Don't Miss Out on Seasonal Discounts for Direct and Foundation Year Admissions!

Call us now:

+49 172 9742674

Privacy Policy

Privacy Policy

1. General Provisions

This Privacy Policy is developed in accordance with the requirements of the Federal Data Protection Act (BDSG) and the General Data Protection Regulation (GDPR) and defines the procedure for processing personal data and measures to ensure the security of personal data undertaken by Goseurop (hereinafter referred to as the “Operator”).

1.1. The Operator’s primary goal and condition for conducting its activities is to respect human rights and freedoms in the processing of personal data, including the protection of privacy, personal, and family secrets.

1.2. This Policy applies to all information that the Operator may collect about visitors to the website https://goseurop.com.

2. Key Definitions

2.1. Automated Processing of Personal Data: Processing of personal data using computer technology.

2.2. Blocking of Personal Data: Temporary suspension of personal data processing (except when processing is necessary to clarify personal data).

2.3. Website: A collection of graphic and informational materials, as well as computer programs and databases, providing their availability on the Internet at https://goseurop.com.

2.4. Information System of Personal Data: A collection of personal data in databases and information technologies and technical means ensuring their processing.

2.5. Anonymization of Personal Data: Actions that result in the inability to determine without additional information the affiliation of personal data to a specific User or other subject of personal data.

2.6. Processing of Personal Data: Any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transmission (distribution, provision, access), anonymization, blocking, deletion, and destruction of personal data.

2.7. Operator: A government body, municipal body, legal entity, or individual who independently or jointly with others organizes and/or carries out personal data processing, and determines the purposes of personal data processing, the composition of personal data to be processed, and the actions (operations) performed with personal data.

2.8. Personal Data: Any information related directly or indirectly to a specific or identifiable User of the website https://goseurop.com.

2.9. Personal Data Permitted for Distribution: Personal data for which the subject has given consent for processing and distribution as provided by the Personal Data Law.

2.10. User: Any visitor to the website https://goseurop.com.

2.11. Provision of Personal Data: Actions aimed at disclosing personal data to a specific person or group of persons.

2.12. Distribution of Personal Data: Any actions aimed at disclosing personal data to an undefined circle of persons (transfer of personal data) or making personal data available to an unlimited number of persons, including publication in the media, placement in information and telecommunication networks, or providing access to personal data in any other way.

2.13. Cross-Border Transfer of Personal Data: Transfer of personal data to a foreign country to a foreign government authority, foreign individual, or foreign legal entity.

2.14. Destruction of Personal Data: Any actions that result in the irreversible destruction of personal data with no possibility of further restoration and/or destruction of physical media containing personal data.

3. Operator’s Rights and Responsibilities

3.1. The Operator has the right to:

  • Receive accurate information and/or documents containing personal data from the data subject.
  • Continue processing personal data without consent in the case of withdrawal of consent or a request to cease processing if there are grounds specified in the Personal Data Law.
  • Independently determine the necessary and sufficient measures to comply with the Personal Data Law and related regulations unless otherwise specified by the law.

3.2. The Operator is obligated to:

  • Provide the data subject with information regarding the processing of their personal data upon request.
  • Organize personal data processing in accordance with the applicable laws.
  • Respond to requests and inquiries from data subjects and their legal representatives in accordance with the Personal Data Law.
  • Provide necessary information to the authorized body for the protection of data subjects’ rights upon request within 10 days.
  • Publish or otherwise ensure unrestricted access to this Privacy Policy.
  • Implement legal, organizational, and technical measures to protect personal data from unauthorized or accidental access, destruction, alteration, blocking, copying, provision, distribution, or other unlawful actions.
  • Cease transmission (distribution, provision, access), processing, and destruction of personal data in cases and procedures specified by the Personal Data Law.
  • Fulfill other obligations specified by the Personal Data Law.
4. Rights and Responsibilities of Data Subjects

4.1. Data subjects have the right to:

  • Receive information about the processing of their personal data, except in cases provided by federal laws. Information must be provided in an accessible form, and should not include personal data of other individuals unless legally justified.
  • Request correction, blocking, or destruction of their personal data if it is incomplete, outdated, inaccurate, unlawfully obtained, or not necessary for the stated processing purposes.
  • Opt-in to data processing for marketing purposes.
  • Withdraw consent for personal data processing and request cessation of processing.
  • Appeal to the authorized body for the protection of data subjects’ rights or through legal channels if there are unlawful actions or inactions by the Operator regarding personal data processing.
  • Exercise other rights as provided by the legislation.

4.2. Data subjects are obligated to:

  • Provide accurate personal information to the Operator.
  • Notify the Operator of any updates or changes to their personal data.

4.3. Persons who have provided inaccurate information or data about others without consent are liable in accordance with the law.

5. Principles of Personal Data Processing

5.1. Personal data processing is carried out lawfully and fairly.

5.2. Personal data processing is limited to achieving specific, predetermined, and lawful purposes. Processing incompatible with these purposes is not allowed.

5.3. Databases containing personal data should not be merged if the purposes of processing are incompatible.

5.4. Only personal data relevant to the processing purposes should be processed.

5.5. The content and scope of processed personal data should be adequate, relevant, and limited to what is necessary for processing. Excess data is not allowed.

5.6. Accuracy, sufficiency, and relevance of personal data should be ensured. The Operator must take necessary measures to correct or delete incomplete or inaccurate data.

5.7. Personal data should be stored in a form that allows identification of the data subject no longer than necessary to achieve processing purposes unless otherwise specified by federal law.

6. Purposes of Personal Data Processing
  • Purpose of Processing: Collecting and processing documents for university applications, other educational institutions, and employment.
  • Personal Data Collected: Full name, email address, phone numbers, date and place of birth, photographs, citizenship certificate, identity document details, health insurance policy number, address, educational and professional qualifications, income information, school certificates.
  • Legal Basis: Federal Law “On Information, Information Technology, and Protection of Information” No. 149-FZ dated July 27, 2006.
  • Types of Processing: Sending informational emails, collecting, recording, systematizing, accumulating, storing, and transferring data to universities, application platforms, and employers.
7. Conditions for Processing Personal Data

7.1. Processing personal data is based on the consent of the data subject.

7.2. Processing is necessary for achieving goals defined by international agreements or laws, or for fulfilling legal functions, powers, and obligations.

7.3. Processing is necessary for executing judicial acts or other legal decisions.

7.4. Processing is necessary for the performance of a contract with or on behalf of the data subject or for concluding a contract at the request of the data subject.

7.5. Processing is necessary for protecting legitimate interests of the Operator or third parties, provided that it does not violate data subjects’ rights and freedoms.

7.6. Processing of personal data permitted for public access by the data subject or at their request.

7.7. Processing of personal data required to be published or disclosed under federal law.

8. Procedure for Collection, Storage, Transfer, and Other Processing of Personal Data

8.1. Security of personal data is ensured through legal, organizational, and technical measures in compliance with data protection laws.

8.2. Personal data will not be transferred to third parties except as required by law or with the data subject’s consent for contract fulfillment.

8.3. Users can update inaccurate data by contacting the Operator via email at info@goseurop.com with “Update of Personal Data” in the subject line.

8.4. Processing duration is defined by achieving the purposes for which personal data was collected unless otherwise specified by contract or law. Data subjects can withdraw consent by contacting the Operator at info@goseurop.com with “Withdrawal of Consent” in the subject line.

8.5. Information collected by third-party services, including payment systems and communication providers, is handled according to their privacy policies. The Operator is not responsible for third-party actions.

8.6. Restrictions on the transmission or processing of personal data do not apply if required by public interests or federal law.

8.7. Confidentiality of personal data is ensured by the Operator.

8.8. Personal data is stored only as long as necessary for the processing purposes, unless otherwise specified by law.

8.9. Processing ceases upon achieving processing goals, expiration of consent, withdrawal of consent, or detection of unlawful processing.

9. Operator’s Actions with Personal Data

9.1. The Operator collects, records, systematizes, accumulates, stores, clarifies, extracts, uses, transmits, anonymizes, blocks, deletes, and destroys personal data.

9.2. Automated processing of personal data includes receiving and/or transmitting information via information and telecommunication networks or without.

10. Cross-Border Transfer of Personal Data

10.1. The Operator must notify the authorized body for data protection before starting cross-border transfers of personal data.

10.2. Prior to notifying, the Operator must obtain necessary information from foreign authorities or entities involved in the data transfer.

11. Confidentiality of Personal Data

The Operator and other individuals with access to personal data must not disclose or distribute personal data without the data subject’s consent unless required by federal law.

12. Final Provisions

12.1. Users can request clarifications regarding personal data processing by contacting the Operator at info@goseurop.com.

12.2. This document will reflect any changes to the data processing policy. The Policy is effective indefinitely until replaced by a new version.

12.3. The current version of the Policy is available online at https://goseurop.com/pp/

0
    0
    Your Cart
    Your cart is emptyReturn to Shop
    Ready to Study in Germany? Let’s Go!
    Continue Shopping