Privacy Policy
Preamble
With the following privacy policy we would like to inform you about what types of your personal data (hereinafter also referred to as “data”) we process for what purposes and to what extent. This privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and in particular on our websites, in mobile applications and within external online presences, such as our social media profiles (hereinafter collectively referred to as “online offer”).
Controller
GLS Advisory and Investment FZCO
Building A2, IFZA Business Park, Silicon Oasis
Dubai, United Arab Emirates
Email: info@saudi-german-forum.de
Overview of Processing
The following overview summarizes the types of data processed and the purposes of their processing:
- Types of data processed: Inventory data, contact data, content data, usage data, meta/communication and procedural data, log data
- Categories of data subjects: Communication partners, users
- Purposes of processing: Communication, security measures, organizational and administrative procedures, feedback, provision of our online services and user-friendliness, IT infrastructure
Legal Bases
We process personal data on the basis of the GDPR and, where applicable, national regulations. In particular:
- Performance of a contract and pre-contractual inquiries (Art. 6 (1) lit. b GDPR)
- Legitimate interests (Art. 6 (1) lit. f GDPR)
Security Measures
We take appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including TLS/SSL encryption (HTTPS).
Transfer of Personal Data
Data will only be disclosed to third parties within the scope of legal requirements or to processors with appropriate agreements.
International Data Transfers
Data transfers to third countries are carried out in compliance with the EU Data Privacy Framework (DPF), Standard Contractual Clauses or on the basis of statutory requirements.
Storage and Deletion
Data is deleted as soon as the purpose ceases to apply or there is no legal basis for further storage. Statutory retention obligations remain unaffected.
Rights of Data Subjects
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
- Right to withdraw consent (Art. 7 (3) GDPR)
- Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
Provision of Online Services & Web Hosting
We process user data and metadata for the provision and security of our online services. The following providers are used, among others:
- Mittwald CM Service GmbH & Co. KG (Hosting)
- WordPress.com (Automattic) (CMS/Hosting)
Contact and Request Management
When contacting us (e.g. via form or email), we process the provided data solely for the purpose of handling the request.
Use of Matomo (Cookieless with Event Tracking)
We use the open-source software Matomo to analyze our online offer. We use Matomo in a cookieless version, which means that no tracking cookies are stored on your device. Data collection is carried out anonymously by evaluating server log data (e.g. pages viewed, duration of stay, interactions). Your IP address is anonymized immediately so that no personal reference is created.
In addition, we use custom event tracking to record clicks on specific elements (e.g. buttons, logos) and evaluate them statistically. This data is also processed exclusively in anonymized form and does not allow any conclusions to be drawn about individual users.
The processing is based on our legitimate interests in analyzing and optimizing our online services (Art. 6 (1) lit. f GDPR). The collected data is not passed on to third parties.
Amendments and Updates
We reserve the right to update this privacy policy whenever changes in our data processing make it necessary.
Definitions
Terms such as “personal data”, “processing”, etc. are to be understood within the meaning of the GDPR.