go. eIDAS e.V. (hereafter “we”, “us”) acts as a provider of the present website and takes the protection of your personal data seriously. In particular, personal information will be strictly collected, processed or used in accordance with the legal regulations, especially those of the General Data Protection Regulation (GDPR).
go. eIDAS e.V. (https://go.eID.AS), Judengasse 2, 96215 Lichtenfels, Germany is data controller as defined in article 4(7) of the GDPR.
Should you have any question or require additional information concerning the processing of personal data you provided us in relation to your use of this website you may contact us at the following e-mail address: go (-at-) eID.AS.
Purpose of web offer and permissibility of data processing
The present website is intended primarily for the provision of information and may enable you to contact the mGov4EU consortium (https://mGov4.EU) via appropriate channels (for example, via a contact form, through participating in a survey or for the subscription of a newsletter). We may collect and use your personal data whenever you:
- Visit our website;
- Use our website or social media or communicate with us via e-mail, phone, or any other digital communication channel;
- Participate in a survey;
- Register for our newsletter.
When you use our website or social media or communicate with us via e-mail, phone, or any other digital communication channel, we process the personal data you provided through the contact form (i.e., your name, e-mail address, the content of your communication and the technical details of the communication itself, with whom you correspond at our end, date and time, etc.) and any other information you provide us to:
- Enable the communication between you and the members of the mGov4EU Consortium, for which we rely on our legitimate interest to be able to respond to requests, questions or remarks or to contact you proactively for inquiries of whatever kind (e.g., when use our contact form or contact us via social media, phone, e-mail);
- Improve the website’s and social media pages’ content and the overall experience, for which we rely on our own legitimate interest to offer our visitors an interesting online space;
- Detect and prevent malware, illegal content and behaviour and other types of misuse, for which we rely on our legitimate interest to keep our online presence safe.
When you register for our newsletter or participate in a survey, we process the e-mail address you provided us to send you the mGov4EU project newsletter or survey results, for this purpose we rely on your consent. You will always have the possibility to unsubscribe from our newsletter, you may do so be sending us an e-mail.
Finally, we process the personal data we collected in the aforementioned circumstances to comply with legal obligations or to comply, insofar we are legally allowed, with any reasonable request from competent law enforcement agents or representatives, judicial authorities, governmental agencies or bodies, including competent data protection authorities.
Your personal data are only processed for as long as needed to achieve the purposes which are described above or, when we asked for your consent, up until such time when you withdraw your consent.
All personal data we collect through our interactions with you via the website, social media, phone, e-mail and other digital communication channels we keep for as long as required to communicate with you, but also to keep an historical archive of our communications. This allows us to revert to earlier communications if you return to us with new questions, request, remarks or other input.
All personal data we collect to send you our newsletter is stored for as long as you remain subscribed to our mailing list.
The data provided remain with us until you ask us to delete them, withdraw your consent to storage or there is no longer any need for data storage. Mandatory statutory provisions – especially retention periods – remain unaffected.
In principle we will not share your personal data with anyone but the members of mGov4EU Consortium, as well as our suppliers who help us process your personal data. Anyone who has access to your personal data will always be bound by strict legal or contractual obligations to keep your personal data safe and confidential. This means that only the following recipients will receive your personal data:
- mGov4EU Consortium members, as listed on this website;
- our suppliers when necessary;
- governmental or judicial authorities insofar we are required to send them your personal data (e.g., police or law enforcement).
go. eIDAS takes the protection of your personal data seriously, and steps have been taken to ensure that all personal data processed are kept safe. These steps include processing only the personal data required for achieving the purposes we have communicated to you.
To protect the present website and related personal data from accidental or intentional manipulation, loss, destruction or against access by unauthorized persons, go. eIDAS uses state of the art technical and organizational security measures. For example, all communication channels between the system of the user and the present website are protected with suitable versions of Transport Layer Security (TLS). Furthermore, the used security measures are continuously monitored and improved according to the technological development.
Links to other Websites
The present website may contain links to other websites. These websites are within the responsibility of the respective website operators. When embedding the external links, no legal violations were found. The provider has no influence on the current and future design of the linked page. Without specific evidence of violations, the permanent monitoring of the external links is not reasonable for the provider. Upon notification of legal violations, the affected external links will be deleted immediately.
Data subject rights
When we collect and use your personal data, you enjoy certain rights which you can exercise in the manner described below. Please be aware that whenever you wish to exercise a right, we will ask you for a proof of identity. We do this to avoid a data breach, e.g., because an unauthorized person pretends to be you and exercises a right in your name.
1, You have the right to access your personal data, which means that you can ask us to provide you information regarding the personal data we have about you. You can even ask for a copy of your personal data. However, note that you must specify for which processing activities you would like to have access to your personal data. If you make the same request repeatedly, clearly causing us nuisance, we can refuse to grant you these subsequent requests or charge an administrative fee covering the expenses. We can also refuse granting you a right to access your personal data, or only grant it partially, if such access would risk disproportional detriment to the rights and freedoms of others.
2, You have the right to ask that we correct your personal data if you can show that the personal data, we process about you are incorrect, incomplete or outdated. Please specify the context in which we use your personal data (e.g., to send you newsletters or to respond to a request), so that we may assess your request swiftly and accurately.
3, If we asked for your consent to collect and use your personal data, e.g., to send you newsletters, you have the right to withdraw that earlier given consent.
4, You can ask that we delete your personal data, if these personal data are no longer needed for the purposes for which we collected them in the first place, if our collection of them was illegitimate or if you have successfully exercised your right to withdraw your consent or your right to object to the processing of your personal data. When one of these circumstances applies, we will immediately delete your personal data unless the law, regulatory obligations or administrative or judicial orders prohibit us to delete your personal data.
5, You can ask that we restrict the processing of your personal data:
- during the time we are assessing your request for correction of your personal data;
- we no longer need your personal data, but you require them for the establishment, exercise or defence of a legal claim.
- when such processing was unlawful, but you prefer restriction to erasure;
- during the time we are assessing your objection to the processing of your personal data.
6, When we process your personal data on the basis of our own interests, i.e., you have not given us your consent and we do not need them for the execution or performance of an agreement nor to comply with legal obligations, you have the right to oppose our processing of your personal data. When our interest relates to direct marketing, we will grant you your request immediately. For other interests, e.g., our security interests, we will ask you to describe your specific circumstances giving rise to request. We then need to balance our interests against your circumstances. If this balancing exercise results in your circumstances outweighing our interests, we will cease processing your personal data.
7, When we have collected your personal data on the basis of your consent or because they were necessary for the execution or the performance of an agreement with you, you have the right to obtain a copy from us in a structured, commonly used and machine-readable format. However, this right only applies to personal data you have provided to us.
If you wish to exercise any of these rights, we ask that you send us an e-mail. You can reach us at go (-at-) eID.AS. Be assured that we will not interpret an e-mail from you requesting to exercise a right as your consent with any processing of your personal data beyond what is required for handling your request. A request should clearly state and specify which right you wish to exercise. Always indicate the context in which we have obtained your personal data so that we may handle your request swiftly and diligently. Your request should also be dated and signed and accompanied by a proof of identity, such as digitally scanned copy of your valid identity card for example. We will promptly inform you of having received this request. If the request proves valid, we will notify you as soon as reasonably possible and at the latest thirty (30) days after having received the request. If you have any complaint regarding our processing of your personal data, you may always contact us via the e-mail address mentioned above. If you remain unsatisfied with our response, you may file a complaint with the competent data protection authority: the Landesamt für Datenschutzaufsicht, Promenade 27, 91522 Ansbach, Germany, https://www.lda.bayern.de/.