPS). There is no other transfer of personal data. All personal data will be saved for an undefined duration of time, but no longer than up to the revocation of consent, normally until the relevant user account is deleted. At any time, users can request that their own SPKtrum account is permanently deleted by sending an informal message to the contact addresses given below or by notifying the person(s) responsible for the collection of data. This will also revoke consent to saving the data collected during the registration progress. Other personal data collected during registration (IP address, date and time of registration) are normally deleted seven days after registration.
The following agency is responsible in the sense of the General Data Protection Regulation (Datenschutz-Grundverordnung) and other relevant data protection policies for the collection of data in the context of the use of the SPKtrum Open Access Repository as a publication platform:
Stiftung Preußischer Kulturbesitz, represented by its President
Prof. Dr. Hermann Parzinger
+49 (0)30 / 266 411 401
Please contact the official data protection officer of Stiftung Preußischer Kulturbesitz for questions regarding data protection at Staatsbibliothek zu Berlin:
Stiftung Preußischer Kulturbesitz – Hauptverwaltung
+49 (0)30 / 266 411 414
You are entitled to inquire about your personal data and to have your data corrected or deleted. You have the right to restrict processing of your data and – if you have consented to data processing – to object against data processing. And you may have a right to data portability.
You can file a complaint with our official data protection agency, Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (Federal Commissioner for Data Protection and Freedom of Information), Husarenstr. 30, 53117 Bonn, Email: email@example.com