Legal Notice
Mental Health Institute Berlin GmbH
14050 Berlin, Deutschland
Contact
office@mhiberlin.de
LEGAL REPRESENTATIVES
Managing Directors:
Prof. Dr. med. Ion-George Anghelescu
Prof. Dr. med. Michael Dettling
COMMERCIAL REGISTER
Seat of the company: Berlin
Registry Court: Amtsgericht Berlin Charlottenburg
Sales tax identification number: DE 332731210
Tax ID: 27/440/50112
IMAGE MATERIAL
Thomas Beutel
MHI Berlin
Website
Ex Machina Agency
Privacy Policy
1. processing of personal data
In principle, we only obtain personal data from you if you provide it to us of your own accord. This may be the case, for example, if you transmit your data to us in a survey, when registering for personal services, when making a request for information material or similar. The data you voluntarily transmit to us will then only be processed within the EU and only for the purposes stated in section 3.
Use of our contact form
For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. In doing so, it is necessary to provide a valid e-mail address so that we know from whom the inquiry originates and so that we can answer it. Further information can be provided voluntarily. Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO on the basis of your voluntarily given consent. The personal data collected by us for the use of the contact form will be deleted after completion of your request, provided that the deletion is not contrary to any retention obligations.
Newsletter dispatch
In order to always provide you with current information on various topics, we offer a newsletter for different areas. If you register for this, your name and e-mail address will be used exclusively for sending. Your data will not be passed on to third parties for other purposes. Your data will be stored for this purpose until you revoke your consent or until the current information can no longer be delivered to the e-mail address you provided.
2. disclosure of your personal data
Your personal data will not be transferred to third parties for purposes other than those listed below.
We only process your data or pass it on to third parties if:
- you have given your express consent to this in accordance with Art. 6 (1) p. 1 lit. a DSGVO. If such consent has been given, you have the right to revoke it at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
- the processing or disclosure is necessary for the assertion, exercise or defense of legal claims pursuant to Art. 6 (1) p. 1 lit. f DSGVO and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data. Such purposes may be: Defense of liability claims; statistical surveys and business evaluations.
- in the event that there is a legal obligation for the processing or disclosure pursuant to Art. 6 para. 1 p. 1lit. c DSGVO, as well as
- this is legally permissible and necessary according to Art. 6 para. 1 p. 1 lit. b DSGVO for the processing of contractual relationships with you.
3. links to third party pages
Our online offer contains links to websites of other providers. We have no influence on whether these providers comply with the statutory data protection provisions. You should therefore always check the data protection declarations offered. In the course of the further development of Internet pages and the implementation of new technologies, changes to these data protection declarations may also become necessary. We therefore recommend that you regularly reread this data protection declaration.
4. cookies: these data are processed when you visit our website
In order to optimize our website for you, we use cookies: This includes + cookies that are necessary for the operation of our website and others that we use for anonymous web analysis or for improved functions.
Most browsers accept cookies automatically. You can prevent cookies from being stored by setting this in your browser preferences.
We offer you the option of informed consent. You decide for yourself which cookie categories you would like to agree to. To enable you to define your preferences with regard to data protection settings, we inform you here about the categories of cookies that are used on our websites. Please bear in mind that, depending on your selection, not all functions of our website may be available to you.
Under the categories listed, you will find the respective recipients of the data collected by the cookies.
Category: Necessary
Cookies are used on our websites, which store data for technical session control in the memory of your browser. This data is deleted when you close your browser.
Category: Web Statistics (Anonymous Data Collection and Processing)
We use the open source tool Matomo for web analysis. This is used to analyze visitor traffic on the Internet. Matomo uses cookies that are stored on the computer. The information generated by the cookie about your use of the Internet is transferred to our server and stored there. Unlike other widely used web analytics tools such as Google Analytics, this data is not stored on the service provider’s web servers in third countries, where it would be beyond our control. We use this data for statistical purposes and to analyze, develop and improve Internet usage. In principle, the collection of IP addresses is anonymized (through the use of the AnonymizeIP plugin). The last 2 bytes are anonymized.
Likewise, it is generally possible for us to recognize the website from which you reach us and the web pages that you visit on our website. This information can be evaluated for statistical purposes, whereby the individual user naturally remains anonymous.
Every time the website of the responsible party is accessed, i.e. every time a file on this server is retrieved or attempted to be retrieved, data is stored in a log file.
In detail, the following data record is stored about each retrieval:
IP address
Name of the retrieved file
Date and time of retrieval
Data volume transferred
Message whether the retrieval was successful
Message why a retrieval has failed, if applicable
Operating system and browser software of your computer
Screen resolution
Website from which you visit us
The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.
This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf.
In no case will your IP address be merged with other data. The IP addresses are anonymized so that an assignment is not possible (IP masking).
You can decide whether a unique web analytics cookie may be placed in your browser to enable the website operator to collect and analyze various statistical data.
You can change your personal settings at any time via the Cookie Settings button in the footer of our websites and update them by reloading the page.
Category: Video & Cards
We use these cookies to provide you with better information and to make our website easier to use.
Google Maps
Our website uses Google Maps to display interactive maps for location searches and to create directions. Google Maps is a map service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. By using Google Maps, information about the use of this website, including your IP address and the (start) address entered as part of the route planner function, may be transmitted to Google in the USA. When you call up a web page on our website that contains Google Maps, your browser establishes a direct connection with Google’s servers. The map content is transmitted by Google directly to your browser, which then integrates it into the website. Therefore, we have no influence on the scope of the data collected by Google in this way. According to our knowledge, this is at least the following data:
Date and time of the visit to the website in question,
Internet address or URL of the accessed web page,
IP address, (start) address entered as part of route planning.
We have no influence on the further processing and use of the data by Google and therefore cannot assume any responsibility for this.
If you do not want Google to collect, process or use data about you via our website, you can deactivate JavaScript in your browser settings. In this case, however, you will not be able to use the map display.
For the purpose and scope of the data collection and the further processing and use of the data by Google, as well as your rights in this regard and setting options for protecting your privacy, please refer to Google’s privacy policy (https://policies.google.com/privacy?hl=de ).
YouTube
Our website uses plugins from the YouTube site operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.
When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.
If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
For more information on the handling of user data, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy
Contact form/ reCAPTCHA
What is reCAPTCHA?
Our primary goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA of the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With reCAPTCHA we can determine whether you are really a flesh and blood human being and not a robot or other spam software. By spam we mean any unsolicited information sent to us electronically. With the classic CAPTCHAS, you usually had to solve text or image puzzles to verify the information. With reCAPTCHA from Google, we usually don’t have to bother you with such puzzles. Here, in most cases, it is enough to simply check a box to confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don’t even have to set a checkmark anymore. You’ll learn exactly how this works and, more importantly, what data is used to do it later in this privacy policy.
reCAPTCHA is a free captcha service from Google that protects websites from spam software and abuse by non-human visitors. Most commonly, this service is used when you fill out forms on the web. A captcha service is a kind of automatic Turing test, designed to ensure that an action on the Internet is performed by a human and not by a bot. In the classic Turing test (named after computer scientist Alan Turing), a human determines the distinction between a bot and a human. In captchas, the computer or a software program also does this. Classic captchas work with small tasks that are easy for humans to solve, but present significant difficulties for machines. With reCAPTCHA, you no longer have to actively solve puzzles. The tool uses modern risk techniques to distinguish humans from bots. Here, you only need to check the “I am not a robot” text box, or with Invisible reCAPTCHA, even that is no longer necessary. With reCAPTCHA, a JavaScript element is included in the source code and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called captcha score. Google uses this score to calculate even before the captcha is entered how likely you are to be a human. reCAPTCHA, or captchas in general, are always used when bots could manipulate or abuse certain actions (such as registrations, surveys, etc.).
Why do we use reCAPTCHA on our website?
We only want to welcome flesh and blood people to our site. Bots or spam software of any kind may confidently stay at home. That’s why we pull out all the stops to protect ourselves and offer the best possible user experience for you. For this reason we use Google reCAPTCHA from Google. This way we can be pretty sure that we remain a “bot-free” website. By using reCAPTCHA, data is sent to Google to determine whether you are actually human. reCAPTCHA therefore serves the security of our website and, by extension, your security. For example, without reCAPTCHA, it could happen that a bot registers as many e-mail addresses as possible during registration in order to “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.
What data is stored by reCAPTCHA?
reCAPTCHA collects personal data from users to determine whether the actions on our website really come from people. Thus, the IP address and other data required by Google for the reCAPTCHA service may be sent to Google. IP addresses are almost always shortened beforehand within the member states of the EU or other contracting states to the Agreement on the European Economic Area before the data ends up on a server in the USA. The IP address is not combined with other data from Google unless you are logged in with your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube. Gmail, etc.) are already placed on your browser. Then, reCAPTCHA places an additional cookie on your browser and collects a snapshot of your browser window.
The following list of collected browser and user data, does not claim to be exhaustive. Rather, it is examples of data that, to our knowledge, Google processes.
Referrer URL (the address of the page from which the visitor came)
IP address (e.g. 256.123.123.1)
Information about the operating system (the software that enables the operation of your computer. Known operating systems are Windows, Mac OS X or Linux)
Cookies (small text files that store data in your browser)
Mouse and keyboard behavior (every action you perform with the mouse or keyboard is stored)
Date and language settings (which language or date you have preset on your PC is saved)
All JavaScript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
Screen resolution (shows how many pixels the image display consists of)
It is undisputed that Google uses and analyzes this data even before you click on the “I am not a robot” checkbox. With the Invisible reCAPTCHA version even the ticking is omitted and the whole recognition process runs in the background. How much and which data Google stores exactly, Google does not tell you in detail.
The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version from Google at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version:
Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-312023807-8
Purpose: This cookie is set by the DoubleClick company (also owned by Google) to register and report a user’s actions on the website in dealing with advertisements. In this way, advertising effectiveness can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiration date: after one year
Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. Furthermore, the cookie can be used to prevent a user from seeing the same ad more than once.
Expiration date: after one month
Name: ANID
Wert: U7j1v3dZa3120238070xgZFmiqWppRWKOr
Purpose: We could not find out much info about this cookie. Google’s privacy policy mentions the cookie in the context of “advertising cookies” such as “DSID”, “FLC”, “AID”, “TAID”. ANID is stored under domain google.com.
Expiration date: after 9 months
Name: CONSENT
Value: YES+AT.en+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to use different services provided by Google. CONSENT is also used for security purposes to verify users, prevent credential fraud, and protect user data from unauthorized attacks.
Expiration date: after 19 years
Name: NID
Wert: 0WmuWqy312023807zILzqV_nmt3sDXwPeM5Q
Purpose: NID is used by Google to customize ads to your Google search. With the help of the cookie, Google “remembers” your most typed search queries or your previous interaction with ads. This way, you always get tailored ads. The cookie contains a unique ID to collect personal settings of the user for advertising purposes.
Expiration date: after 6 months
Name: DV
Wert: gEAABBCjJMXcI0dSAAAANbqc312023807-4
Purpose: Once you have checked the “I am not a robot” box, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. DV collects information in anonymous form and is further used to make user distinctions.
Expiration date: after 10 minutes
Note: This list cannot claim to be exhaustive, as Google’s experience has shown that the choice of cookies is always subject to change.
How long and where is the data stored?
By inserting reCAPTCHA, data is transferred from you to the Google server. Where exactly this data is stored, Google does not make clear, even after repeated inquiries. Without having received confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings are stored on Google’s European or American servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plug-in, the data will be merged. The deviating data protection provisions of the Google company apply to this.
How can I delete my data or prevent data storage?
If you do not want any data about you and your behavior to be transmitted to Google, you must log out of Google completely and delete all Google cookies before you visit our website or use the reCAPTCHA software. Basically, as soon as you visit our site, the data is automatically transmitted to Google. To delete this data again, you must contact Google support at https://support.google.com/?hl=de&tid=312023807.
So, when you use our website, you agree that Google LLC and its agents automatically collect, process and use data.
Please note that when you use this tool, data about you may be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data to insecure third countries may therefore not simply be transferred, stored and processed there unless there are suitable safeguards (such as EU standard contractual clauses) between us and the non-European service provider.
Legal basis
If you have consented to Google reCAPTCHA being used, the legal basis for the corresponding data processing is this consent. According to Art. 6 (1) lit. a DSGVO (consent), this consent constitutes the legal basis for the processing of personal data as may occur when Google reCAPTCHA is used.
From our side, there is also a legitimate interest in using Google reCAPTCHA to optimize our online service and make it more secure. The corresponding legal basis for this is Art. 6 para. 1 lit. f DSGVO (Legitimate Interests). Nevertheless, we only use Google reCAPTCHA if you have given your consent.
Google also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks to the legality and security of data processing.
As a basis for data processing at recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, Google uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Google Ads Data Processing Terms, which correspond to the standard contractual clauses, can be found at https://business.safety.google/adsprocessorterms/.
You can learn a bit more about reCAPTCHA on Google’s web developer page at https://developers.google.com/recaptcha/. Google does go into more detail here about the technical development of reCAPTCHA, but you will search in vain for precise information about data storage and privacy-related topics there as well. A good overview of Google’s basic use of data can be found in the company’s own privacy policy at https://www.google.com/intl/de/policies/privacy/.
All texts are protected by copyright.
Source: reCAPTCHA privacy policy created with the privacy generator from AdSimple
5. data subject rights
You have the right:
- in accordance with Art. 15 DSGVO to request information about your personal data processed by us. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
- in accordance with Art. 16 DSGVO to immediately demand the correction of incorrect or completion of your personal data stored by us;
- pursuant to Art. 17 DSGVO to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
- to request the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing in accordance with Art. 21 DSGVO;
- pursuant to Art. 20 DSGVO to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller;
- to revoke your consent at any time in accordance with Art. 7 (3) DSGVO. This has the consequence that we may no longer continue the data processing based on this consent for the future, and
- complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace for this purpose. The address of the competent supervisory authority can be found on the website of the Federal Commissioner for Data Protection and Information Security www.bfdi.bund.de .
6. right of objection
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.
If you wish to exercise your right of revocation or objection, simply send an e-mail to office@mhiberlin.de .
7. data security
Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the upper status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.