Protecting your data is of utmost importance to us. Our privacy statements for different groups of data subjects offer a brief overview of the personal data we collect and what it is used for.
We, CAMPUS 02 University of Applied Sciences (abbr. CAMPUS 02), Körblergasse 126, 8010 Graz, Austria, provide you with a newsletter based on your consent pursuant to Art 6 para 1 lit a General Data Protection Regulation (GDPR) which informs you about our range of degree programmes, our events and dates. In doing so, your contact data (in particular e-mail address, first and last name) will be processed. By subscribing to the newsletter, you give your express consent to the processing of your contact data and to the regular receipt of the newsletter. You can revoke your consent at any time with effect for the future at firstname.lastname@example.org or directly upon receipt of the newsletter by clicking on the link provided there.
Registrations for the newsletter in the web are completed via a double opt-in procedure. Double opt-in means that after entering your e-mail address, you will receive an e-mail with a link that you must confirm. If you do not activate the link, you will not receive any further e-mails from us. Exceptions to this are newsletter registrations in the context of events or if you have a contractual relationship with CAMPUS 02.
The data that you disclose as part of the registration for the newsletter will be stored until revoked.
Your personal data is treated as confidential and is generally processed only by CAMPUS 02 staff members internally.
However, data processors who have been commissioned by us can also process data for the purposes mentioned if they can ensure adequate data security. For example, in cases where support is required, external IT service providers can see and process the above-mentioned data categories.
Consent for the transfer of data to the US
The processing of the collected data and the dispatch of our newsletter is carried out via the cloud service Microsoft Dynamics. Hosting is mainly provided within the European Union in accordance with European data protection law. Some services and technical support can also be provided from outside of the EU. Therefore, data transfer to the US is possible in principle.
Following the European Court of Justice (ECJ) ruling C-311/18, no adequate level of data protection can be guaranteed for data transfers to providers which are subject to US surveillance laws. This is mainly due to the far-reaching access rights of US authorities, the lack of need to obtain a court authorisation for such access and the lack of legal protection for EU citizens. This means that data collected from you is subject to the risk of surveillance by US authorities and no appeal can be taken against this.
Please note that we will update this privacy statement from time to time (e.g. due to law amendments, usage of new technology, new study opportunities). We recommend that you regularly check it for updates.
In general, you have right of access, the right to rectification, to erasure, to restrict, to data portability, to withdraw and to object.
Please contact us – we will be happy to help.
If you believe that processing your data violates data protection laws or that your data protection rights have been infringed in some other way, you can also file a complaint with the supervisory authority. In Austria, the competent supervisory authority is the Austrian Data Protection Authority in Barichgasse 40-42, 1030 Vienna, telephone no.: +43 1 52 152-0, e-mail: email@example.com.