Goethe-Institut Data Protection Pre-Integration
Information in accordance with Art. 13 and Art. 14 of the DSGVO
Information about processing personal data in accordance with Articles 13 and 14 of the General Data Protection Regulation (GDPR).
This project is supported by funds from the Asylum, Migration, and Integration Fund.
Your personal data (hereinafter referred to as "data") is gathered and processed by The Goethe-Institut e.V., Oskar-von-Miller-Ring 18, 80333 Munich, Germany hereby referred to as "GI" under the following listed below.
RESPONSIBLE
Goethe-Institut e.V.
Oskar-von-Miller-Ring 18
80333 Munich
Tel: +49 89 15921-0
info@goethe.de
www.goethe.de
1. The objective and legal foundation for data processing
Projects are carried out by the Goethe-Institut within the parameters of the national funding guidelines for AMIF. Goethe-Institut handles personal data of the target group's members as part of the planning and coordination of projects (such as when registering for events). Moreover, Goethe-Institut is required to notify any leak of personal data since it manages and accounts for the AMIF funding that have been issued. Both Article 6 Paragraph 1 B) and Article 6 Paragraph 1 F) of the GDPR serve as the processing's legal foundations. The Goethe-Institut will contact participants to evaluate project measures and provide updates on future projects, Communication via email. Art. 6 para. 1 f) GDPR serves as the legal basis.
2. Data type stored
Members of the target group are typically asked for the following personal information, which is then gathered and stored: Name, first name, date of birth, gender, nationality, country of origin, kind of identification document with number and issuer, anticipated arrival location in Germany, anticipated length of stay in Germany, type of ID document, and email address.
3. Data storage and data deletion
The project's records will be kept on file for a period of ten years beginning with the project's completion (see paragraph 8 of the AMIF funding standards). The information will be erased when this time period has expired.
4. Rights to data protection
If the necessary conditions are fulfilled, each "data subject" has the following rights about the processed personal data upon request:
- Details on the processing (Article. 15 GDPR).
- Correction of inaccurate data (Article. 16 GDPR)
- Deletion of no longer necessary data (Article. 17 GDPR)
- Processing restrictions (Article. 18 GDPR)
- Refusal of processing (Article. 21 GDPR).
Objection: You have the right to object at any time, for reasons specific to your circumstances, to the processing of personal data that is supported by Art. 6 Para. 1 Lit. f) DSGVO. We cannot show overriding compelling legitimate reasons for the processing or the processing is necessary for the assertion, exercise, or defense of legal claims, we will stop processing your data.
Applying Article.6 para. 1 a) GDPR, the right to withdraw consent applies to data processing based on permission.
If you have consented to the processing of your personal data in accordance with the personal data, you have the right to withdraw it at any time going forward.This has no bearing on the legality of data processing done in reliance on permission up until withdrawal of consent.
5. "Data subjects'" contact information and revocation
Please contact our company's data protection officer if you have any questions about the collection, processing, or use of your personal data, would like information, want your data corrected, restricted from further processing, or deleted, would like to revoke any consent you may have given, would like to object to having your data used for advertising or marketing, or would like to exercise your right to data portability.
The Data Protection Officer
Goethe-Institut e.V.
Oskar-von-Miller-Ring 18, 80333 Munich, Germany
E-mail: datenschutz@goethe.de.
PLAINTIFF'S COMPLAINT TO THE SUPERVISORY AUTHORITY
A complaint may also be made to the appropriate supervisory authority for data protection.
This is Bonn, 53117, Germany's Federal Commissioner for Data Protection and Freedom of Information. Also, you can complain to any other data protection authority. Following that, this will then be forwarded to the competent supervisory authority.
AMIF Data Protection
Project Number: 9168-2022-0016
Details about the handling of personal data in relation to Asylum, Migration, and Integration Fund grants (AMIF).
The following details on how personal data is processed while adopting according to Articles 13 and 14 of Regulation (EU) 2016/679, of the funding of projects in the German National Program in the Asylum, Migration, and Integration Fund (AMIF) by the AMIF Management Authority and in the context of any audits by the authorities by the authorities listed below (General Data Protection Regulation, GDPR).
1. Reasons and legal justifications for handling personal data.
Within the parameters of the National Funding Directive on AMIF, the AMIF Managing Authority manages financing from Europe. Grants are given to outside project promoters. Regulations (EU) 2021/1060 and 2021/1147, as well as the implementing rules made in accordance with the EU Commission's rules and other legally obligatory procedural requirements set out by the EU Commission.
According to Regulation (EU) 2016/679 or Regulation (EU) 2018/1725, the processing of personal data is done in line with Article. 4 of the Regulation (EU) 2021/1060 and Article 6 (1) lit. e GDPR. The registration of the applicant(s) in the administration tool ITSI, application, determination, payment, administration, and monitoring of grants to the applicant person are all reasons why personal data is handled. They are also employed for general grant usage documentation.
In accordance with Article. 28 of the GDPR, processing is done on servers owned by the Federal Information Technology Center (ITZBund).
2. Types of people who receive personal data.
The provision of application data to, in the context of the federal government authorities/committees and the federal states involved in the decision-making process, as well as the information of a potential co-financing body about the project application, the fund indecision of the AMIF managing authority, and the proof of use, is considered the processing of personal data under Article. 4 of Regulation (EU) 2021/1060 i. V. m. Article. 6 paras. 1 lit. e GDPR.
The Auditing authorities may further handle personal data as needed for their auding needs. In this regard, Article. 4 of Regulation (EU) 2021/1060 i. in connection with Article. 6 (1) c and e GDPR and Secon 44 BHO serve as the legal foundation.
Personal data of the applicant may be transferred to the Federal Office for the Protection of the Constitution based on Secon 3 of the Federal Data Protection Act in conjunction with Article. 6 Para. 1 lit. c and e GDPR in order to prevent the improper use of state services for the protection of the free democratic basic order.
The designated honorees fall under the following categories:
- State agencies and authorities, as well as other companies that co-finance projects
- Federal and state ministries or subordinate agencies, as well as federal officials,
- Auditing institutions:
• Auditing Authority for EU Funds (AMIF)
• EU Commission or its agents
• European Court of Auditors
• European An-Fraud Office (OLAF)
• Federal Court of Auditors.
3. Terms
The term "processing" is defined in Arcle.4 No. 2 GDPR as "any operation or set of operations or series of operations carried out in connection with personal data, whether or not using automated processes, such as the collection, recording, organization, classification, storage, adaptation or storage, adaptation or alteration, extraction, interrogation, use, disclosure by transmission, dissemination or any other form of making available, comparison, analysis, or resale."
According to Article 4 No. 1 of the GDPR, personal data is any information relating to an identified or identifiable natural person (hereinafter, "data subject"); An identifiable natural person is one who can be identified directly or indirectly, in particular through an association with an identifier like a name, an identification number, location information, an online identifier, or to one or more special characteristics that express the physical, mental, or philosophical nature of that individual.
The staff members at the grant recipients, the cooperation partners, the subcontractors, the people working on a volunteer basis for the project, as well as the project's target group members, are all considered data subjects under the GDPR in the AMIF grant projects.
4. Categories of processed personal data
Only individuals who are involved in applying for and receiving funds from the AMIF may have their personal data processed by the AMIF Management Authority.
The following personal information is open gathered and maintained in relation to employees working on the project: Name, first name, project activity, personnel number (if available), date of birth, marital status, and classification in accordance with the CBA (TV-D). The amount of compensation provided, the working me model, and the collective wage agreement.
The following personal information is gathered and maintained in the case of subcontractors and people working on the project voluntarily: Name, first name, address, contract subject (activity and project reference), service scope (example: number of hours/days to be hours/days), and compensation (e.g., hourly rate).
Members of the target group open have the following personal information collected: initial and last names, birthdates, genders, nationalities, and the kind and quantity of any resident permits or tolerances.
5. Data retention and deletion
According to Secon 31 (2) of the AMIF Funding Guideline, the project's records will be preserved or stored for a period of ten years beginning with the project's completion. The personal information will be erased once this me period has expired.
6. Data subject rights
If the necessary conditions are satisfied, each data subject shall be entitled to the following rights with respect to the processed personal data upon request:
- Details on the processing (Article. 15 GDPR).
- Revision of inaccurate data (Article. 16 GDPR)
- Data deletion is no longer necessary (Article. 17 GDPR)
- Processing restrictions (Article. 18 GDPR)
- Portability of data (Article. 20 GDPR)
- Refusal of processing (Article. 21 GDPR)
7. Responsible body with information on how to reach them
As the responsible party (Article 4 No. 7 GDPR) for the administration of AMIF funding, the AMIF Management Authority at the Federal Office for Migration and Refugees enforces data security.
It is accessible as follows:
Federal Agency for Migration and Refugees
AMIF Administrative Authority
Frankenstrasse 210
90461 Nuremberg.
E-Mail: AMIF2021-2027@bamf.bund.de
The data protection officer is accessible if you have queries about data protection. E-Mail: Datenschutzbeauragter@bamf.bund.de
8. Federal Commissioner for Information Freedom and Data Protection
If a data subject believes that the acquisition, processing, or use of their personal data by federal government public entities has infringed their rights, they may make a complaint with the appropriate supervisory body in line with Article 77 ff GDPR a supervisory role is possible. The relevant supervisory authority for the area of the Federation is, in accordance with Article. 51 ff. GDPR:
The Federal Commissioner for Data Protection and Freedom of Information (BfDI)
Graurheindorfer Str. 153
53117 Bonn
E-mail: poststelle@bfdi.bund.de