Data Privacy

Data Privacy

Information on data protection and data security at the ESMT European School of Management and Technology GmbH. February 18, 2020


1. Introduction

This Privacy Policy applies to the websites of the Berlin Global Dialogue an initiative of the ESMT European School of Management and Technology GmbH (hereinafter referred to as "ESMT Berlin"). Other privacy statements may be applicable to other third-party servers and websites.

Data privacy is of utmost importance to ESMT Berlin and we have taken the appropriate technical and organizational measures to guarantee the utmost security of your data. This enables us to ensure compliance with the legal regulations in Germany. Data protection regulations require that we handle user data properly and for a specific purpose. We will not use user data for purposes other than those stated. We would like to inform you here how we handle your personal data when using our website.

ESMT Berlin is subject to the provisions of the European General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG). We have taken appropriate technical and organizational measures to ensure that the regulations on data protection are followed.

2. Controller

ESMT European School of Management and Technology GmbH
Schlossplatz 1
10178 Berlin
Tel.: +49 30 212 31 0

Further details can be found in the imprint.

3. Data Protection Officer

You may also contact ESMT Berlin’s data protection officer with questions regarding data protection and our privacy policy:

Wolfgang Schmid, Schmid Frank Rechtsanwälte Part GmbB, Katharinengasse 11b, 86150 Augsburg

4. Handling of Personal Data

Personal data is any information relating to an identified or identifiable person;identifiable is an individual person who can be identified directly or indirectly, in particular by assignment to an identifier such as a name, an identification number, location data, an online identification or one or more special characteristics.

5. Collected Data, Purposes of Data Processing, and Legal Basis

a) Visiting our website

Each time a user accesses an ESMT Berlin page and each time a file is retrieved,data about this process is temporarily stored in a log file until their automatic erasure after three months. Depending on the access protocol used, the log data record contains information with the following contents:

  • IP address of the requesting computer
  • Name of the requested file
  • Date and time of the request
  • Access methods/functions requested by the requesting computer
  • Access status of the web server
  • URL from which the file was requested
  • Operating system and browser type or settings.

No user profiles are created, in which IP addresses and personal data are linked. Anything to the contrary shall only apply insofar as this is stated separately in this data protection declaration.

The stored log data is used exclusively for purposes of identification and tracking of unauthorized access attempts/access to the web server, as well as for statistical evaluations such as visitor numbers and page popularity. Only authorized employees of ESMT Berlin carry out the evaluation.

The law fullness of the data processing results from Art. 6 paragraph. 1 sentence 1 lit. f) GDPR. Our legitimate interest is explained above.

b) Registration for special services

If you have given explicit consent in accordance with Art. 6 paragraph. 1 sentence1 lit. a) GDPR, we will store your email address and, depending on the requested service (e.g. newsletter dispatch, activation of test accesses, registration for events and programs, application for study programs), other data also and use it to provide the requested services. Additionally, we may also use your personal information for marketing purposes, such as to inquire about your interest in a particular ESMT program or to generally promote our programs or events. The legal basis for this is Art. 6 para. 1 sentence 1 lit.f) GDPR.

The use of some of our offers, especially the online application procedure for students of the graduate programs, requires a personal password assignment. You must keep this password secret and protect it from access by unauthorized third parties.

You can withdraw your previous consent for the processing of personal data at anytime or object to any processing carried out within the scope of our legitimate interests (Art. 1 para. 1 sentence 1 lit. f GDPR) (

6. Use of Cookies

As part of your visit to our website, we use so-called “cookies”.

These are small text files our web application stores on your computer so that we can identify your Internet browser when you visit.

The popular Internet browsers are set so that they automatically accept cookies. You can de-activate the setting or set your Internet browser so that it informs you if cookies are used and you will be notified as soon as cookies are to be placed.

The data retrieved by cookies is not used to identify you personally.

Permanent cookies are stored on your computer for 100 days and are used to enable you touse our website as comfortably as possible even after your current visit. We use them for displaying individual content to you.

If you do not wish to permit permanent cookies you can de-activate them in your browser. Please refer to the help function in the menu bar of your browser for details on how to proceed. The deactivation of permanent cookies has no influence on the general usability of our website.

Session cookies are stored only until you close your current browser session on your system. They serve to enable you to use our services without restriction for your current visit to our site. This data is anonymized so that you cannot be identified personally. If you do not wish to allow session cookies, you can deactivate them in your browser.

Please find further information on this process in the help function of the menu bar of your browser.

By deactivating session cookies, we cannot guarantee that you will be able to use all of our services without restriction.

7. Links to other Websites and Social Networks

Hyperlinks to various offers by third-party providers, such as social networks, may be integrated in our website in order to allow our users to quickly access the latest information and communicate easily. If you follow these hyperlinks and use social networks, data may be collected by these third-party providers.

8. Data Security

Personal data provided to us by you will be transmitted to us via a secure connection in encrypted form. The security procedure used (SSL - Secure Sockets Layer) ad heres to current technical standards. We use encryption with a 256-bit key. SSL encryption(recognizable by https:// in the address bar of the browser and by a lock symbol in the status bar at the bottom of the browser) is a protocol for encrypting data in the transmission from the web server to the browser. During transmission, the personal data between the user's computer and our SSL server is encrypted using the SSL protocol. [AV2]

9. Automated Decision-Making / Profiling

Automated decision-making / profiling does not take place.

10. Affected Rights and the Right of Appeal to a Supervisory Authority

Each user has the right to receive free information about the data stored about them by ESMT Berlin. In addition, the user has the right to:

  • Correction of incorrect data
  • Restriction of processing
  • Deletion
  • Data portability
  • Withdraw a given consent, Art. 7, paragraph. 3 GDPR.

If your personal data are processed on the legal basis of legitimate interests in accordance with Art. 6 paragraph. 1 sentence 1 letter f) GDPR, you have the right to object to the processing of your personal data in accordance with Art.21 GDPR, if there are reasons for doing so arising from your particular situation or if the objection is directed to advertising. In the last case, you have a general right of objection which we will implement without indicating a special situation.

There is also a right of appeal to the supervisory authority responsible for ESMT Berlin. The contact details are:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219
10969 Berlin
Tel.: +49 30 13889-0
Fax: +49 30 2155050

11. Changes

As ESMT Berlin’s internet offers may be subject to change, it may be necessary in individual cases to make changes to the privacy policy. ESMT Berlin reserves the right to change this Privacy Policy at any time.


We host our website with Webflow. The provider is Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter: Webflow). When you visit our website, Webflow collects various log files including your IP addresses.Webflow is a tool for creating and hosting websites. Webflow stores cookies or other recognition technologies that are necessary for the presentation of the page, to provide certain website functions and to ensure security (necessary cookies).For details, please refer to Webflow's privacy policy: EU & Swiss Privacy Policy | Webflow 91.

The use of Webflow is based on Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in the most reliable presentation of our website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: EU & Swiss Privacy Policy | Webflow 91.

Order Processing

We have concluded an order processing agreement (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

We use cookies to ensure that we give you the best experience on our website. By
continuing on this website, you consent to the use of cookies. Please learn more from
our data privacy declaration.