Privacy Notice - Cookies

Data Protection and Privacy Notice / Cookies

 

This Data Protection and Privacy Notice was last modified on April 6, 2020.

 

This notice provides information on how Salzburg Global Seminar, Leopoldskronstrasse 56-58, 5020 Salzburg, Austria („we“) processes personal data.

 

Salzburg Global Seminar is an independent non-profit organization founded in 1947 to challenge current and future leaders to shape a better world. Our multi-year programs aim to bridge divides, expand collaboration, and transform systems.

 

Salzburg Global convenes outstanding talent across generations, cultures and sectors to inspire new thinking and action, connect local innovators with global resources, and foster lasting networks and partnerships for creative, just and sustainable change. Our programs address challenges in the arts, education, environment, finance, health, human rights, rule of law and media.

 

Over 36,000 Fellows from more than 170 countries have come together through our work, with many rising to senior leadership positions. Our historic headquarters at Schloss Leopoldskron in Salzburg, Austria – now also the award-winning Hotel Schloss Leopoldskron – allows us to welcome all participants in conditions of trust and openness.

 

Salzburg Global complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Salzburg Global has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/. The United States Federal Trade Commission has jurisdiction over Salzburg Global’s compliance with the Privacy Shield.

 

1. Key Terms used in this Data Protection and Privacy Notice

 

Below is a list of terms and definitions used in this notice. These terms and definitions are listed in Article 4 of the EU General Data Protection Regulation (“GDPR”).

 

Consent: Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

 

Personal data: Any information relating to an identified or identifiable natural person ('data subject'). An identifiable natural person is one who can be identified, directly or indirectly by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

 

Processing: Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collecting, recording, organizing, structuring, storing, adapting, altering, or retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

 

Recipient: A natural or legal person, public authority, organization, program partner, agency or another body, to which the personal data are disclosed, whether or not a third party. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with European Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.

 

2. Purposes for which we process data

 

We process personal data for the following purposes:

 

a) Hotel bookings for guests, clients, and program participants;

 

b) Administration of program recruitment, travel and participation;

 

c) Production and dissemination of program materials (for example program schedule and participant directory);

 

d) Invitations and promotional events;

 

e) Fellowship communications and networking;

 

f) Program related research;

 

g) Solicitation and fundraising.

 

Purposes for processing your personal data while visiting our website:

 

a) To make this website available to you and to further improve and develop this website

 

b) To create usage statistics (see chapter 5)

 

c) To detect, prevent, and investigate attacks on our website

 

d) To respond to your requests

 

We collect this data when it is provided to us voluntarily, from official program partners, and/or from identified public sources (i.e. publically available websites).

 

In order to operate effectively, transparently, and in compliance with the GDPR, we ask guests, clients, and program participants to provide personal data on a voluntary basis.

 

3. Processed data categories and legal basis of the processing

 

Consistent with Article 6(1) of the GDPR, we process personal data in compliance with to the following provisions of the GDPR:

 

Data for which we need explicit consent (Article 6(1)(a) GDPR):

 

a) Photographs;

 

b) Professional biographies;

 

c) Personal preferences relevant to guests, clients, and participants in our programs that may be considered sensitive data (for example food allergies, specific medical conditions, religious beliefs, etc.)

 

d) Gender Identity

 

Data for which we do not need explicit consent (Article 6(1)(f) GDPR – “legitimate interests”):

 

In accordance with our “legitimate interests” to provide services as part of our operations, we may process the following categories of personal data as an integral part of our service delivery:

 

a) Contact information (for example: title, name, position, institution, address, phone, email);

 

b) Billing data (where appropriate);

 

c) Contractual data (where appropriate).

 

Data we process during your visit of our website:

 

a) Date and time of the visit of our website

 

b) Your IP address

 

c) Name and version of your web-browsers

 

d) The website (url) you visited before the visit of our website

 

e) Specific cookies (see chapter 6)

 

f) The information that you provide yourself (for instance by registering for a session)

 

There is no obligation to actually disclose any information we request you to submit on our website. However, if you do not, you will not be able to use all functions of the website.

 

4. Transfer of personal data

 

We seek to protect and ensure the privacy of all personal data processed as part of our operations. We will never sell or trade the personal data of our guests, clients, or program participants for commercial gain.

 

For the purposes set out in Point 2 above, we may transfer some personal data to organizations with whom we work. These recipients may include:

 

· Travel agents and transport companies;

 

· IT service providers with whom we have contractual relationships;

 

· Event and program partners.

 

Recipients to whom we transfer personal data may be located, or process personal data, in a range of countries. We will only transfer your personal data to recipients:

 

In countries listed by the European Commission as having an adequate level of data protection as determined in accordance with Article 45 of the GDPR and as published in the Official Journal of the European Union [or After taking measures to ensure that the recipient provides an adequate level of data protection compliant with the GDPR, for example by entering into appropriate data transfer agreements based on Standard Contractual Clauses (2010/87/EC and/or 2004/915/EC). Such agreements are accessible upon request from dataprotection@salzburgglobal.org.

 

We will also disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

 

Salzburg Global commits to cooperate with the panel established by the EU data protection authorities (DPAs) and comply with the advice given by the panel with regard to customer data and data collected from website visitors, which is transferred from the EU in the context of providing services to you.

 

Additionally, we shall remain liable under the Privacy Shield if the organization which we share personal information processes such information in a manner inconsistent with the Privacy Shield Principles, unless we prove that we are not responsible for the event giving rise to the damage.

 

5. Google Analytics

 

Our website uses Google Analytics, a web analytics service provided by Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer to help the website analyze how users use the site. We process your data on the basis of our prevailing legitimate interest to cost-efficiently generate easy-to-use website access statistics (Article 6(1)(f) General Data Protection Regulation).

 

The information generated by cookies about your use of our website (including your IP address and the URLs of the pages accessed on our website) will be transmitted to and stored by Google on servers in the United States. We do not store any of your personal data collected in connection with Google Analytics.

 

Our website uses an IP anonymization feature provided by Google Analytics. Your IP address will therefore be truncated/anonymized by Google as soon as it receives it. On our behalf, Google will use this information for the purpose of evaluating your use of our website, compiling synthesis reports on website activity for website operators and providing us with other services relating to website activity and internet usage. Google will not associate your IP address with any other data held by Google.

 

You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this, you may not be able to use the full functionality of our website. You can also prevent Google’s collection and use of your data by downloading and installing the browser plug-in available under https://tools.google.com/dlpage/gaoptout?hl=en-GB.

 

Further information concerning Google’s terms of use and privacy statement can be found at http://google.com/analytics/terms/gb.html or https://www.google.at/intl/en_uk/policies.

 

6. Facebook

 

We use the “visitor action pixels” from Facebook Inc (1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”)) on our website.

 

This allows user behavior to be tracked after they have been redirected to the provider’s website by clicking on a Facebook ad. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by Facebook, which is why we are informing you, based on our knowledge of the situation. Facebook may link this information to your Facebook account and also use it for its own promotional purposes, in accordance with Facebook’s Data Usage Policy www.facebook.com/about/privacy/. You can allow Facebook and its partners to place ads on and off Facebook. A cookie may also be stored on your computer for these purposes.

 

The legal basis for the use of this service is Art. 6 paragraph 1 sentence 1 letter f GDPR. You can object to the collection of your data by Facebook pixel, or to the use of your data for the purpose of displaying Facebook ads by contacting the following address: https://www.facebook.com/settings?tab=ads.

 

Facebook is certified under the Privacy Shield Agreement and thus guarantees compliance with European data protection legislation (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

 

7. Cookies

 

On this website so-called cookies are used. A cookie is a small file that can be stored on your computer when you visit a website. Basically, cookies are used to provide users with additional functions on a website. For example, they may be used to help you navigate a web page, to allow you to continue to use a web page where you left it, or to save your preferences and preferences when you revisit that web page. Cookies cannot access, read or modify any other data on your computer.

 

Most cookies on this website are so-called session cookies. They will be automatically deleted when you leave our website. Permanent cookies, however, remain on your computer until you manually delete them in your browser. We use such permanent cookies to recognize you when you next visit our website.

 

If you want to control cookies on your computer, you can choose your browser settings to get a notification when a webpage wants to save cookies. You can also block or delete cookies if they have already been saved on your computer. If you want to know more about how to set these steps, please use the "Help" function in your browser. Please note that blocking or deleting cookies could interfere with your online experience and prevent them from fully using this website.

 

8. Retention periods

 

Personal data will only be kept for:

 

a) As long as we reasonably consider necessary to achieve the purposes set out under Point 2 above and as permitted under applicable legislation;

 

b) Where there are statutory retention obligations that require us to retain personal data, or;

 

c) In cases where potential legal claims are not yet subject to a statute of limitation.

 

9. Your rights in connection with personal data

 

Consistent with the provisions of the GDPR, you have, among others, the right to:

 

a) Check whether and what kind of personal data we hold about you and to request copies of such data;

 

b) Request correction, supplementation or deletion of your personal data that is inaccurate or processed in non-compliance with applicable requirements;

 

c) Request us to restrict the processing of your personal data;

 

d) Object, in certain circumstances and for legitimate reasons, to the processing of your personal data or revoke consent previously granted for the processing in the future;

 

e) Request data portability;

 

f) Know the identities of recipients to whom your data has been transferred (see 4.2 above); and

 

g) Lodge a complaint with the competent authority.

 

10. Revisions to our Data Protection and Privacy Notice

 

Please note that we may revise its privacy notice at any time without notice. Such changes will take effect immediately upon posting on our website. Such revisions may arise in response to changes in applicable legislation or other factors. We encourage you to periodically visit our website to review Salzburg Global Seminar’s Privacy Notice.

 

11. Our contact details

 

Please address your requests or questions concerning the processing of your personal data to:

 

Salzburg Global Seminar

 

Leopoldskronstrasse 56-58

 

5020 Salzburg Austria

 

dataprotection@salzburgglobal.org

 

Last updated on 6 April 2020.

 

12. Relevant public authority contact details

 

The Austrian data protection authority can be reached the following ways:

 

Österreichische Datenschutzbehörde

 

Wickenburggasse 8

 

1080 Wien

 

Telefon: +43 1 52 152-0

 

E-Mail: dsb@dsb.gv.at

 

13. Additional Complaint Resolution Methods

 

You have the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Privacy Shield compliance not resolved by any of the other Privacy Shield mechanisms. For additional information, please visit: https://www.privacyshield.gov/article?id=ANNEX-I-introduction.

 

Meet the Partners

Sciana: The Health Leaders Network is a programme supported jointly by the Health Foundation (UK), Careum (CH) and the Bosch Health Campus (DE) in collaboration with Salzburg Global Seminar.