Data Policy
Data protection information in accordance with Art. 13 of the General Data Protection Regulation (GDPR).
The project team Invictus Games Düsseldorf 2023 (project team IG23) complies with the obligation to provide transparent information about the processing of personal data on the IG23 website with the following details.
Personal data means any information relating to an identified or identifiable natural person (data subject).
For reasons of better readability, the simultaneous use of masculine and feminine forms of speech is dispensed with. All references to persons always refer to all genders.
Name and contact details of the controller
Controller according to Art. 4 No. 7 GDPR for this website is:
Brigadier General Alfred Marstaller as project manager IG23.
Uerdinger Str. 88-92
40474 Düsseldorf
Data protection officer
In the event of complaints or submissions regarding data processing, the following data protection officer within the meaning of Article 37(1)a GDPR may be contacted.
The data protection officer of the Federal Ministry of Defense (German: DSB GB BMVg)
Ms. Ministerialrätin Dr. Myriam Boeck
Stauffenbergstraße 18
10785 Berlin
Phone: +49 (30) 2004 22470
E-Mail: DSBGBBMVg@bmvg.bund.de
E-Mail (for submissions): DSBGBBMVgEingaben@bmvg.bund.de
ADSB IG23
Uerdinger Straße 88-92
40474 Düsseldorf
Phone: +49 (228) 5504 6092
E-Mail: adsbinvictusgames2023@bundeswehr.org
Purpose and legal basis of processing
The processing of personal data in the cases listed below is basically carried out in the context of the planning, implementation and follow-up of IG23.
The operation of the website (and thus also the guarantee of its security) is necessary for targeted and balanced public relations work by the project team IG23. The associated processing of personal data when visiting the website occurs for this purpose.
The legal basis for the processing is Art. 6(1)e GDPR in conjunction with § 3 BDSG and, if the users have given their consent, Art. 6(1)a GDPR.
h3. Website dataHosting
The website is hosted by the external service provider dogado.pro GmbH. Personal data collected on the website is stored on servers of the service provider and processed by the service provider as instructed exclusively within the framework of a concluded contract with the project team IG23 in accordance with Art. 28 GDPR.
Log files
Each time content on the website is accessed, the following user data is processed. This access data is stored in log files that are only accessible to administrators of the hoster.
- Date and time of access
- IP address
- Visited web page on the website (Uniform Resource Locator – URL)
- HTTP method
- HTTP protocol version
- Success of the access (HTTP status code)
- Protocol (HTTP/HTTPS)
- Amount of data transferred
- Referring website
- Source: Internet or intranet
- Information about the browser (type, version, language) as well as the operating system and the device (type, brand, model)
Use of cookies
Cookies are used on the website to ensure the legitimate and technically correct operation of the website, as well as to provide social media features (embedded podcasts and videos).
Except for essential cookies, the use of all cookies can be consented to individually or their use can be rejected accordingly. For the use of embedded podcasts and videos on the website, the use of the corresponding cookies must be consented to. Changes can be made at any time via the “Cookie Settings” link in the footer of the website. Further information on the cookies used is also available here.
Photographs, audio and video recordings
During IG23, photographs, audio and video recordings are made. These recordings constitute personal data insofar as a person can be recognized in an identifiable manner and the data is processed automatically.
Photographs may be taken by photographers and staff members of the project team IG23, as well as by representatives or agents of the Invictus Games Foundation (IGF). In preparation for possible publication, these photographs may be partially uploaded to a media database of the project team’s processor, Fink und Fuchs AG, via an upload link. Only a small number of authorized members of the project team IG23 will subsequently have access to all the photographic material and will be able to post-process it and release it for publication.
Audio and video recordings will be made during the opening and closing ceremonies by the public television station phoenix, which is operated as a joint facility of ARD and ZDF.
Audio and video recordings are produced during the competition days by the processor ISBC as host broadcaster. Occasionally, these are also produced by staff members of the project team IG23. This audio and video material will be integrated by ISBC and technically provided as a feed (live stream) to the project team IG23for publication.
The photographs, audio and video recordings made may be used by the project team IG23 for information and public relations work and published by the project team IG23 and transmitted to third parties for publication without any restrictions in terms of time, place or content until they are deleted by the project team IG23. This includes publication in TV, print and online media. Publication in social media networks takes place within the framework of the terms and conditions applicable there.
Contact via e-mail
If the project team IG23 is contacted by e-mail, the e-mail address and any personal data contained in the e-mail will be processed.
Integration of third-party providers / social media
The website contains static external links to services and offers of other providers in the area of webshop, ticketing and social media (Facebook, Instagram, YouTube, X / Twitter and LinkedIn). The project team IG23 has no influence on whether these third-party providers comply with the GDPR. It is recommended to check the data protection information of the respective providers when using these external links.
Storage period
The access data is deleted at the latest three months after the respective visit to the website.
The website will be dismantled by the processor Fink und Fuchs AG after IG23 and deactivated on 31/12/2023. This includes the deletion of the access data as well as the photographs, audio and video recordings processed on the website. The photographs, audio and video recordings will be used for information and public relations purposes until the aforementioned date.
Recipients of the data and transfer to third countries and international organizations
The personal data processed on the website are received by the processor of the project team IG23, Fink und Fuchs AG, and its sub-processors.
On 31/12/2023 documentation of the website, including the photographs, sound recordings, and film recordings processed there, will be transferred to the Federal Ministry of Defense.
When using embedded podcasts and videos on the website, data is transmitted to Spotify and YouTube, respectively. In the case of YouTube, this is a transfer to a third country (United States of America), on the basis of an adequacy decision for the EU-US data protection framework of the Commission of the European Union dated 28/02/2023 (Opinion 5/2023).
Provision of personal data
The provision of personal data when visiting the website (access data) is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the personal data. However, personal data is processed in the course of the technical connection to the website. This processing cannot be prevented by the project team IG23.
For the use of social media functions (embedded podcasts and videos), the provision of personal data can be decided actively in the context of consent. Failure to provide the data will result in the inability to use the podcasts and videos embedded on the website.
Automated decision-making including profiling
Automated decision-making including profiling according to Art. 22 GDPR does not take place when processing personal data when visiting the website (access data).
When using embedded podcasts and videos on the website, Spotify or YouTube may combine information transmitted in the process with other data that has already been previously provided to them or that they have collected in the course of using their services.
Data subject rights
In principle, data subjects have the following rights vis-à-vis the controller regarding the processing of personal data concerning them:
Right to information (Art. 15 GDPR).
A data subject may request information about his personal data processed by the project team IG23. The request for information should specify the request in order to make it easier for the project team IG23 to compile the necessary data.
Right to rectification (Art. 16 GDPR).
If the relevant personal data is not (or no longer) accurate or incomplete, the data subject may request that it be corrected or completed.
Right to erasure (Art. 17 GDPR).
A data subject may request the erasure of his personal data. The right to erasure depends, among other things, on whether the data concerning them are needed to fulfill legal obligations.
Right to restriction of processing (Art. 18 GDPR)
A data subject may request restriction of the processing of data concerning him. The restriction does not prevent processing insofar as there is an (important) public interest in the processing.
Right to data portability (Art. 20 GDPR).
A data subject has the right, under certain conditions, to receive personal data concerning him in a structured, commonly used and machine-readable format and to transmit it to another controller.
Right to object (Art. 21 GDPR).
A data subject has the right to object at any time, on grounds relating to his particular situation, to the processing of personal data concerning him. This right cannot be complied with if there is a (predominantly) public interest in the processing or a legal provision obliges data processing.
Furthermore, pursuant to Article 77 of the GDPR, a data subject has the right to lodge a complaint with the following supervisory authority if he is of the opinion that the project team IG23 has not complied with data protection regulations when processing personal data relating to him.
The Federal Commissioner for Data Protection and Freedom of Information (German: BfDI)
Graurheindorfer Str. 153
53117 Bonn
Phone: +49 (228) 997799-0
E-Mail: poststelle@bfdi.bund.de