Data processing is the responsibility of the Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH.
Friedrich-Ebert-Allee 32 + 36, 53113 Bonn
Dag-Hammarskjöld-Weg 1–5, 65760 Eschborn
Contact data protection officer: firstname.lastname@example.org
The secretariat of the Emerging Market Sustainability Dialogues (EMSD) is hosted by the Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH commissioned by the German Federal Ministry for Economic Cooperation and Development (BMZ). The Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH is a public-benefit federal enterprise for international cooperation. We work as a federal enterprise under private law. Our aim is to achieve the development-policy objective of improving the living conditions of people worldwide and conserving the natural resources on which livelihoods depend. The Sustainable Infrastructure Tool Navigator was developed by EMSD to provide an overview of the most relevant sustainability tools and, thereby, increase the integration of sustainability criteria across the infrastructure lifecycle.
Information on the collection of personal data
GIZ processes personal data exclusively in accordance with the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (Bundesdatenschutz-gesetz, BDSG). Personal data are, for example, name, address, email addresses and user behaviour.
When you visit the Sustainable Infrastructure Tool Navigator website, small text files known as ‘cookies’ are stored on your computer. They are used to make the online presence more user-friendly and effective overall. Cookies cannot run programs or infect your computer with viruses.
Matomo analysis service (user analysis)
To analyze usage data on its website, this website uses the Matomo web analysis service. Data is stored and evaluated completely anonymously. Cookies collect information about user behavior on the site, including the abbreviated IP address of the device being used, and send it to the server. The server anonymizes the information and stores it for the purpose of analyzing user behavior. The state of current technology ensures that once information has been anonymized, it can no longer be traced back to the originating device or connection. Information produced by cookies is shared only with the internally operated server. It is never shared with third parties. Data is processed on the basis of Article 6 (1 f) of the GDPR for the purpose of pursuing the controller’s legitimate interests, in this case to improve the website. In detail, Matomo stores the following information:
- User IP address (anonymized)
- Optional User ID
- Date and time of the request
- Title of the page being viewed (Page Title)
- URL of the page being viewed (Page URL)
- URL of the page that was viewed prior to the current page (Referrer URL)
- Screen resolution being used
- Time in local user’s timezone
- Files that were clicked and downloaded
- Links to an outside domain that were clicked
- Pages generation time (the time it takes for webpages to be generated by the webserver and then downloaded by the user)
- Location of the user: country, region, city, approximate latitude and longitude
- Geolocation Main Language of the browser being used (Accept-Language header)
- User Agent of the browser being used (User-Agent header)
Information on opting out
Users who do not agree with the completely anonymous storage and evaluation of the data from their visit can opt out of the storage. For this purpose, an opt-out cookie must be stored on the device, preventing user data from being collected when the user visits this website. In order for the objection to take effect, the cookie must be stored on every device used. As the cookie is stored in specific browsers (internet programs), the cookie must be stored in every browser if several browsers are used on one device (e.g. Internet Explorer, Chrome, Mozilla Firefox). Please also note that, if you delete all cookies, the objection cookie will also be deleted and will need to be stored again.
Processing of personal data when contacting us
When you use the “Submit your Tool” form, we process your first and last names and email address. The data is processed based on Art. 6 paragraph 1 b) of the EU GDPR for the purpose of receiving the query formulated in the form. Data is transmitted to GIZ using an SSL-encrypted connection, which makes it significantly more difficult for unauthorized persons to intercept it.
A third-party service provider responsible for the technical maintenance of the website and our content development partner have access to the mentioned personal data. Please see below “Recipients of personal data” for further information. No use will be made of your details for commercial purposes, for advertising or for market research.
Email addresses that you provide when you make an enquiry are used exclusively for correspondence or delivery purposes.
Transfer of data to countries outside Germany
In order to offer you our non-commercial services, we may have to disclose your personal data to the following IT service provider and content development partner:
- Digicove Labs
- United Nations Environment Programme
Duration of data retention
User data will not be kept any longer than is necessary for the purpose for which it is processed or as required by law.
IT security of user data
GIZ accords great importance to protecting personal data. For this reason, technical and organizational security measures ensure that data is protected against accidental and intentional manipulation and unintended erasure as well as unauthorized access. These measures are updated accordingly based on technical developments and adapted continuously in line with the risks.
Reference to user rights
Visitors to the website have the right:
- To obtain information about their data stored by us (Article 15 GDPR)
- To have their data stored by us rectified (Article 16 GDPR)
- To have their data stored by us erased (Article 17 GDPR)
- To obtain restriction of processing of their data stored by us (Article 18 GDPR)
- To object to the storage of their data if personal data are processed on the basis of the first sentence of Article 6 (1) 1 f and e GDPR (Article 21 GDPR)
- To receive their personal data in a commonly used and machine-readable format from the controller such that they can be potentially transmitted to another controller (right to data portability, Article 20 GDPR).
- To withdraw their consent to the extent that the data has been processed on the basis of consent (Article 6 (1) a GDPR). The lawfulness of the processing on the basis of the consent given remains unaffected until receipt of the withdrawal.
Users also have the right in accordance with Article 77 GDPR to lodge a complaint with the competent data protection supervisory authority. The competent authority is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).