This website is jointly operated by the European Forum Alpbach non-profit association and the European Forum Alpbach non-profit private foundation. See privacy policy of the non-profit association.
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of legal provisions, in particular Regulation (EU) 2016/679 (General Data Protection Regulation, “GDPR”) and the Austrian Federal Act concerning the Protection of Natural Persons with regard to the Processing of Personal Data (Data Protection Act, “DSG”).
Controller responsible for processing your personal data:
European Forum Alpbach Foundation (non-profit private foundation) (“EFA Foundation”)
Mariahilfer Straße 47/1/2
1060 Vienna, Austria
Phone: +43 (1) 718 17 11
Fax: +43 (1) 718 17 01
Email: foundation@alpbach.org
Data protection inquiries: datenschutz@alpbach.org
Website: www.alpbach.org
We process personal data of:
As a regular visitor to our website, no personal data is processed.
The processing of your personal data is based on the following legal grounds:
Legal Bases: Art. 6 Abs. 1 lit. a GDPR
Description: Consent of the data subject
Legal Bases: Art. 6 Abs. 1 lit. b GDPR
Description: Performance of a contract or pre-contractual measures
Legal Bases: Art. 6 Abs. 1 lit. c GDPR
Description: Compliance with legal obligations (e.g., tax obligations)
Legal Bases: Art. 6 Abs. 1 lit. d GDPR
Description: Protection of vital interests
Legal Bases: Art. 6 Abs. 1 lit. f GDPR
Description: Legitimate interests of the controller
We process the following categories of personal data:
We process your personal data for the following purposes:
Consent to the processing of your data is given during:
You may withdraw your consent at any time with effect for the future. Withdrawal means that we will no longer process your data for the above purposes from that point onward. The lawfulness of processing carried out prior to withdrawal remains unaffected.
To withdraw consent, contact: datenschutz@alpbach.org
Your personal data will be deleted when it is no longer required for permissible purposes or if you withdraw your consent, unless we are legally obligated or otherwise entitled to retain it.
Data may be retained in particular:
Certain categories of personal data may be disclosed to:
plazz AG (Polario) acts as a data processor and provides a service and networking platform for EFA events. Participant contact data is shared to enable platform use. Registration implies acceptance of Polario’s terms and privacy policy.
The EFA Foundation uses the payment service provider Stripe to handle payment transactions in order to enable electronic payment methods (e.g., credit card payments).
When participants use Stripe for payment processing, they are redirected to the corresponding website. The EFA Foundation notes that additional personal data may be collected, processed, and used on the payment service provider’s website. Otherwise, only the terms and conditions and the privacy policy of the selected payment service provider apply.
Stripe, Inc. is headquartered in San Francisco, USA, and operates its European branch through Stripe Payments Europe, Ltd., based in Dublin, Ireland. This means that data may be processed within the EU; however, a transfer of personal data to a third country (USA) cannot be ruled out. Stripe is obliged to implement appropriate safeguards for such transfers in accordance with the GDPR. The EFA Foundation has no influence over Stripe’s data collection and processing.
GDPR Stripe: https://stripe.com/at/privacy
If we process personal data in a third country (outside the European Union or the European Economic Area), or if this occurs in the context of using third-party services or the disclosure or transfer of personal data to third parties, we will only transfer personal data if this is necessary for the performance of our (pre-)contractual obligations, based on your consent, on the basis of a legal obligation, or on the basis of our legitimate interests.
In the case of transfers to third countries without an adequacy decision by the European Commission, we ensure that appropriate safeguards pursuant to Art. 46 GDPR are in place, in particular through standard contractual clauses (Standard Contractual Clauses) or binding corporate rules (Binding Corporate Rules).
In certain cases, the EFA Foundation and the European Forum Alpbach Association jointly process data (Art. 26 GDPR).
This includes:
The EFA Foundation acts as the central contact point:
datenschutz@alpbach.org
Type of processing: Processing of data subjects’ data
Description, purposes, and means of processing: Collection, storage, and management of data subject categories in systems (e.g., databases, website)
Categories of data subjects: Contributors, Arts Scholars, seminar assistants, active function holders, participants, interested parties
Manner of cooperation between the two controllers: Use of the same database for processing certain data subject information
Type of processing: Contributor Management
Description, purposes, and means of processing: Management of contributors of the European Forum Alpbach event, including recruitment and organizational handling (e.g., room allocation)
Categories of data subjects: Contributors, active functionaries, scholarship holders, Arts Scholars
Manner of cooperation between the two controllers: Processing of data in a shared database of both controllers; recruitment and organizational processes (e.g., room allocation) may be carried out by both controllers
Type of processing: Management of active functionaries
Description, purposes, and means of processing: Includes the administration of active functionaries (e.g., advisory board members), such as publishing information on the website and inviting them to events
Categories of data subjects: Active functionaries
Manner of cooperation between the two controllers: Management of data in a shared database.
Type of processing: Arts Scholars management
Description, purposes, and means of processing: Arts Scholars are scholarship holders who take on a role as actors (i.e., experts) during the event
Categories of data subjects: Arts Scholars
Manner of cooperation between the two controllers: (A) selects the candidates and manages them in the shared database; (B) receives access to the data in order to manage the individuals as scholarship holders of the foundation (e.g., sending information)
Type of processing: Seminar assistants management
Description, purposes, and means of processing: Seminar assistants are recurring scholarship holders who take on a role as actors (i.e., contributors) during the event
Categories of data subjects: Seminar assistants
Manner of cooperation between the two controllers: Applicants for seminar assistant positions are managed by (B) in the shared database; (A) is granted access to the data in order to carry out further organizational tasks (in particular regarding the content-related organization of seminar assistant roles at the event)
Categories of data subjects: Contributors
Information obligations: EFA Association and EFA Foundation
Data subject rights: EFA Association and EFA Foundation
Categories of data subjects: Scholarship applicants
Information obligations: EFA Foundation
Data subject rights: EFA Foundation
Categories of data subjects: Scholarship holders
Information obligations: EFA Foundation
Data subject rights: EFA Foundation
Categories of data subjects: Arts Scholars
Information obligations: EFA Association and EFA Foundation
Data subject rights: EFA Association and EFA Foundation
Categories of data subjects: Seminar assistants
Information obligations: EFA Association and EFA Foundation
Data subject rights: EFA Association and EFA Foundation
Categories of data subjects: Active functionaries
Information obligations: EFA Association and EFA Foundation
Data subject rights: EFA Association and EFA Foundation
Categories of data subjects: Participants
Information obligations: EFA Association
Data subject rights: EFA Association
Categories of data subjects: Interested parties
Information obligations: EFA Association and EFA Foundation
Data subject rights: EFA Association and EFA Foundation
Central point of contact: The EFA Foundation acts as the central point of contact for all data subjects regarding data protection matters: datenschutz@alpbach.org
The EFA Foundation may take photographs and videos during events in which individuals may be depicted. The controller and its official event partners may use these photographs and videos on the basis of legitimate interests to provide information about the event and may publish them on social media, websites, in mailings (accessible internationally), and in print media. The recordings also include recordings of online content (e.g., live streams) produced during online events.
The legitimate interests consist in informing a broad audience about the event that has taken place.
In accordance with Art. 21 GDPR, you have the right, on grounds relating to your particular situation, to object at any time to the processing of photographs and videos concerning you that are processed on the basis of Art. 6(1)(e) or (f) GDPR. If an objection is raised, the affected recordings will no longer be processed or will be deleted, where technically and organizationally feasible.
To withdraw consent or object, please contact: datenschutz@alpbach.org
To inform data subjects about future activities and events of the EFA Foundation and the EFA, they receive communications (by email and post). By registering on the website www.alpbach.org for receiving communications, data subjects consent to receiving mailings throughout the year regarding the annual event “European Forum Alpbach” and other events organized by the EFA Foundation and the EFA.
Withdrawal: Data subjects may withdraw their consent to receiving communications by post or email at any time by contacting datenschutz@alpbach.org
As part of sending our newsletters and emails, we use tracking to analyze and optimize the effectiveness and reach of our communications. In doing so, we collect, among other things:
This data helps us to better tailor our content to the interests of our recipients and to improve technical deliverability. Processing is based on voluntary consent in accordance with Art. 6(1)(a) GDPR. Consent may be withdrawn at any time, without giving reasons, with effect for the future.
Receiving the newsletter is, of course, also possible without consent to tracking (Art. 7(4) GDPR).
Our website uses cookies in part. Cookies do not cause any damage to your device and do not contain viruses. Cookies are used to make our services more user-friendly, effective, and secure. Cookies are small text files that are stored on your device and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser on your next visit.
You can configure your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or in general, and to enable the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
Cookies that are necessary for carrying out the electronic communication process or for providing certain functions requested by you (necessary cookies) are stored on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in storing cookies to ensure the technically error-free and optimized provision of its services.
Where other cookies are stored (e.g., cookies for analyzing your browsing behavior), these are treated separately and require your consent in accordance with Art. 6(1)(a) GDPR. No cookie data is disclosed or transferred to third parties.
This website uses functions of the web analytics service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses cookies. The information generated by the cookie about your use of this website is generally transmitted to a server of Google in the USA and stored there.
The storage of Google Analytics cookies is based on your consent in accordance with Art. 6(1)(a) GDPR.
We have activated IP anonymization on this website. As a result, your IP address will be shortened by Google within Member States of the European Union or in other states party to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a server of Google in the USA and shortened there.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide further services related to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data held by Google.
You can prevent the storage of cookies by adjusting your browser software settings accordingly.
In addition, you can prevent the collection of data generated by cookies and related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=de
Our website uses features of the social media network LinkedIn. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time one of our webpages that contains LinkedIn features is accessed, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website using your IP address.
If you click the LinkedIn buttons and are logged into your LinkedIn account, LinkedIn is able to associate your visit to our website with you and your user account. We would like to point out that, as the provider of the website, we have no knowledge of the content of the transmitted data or how it is used by LinkedIn.
Further information can be found in LinkedIn’s privacy policy:
https://www.linkedin.com/legal/privacy-policy
Our website embeds videos from the platform YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you access a page that contains an embedded YouTube video, a connection to YouTube servers is established. In doing so, the YouTube server is informed which of our pages you have visited.
If you are logged into your YouTube account, YouTube may associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. When playing YouTube videos, YouTube may also store cookies on your device or use similar recognition technologies, particularly for analysis and marketing purposes. As the provider of this website, we have no influence over the scope and content of the transmitted data or its further use by YouTube.
Further information can be found in YouTube’s privacy policy:
https://policies.google.com/privacy
Our website contains links to the social network Facebook. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. When you click on a Facebook link, a connection to Facebook’s servers is established. Facebook is thereby informed that you have visited our website with your IP address.
If you are logged into your Facebook account, Facebook may associate your visit to our website with your user account. As the provider of this website, we have no influence over the transmitted data or its further use by Facebook.
Further information can be found in Facebook’s privacy policy:
https://www.facebook.com/policy.php
Our website contains links to the platform Instagram, which is also operated by Meta Platforms Ireland Limited. When you click on an Instagram link, a connection to Instagram’s servers is established. Instagram thereby receives the information that you have visited our website with your IP address.
If you are logged into your Instagram account, Instagram may associate your visit to our website with your user account. As the provider of this website, we have no influence over the scope of the transmitted data or its use by Instagram.
Further information can be found in Instagram’s privacy policy:
https://help.instagram.com/519522125107875
Our website may contain links to content from the platform X. The provider is X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. When accessing a page with such links or embedded content, personal data (e.g., IP address) may be transmitted to servers of X. If you are logged into X at that time, your visit to the platform may be associated with your user account.
We do not receive any information about the content or scope of the transmitted data or its use by X.
Further information can be found in X’s privacy policy:
Under the GDPR, you are entitled to the following rights:
Rights: Right of access
Description: You have the right to obtain confirmation as to whether personal data concerning you is being processed and, where that is the case, access to that data.
Legal Basis: Art. 15 GDPR
Rights: Right to rectification
Description: You have the right to request the correction of inaccurate personal data or the completion of incomplete personal data.
Legal Basis: Art. 16 GDPR
Rights: Right to erasure
Description: You have the right to request the deletion of your personal data, provided that the legal requirements are met.
Legal Basis: Art. 17 GDPR
Rights: Right to restriction of processing
Description: You have the right to request the restriction of the processing of your personal data.
Legal Basis: Art. 18 GDPR
Rights: Right to data portability
Description: You have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format.
Legal Basis: Art. 20 GDPR
Rights: Right to object
Description: You have the right to object at any time to the processing of your personal data on grounds relating to your particular situation.
Legal Basis: Art. 21 GDPR
To exercise these rights, please contact:
If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been infringed, you may lodge a complaint with the competent supervisory authority.
Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at