Contact Us Apply Now

Data Protection Information

The Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. (MPG) takes the protection of your personal data very seriously. We process personal data gathered when visiting our websites in compliance with the applicable data protection legislation and, as a matter of principle, only to the extent that this is necessary to provide a functioning website and our content and services. We neither publish your data nor transmit them to third parties on an unauthorized basis.

 In the following sections, we explain which data we record when you visit one of our websites, including www.MIPLC.de, and how exactly they are utilized: 

A. Provision of the Website

1. Visiting the Website

a. Type of Data

Each time you visit our website, our service and applications automatically record data and information from the system of the visiting device.

The following data are gathered temporarily:

  • Your IP address
  • Date and time of your access to the website
  • Address of the page visited
  • Address of the previously visited website (referrer)
  • Name and version of your browser/operating system (if transmitted)

 

These data are stored in our systems' log files. There is no storage of these data together with other personal data relating to the user.

 

b. Legal basis for Data Processing

The legal basis for the temporary saving of data and log files is Article 6 (1) lit. f GDPR. Storage occurs in log files in order to ensure the website's functionality. The data also serve to optimize the websites, eliminate malfunctions and ensure our IT system security. Our justified interest in data processing pursuant to Article 6 (1) lit. f GDPR also lies in such purposes.

The recording of data for the provision of the website and the storage of data in log files are essential to operate the website. It is therefore not possible for the user to object.

 

c. Deletion of Data and Period of Storage

The data are deleted as soon as they are no longer required in order to fulfil the purpose of their collection. If data are gathered for the provision of the website, this is the case if the respective visit is ended. In the event that data are stored in log files, this is the case after seven days at the latest. Storage above and beyond this period is possible. In this case, the users' IP addresses are deleted or removed so they can no longer be allocated to the visiting device.

 

2. User-friendly Website Design

a. Type of Data

Our website uses cookies. Cookies are text files which are saved in or by the internet browser on the users’ systems. If a user accesses a website, a cookie can be saved on the user's system. These cookies contain a characteristic string of characters which enables definitive identification of the browser the next time the website is accessed.

We use cookies in order to make our website more user-friendly. It is a technical requirement of certain elements of our website that the accessing browser can also be identified after a page change. In the process, the following data are saved and transmitted in the cookies:

  • Language settings (localization) of the browser, also when changing pages (functionality of the language switch): Sessioncookie i18next
  • Session data (click path, pages visited, current language, remembering form data (terms used in the internal site search, entries in the contact form) as well as error messages for forms, if applicable): Sessioncookie mpg_session_r

Cookies are saved on your device and transmitted by the latter to our website. For this reason, you as the user also have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or limit the transmission of cookies. This can also happen on an automated basis. If cookies are deactivated for our website, the full range of functions of the website may not be entirely available for use.

 

b.  Legal Basis

The legal basis for the processing of personal data by means of cookies is Art. 6 (1) lit. f GDPR as well as § 25, para. 2, no. 2 of the German Telecommunications-Telemedia Data Protection Act [TTDSG]. Some of the functions of our website cannot be offered without the use of cookies. For these, it is absolutely necessary that the browser is recognized even after a page change.

 

c. Deletion of Data 

The cookies are deleted after closing the session.

B. Web Analysis

1. Type of Data

We use the web analytics programme Matomo for statistical data collection in relation to utilization behaviour; this programme uses cookies and JavaScript to collect various information on your computer and transmit this automatically to us. Every time our website is accessed, our system logs the following data and information from the computer system of the accessing device:

  • IP address, anonymized by means of abbreviation
  • Two cookies to distinguish between different visitors: pk_id and pk_sess
  • Previously visited URL (referrer) if communicated by the browser
  • Name and version of the operating system

The following data are collected additionally if JavaScript is activated:

  • URLs visited on this website
  • Times of page visits
  • Type of HTML requests
  • Screen resolution and colour depth
  • Technologies and formats supported by the browser (e.g. cookies, Java, Flash, PDF, WindowsMedia, QuickTime, Realplayer, Director, SilverLight, Google Gears).

 

The saving and analysis of data is carried out solely on a central server operated by the MPG.

 

It goes without saying that you have the opportunity to object to your data being collected. The following independent methods are available to you if you wish to object to data collection by the central server:

  1. In your browser, activate the Do-Not-Track setting. As long as this setting is active, our central server will not save any of your data. Important: Do-Not-Track generally only applies to the one device and browser on which the setting is activated. If you use several devices/browsers, you must activate Do-Not-Track separately on each one.
  2. Use our opt-out function. Click on the check mark in the following selection box under https://www.mpg.de/datenschutzhinweis/datenerhebung-deaktivieren in order to stop or reactivate data collection. As long as the selection box is deactivated, our central server will not save any of your data. Important: For the opt-out, we have to store a special recognition cookie in your browser. If you delete this or use a different PC/browser, you have to object to data collection once again on this page. For visitors to the MIPLC website, you can also send an email to MIPLC at info(@)miplc.de.

 

There is no storage of these data together with other personal data relating to the users.

 

2. Legal Basis

The legal basis for the processing of personal data by means of cookies is Art. 6 (1) lit. f GDPR as well as § 25 para. 2 no. 2 TTDSG. The processing of the users' personal data enables us to analyse the usage behaviour of our users. By evaluating the data obtained, we are able to compile information on the use of the individual components of our websites. This helps us improve our websites and their user-friendliness on an ongoing basis. These purposes also constitute our legitimate interest in data processing according to Art. 6 (1) lit. f GDPR as well as § 25, para. 2, no. 2 TTDSG. By anonymizing the IP address, the users' interest in the protection of their personal data is sufficiently taken into account.

 

3. Deletion of Data

The data are deleted after the final annual totals have been arrived at for access statistics.

C. Contact Us Form / Inquiry Form

1. Type of Data

On MPG websites, including the MIPLC website www.MIPLC.de, there is a Contact Us Form / Inquiry Form which can be used to make contact electronically. If you make use of this option, the details entered in the input screen are transmitted to us and saved. This generally consists of your email address, last name and first name. We inform you about the concrete processing of your data in the course of the operation and obtain your consent accordingly. There is also a reference to this Data Privacy Statement. The data are used solely for processing the dialogue. For visitors to the MIPLC website www.MIPLC.de, please also see MIPLC Imprint. 

 

2. Legal Basis

The legal basis for processing data in connection with use of the contact form is your consent according to Art. 6 (1) lit. a GDPR. Processing of personal data from the input screen serves the sole purpose of processing the contact request. You have the option to withdraw your consent to the processing of personal data at any time vis-à-vis the listed contact persons.

 

3. Deletion of Data

The data are deleted as soon as they are no longer required in order to fulfil the purpose of their collection. This is the case when the relevant dialogue with the user is finished or the processing of the user's request has been finalized. The dialogue is finished when circumstances indicate that the matter in question has been conclusively clarified and no linger needed as a reference.

D. Measures for the Secure Use of Forms

1. Prevention of Misuse of Forms

a. Type of Data

To prevent any misuse of forms, the Friendly Captcha function is used. Friendly Captcha serves to exclude mass machine use of the forms offered

  • Contact Us Form/ Inquiry Form
  • Creation of Account to access MIPLC Application to LLM Program
  • MIPLC Application Form to LLM Program
  • DAAD EPOS Application Form for financial assistant to LLM Program

 

When a form containing Friendly Captcha widget is called up, a puzzle request will be automatically sent from the user´s device.  In the course of this process, the following log data is collected by Friendly Captcha:

  • The request headers User-Agent, Origin and Referrer.
  • The puzzle itself, which contains information about the account and site key it is related to.
  • The version of the widget.
  • A timestamp

 

Friendly Captcha stores an anonymized counter per IP address for dynamic puzzle difficulty on the edge network to detect malicious users and minimize blocking legitimate users. This data is stored entirely separately from the rest of the data and cannot be correlated to specific websites or any-thing else. We anonymize IP addresses using a one-way hash of certain values so they cannot be personally identified.

 

Within the use of Friendly Captcha, no other information or personal data, such as your name, email address and online profiles, will be asked for.

b. Legal Basis

The legal basis for the processing of personal data by means of Friendly Captcha is Art. 6 (1) lit. f GDPR as well as § 25, para. 2, no. 2 TTDSG. Friendly Captcha is used to ensure the functional capability of the forms and prevent their misuse. These purposes also constitute our legitimate interest in data processing according to Art. 6 (1) lit. f GDPR. The use of Friendly Captcha is absolutely necessary in order to operate the mentioned forms. It is therefore not possible for the user to object.

 

c. Deletion of Data

The data collected Friendly Captcha is anonymized Securing communication through forms

2. Securing Communication through Forms

a. Type of Data

To protect the integrity of the data entered into a form while the form is being transmitted, a digital token is retrieved from the MPG servers and transmitted back when the completed form is submitted. The token is not stored on the users’ devices.

The token csrf_token is used to secure the communication through the following forms:

  • Contact Us Form/ Inquiry Form
  • Creation of Account to access MIPLC Application to LLM Program
  • MIPLC Application Form to LLM Program
  • DAAD EPOS Application Form for financial assistant to LLM Program

 

b. Legal Basis

The legal basis for the data processing is Art. 6 (1) lit. f GDPR as well as § 25, para. 2, no. 2 TTDSG. The token is used to ensure the security of communication through forms and prevent misuse. These purposes also constitute our legitimate interest in data processing according to Art. 6 (1) lit. f GDPR. The use of the token is absolutely necessary in order to operate the mentioned forms. It is therefore not possible for the users to object.

 

c. Deletion of Data

The MPG does not store any data when using the token.

E. Transmission of Data

The management and storage of your personal details is carried out by selected services

  • Contact Us Form/ Inquiry Form (Section C)
  • Creation of Account to access MIPLC Application to LLM Program
  • MIPLC Application Form to LLM Program
  • DAAD EPOS Application Form for financial assistant to LLM Program

within the scope of commissioned data processing on systems of our service providers. For applicants to the DAAD EPOS scholarship program, upon completion of the application, you authorize the transmission of your data to the DAAD. This transmission is solely for the purposes of application selection, interview selection, and the awarding process. The handling of your data is subject to the data policy under the DAAD. We encourage all applicants to visit the DAAD EPOS website for more detailed information on data transmission, data collection, and data deletion policies.

Your personal data are only transmitted to public institutions and authorities if legally required or for the purpose of criminal prosecution due to attacks on our network infrastructure.

Outside of the DAAD EPOS scholarship application process, your data will not be shared with third parties for any other purposes. The transfer of data is strictly limited to the selection of awardees for the scholarship.

If you have any questions or require further information about how your data is handled, please contact us directly at info(@)miplc.de or at +49 89 24246-5320.

F. Privacy Policy on Social Media Activities

Information on Data Processing Pursuant to Art. 14 DS-GVO

On some pages of the websites in the server of the MPG, including the MIPLC website www.MIPLC.de, uses external links to videos on the YouTube platform that are not directly embedded in the pages. The external links are provided with a preview image generated via an API service provided by YouTube.

1. YouTube

All YouTube content displayed on www.mpg.de, including the MIPLC website www.MIPLC.de, is subject to YouTube's terms of use. By accessing this content, users of www.mpg.de, including the MIPLC website www.MIPLC.de, accept these terms of use.

YouTube's terms of use can be viewed at the following link:

https://www.youtube.com/t/terms

The data protection declaration (Google Privacy Policy) can be accessed at the following link:

https://policies.google.com/privacy?hl=en


2. Other Social Media Platforms used by MIPLC and Contact Details Responsible Party


We, the MIPLCthe Max Planck Institute for Innovation and Competition, Marstallplatz 18, 80539 Munich, phone 089 / 24246-05321, operate the following social media websites:

 


As the operator of these pages, MIPLC is jointly responsible with the operator of the respective social media platform within the meaning of Art. 4 No. 7 of the General Data Protection Regulation (DSGVO):

  • LinkedIn Ireland Unlimited Company (LinkedIn)
  • Meta Platforms, Inc. (Facebook & Instagram)
  • Google LLC (YouTube)
  • Twitter International Company (X, formerly Twitter)


When visiting our social media websites, personal data is processed by the responsible parties. In the following, we will inform you about what data is involved, how it is processed and what rights you have in this regard. As the responsible party for these pages, we have entered into agreements with the operator of the respective social media platform, which regulate, among other things, the conditions for use of the pages. The terms of use of the respective operator as well as the other conditions and guidelines listed there at the end are authoritative.

3. Use of Insights and Cookies
The operators of the social media platforms also provide us with usage statistics (so-called analysis services or page insights data) of our pages on the social media platforms based on the actions and interactions of our followers (e.g. likes, shares, comments, etc.), number of followers, views of individual page areas, reach of a post as well as statistics on followers by age, language, origin or interests), which help us to get in touch with our followers and interested parties, to understand the use and reach of our posts, to evaluate content and to identify usage preferences as well as to be able to design our pages on the social media platforms in a way that is as target group-oriented as possible. We have no influence or access to the creation and processing of these usage statistics and the underlying data; it is carried out under the sole responsibility of the operator of the respective social media platform.


The information stored in the cookies is received, recorded and processed by the operator of the respective social media platform. This also includes services provided by the operator or operator group of social media platforms, as well as services provided by other companies that use the social media platforms and which are visited by the user. In addition, other entities such as partners or even third parties on the social media platforms may use cookies to provide services to companies advertising on the social media platforms. For more information on the use of cookies by the operator, please refer to their Cookie Policy.


4. Purposes of Data Processing
The data you enter on MIPLC pages on social media platforms, such as comments, questions, videos, pictures, likes, public messages, job preferences and selection, etc., will be published by the operator of the social media platform and will be used or processed by us only for the purposes stated below. We reserve the right to delete content should this be necessary. If applicable, we share your content on our site if this is a function of the website and communicate with you via the website.


On the websites operated by us, you will find links to other company presences on social media platforms in each case. You can recognize links to the websites of the social media platforms, for example, by the respective company logo. If you follow these links, you will reach our corporate presence on the respective social media platform. When you click on a link to a social media platform, a connection is established to the servers of the social media platform. This transmits the fact that you have visited our website. In addition, further data is transmitted to the provider of the social media platform. These are, for example:

  • Address of the website on which the activated link is located.
  • Date and time when the website was called up or the link was activated
  • Information about the browser and operating system used
  • IP address


If you are already logged in to the corresponding social media platform at the time the link is activated, the provider of this social media platform may be able to determine your user’s name and possibly even your real name from the transmitted data and assign this information to your personal user account with the social media platform. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand.

 

5. Contact through Social Media Platforms

You can contact us via some of our pages on social media platforms. We process your data to answer your inquiry and, if necessary, to send you requested information material. Your data may be transferred to the body responsible for your request. This body may also be a third party. A transmission only takes place if there is a data protection law transmission authorization.

If you submit a request to us on the social media platforms, we may also refer you to other secure communication channels that guarantee confidentiality, depending on the required response.

You always have the option of sending us confidential inquiries to our address listed in the imprint.

 

6. Statistical Evaluations
The processing of the information is intended to enable us, as the operator of the social media site, to obtain statistics (so-called page insights data) that the operator of the social media platform creates based on the visits to our site. For example, this enables us to gain knowledge of the profiles of visitors who like our site or use applications of the site in order to provide them with more relevant content and develop features that may be of greater interest to them.


In addition, to help us better understand how our Site can better reach our interested users, demographic and geographic analyses are also created and provided to us based on the information we collect. We can use this information to offer targeted interest-based content without gaining direct knowledge of the visitor's identity. If visitors use social media platforms on multiple devices, the collection and analysis can also be carried out across devices if the visitors are registered and logged into their own profiles.


The visitor statistics created are transmitted to us exclusively in anonymized form. We have no access to the underlying data.


Further information on the processing of your personal data by the operator of the respective social media platform in the context of the creation and processing of usage statistics can be found in the information on usage statistics on the following websites of the respective social media platform:

  • LinkedIn Ireland Unlimited Company (LinkedIn)
  • Meta Platforms, Inc. (Facebook & Instagram)
  • Google LLC (YouTube)
  • Twitter International Company (X, formerly Twitter)


7. Legal Basis of Data Processing

We operate these social media sites in order to present ourselves to and communicate with users as well as other interested persons who visit our sites. The processing of users' personal data is based on our legitimate interests, in an optimized company and product presentation (Art. 6 para. 1 lit. f DSGVO).


8. Recipients or Categories of Recipients
 

Data is not passed on to third parties by MPG or MIPLC


The servers of the social media platforms are located in the USA and other countries outside the European Union. The data may therefore also be processed by the provider of the social media platform in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extentextent, as is the case in the member states of the European Union.


Please note that we have no influence on the scope, type and purpose of the data processing by the provider of the social media platforms. For more information on the use of your data by the social media platforms integrated on our website, please refer to the privacy policy of the respective social media platform:

  • LinkedIn Ireland Unlimited Company (LinkedIn)
  • Meta Platforms, Inc. (Facebook & Instagram)
  • Google LLC (YouTube)
  • Twitter International Company (X, formerly Twitter)


9. Storage Period
The data will not be stored by MPG or MIPLC.

G. General Details

1. Contact Details of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection acts as well as other data protection legislation is the:

Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. (MPG)

Hofgartenstrasse 8

D-80539 Munich, Germany

Telephone: +49 (89) 2108-0

Contact form: https://www.mpg.de/kontakt/anfragen

Internet: https://www.mpg.de

 

2. Data Protection Officer’s Contact Details

The controller’s Data Protection Officer can be reached as follows:

Data Protection Officer of the MPG

Hofgartenstrasse 8

D-80539 Munich, Germany

Telephone: +49 (89) 2108-1554

datenschutz(@)mpg.de

H. Rights of the Data Subjects

As a data subject whose personal data are collected in the context of the above-mentioned services, you generally have the following rights unless legal exceptions apply in individual cases:

  • Information (Article 15 GDPR)
  • Correction (Article 16 GDPR)
  • Deletion (Article 17 (1) GDPR)
  • Restriction of processing (Article 18 GDPR)
  • Data transmission (Article 20 GDPR)
  • Revocation of processing (Article 21 GDPR)
  • Revocation of consent (Article 7 (3) GDPR)
  • Right to complain to the regulator (Article 77 GDPR). For the MPG, this is the Bavarian Data Protection Authority (BayLDA), Postfach 1349, 91504 Ansbach, Germany.