1. Data Controller
Thüringer Agentur für Europäische Programme e. V.
The Data Controller is responsible for determining the purposes and means of processing your personal data.
2. Personal Data We Collect
We may collect and process the following categories of personal data when you interact with our website:
2.1. Data you provide directly
Name
Email address
Phone number
Company/organization
Information submitted through contact forms
Information submitted when subscribing to newsletters or events
2.2. Automatically collected data
When you visit our website, certain data is collected automatically:
IP address
Browser type and version
Device information
Operating system
Date and time of access
Pages viewed
Referrer URL
This data is collected through standard server logs and cookies.
2.3. Cookies and tracking technologies
We use cookies to:
ensure the website functions properly
improve performance and user experience
analyze website traffic
You can manage cookie preferences through your browser settings.
3. Purposes and Legal Basis of Processing
We process your personal data for the following purposes:
| Purpose of Processing | Legal Basis (GDPR) |
|---|---|
| Responding to contact form submissions | Art. 6(1)(f) – Legitimate interest |
| Sending newsletters or updates | Art. 6(1)(a) – Consent |
| Managing project inquiries and participation | Art. 6(1)(b) – Performance of a contract or pre-contractual steps |
| Website optimization, analytics, and security | Art. 6(1)(f) – Legitimate interest |
| Compliance with legal obligations | Art. 6(1)(c) – Legal obligation |
4. How We Use Your Data
We use your personal data to:
communicate with you and respond to inquiries
manage participation in programs or projects
operate and improve our website
ensure network and information security
comply with reporting obligations related to European programmes
send newsletters or project updates if you have subscribed
We do not sell your data and do not use it for automated decision-making or profiling.
5. Data Sharing
We may share your personal data only with:
Service providers (e.g., IT hosting, email services)
Project partners, funding institutions or European programme operators, when required for project implementation
Public authorities when legally required
All data recipients are contractually obligated to protect your data and comply with GDPR.
6. International Data Transfers
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards such as:
Standard Contractual Clauses (SCCs)
Adequacy decisions
Data processing agreements
We only transfer data when it is strictly necessary for the purposes described in this policy.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by law.
Typical retention periods:
Contact form data: 12–24 months
Newsletter subscription data: until consent is withdrawn
Project-related data: according to programme requirements (often 5–10 years)
Server logs: up to 12 months
After these periods, data is securely deleted or anonymized.
8. Your Rights Under GDPR
As a data subject, you have the right to:
Access your personal data
Rectify inaccurate or incomplete data
Erase data (“right to be forgotten”)
Restrict processing
Object to processing
Data portability
Withdraw consent at any time (if processing is based on consent)
To exercise your rights, please contact us at email shown at the bottom of privacy policy.
You also have the right to lodge a complaint with your local supervisory authority, particularly the Thuringian Data Protection Authority or the authority in your country of residence.
9. Data Security
We implement appropriate technical and organizational measures to protect personal data, including:
SSL encryption
secure servers and firewalls
access controls and authentication
regular security audits
Despite these measures, no transmission over the internet is 100% secure.
10. Links to External Websites
Our website may contain links to external websites.
We are not responsible for the content or privacy practices of third-party sites.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect legal requirements or changes in our operations.
The updated version will always be available on this page.
12. Contact Information
If you have any questions about this Privacy Policy or how we process your data, please contact:
Thüringer Agentur für Europäische Programme e. V.
Email: info@thaep.de
Phone: +49(0)361 21698333
Address: Eugen-Richter Straße 44, 99085 Erfurt
Funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Education and Culture Executive Agency (EACEA). Neither the European Union nor EACEA can be held responsible for them.
©2025 MO-LAB II.
All rights reserved.
