Privacy Policy

The following notices provide an overview of what happens to your personal information on when you visit our website. We inform you about your rights regarding your personal data and describe how, when and for what purposes we collect and process personal data.

Personal data are all data that personally identifies you. When you use this site, personal data (IP addresses, contact data, user data, etc.) is collected to the extent necessary for its operation, but as little as possible. We treat this data confidentially in accordance with the statutory data protection regulations and this privacy policy.

We would like you to note that internet-based data transmission (e.g. when communicating by electronic mail) may have security gaps. Absolute protection of data against access by third parties may not be guaranteed.


The “controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. It is the contact for all questions concerning the assertion of your rights. The controller for this website is:

Karlsruhe Institute of Technology (KIT)

Kaiserstraße 12

76131 Karlsruhe


Phone: +49 721 608-0

Fax: +49 721 608-44290


The Karlsruhe Institute of Technology is a corporation governed by public law, represented by its president Prof. Dr.-Ing. Holger Hanselka.

French-German Institute for Environmental Research (DFIU)

Contact person:

  1. A. Kira Schumacher

Phone:  +49 (0)721 608 44572


Our Data Protection Commissioner can be contacted at or by ordinary mail with “Die Datenschutzbeauftragte” (the data protection commissioner) being indicated on the envelope.

What are your rights regarding your data?

Right of access

You have the right to receive information at any time free of charge about the origin, recipients and purpose of your stored personal data.

Right to data portability

You have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format if the processing is carried out by automated means and is legally based on your consent.

Right to rectification, erasure and restriction of processing

You have the right to request the correction or deletion of your personal data or the restriction of its processing. A possible deletion does not include data that we are obliged to keep due to administrative, legal or security reasons.

Right of withdrawal

Many data processing operations are only possible with your express consent. However, you can withdraw your consent at any time. To do this, simply send an informal e-mail to the contact person. The legality of the data processing carried out until the withdrawal remains unaffected by the withdrawal.

Right to lodge a complaint with a supervisory authority

In the event of violations of data protection law, you have the right to lodge a complaint with the responsible supervisory authority. Supervisory authority of KIT:

The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Baden-Württemberg)

Street address:                 Königstrasse 10 a

70173 Stuttgart


Postal address:                 Post office box 10 29 32

70025 Stuttgart


Phone:                                 +49 711/615541-0

Fax:                                       +49 711/615541-15


Details of data collection and processing

Automatically collected data

The webspace provider of (webgo GmbH, Wandsbeker Zollstr. 95, 22041 Hamburg, Germany) collects and stores information automatically transmitted by your browser in so-called server log files. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • Anonymized IP-Address

This can be used to generate statistics on user behavior, as far as the database allows it. These data are not merged with other data sources. The legal basis is Art. 6 para. 1 lit. f GDPR, which permits the processing of personal data if the controller has an overriding legitimate interest.

Encrypted transmission of actively provided data

No personal data is collected on this page that you actively provide. SSL or TLS encryption is therefore not necessary.


This website does not use cookies.

Security measures

In accordance with Art. 32 GDPR, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons.

Measures shall include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to, access to, inputting, disclosure, securing and separation of data. In addition, we have established procedures to ensure the exercise of data subjects’ rights, deletion of data and reaction to data threats. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and processes, in accordance with the principle of data protection through technology design and data protection-friendly default settings (Art. 25 GDPR).

Legal basis

We inform you about the legal basis of our data processing in accordance with Art. 13 GDPR. If the legal basis is not mentioned in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing in order to fulfil our services and carry out contractual measures as well as answer inquiries is Art. 6 para. 1 lit. b GDPR, the legal basis for processing in order to fulfil our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for processing in order to safeguard our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 para. 1 lit. d GDPR serves as the legal basis.