The Bundesarchitektenkammer e. V. – Federal Chamber of German Architects (“We”) operates the www.bak.de website, including the sites at www.nax.bak.de, www.besser-mit-architekten.de and www.tag-der-architektur.de (“Websites”). The use of our Websites is in general possible without any need to enter personal data. If personal data are collected on our Websites (including, for instance, name or e-mail addresses), this takes place for the stated purpose and on a voluntary basis. These data are never disclosed to third parties unless the stated purpose makes this essential. In this case, we will obtain your consent to their disclosure in advance.
Our Websites are maintained by our contractually bound digital agency, upon which we impose the obligation to observe data secrecy, which has access to our servers for that purpose:
wegewerk GmbH, Saarbrücker Str. 24, 10405 BERLIN, GERMANY
For this purpose, this agency rents server hardware from a hosting service provider which has, however, no regular access to the server:
Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany
Most of the cookies we use are what are known as session cookies. They are automatically deleted after you close your browser program. Other cookies remain stored on your device until you delete them. These cookies enable us to recognise your browser the next time you visit our Websites.
You can set your browser to inform you about the setting of cookies, to permit cookies only in individual cases, to exclude the setting of cookies for particular situations or in general, or to enable the automatic deletion of cookies when you close your browser. If you completely disable cookies, this may impair the functionality of our Websites.
We will ask for your consent to the placing of cookies and the establishment of connections with external services (see below) when you visit our Websites. If you give your consent, this consent will be stored as a cookie in the browser used by your device:
Data and purpose
Storage of consent so that this does not need to be repeatedly requested.
Server log files
Our Websites’ servers automatically store information in what are known as server log files every time the Websites are accessed. The information stored includes the type and the version of your browser program, your operating system, the (full) IP address of your accessing device, the exact time of the request, the URL of the requested file or page, the referrer URL (the page from which you have come to us via a link) and the outcome of the request (the HTTP status code).
We cannot assign these data to particular persons. We do not merge these data with other data sources. We reserve the right to review these data if we become aware of specific grounds for suspicion of unlawful use. To this end, we store the data for 180 days.
Some of our Websites use the open-source Matomo web analysis service (formerly “Piwik"). Matomo is operated on one of our servers. Matomo generates the following cookies:
Data and purpose
Gives the browser an ID to identify a recurring visit
Gives the individual visit (session) an ID to record the click path
If you consent to these cookies, the data generated by the cookie about your use of our Websites will be grouped with the data of other users and stored on our server. These statistics serve to improve the usability of the sites and the usefulness of their content. We keep these statistics for a number of years. The second half of your IP address will be omitted when it is stored to protect your identity.
In this case, an opt-out cookie will be placed on your browser to prevent Matomo from storing your usage data. If you delete your cookies, this will also result in the deletion of the Matomo opt-out cookie. The opt-out will then have to be re-enabled if you visit our Websites again:
Some of our Websites embed functions of individual social networks (hereafter simply called "Services”) which will connect you to the Services as soon as you access the site without requiring you to leave our Websites. The Services will receive the information that you have visited our Websites, along with your IP address. These Services are:
Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
You will recognise the contents of our Websites that are linked with Twitter from the Twitter logo (a small bird).
If you access such a site while being logged into the corresponding Service, your visits to our Websites can be assigned to your user account with this Service. You can prevent this by logging out of the account in question before visiting the site.
Integration of mapping services
The GoogleMaps Service is embedded into the www.tag-der-architektur.de website. The provider is:
Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
If you wish to use the GoogleMaps functions, your IP address must be transmitted to a GoogleMaps server. GoogleMaps stores a cookie for technical reasons. GoogleMaps is embedded to fulfil a core function of the Website, the localisation of objects in your vicinity, at reasonable expense. We think this interest justifies the technically necessary disclosure of data for the implementation of this function.
Data entered into forms
Contact forms / requests
If you send us requests using the contact form, we will store the details you enter into the request form, including your contact details, for the purpose of processing your request and to answer any follow-up questions. We will not disclose this data to anyone else without your consent. Your request will land as an e-mail in the inboxes of the responsible members of staff. Since these members of staff also receive documents which must for legal reasons be stored for up to 10 years, we do not as a rule delete these data until this period has expired. The data entered into forms are additionally kept on the web server for a month for backup purposes and then automatically deleted.
If you would like to receive our newsletter, we will require a valid e-mail address as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive this newsletter. No further data will be collected. We will use this information only to send the requested information. The newsletter will be sent via our servers.
You may at any time revoke your consent to the storage of your data and your e-mail address, and the use thereof to send the newsletter, for example via the “Unsubscribe” link in the newsletter.
We will protect your data as well as we possibly can. Since the transmission of data on the Internet can be subject to security vulnerabilities, absolute protection of data from third-party access is technically impossible. Our Websites use SSL encryption for security reasons and to protect the transmission of confidential contents (such as data that you send us via forms). You can see when a connection is encrypted because the browser address line changes from "http://" to "https://" and a padlock symbol appears in the browser line. If SSL encryption is activated, the data which you send to us cannot be read or changed by third parties.
Under the applicable laws you have various rights regarding your personal data. If you wish to assert these rights, please send your request by which you can be clearly identified via e‑mail or by mail to the below-mentioned address of the Data Controller.
Below you will find an overview of your rights.
a) Right of access
As Data Subject you shall have the right of access according to the provisions of Art. 15 GDPR. This does in particular mean that you shall have the right to obtain from us confirmation as to whether or not personal data concerning yourself are being processed. Where that is the case, you shall furthermore have the right to access to the personal data and information laid down in Art. 15 para. 1 GDPR. These include, for example, the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipient to whom the personal data have been or will be disclosed (Art. 15 para. 1 l(a), (b) and (c) GDPR).
To ascertain the full extent of your right of access, please refer to Art. 15 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
b) Right to rectification
As data subject you shall have the right to rectification according to the provisions of Art. 16 GDPR. This does in particular mean that you shall have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. You shall also have the right to have incomplete personal data completed.
To ascertain the full extent of your right to rectification, please refer to Art. 16 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
c) Right to erasure (‘right to be forgotten’)
As data subject you shall have the right to erasure (‘right to be forgotten’) according to the provisions of Art. 17 GDPR. This means that you shall generally have the right to obtain from us the erasure of personal data concerning you without undue delay and we shall have the obligation to erase personal data without undue delay where one of the grounds laid down in Art. 17 para. 1 GDPR applies. This can for example be the case if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed (Art. 17 para. 1 (a) GDPR). As far as we have made the personal data public and are obliged pursuant to paragraph 1 to erase the personal data, we, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of, those personal data. (Art. 17 para. 2 GDPR). The right to erasure (‘right to be forgotten’) shall exceptionally not apply to the extent that processing is necessary according to the reasons described in Art. 17 para. 3 GDPR. This can for example be the case regarding compliance with a legal obligation or regarding the establishment, exercise or defence of legal claims (Art. 17 para 3 (a) and (e) GDPR).
To ascertain the full extent of your right to erasure (‘right to be forgotten’), please refer to Art. 17 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
d) Right to restriction of processing
As data subject you shall have the right to restriction of processing according to the provisions of Art. 18 GDPR. This means that you shall have the right to obtain from us restriction of processing where one of the conditions laid down in Art. 18 para. 1 GDPR applies. This can for example be the case if the accuracy of the personal data is contested by you. In this case, the restriction of processing is carried out for a period enabling us to verify the accuracy of the personal data (Art. 18 para. 1 (a) GDPR). Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future (Art. 4 No. 3 GDPR).
To ascertain the full extent of your right to restriction of processing, please refer to Art. 18 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
e) Right to data portability
As data subject you shall have the right to data portability according to the provisions of Art. 20 GDPR. This means that you shall generally have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point (b) of Article 6(1); as well as where the processing is carried out by automated means (Art. 20 para. 1 GDPR). In exercising your right to data portability pursuant to paragraph 1, you shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible.
To ascertain the full extent of your right to data portability, please refer to Art. 20 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
f) Right to object
As data subject you shall have the right to object according to the provisions of Art. 21 GDPR.
Your right to object shall be explicitly brought to your attention by us at the latest at the time of the first communication with you. Below, you will find detailed information on this subject:
As data subject you shall have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6 (1), including profiling based on those provisions.
Where you object on grounds relating to your particular situation we shall no longer process the personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
To ascertain the full extent of your right to object, please refer to Art. 21 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
Where personal data are processed for direct marketing purposes, you shall have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
Where you object to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes
To ascertain the full extent of your right to object to processing for direct marketing purposes, please refer to Art. 21 GDPR, which you can find at the following link: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=de
g) Right to withdraw your consent
Where personal data are processed based on consent according to Art. 6 para. 1 (a) or Art. 9 para. 2 (a) GDPR, you as data subject shall have the right according to the provisions of Art. 7 para. 3 GDPR to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Prior to giving consent, you shall be informed thereof by us.
h) Right to lodge a complaint with the supervisory authority
As data subject you shall have the right according to the provisions of Art. 57 para. 1 (f) GDPR to lodge a complaint with the responsible supervisory authority. The supervisory authority responsible for us is:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstraße 219, 10969 Berlin, Germany
Telephone:+49 (0) 30 13889-0
Bundesarchitektenkammer e. V.
Dr. Tillman Prinz
Askanischer Platz 4, 10963 Berlin, Germany
Telephone: +49 30 26 39 44 0
Data Protection Officer
Should you be dissatisfied with our handling of your data, we would ask you to get in touch with us. You have also the right to lodge a complaint with the competent authorities