This page provides information on the collection of personal data when you use Ulm University Moodle. Personal data is any information concerning you personally, e.g. name, home address, email address, user behaviour.
I. Name and address of the legally accountable institution and contact of data protection officer
Legally accountable institution as per art. 4 para. 7 GDPR (General Data Protection Regulation) is
Value added tax identification number DE173703203
If you have questions concerning data protection, please send an email to the data protection officer or a letter with the additional specification "Datenschutzbeauftragte" to the above-mentioned address.
II. General information on data processing
1. Collection of personal data as part of using Ulm University Moodle and storage of server log files
When you use Ulm University Moodle, we collect the personal data that your browser transfers to our server and which are technically necessary in order to present Moodle to you and ensure stability and safety (legal basis is art. 6 para. 1 s. 1 GDPR):
- Date and time of request
- IP address
- Time zone difference to Greenwich Mean Time (GMT)
- Content of request (access address of the specific Moodle page)
- Access status / HTTP status code
- Volume of transferred data (bytes)
- "Referrer" address, if applicable
- Browser type
- Operating system and surface software
- Language and version of the browser software
We store the above-mentioned data in so-called server log files in order to ensure Ulm University Moodle’s functionality. This also serves to optimise Ulm University Moodle and safeguard the security of our IT systems. The server log files are deleted after 52 days. The collection of data for the provision of access to Ulm University Moodle and the storage in server log files is a necessary requirement for the operation of Ulm University Moodle. There is no option for the user to object.
In addition to the aforementioned data, a session cookie will be stored on your computer when you login to Ulm University Moodle (legal basis for the use is art. 6 para. 1 lit. f GDPR). A cookie is a text file that is created when you visit Ulm University Moodle and stored on your hard drive. When you browse Ulm University Moodle, the browser in which Ulm University Moodle is opened sends the received cookie back to the server. This enables our server to recognize you and serve your personal Moodle content to you. Session cookies are deleted automatically when you logout from Moodle or when the browser is closed.
4. TLS encryption
We use state-of-the-art encryption methods (e.g. TLS) via HTTPS in order to protect the security of your data during transfer.
III. Your rights as "data subject"
You have the following rights with regards to personal data concerning you:
- Right to information and access to your personal data that are stored by us (art. 15 GDPR)
- Right to rectification of inaccurate or incomplete personal data (art. 16 GDPR)
- Right to erasure of stored personal data, so long as their processing is not necessary for the purpose of exercising the right to freedom of speech and information, for the fulfilment of legal obligations, for reasons of public interest or the establishment, exercise or defence of legal claims (art. 17 GDPR)
- Right to restriction of processing of personal data (art. 18 GDPR)
- Right to object to processing that serves our legitimate or a public interest, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims (art. 21 GDPR); you have the right to withdraw your consent to the processing and use of your personal data at any time with effect for the future (art. 7 para. 3 GDPR). In consequence, we must discontinue the data processing which was based on this consent in the future.
- Right to data portability (art. 20 GDPR)
You furthermore have the right to file a complaint with the supervisory authority for data protection regarding the processing of your personal data by us. Responsible supervisory authority is the State Commissioner for Data Protection and Freedom of Information Baden-Württemberg.