June 13-15, 2025
Kosmos
KOSMOS Chemnitz Logo

Privacy Policy

Privacy information for users of our website

§ 1 Information on the collection of personal data

(1) Below we inform you about the processing of personal data in connection with the use of this website. Personal data are all data that relate to you personally. This includes, for example, name, address, email address, user behavior. Through this, we aim to inform you about our processing activities and at the same time fulfill the legal obligations, particularly those arising from the EU General Data Protection Regulation (GDPR).

(2) The responsible party according to Art. 4 Para. 7 of the GDPR is: European Capital of Culture Chemnitz 2025 non-profit GmbH Fabrikstraße 11, 09111 Chemnitz Email: datenschutz@chemnitz2025.de

You can reach our Data Protection Officer at: FARADIT Beratung + Service GmbH Bernsdorfer Straße 291, 09125 Chemnitz (Addendum “Data Protection Officer”) Email: datenschutz@faradit.de.

(3) When you contact us via email, the data you provide (e.g., email address, possibly first name, last name, telephone number) will be stored by us to respond to your inquiry. Legal basis:

  • Art. 6 para. 1 sent. 1 lit. b GDPR (for contract-related inquiries)
  • Art. 6 para. 1 sent. 1 lit. f GDPR (legitimate interest)

(4) If we employ service providers for individual functions, we will inform you below about the respective processes and storage durations.

§ 2 Your Rights

You have the following rights regarding your personal data with respect to us:

  • Right to information
  • Right to correction or deletion
  • Right to restriction of processing
  • Right to object to processing
  • Right to data portability

Furthermore, you have the right to lodge a complaint with a data protection supervisory authority.

§ 3 Collection of Personal Data in Case of Informational Use

When using the website purely for informational purposes, we only collect data that your browser transmits to our server:

  • IP address
  • Date and time of the request
  • Time zone difference to GMT
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Transferred data volume
  • Referrer-URL
  • Browser
  • Operating System
  • Language and version of the browser software

Legal basis: Art. 6(1) sentence 1 lit. f GDPR

§ 4 Additional Functions and Offers of Our Website

(1) Neben der rein informatorischen Nutzung bieten wir weitere Leistungen und Analyse-/Marketingfunktionen an, die ggf. personenbezogene Daten erfordern. (2) Teilweise bedienen wir uns zur Verarbeitung Ihrer Daten externer Dienstleister, die sorgfältig ausgewählt, weisungsgebunden und kontrolliert werden. (3) Bei Dienstleistern mit Sitz außerhalb des EWR informieren wir Sie gesondert.

§ 5 Objection or revocation against the processing of your data

(1) You may revoke your consent at any time. The processing up to the revocation remains lawful. (2) You may object to processing if it is based on a balance of interests. Please provide us with your reasons. (3) You may object to processing for advertising purposes at any time. (4) For revocation or objection, please contact the addresses mentioned in § 1 para. 2.

§ 6 Use of Cookies

(1) We use cookies for various functions. You can adjust your selection via our Cookie Consent Manager when you first visit and later on.

(2) Cookies are text files that store information and are processed by the browser. We use:

  • Transient cookies (e.g., session cookies): Automatically deleted when the browser is closed.
  • Persistent Cookies: Automatically deleted after a preset time; can be manually deleted at any time.

(3) Technically necessary cookies are required for the operation of the website and cannot be deselected. Legal basis: Art. 6 para. 1 sentence 1 lit. f GDPR

(4) We use additional cookies (e.g., for analysis, recognition, advertising) only with your consent. You can revoke this consent at any time. Legal basis: Art. 6 para. 1 sentence 1 lit. a GDPR

§ 7 SSL or TLS Encryption

(1) This website uses SSL/TLS encryption for secure data transmission. This can be recognized by the "https://" and the padlock icon in the browser. (2) Transmitted data cannot be intercepted by third parties.

§ 8 Hosting

(1) This website uses services from:

  • Vercel Inc., 440 N Barranca Ave #4133 Covina, CA 91723, USA
  • Supabase Inc., 970 Toa Payoh North, #07-04, Singapore

(2) Vercel stores, among other things, IP address, browser data, referrer URL. Transfer to the USA is possible. Vercel is DPF-certified. Vercel Privacy PolicyLegal basis: Art. 6 para. 1 lit. f GDPR

(3) Supabase provides the database in Frankfurt. Supabase Privacy PolicyLegal basis: Art. 6 para. 1 lit. f GDPR

§ 9 Profile Creation and Registration

(1) When creating a profile, we process: email address, name, username, company name, description, profile picture, photo gallery, address, website and social links.

(2) Mandatory data: Art. 6 para. 1 lit. f GDPR. Voluntary information: Art. 6 para. 1 lit. a GDPR (revocable at any time)

(3) Profiles and data can be deleted by the user. Deletion occurs as soon as there are no retention obligations or legitimate interests cease to exist.

(4) Registration via "Continue with Google" or "Continue with Facebook" is done through OAuth. Google & Meta are DPF-certified. DPF Participant Information

§ 10 Use of Vercel Analytics

(1) Vercel Analytics anonymously analyzes user behavior. No cookies, no direct personal data. DPF-certified. (2) Session is deleted after 24 hours. Legal basis: Art. 6 para. 1 lit. a GDPR (Consent)

(3) Privacy Policy Vercel

§ 11 Integration of YouTube Videos

(1) YouTube videos in enhanced privacy mode. Data transfer only upon playback. Legal basis: Art. 6 para. 1 sentence 1 lit. a GDPR

(2) YouTube receives IP and other technical data. (3) Data is stored at Google, including in the USA. DPF-certified. (4) Google Privacy Policy

§ 12 Integration of Google Maps

(1) Display of interactive maps. Legal basis: Art. 6 para. 1 sentence 1 lit. a GDPR

(2) Google receives IP address and other data. Upon login, it is linked to the Google account. (3) Data is stored by Google, including in the USA. DPF-certified. (4) Google Privacy Policy

§ 13 Social Media Links

(1) No plugins are used, just simple redirects (links) to Facebook, X (Twitter), WhatsApp, etc.

(2) Google, Meta, and X are DPF-certified. DPF Participant Information

§ 14 Updating this Privacy Policy

We reserve the right to update this privacy policy regularly. Please keep yourself informed about the current status.