Privacy Statement
The Charitable Foundation Symphasis respects your privacy
Protecting your privacy when processing your personal data and the security of all personal data are important to us. The aim of this privacy statement is to let you know which personal data we process, why we need this data, and what rights you have. We collect, process, and store personal data only in accordance with legal provisions, or if you have given consent, for example, during a registration process.
What personal data do we collect?
We only collect personal data in connection with our relationship with you. Examples of the data we collect include your contact details such as your first and last names, telephone number, address, and email address. We also process data pertaining to any project staff when processing grant applications.
What data is processed when our websites are used?
You can generally visit our websites without the need to provide personal information. When you visit our websites, our servers temporarily store data about each visit in a data set log. The following technical data is collected and stored for a maximum period of seven months until it is automatically deleted:
- IP address of the accessing computer
- Date and time of access
- Referring website, including keyword used, if applicable
- Name and URL of the accessed file
- Searches conducted
- Your computer's operating system (provided by the user agent)
- Your browser (provided by the user agent)
- Device type, if the website is accessed via mobile phone
- Transmission protocol used
This data is collected and processed for system security and stability, for error and performance analysis, and for internal statistical purposes, and allows us to optimize our internet offering. The IP address is also used to set the language of the website.
Where does the data we process come from?
We generally collect personal data in the following cases: when you submit a grant application to our Foundation; when you visit our website; when you communicate directly with us; when you register for our newsletter or events; or when you share your personal data with us for other reasons. In all cases, we only process your data for the defined purpose, which will be clear to you.
For what purposes do we process personal data?
We process personal data in connection with grant applications and the payment of grant amounts. We also process personal data to protect our legitimate interests or those of third parties, for example to safeguard IT security, for the purpose of evaluating projects, for efficient allocation of support contributions, or to comply with our legal and regulatory obligations. We never analyze personal data using automated means.
Who receives your data?
We will only share your personal data with third parties if we are legally or contractually authorized or obliged to do so or if you have given us your consent. This is the case, for instance, if we conduct external project evaluations in agreement with you. Please see the sponsorship agreement for further information. We generally do not use external service providers. However, any external service providers that we do enlist must comply with the same personal data protection regulations as we do, or comparable regulations.
For how long do we store your personal data?
We generally store your data for as long as required by our mutual business relationship or for as long as we have a legitimate interest in continuing to store your data. In all other cases, we delete your personal data with the exception of data we must continue to store in order to meet legal obligations (for example, statutory safekeeping periods require us to store documents such as contracts and invoices for a period of ten years).
What rights do you have with respect to your personal data?
With respect to your personal data, you generally have the following rights, although they may be restricted (by law, in particular):
- You can request information about your stored personal data.
- You can request that your personal data be corrected, amended, blocked, or deleted.
- If you have given us consent to process your data, you can revoke this consent with future effect at any time.
A letter submitted by post or email is sufficient for exercising your rights. See the Contact section.
Data security
We use appropriate technical and organizational security measures in order to protect personal data we have stored against manipulation, partial or total loss, and unauthorized access by third parties. Our security measures are continuously enhanced in line with technological developments.
Changes to this privacy statement
We reserve the right to amend and supplement this privacy statement at any time at our discretion and in accordance with data protection legislation. Please consult this privacy statement on a regular basis.