Datenschutzerklärung/Data Protection Declaration


  • General
  • Responsible Body
  • Contact Data of the Officially Appointed Data Protection Officer
  • Purposes and Legal Bases of Data Processing
  • Categories of Data
  • Recipients or Categories of Recipients of Personal Data
  • Transmitting Personal Data to a Third-Party Country or International Organisations
  • Duration of Storage of Personal Data

 


 

This data protection declaration [1] applies to the following learning platform: https://ilearn.th-deg.de

 

General

Data protection is both our concern and a statutory obligation. In order to appropriately protect the security of your data when transmitting them, we use relevant encryption methods such as SSL/TLS, and secure technical systems based on state-of-the-art technology.
For the websites, we use Javascript as an active component. If you have disabled this function on your browser, you will receive a message to (re-)activate it.

 

Responsible Body

Technische Hochschule Deggendorf (Deggendorf Institute of Technology, or "TH Deggendorf")
represented by its President Prof. Waldemar Berg
Dieter-Görlitz-Platz 1, 94469 Deggendorf
Phone: 0991/3615-0, Fax: 0991/3615-297
info@th-deg.de

 

Contact Data of the Officially Appointed Data Protection Officer

Prof. Dr. Sascha Kreiskott
Dieter-Görlitz-Platz 1, 94469 Deggendorf
Phone: 0991/3615-153
datenschutz@th-deg.de

 

Purposes and Legal Bases of Data Processing

We also offer cooperation with other tertiary and educational institutions (Section 16 of the Bavarian Tertiary Education Act, or BayHSchG), the commercial sector and other vocational and professional practitioners (Section 2, Subsection 5, Sentence 2 of the BayHSch) and a platform for teaching, learning and the exchange of views in accordance with Section 55, Subsection 2, Sentence 3 of the BayHSch, Section 3, Subsection 2 of the BayHSch, Section 4, Subsection 1, Sentences 1 and 2 of the Bavarian E-Government Act, or BayEGovG and Section 8, Subsection 1, Sentence 1 of the BayEGovG.
This is the background to the fulfilment of our statutory tasks (Section 6 Subsection 1 (c) of the EU General Data Protection Regulation (EU GDPR). Under certain circumstances you may also use our learning platform or individual elements voluntarily (Section 6 Subsection 6 Subsection 1 (a) of the EU GDPR).
We use cookies, log files, profile data and use files in pseudonymised or anonymised form for purposes of analysis, to carry out maintenance on or test our web service and to guarantee network and information security in accordance with Section 32, GDPR.

 

Categories of Data [2]

Administration and Course Supervision

For administration and course supervision purposes, we have created function identifiers and personal identifiers with access mechanisms and use these to record alterations we make.

 

Profile Data

Log-in data are required in order to use the platform; for messages we require your email address. You can select your time-zone, country, city or language, upload an image for your profile, add further details to your name and publish further contact information. The data from the standard university account are used as log-in data for members of the Technische Hochschule Deggendorf (students and employees).
The content data of the platform are your role, tasks, questions, discussion posts, answers and solutions etc. Your first and last name will be shown in the courses you have enrolled in. There is also a comprehensive, freely configurable message system. The lecturer for each course regularly assesses the courses. Each course instructor may assign other people to carry out tasks in iLearn. This means that those people will gain access to user files.
Each course instructor may include web conference rooms. In doing so, the equipment of the DFN (Verein zur Förderung eines Deutschen Forschungsnetzes e.V./Association for the Promotion of a German Research Network) will be used. You will find more information on data protection for web conference rooms of the DFN at: https://www.vc.dfn.de/fileadmin/dokumente/Datenschutz_bei_Adobe_Connect.pdf.

 

Log Files

When you call up these or other internet sites, you send data to our web server via your internet browser. The following data are recorded during a current connection for communicating between your internet browser and our web server:

  • date and time of the request
  • name of the requested file
  • the page from which the file was requested
  • access status, e.g. "File transmitted", "File not found"
  • web browser, screen resolution and operating system used
  • the full IP address of the requesting computer
  • the quantity of data transmitted

 

Cookies

The e-learning system (iLearn) of DIT uses cookies. Cookies are text files that are stored in the Internet browser on the user’s computer system. When a user visits a website, a cookie may be stored on the user’s operating system. This cookie contains a distinctive character string that allows the browser to be uniquely identified when the website is visited again.

Categories

We use cookies for different purposes and with different functions. We make a distinction depending on whether the cookie is required for technical reasons, for how long it is stored and used, whether this cookie was set by our platform itself or by a third party and by what provider.

Technical requirement

Cookies required for technical reasons: We use certain cookies because they are required for our platform and its functions to work properly (session cookies).
Cookies not required for technical reasons: Cookies that are not required for technical reasons serve to improve the convenience and performance of our platform or to save certain settings you have made (e.g. “MoodleID”).

Period of storage, possibility of objection and elimination

Session cookies: Most cookies are only required for the duration of your session and are deleted again or lose their validity once you close your current browser session.
Permanent cookies: Cookies of the “MoodleID” type are stored for a longer, predefined period of time, for example to recognise your login data when you access the system again at a later point and to be able to retrieve saved settings.
Cookies are stored on the user’s computer, which transmits them to this website. You as the user have full control over the use of cookies at all times. You can disable or restrict the transmission of cookies by making specific settings in your Internet browser. You can delete the cookies stored at any time.
If you disable cookies that are required for the DIT e-learning system for technical reasons, you may no longer be able to use all functions of the system to their full extent.
The following cookies are used by iLearn and the following data are stored therein and transmitted:

  • MoodleSession
    Technical requirement: Yes
    Period of storage: Session cookie (at the end of the browser session – i.e. when the browser is closed)
    Provider: DIT e-learning system (Moodle)
    Purpose: This cookie identifies logged-in users by an anonymous ID and stores their login data for the current session in iLearn. It must be enabled to ensure that the user remains logged in from page to page when using Moodle.
  • Shibboleth-Session (shibsession + saml_idp)
    Technical requirement: Yes
    Period of storage: Session cookie (at the end of the browser session)
    Provider: DIT e-learning system (Moodle)
    Purpose: These cookies must be enabled to ensure that you can log in to the system with your university login data. The university uses Shibboleth (single sign-on) for authentication. After successful login, a cookie specific to that user’s session is set and used to associate the rest of that session’s requests back to the user’s login information. The cookie itself contains an opaque, pseudo-random value and no other information.
  • MoodleID (login cookie)
    Technical requirement: No
    Period of storage: Permanent cookie
    Provider: DIT e-learning system (Moodle)
    Purpose: This cookie serves convenience; it stores the login name in the Web browser. This cookie is retained after logging out of the e-learning system, so the login data is already entered the next time the user wants to log in. Enabling this cookie is not absolutely essential.
  • Matomo mtm_consent (tracking cookie)
    Technical requirement: No
    Period of storage: Permanent cookie
    Provider: DIT Matomo server (on premise)
    Purpose: When a video is accessed in the player, this cookie transmits anonymised usage data to the internal DIT server. These include anonymised data relating to information on contents accessed, actions carried out by the user (e.g. play, pause, fast forward) and time ranges of the contents played.

 

Communication

If you wish to raise a matter with us or give us your opinion on the platform by email, the ticket system, post or phone, the information you provide will be processed for the purposes of handling this matter and for any possible supplementary questions and exchange of opinions. To do this, we will always use the same method of communication unless you want to alter this or if a change is absolutely necessary for handling the matter you have raised.

 

Recipients or Categories of Recipients of Personal Data

Plagiarism detection

To check for plagiarised work in exercises etc. we use the software from the service provider Urkund (Prio Infocenter AB).
In the past we used two solutions from the service provider Turnitin LLC (Ephorus and Turnitin) to ckeck for plagiarised work in exercises. The plagiarism detection by Turnitin LLC was deactivated for productive operation in 07/2019.

 

Opencast video server and iLearn

By using the learning platform iLearn, you automatically have the opportunity to use the integrated Opencast video platform, where most videos made available in iLearn can be found. To use Opencast, you do not need to log in again, because the platform uses the so-called single sign-on procedure, allowing you to automatically watch videos stored on the video platform with your respective user rights after you have logged in to iLearn. Both systems use Shibboleth for authentication and are linked to the user’s university account.
When you use Opencast, the following information stored in iLearn is automatically linked to your account in Opencast and stored:

  • Name
  • First name
  • iLearn username
  • Email address

 

Media usage analysis by Matomo

The iLearn learning management system uses Matomo to create usage statistics in respect of audio-visual contents. For this purpose, the usage information generated by the cookie is transmitted to our internal university server and stored for usage analysis purposes, which serves to optimise the video server. In this process, your IP address and user data are anonymised, which means that you as the user remain completely anonymous.

Extent of data processing

The Matomo open source software (formerly PIWIK) is only active in the video player and is stored in its entirety for media analysis purposes. When videos are accessed, the following data are stored:

  • Information on the contents accessed
  • Actions carried out by the user (e.g. play, pause, fast forward)
  • Time ranges of the contents played

The data are sent to the Matomo server of DIT for processing. Only there are the personal data stored in non-aggregated form. Data aggregated by content may be passed on in anonymised form to the respective persons in charge of the contents and/or the point of contact.

 

Transmitting Personal Data to a Third-Party Country or International Organisations

All our service providers are certified under the EU-US Privacy Shield and visible to every person, so that there is a legally appropriate level of protection for personal data::
Youtube (Youtube LLC) unter Google LLC https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

 

Duration of Storage of Personal Data

Log Files

Are normally stored as personal data for 365 days.

Administrative Access

Personalised administrative access to our platform is subject to restricted processing after the departure of the member of the TH Deggendorf concerned and is deleted one year after the date on which this person departed.

Profile Data

Profile data about our platform concerning each member of TH Deggendorf (Deggendorf University of Applied Science) are deleted two years after the end of the year of departure.
The content you have created on the platform and which is not covered by the provisions of any examination regulations is kept in pseudonymised form for teaching and research purposes.

Cookies

The storage duration of the respective cookies is listed in the overview of the existing cookies.

Communication

Postal communications, emails and messages are deleted six years after the end of the year in which the matter concerned was raised.

 


 

[1] Regulatory authorities consider the term "Data Protection Declaration" to be partially misleading. As an alternative, the term "Information for Data Processing and Data Protection" might equally be selected. However, the regulatory authority responsible for Bavarian state tertiary educational institutions has chosen to use the term "Data Protection Declaration"
(as at 2 May 2018: https://www.datenschutz-bayern.de/ODSP.htm
[2] According to the wording of Section 13 of the EU GDPR, this is not necessary but the data categories should be named in requests for information.