The Meet and Code project is jointly organized by Haus des Stiftens für Unternehmen & Non-Profits gemeinnützige GmbH ("Haus des Stiftens") and TechSoup Fundacja ("TechSoup"). Haus des Stiftens is the project organizer and TechSoup is the operator of the website www.meet-and-code.org. Further information on data processing in connection with visits to the website by Fundacja TechSoup can be found here: https://www.techsoup.pl/terms-and-conditions#PrivacyPolicy.

With this data privacy statement, we (Haus des Stiftens) would like to inform you which personal data we collect in connection with the organization of the Meet and Code project and your visit to our website and for what purposes this data is used. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior. In this way, we would like to inform you about our processing operations and at the same time comply with legal obligations, in particular those arising from the EU General Data Protection Regulation (GDPR).

1. Name and contact details of the controller

   Haus des Stiftens für Unternehmen und Non-Profits gGmbH
   Landshuter Allee 11, 80637 Munich, Germany
   Phone: +49 (0)89 744 200 210
   E-mail: muenchen@hausdesstiftens.org

   Data Protection Officer:

   Haus des Stiftens für Unternehmen und Non-Profits gGmbH
   Landshuter Allee 11, 80637 Munich, Germany
   E-mail: datenschutz@hausdesstiftens.org

2. Storage duration

   We only store personal data for as long as is necessary to achieve the respective purposes. Further details can be found in the following sections.

   We may have to comply with retention periods prescribed by law. The legal basis for the associated data processing is Art. 6 (1) (c) GDPR (fulfillment of legal obligations). In particular, we have to retain the following data:

   • the content of our commercial and business correspondence for at least 6 years and
   • Accounting documents at least 10 years.

   These retention periods begin at the end of the calendar year in which the respective commercial or business correspondence was received or sent or the accounting document was created.

3. Your Rights

   Upon request, we will be happy to inform you whether and, if so, which data we have stored about you (Art. 15 GDPR).

   If the legal requirements are met, you have the right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) and/or restriction of processing (Art. 18 GDPR) of this data.

   You also have the right to receive from us the data concerning you that you have provided to us in a structured, commonly used and machine-readable format; you may transmit this data or have it transmitted to other bodies (Art. 20 GDPR).

   You also have the right to complain to a data protection supervisory authority about the processing of personal data by us.

4. Right to Object

   You also have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(f) GDPR, including profiling based on these provisions. In this case, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.

   Where we process personal data for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing purposes, which includes profiling to the extent that it is related to such direct marketing. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

5. Transmission by TechSoup and Processing by Haus des Stiftens

   On this website, non-profit organizations interested in funding under the Meet & Code program can register/apply.

   If you apply with your organization for an event sponsorship and possible participation in the awards, TechSoup collects various data as part of the application process, which may mainly represent your organization, but also at least partially personal data (name, e-mail address, position in the organization, and the telephone number of the contact person). This data is transmitted to Haus des Stiftens for project management purposes.

   This data is processed by us for the purpose of providing you with access to event sponsorship and possible participation in the awards. The legal basis for this transfer from TechSoup to Haus des Stiftens and the associated processing of personal data by Haus des Stiftens is Art. 6 (1) (b) GDPR (contract initiation and performance) and Art. 6 (1) (f) GDPR (legitimate interest).

6. Forwarding of data to sponsors

   In order to process the application for event sponsorship and participation in the Meet and Code Awards, organizational data, such as names and contact details of organizations or representatives of organizations and information about the event, are transmitted to the sponsors. The legal basis for this transfer is Art. 6 (1) (b) GDPR (contract initiation and performance). The legal basis for the transfer to sponsors for other purposes is Art. 6 (1) (a) GDPR (consent), insofar as such consent has been granted. You can find the privacy policy of our sponsors here https://www.amazon.de/-/en/gp/help/customer/display.html?nodeId=201909010&ref_=footer_privacy.

7. Reporting and planning purposes

   We also use the anonymized data you provide in your application for reporting and planning purposes.

8. Newsletter

   Haus des Stiftens gGmbH is responsible for the newsletters of the Haus des Stiftens Group for the purposes of data protection law.

   Our newsletters contain information about the Haus des Stiftens Group (Haus des Stiftens für Unternehmen & Non-Profits gGmbH; Haus des Stiftens Invest4Good GmbH; Haus des Stiftens gGmbH; Haus des Stiftens Digital GmbH; Haus des Stiftens Network GmbH) and its products, offers, campaigns and news.

   You can register to receive our e-mail newsletter on our websites, when registering (such as the "Stifter-helfen-Registrierung") and when registering for webinars and similar events. This requires you to provide your e-mail address so that we can send you the newsletter. We will then send an e-mail to the e-mail address you have provided asking you to confirm your e-mail address. Only after you have clicked on the confirmation link in this e-mail will we send you our newsletter (double opt-in procedure). We will only use your e-mail address to send you the newsletter.

   The legal basis for the data processing associated with sending the newsletter, as well as for its analysis and evaluation, for which we use standard market technologies for analysis, range measurement and improvement, is Art. 6 (1) (a) GDPR in conjunction with your consent. You can withdraw your consent at any time and unsubscribe from receiving the newsletter, for example by clicking on the link provided in the newsletter. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

   The legal basis for sending information about our own similar products or services is Art. 6 (1) (f) GDPR (legitimate interest). You can object to this use at any time with effect for the future.

9. Validation of non-profit status with local TechSoup partners

   Before you and your organization can apply for funding and, in the case of participation in the award, for Meet & Code, your organization must register and have its status as a non-profit organization validated. Who carries out this validation depends on the country in which your organization is based. The validation is carried out by the respective TechSoup Europe network partner in the country of the applicant organization (a list of all TechSoup Europe partners can be found at: https://www.techsoupeurope.org/where-we-work/).

   For validation, the data of your organization will be transmitted by TechSoup to a TechSoup Europe partner. The legal basis for this transfer is Art. 6 (1) (b) GDPR (contract initiation and fulfillment). Some of the TechSoup Europe partners are based in a country outside the EU, including in countries for which the EU Commission has not decided that they guarantee an adequate level of protection for personal data. TechSoup ensures an adequate level of data protection with recipients in these countries by concluding the standard contractual clauses of the EU Commission.

   The respective local TechSoup partner is responsible for data processing with regard to this validation. The data protection declarations and terms of use can be found in the table below.