This privacy notice applies to data processing by:
GPM Deutsche Gesellschaft für Projektmanagement e. V. (hereinafter “GPM”)
Am Tullnaupark 15
90402 Nuremberg
Phone: +49 911 433369-0
Email: info@gpm-ipma.de
The company’s Data Protection Officer for GPM can be reached at dhpg IT-Services GmbH, Bunsenstr. 10a, 51647 Gummersbach, attn. Dr. Christian Lenz, or at datenschutz@dhpg.de or 02261-8195-0.
You have the right to:
If your personal data are processed on the basis of legitimate interests pursuant to Art. 6(1) Sentence 1 lit. e or f GDPR, you have the right under Art. 21 GDPR to object to the processing of your personal data, provided there are reasons arising from your particular situation or if the objection is directed against direct marketing. In the first case, we will no longer process your data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms or unless the processing serves to establish, exercise, or defend legal claims.
In the latter case, you have a general right to object, which we implement without requiring a particular situation to be specified. If you wish to exercise your right to withdraw or object, an email to info@gpm-ipma.de. is sufficient.
Your personal data will not be disclosed to third parties for any purposes other than those listed below. We only share your personal data with third parties if:
In addition, our processors receive your personal data for processing on our instructions, insofar as this is necessary for fulfilling the contract. Our processors have no independent right to use your data.
If our event takes place at the premises of a cooperation partner, that partner may carry out admission or security checks in individual cases. For this purpose, it is necessary for us to provide the participant list to the partner. Our legal basis is Art. 6(1) Sentence 1 lit. b) GDPR. The partner only uses the data for admission checks to our event. Afterward, the participant list must be destroyed by the partner. You can find more information about data protection under the link to the cooperation partner’s data protection information specified on the registration form.
During your visit to our website, we use the widespread SSL (Secure Socket Layer) procedure in conjunction with the highest level of encryption supported by your browser, generally 256-bit encryption. If your browser does not support 256-bit encryption, we switch to 128-bit v3 technology. You can see whether an individual page of our website is transmitted in encrypted form by the closed key or lock symbol or by the use of “https” before the address of our (sub)website. We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
We only transfer data to third countries in accordance with legal provisions. The permissibility of data transfer to third countries is governed by Art. 44 et seq. GDPR. If we transfer your data to a third country, you will be informed of this in the specific data protection information for the respective processing operation, along with details of the relevant legal provisions.
When you access our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:
We process the aforementioned data for the following purposes:
The legal basis for data processing is Art. 6(1) Sentence 1 lit. f GDPR. Our legitimate interest lies in operating our website and presenting our organization. Your data will be deleted once they are no longer required for the stated purposes, at the latest after 6 months.
If you have any questions, we offer you the opportunity to contact us using the details provided. Through these contact options, we process the data that you submit by using the respective communication method. Data processing for the purpose of contacting us is based on Art. 6(1) Sentence 1 lit. f GDPR, stemming from our legitimate interest in communicating with our customers and responding to incoming inquiries. The personal data collected will be deleted once your inquiry has been dealt with. If your inquiry is aimed at concluding a contract, Art. 6(1) Sentence 1 lit. b) GDPR serves as the legal basis. In this case, we store your data for the duration of the statutory retention periods.
If you have expressly consented pursuant to Art. 6(1) Sentence 1 lit. a GDPR, we will use your email address to regularly send you our newsletter. To receive the newsletter, it is sufficient to provide an email address and your name. We use your name so that we can address you personally in the newsletter. You can also voluntarily choose your GPM region and the topics of the newsletter to receive corresponding information. Unsubscribing is possible at any time, for example via a link at the end of each newsletter. Alternatively, you can send your unsubscribe request at any time to info@gpm-ipma.de. We store your data until you withdraw your consent.
We use the “mailingwork” tool from mailingwork GmbH, Birkenweg 7, 09569 Oederan, to send and analyze our newsletter. mailingwork processes the data only on our instructions and has no independent right to use it.
We use analysis tools in our newsletters to see whether a newsletter has been opened and which links were clicked. This enables us to optimize future newsletters and provide you with individualized newsletter information. You can find more information at: mailingwork.de.
Tracking takes place only with your consent pursuant to Art. 6(1) Sentence 1 lit. a GDPR, which you grant when signing up for the newsletter. You may withdraw this consent at any time by, for example, unsubscribing via the link at the end of each newsletter. Alternatively, you can email your unsubscribe request at any time to info@gpm-ipma.de.
Once you unsubscribe from the newsletter, your data will be deleted.
We use cookies, analysis tools, plugins, and other third-party elements on our website. Cookies are small files that your browser automatically creates and stores on your device (laptop, tablet, smartphone, etc.). Cookies do not harm your device, nor do they contain viruses, trojans, or other harmful software. Cookies store information related to the specific device used. However, this does not mean we can directly identify you. Analysis tools evaluate user behavior on the website and enable the operator to record and assess visits to their own website. Plugins and other third-party elements are used to integrate content or other services from such providers into a website.
Our use of required cookies and similar tools is aimed at providing website services and making our offering more convenient for you. We process your personal data collected by these cookies and tools based on our legitimate interest in presenting our organization and the services offered on the website you have accessed, as well as to enhance user-friendliness. The legal basis for processing is Art. 6(1) Sentence 1 lit. f GDPR. Most browsers automatically accept these cookies and similar tools. However, you can configure your browser so that no cookies or similar tools are stored on your computer or a notification always appears before any such cookie or tool is placed. Completely disabling them may mean the website does not display correctly or that you cannot use all the functions of our website. You can find specific function descriptions, potential data recipients, information about any data transfer to a third country, and the storage periods in the following notes on each required cookie or similar tool and the associated processing operations.
We use cookies to obtain and manage website users’ consent for data processing. This processing is necessary for us to fulfill a legal obligation (Art. 6(1) Sentence 1 lit. c GDPR). Using cookies, the following data are processed:
This cookie is stored in the browser for 12 months, ensuring your cookie preference is retained for subsequent page requests.
The following third-party cookies, analysis tools, plugins, and other third-party elements that we use are only employed with your explicit consent, and thus on the basis of Art. 6(1) Sentence 1 lit. a GDPR. You can withdraw your consent at any time with future effect. To do so, you can click on the security icon at the bottom left of the website and make the desired changes.
If you do not grant or withdraw consent, the website may not display correctly or you may not be able to use all the website functions. We use the third-party cookies, analysis tools, plugins, and other third-party elements to ensure the design of our website meets users’ needs and to continuously optimize it. In addition, we use tracking measures to statistically record the use of our website and evaluate it for the purpose of optimizing our offering for you. Details on each function, potential data recipients, information about any data transfer to a third country, and storage periods can be found in the following notes on each data processing operation that uses third-party cookies, analysis tools, plugins, and other third-party elements.
For the purpose of designing our website in line with your needs and continuously optimizing it, we use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter referred to as “Google”).
Google Analytics uses cookies that enable an analysis of your use of our website. The information collected by the cookies about your use of this website is usually transferred to a Google server in the US and stored there.
We use the User ID feature. With the help of the User ID, we can assign a unique, permanent ID to one or more sessions (and the activities within those sessions) and analyze user behavior across devices.
We use Google Signals. This collects additional information in Google Analytics about users who have enabled personalized ads (interests and demographic data) and allows ads to be delivered to these users in cross-device remarketing campaigns.
In Google Analytics 4, IP anonymization is enabled by default. Due to IP anonymization, your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the US and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
During your visit to our website, your user behavior is recorded in the form of “events” (e.g., scrolls, page views, clicks, start of session, page views).
The following data is collected:
The information is used to evaluate the use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage for the purposes of market research and to tailor the website to your needs.
Your data will be transferred to Google. The parent company of Google Ireland, Google LLC, is based in California, USA. The European Commission has issued an adequacy decision for the USA and Google LLC is certified under the EU-US Data Privacy Framework. The transfer is therefore carried out in accordance with Art. 45 GDPR.
The data sent by us and linked to cookies will be automatically deleted once a month after 2 months.
The legal basis for this data processing is your consent in accordance with Art. 6 para. 1 subpara. 1 lit. a GDPR. The transfer of your data to the USA is based on an adequacy decision pursuant to Art. 45 GDPR. Google is certified under the EU-US Data Privacy Framework.
You can revoke your consent at any time with future effect by adjusting your settings via our cookie banner. The lawfulness of the processing carried out until the revocation remains unaffected.
You can also prevent the storage of cookies from the outset by adjusting your browser software settings accordingly.
For more information about Google Analytics' terms of use and Google's privacy policy, please visit https://marketingplatform.google.com/about/analytics/terms/de/ and https://policies.google.com/?hl=de.
We use Google Tag Manager (hereinafter “Tag Manager”) from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter “Google”). Tag Manager is a tool that helps globally organize website tags. Tags are small snippets of code generated by analytics tools (e.g., Google Analytics).
Tag Manager itself does not set cookies. It simply serves as a management tool for data generated by other services. For details on the data provided by these tools, please see the corresponding notes in this privacy notice.
A transfer of data to Google cannot be excluded. Nor can a transfer of data to companies based in the USA be excluded. Likewise, U.S. authorities may be able to access data stored by Google, even if they are on servers located in the EU.
If data are processed outside the EU/EEA and do not meet the European standard for data protection, we have concluded EU standard contractual clauses with the service provider to ensure an adequate level of data protection. The parent company of Google Ireland, Google LLC, is headquartered in California, USA. A transfer of data to the USA and access by U.S. authorities to data stored by Google cannot be excluded. The USA is currently regarded as a third country from a data protection perspective. You do not have the same rights there as in the EU/EEA. You may not have any legal remedies against governmental access.
For the storage duration of data processed with Tag Manager, please refer to the notes on the respective analytics tools in this privacy notice.
For more information on data protection, please see Google’s privacy notices at https://safety.google/intl/de_de/security-privacy/.
We use social plugins from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter “YouTube”) on our website to embed videos that supplement its content. YouTube cookies are only used with your explicit consent on the basis of Art. 6(1) Sentence 1 lit. a GDPR. You can withdraw your consent at any time with future effect. To do so, you can change your settings via the relevant button under each video. Failure to grant consent or withdrawing consent may mean you are unable to view the videos.
These plugins are embedded using what is known as the “two-click” method to best protect visitors to our website. This means that when you load the webpage, your personal data (in particular your IP address) is not automatically transferred to YouTube. Instead, you must first activate the embedded “buttons” and videos by clicking on them. By doing so, you consent to a connection being established to the YouTube servers, and data being transmitted.
We also use the extended data protection mode with “youtube-nocookie” to transmit as little data as possible. Google uses the collected data for its own purposes. If you are logged in to Google at the same time, this information is assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website.
Information is also transferred to the parent company Google Inc. in the USA, as well as other Google entities and Google partners outside the EU. Google is certified under the Data Privacy Framework, meaning that there is an adequacy decision by the European Commission under Art. 45(1) GDPR for transfers to Google in the USA. You can find YouTube’s privacy policy and terms of use at https://policies.google.com/privacy?hl=de
We use the Google Ads tool on our website, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter "Google").
Google Ads allows us to display advertisements in the Google search engine or on third-party websites when users enter specific search terms on Google (keyword targeting). In addition, targeted advertising can be shown based on user data available to Google (e.g. location data and interests) (audience targeting). As the website operator, we can evaluate this data quantitatively, for example by analyzing which search terms triggered the display of our advertisements and how many resulted in clicks.
In the process, cookies may be set and your IP address may be processed. It is possible that the processed data will be transferred to the USA. We have no influence on the further processing and use of the data by Google and therefore cannot assume any responsibility for this. Google is certified under the EU-U.S. Data Privacy Framework, meaning that an adequacy decision by the EU exists for the transfer of personal data to Google in the USA.
For more information on data protection in the context of using Google Ads, please visit: https://policies.google.com/technologies/ads?hl=en
Our website uses Microsoft Clarity, a web analytics service provided by Microsoft Ireland, One Microsoft Place, South County Business Park, Carmanhall And Leopardstown, Dublin, D18 P521, Ireland. Microsoft Clarity helps us to better understand user behavior on our website and improve the user experience. For this purpose, personal data such as your IP address (anonymized), usage data (mouse movements, clicks, scrolling behavior), and technical data (browser type, operating system, screen resolution) are processed. The data collected is used to analyze and optimize the usability of our website. This helps us to better tailor the content and functions of our website to the needs of users.
The data is processed on the basis of your consent in accordance with Art. 6 para. 1 subpara. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future.
The data will be stored for a maximum period of 12 months and then deleted.
The data collected is transferred to the parent company of Microsoft Ireland, Microsoft Corp., 1 Microsoft Way Redmond, WA 98052, in the USA, where it is processed. An adequacy decision has been made by the European Commission for the USA, and Microsoft Corp. is certified under the EU-US Data Privacy Framework. The transfer is therefore based on Art. 45 GDPR.
Further information on data protection by Microsoft can be found at https://www.microsoft.com/de-de/privacy/privacystatement.
This Privacy Notice is currently valid as of December 2024. Due to the further development of our website and offers or due to changes in legal or regulatory requirements, it may become necessary to amend this Privacy Notice. The most recent Privacy Notice can be accessed and printed out at any time on the website at gpm-ipma.de/impressum-datenschutz-1.