Data protection

The organisation responsible for the content of this website is the German Institute for Development Evaluation (Deutsches Evaluierungsinstitut der Entwicklungszusammenarbeit gGmbH; hereinafter referred to as DEval). DEval takes the protection of your personal data very seriously. We want you to know when we gather personal data from you, which data is being collected and how we use it. We have taken technical and organisational measures to ensure that we ourselves and our external service providers comply with data protection regulations. In the course of the development of our website and the implementation of new technologies to improve our provision of information to you, changes to this data protection statement may also be required. We therefore recommend that you reread this statement from time to time.

Responsible party:
DEval
Deutsches Evaluierungsinstitut der Entwicklungszusammenarbeit gGmbH
Fritz-Schäffer-Str. 26
53113 Bonn
T: +49 228-336907-0
datenschutz(at)deval.org

Our Data Protection Officer is:
Andreas Werner c/o Infora GmbH
Friedrichstrasse 200
10117 Berlin
T: +49 (0) 30-893658-58
dsb-deval[at]infora.de

Privacy policy

“Personal data” within the meaning of the EU’s General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (new version) means any information relating to an identified or identifiable natural person (“data subject”), such as log data, IP addresses, name, address and date of birth, but also telephone number and e-mail address. When you use the website merely for information purposes, we only collect the personal data automatically transmitted by your browser to our server. If you wish to log into our website, we collect the following data which we require for technical purposes to display the website and ensure its security and stability. This includes:

 

When using our online offering, further personal information may be collected and processed:

  • Personal data (e.g. names, addresses).
  • Content data (e.g. entries in online forms).
  • Contact data (e.g. email, phone numbers).

The processing may concern the following categories of persons:

  • IP address
  • date and time of the request
  • time zone difference from Greenwich Mean Time (GMT)
  • content of the request (specific site)
  • Personal data (e.g. names, addresses).
  • Content data (e.g. entries in online forms).
  • Contact data (e.g. email, phone numbers).
  • Personnel (e.g. employees, applicants, former employees).
  • Contract and cooperation partners.
  • Interested parties.
  • Communication partners.
  • Users (e.g. website visitors, users of online services).
  • access status/HTTP status code
  • volume of data transmitted each time
  • website from which the request comes
  • browser
  • operating system and its interface
  • language and version of the browser software.

Legal basis for processing

  • Consent (Art. 6 Section 1 p. 1 a. GDPR) – The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
     
  • Performance of contract and pre-contractual requests (Art. 6 Section 1 p. 1 b. GDPR) – Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
     
  • Legal obligation (Art. 6 Section 1 p. 1 c. GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject.
     
  • Legitimate interests (Art. 6 Section 1 p. 1 f. GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

Transfer of personal data

During the scope of processing personal data, it is possible that we may transfer or disclose the data to other bodies, authorities, legally independent organisational units or persons. The recipients of this data could include service providers commissioned with IT tasks or providers of services and content that is integrated into a website. In such cases, we shall observe all legal specifications and, in particular, conclude with the recipients corresponding contracts or agreements that serve to protect your data.

Data processing in third countries

If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or if data processing takes place during the course of utilising third-party services or transferring or disclosing data to other persons, bodies or companies, this shall take place only in compliance with legal provisions.

Conditionally upon the express consent or contractually or legally required transmission, we process data or have data processed only in third countries with a recognised level of protection, contractual obligation through standard protective clauses from the EU Commission, relevant certifications or binding internal data protection regulations.

Use of Cookies

This website uses cookies to make the web pages more user friendly and continuously increase the benefits to our users.

If you continue your visit to the website, you consent to the use of cookies.

We use cookies to analyse visits to our website. We also provide information on your use of our website to other partners for analysis. Our partners may combine this information with other data that you have provided or that they have gathered during the course of your using the services. You consent to our cookies by continuing to use our website.

Cookies are small text files that websites use to design the user experience more efficiently.

According to legislation, we can save cookies on your device if this is essential to operate this site. For all other cookie types, we require your permission.

This site uses different types of cookies. Some cookies are placed by third parties that appear on our pages.

You can change or revoke your consent on our website at any time.

Essential

Essential cookies help make the website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function correctly without these cookies.

Name: CookieConsent
Provider: Cookiebot
Purpose: Saves the user’s consent status for cookies on the current domain.
Expiration: 1 Year
Type: HTTP Cookie

Name: PHPSESSID
Provider: deval.org
Purpose: Maintains the user’s status for all page requests.
Expiration: Session
Type: HTTP Cookie

Name: Consent
Provider: YouTube
Purpose: Used to determine whether the user has accepted a marketing category in the cookie banner. This cookie is necessary for the website to comply with the GDPR.
Expiration: 6103 Days
Type: HTTP Cookie

Marketing

Marketing cookies are used to track users on websites. The aim is to display adverts that are relevant and appealing to the individual user and are therefore more valuable for publishers and third-party advertisers.

Name: yt.innertube::nextId
Provider: YouTube
Purpose: Registers a unique ID to keep statistics of the YouTube videos the user has viewed.
Expiration: Persistent
Type: HTML Local Storage

Name: yt.innertube::requests
Provider: YouTube
Purpose: Registers a unique ID to keep statistics of the YouTube videos the user has viewed.
Expiration: Persistent
Type: HTML Local Storage

Name: yt-remote-cast-installed
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Session​​​​​​​
Type: HTML Local Storage

Name: yt-remote-connected-devices​​​​​​​
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Persistent​​​​​​​​​​​​​​
Type: HTML Local Storage

Name: yt-remote-device-id
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Persistent​​​​​​​​​​​​​​
Type: HTML Local Storage

Name: yt-remote-fast-check-period​​​​​​​
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Session​​​​​​​​​​​​​​
Type: HTML Local Storage

Name: yt-remote-session-app​​​​​​​
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Session​​​​​​​​​​​​​​
Type: HTML Local Storage

Name: yt-remote-session-name​​​​​​​
Provider: YouTube
Purpose: Saves the user settings on calling a YouTube video that is integrated into other websites.
Expiration: Session​​​​​​​​​​​​​​
Type: HTML Local Storage

Logging (log data)

We store and use information collected during your visit to our websites solely for the purpose of statistical analysis and to improve the design of our website. No personal data or information about your individual usage of the website is collected. IP addresses are logged solely in abbreviated form.

Data that is logged when users access DEval’s internet offering is only transferred to third parties if we are obligated to do so legally or due to a court ruling or if the disclosure is necessary for legal or criminal proceedings in the event of attacks on DEval’s internet infrastructure. Data shall never be transferred for other non-commercial or for commercial purposes.

Contact

You may subscribe to our newsletter. This requires your consent: sign-ups to our newsletter are based on a double opt-in. This means that when you first subscribe, we send an e-mail to the e-mail address provided by you. In this e-mail, we ask you to confirm your subscription request. If you do not confirm your subscription, your information is locked and automatically deleted. We also log the IP addresses used by you and the times of subscription and confirmation. This purpose of this procedure is to provide evidence of your subscription and, should it become necessary, to investigate any possible misuse of your personal data.
The only mandatory information required to send out our newsletter is your name and e-mail address. When we receive your confirmation, we store your e-mail address, which we use to distribute the newsletter. The legal basis is Article 6(1)(a) GDPR.

You can withdraw your consent and cancel the newsletter at any time by clicking on the link provided in every newsletter e-mail or by sending an e-mail to datenschutz@deval.org.

Our newsletter

You may subscribe to our newsletter. This requires your consent: sign-ups to our newsletter are based on a double opt-in. This means that when you first subscribe, we send an e-mail to the e-mail address provided by you. In this e-mail, we ask you to confirm your subscription request. If you do not confirm your subscription, your information is locked and automatically deleted. We also log the IP addresses used by you and the times of subscription and confirmation. This purpose of this procedure is to provide evidence of your subscription and, should it become necessary, to investigate any possible misuse of your personal data.
The only mandatory information required to send out our newsletter is your name and e-mail address. When we receive your confirmation, we store your e-mail address, which we use to distribute the newsletter. The legal basis is Article 6(1)(a) GDPR.

You can withdraw your consent and cancel the newsletter at any time by clicking on the link provided in every newsletter e-mail or by sending an e-mail to datenschutz[at]deval.org.

Presence in social networks (social media)

We maintain online presences within social networks and process user data within this framework in order to communicate with the users who are active in these networks or share information about ourselves.

We hereby point out that the users’ data may be processed outside the European Union. This may result in risks for users because, for example, it is more difficult to enforce the users’ rights.

Furthermore, user data within social networks is generally used for market research and advertising purposes. Data can also be saved in the usage profiles independently from the user’s device (particularly if users are members of the respective platforms and are logged in there).

For a detailed representation of the various processing forms and opt-out options, please see the individual privacy statements and information from the operators of the respective networks.

Services and service providers used:

Plugins and embedded functions and content

We integrate functional and content elements into our online offering that is obtained from the servers of the respective provider (hereinafter referred to as “third-party provider”). This could, for example, be graphics, videos or maps (hereinafter jointly referred to as “content”).

The integration always requires the third-party providers of this content to process the users’ IP address, as the content cannot be sent to their browsers without an IP address. The IP address is therefore essential for the presentation of this content or these functions. We endeavour to only use content for which the respective provider uses the IP address solely to deliver the content.#

Services and service providers used:

 

Your rights

As a data subject in accordance with the GDPR, you have various rights that arise in particular from Art. 15 to 21 GDPR:

  • Right to object: You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 Section 1 e or f GDPR; this includes profiling based on those provisions. Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
     
  • Right to object in cases of consent: You have the right to revoke any consent given at any time.
     
  • Right to be informed: You have the right to be informed whether data concerned was processed and to information about this data as well as to further information and copies of the data in accordance with the legal provisions.
     
  • Right to rectification: You have the right to have incomplete personal data completed and to the rectification of inaccurate personal data concerning you.
     
  • Right to erasure and restriction of processing: You have the right within the legal limits to demand the erasure of data concerning you without undue delay or, alternatively, within the legal limits to restriction of processing of the data.
     
  • Right to data portability: If applicable, you have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format or to have this data transmitted to another controller within the limits of the law.
     
  • Complaint to supervisory authority: In accordance with the legal provisions and without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.
To Top