Privacy policy
1 Preamble
The protection of your personal data is very important to digihub.li cooperative (hereinafter "digihub.li"). Therefore, only the data that is absolutely necessary is collected. The collected data is managed by digihub.li with due care and processing only takes place on the basis of the legal provisions of the European Data Protection Regulation (hereinafter DSGVO) and the data protection regulations applicable in Liechtenstein. In the following, you will be informed in detail about, among other things, which of your personal data is collected by digihub.li, for what purposes it is used, with whom it is shared and what control and information rights you have.
This Privacy Policy applies to all services offered by digihub.li in relation to the digihub.li website.
The digihub.li cooperative, Birkenweg 6, 9490 Vaduz, Principality of Liechtenstein, is responsible for the processing of personal data within the scope of digihub.li's services within the meaning of the GDPR.
The voluntarily appointed data protection coordinator of the digihub.li cooperative can be reached at the above address or at the e-mail address team@digihub.li.
The company reserves the right to adjust the statement if necessary. In case of such adjustments, you should check whether you agree with the changes.
This privacy policy also applies to persons who do not have a contractual relationship but whose data is processed for other reasons (e.g. persons who write to us or otherwise contact us; visitors to our websites; recipients of information and marketing communications; contact persons of our suppliers; customers and other business partners; participants in competitions, prize draws and customer events; visitors to our premises).
The digihub.li Services are not intended for minors (i.e., persons under the age of 18), and we do not knowingly collect personal information from minors. If you are under 18 years of age or under the age of majority in your jurisdiction, you are not eligible to apply for, register for, or use digihub.li's Services.
It is imperative that the personal information we have about you is accurate and up-to-date at all times. Failure to do so will affect our ability to provide you with our Services. Please inform us if your personal data changes during your relationship with us. For your right to rectify the data processed, please refer to Section 3 of the Privacy Policy.
Our Services may contain links to third-party websites, plug-ins, and applications. When you click on these links or enable these connections, third parties may collect or share information about you. We have no control over these third party websites and are not responsible for their privacy notices, statements or policies.
2 Scope of the processing of personal data
a) Personal data
Personal data is any information by which a natural person can be directly or indirectly identified. This includes, for example, first name, last name, e-mail address, date of birth or place of birth.
The company collects, processes and uses your personal data exclusively in accordance with the requirements of Art. 5 and 6 DSGVO (contract, legal obligation, legitimate interest or consent of the data subject).
We only collect personal data that is required for the implementation and processing of our services or that you have provided voluntarily.
Data processed by digihub.li:
- Inventory data (e.g. names, addresses, dates of birth, nationality, username, password, marital status, title, gender).
- Contact details (e.g. e-mail, telephone numbers, billing address)
- Content data (e.g. text input, photographs, videos)
- Usage data (e.g. web pages visited, interest in content, access times, use of our course offerings and coaching).
- Meta/communication data (e.g. device information, IP addresses)
- Technical data (Internet service provider, browser type, browser fingerprint, time zone settings, location, operating system, hardware model, unique device identifier, mobile network information).
- Inventory data, contact data and statistical data of SMEs and public institutions in the context of the activity as a European Digital Innovation Hub.
We also collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data is derived from your personal data, but is not considered personal data for the purposes of the GDPR because it does not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a particular feature of the Site and/or Platform. However, if we combine or link aggregated data with your personal data so that it can directly or indirectly identify you, we will treat the combined data as personal data used in accordance with this Privacy Policy.
b) Sources of personal data
We process personal data that we receive from you in the context of contacting you or establishing a contractual relationship or in the context of pre-contractual measures (Art. 13 DSGVO). If the data is not collected from you but from other sources, you will also be informed within a reasonable period of time in accordance with Art. 14 DSGVO.
c) Processing of personal data
The company is subject to confidentiality and secrecy obligations that can be derived from data protection law, contract law or professional secrecy. When processing personal data, the company is bound by these obligations. The processing of personal data of our users is limited to those data that are necessary for the provision of a functional website and our content and services. Thus, the processing of personal data is carried out (i) for the performance of the contract, (ii) to comply with our legal obligations, (iii) to pursue our legitimate interests, and (iv) to fulfill obligations in the public interest (e.g., to prevent or detect criminal acts). We only collect personal data that is actually required for the performance and execution of our tasks and services or that you have voluntarily provided to us.
As a rule, personal data is processed on the basis of a contractual relationship, i.e. for the purpose of establishing, managing and implementing the business relationship. In addition, data processing is carried out for the purpose of cultivating and maintaining customer relations and for self-promotion purposes.
3 Your rights (data subject rights)
a) Right to information
You have the right to request information about your personal data processed by us. In particular, you may request information about the purposes of processing, the categories of personal data or the planned storage period. A request for information must be sent in writing to the data controller together with proof of identity.
After receipt of your request for information, you will be informed within the statutory period of 30 days whether your request for information can be complied with. The information may be refused, restricted or postponed if this is required by law or due to the predominant interest of a third party or the requested company.
The request for information may be combined with a request for correction or deletion of data.
b) Right of rectification or erasure
You have the right to request, in writing and free of charge, the rectification or deletion of data concerning you, insofar as they are inaccurate or have been wrongly stored or processed. A justified request for rectification or deletion must be addressed to the data controller, accompanied by proof of identity.
Your request for correction or deletion will be processed within a reasonable period of time after receipt. The completion of your correction or deletion request will subsequently be confirmed to you.
c) Right of objection or revocation
You have the right to object in writing to the processing of data concerning you, in whole or in part, or to withdraw your consent to data processing. An objection or revocation must be sent in writing to the data controller together with proof of identification.
The receipt of your objection or revocation will be confirmed to you and subsequently the data concerned will be deleted.
Compliance with an objection or revocation may, under certain circumstances, be precluded by legal regulations. In such a case, the company will only process the data concerning you to the extent necessary to fulfill its legal obligations.
d) Blocking right
You have the right to block the data concerning you from being disclosed to third parties. A request for blocking must be sent in writing to the person responsible, enclosing proof of identity.
Receipt of your request for blocking will be confirmed and your request will be processed within a reasonable period of time.
e) Right of appeal
If you believe that the processing of your personal data by us is contrary to the applicable data protection provisions, you have the right to lodge a complaint with the competent Liechtenstein supervisory authority. You may also contact another supervisory authority of an EU or EEA member state, for example at your place of residence or place of work or at the place of the alleged violation.
The contact details of the data protection authority responsible in Liechtenstein are as follows:
Liechtenstein Data Protection Authority
Städtle 38
PO Box 684
LI-9490 Vaduz
+423 236 60 90
info.dss@llv.li
4 Data security
We use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser when visiting the website. You can see whether an individual page is transmitted encrypted by the closed display of the key or lock symbol in the address bar of your browser. In addition, we use other suitable technical and organizational security measures (e.g. encryption, access restrictions, access restrictions as well as checks, confidentiality agreement, employee training) to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
5 Hosting
External hosting
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact data, names, website accesses and other data generated via a website.
The hoster is used for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO).
Our hoster will only process your data to the extent necessary to fulfill its service obligations and will follow our instructions regarding this data.
We use the following hoster:
Infomaniak Network Inc.
Rue Eugène Marziano 25
CH-1227 Les Acacias (GE)
Switzerland
Job processing
We have concluded a contract on order processing (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
6 Integration of third-party software, scripts and frameworks
We integrate software into our online offer that we retrieve from servers of other providers (e.g. function libraries that we use for the purpose of presentation or user-friendliness of our online offer). In doing so, the respective providers collect the IP address of the user and may process this for the purpose of transmitting the software to the user's browser and for security purposes, as well as for the evaluation and optimization of their offer.
- Types of data processed: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), contact data (e.g. e-mail, phone numbers), content data (e.g. text input, photographs, videos).
- Data subjects: Users (e.g. visitors to the website, users of online services), communication partners.
- Purposes of processing: user experience, contact requests and communication, direct marketing (e.g. by email or postal mail), tracking (e.g. interest/behavioral profiling, use of cookies), interest-based and behavioral marketing, profiling (creation of user profiles), contractual performance and service.
- Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a DSGVO), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
The following third-party software, scripts or frameworks are used:
We use WordPress plugins (https://de.wordpress.org/plugins/) The WordPress privacy policy can be found at https://de.wordpress.org/about/privacy/.
Below WordPress plugins used by us:
- Admin Columns
- Akismet Anti-Spam : Spam Protection
- Avada Builder
- Avada Core
- Classic Widgets
- Custom Post Type UI
- DeepL for WordPress : translation plugin
- Duplicator Pro
- Event tickets
- Event Tickets Plus
- Falcon
- Generate Dummy Posts
- MailPoet
- SEOPress
- SEOPress Pro
- Simply Schedule Appointments
- SVG Support
- The Events Calendar
- The Events Calendar Pro
- The Events Calendar Virtual Events
- Translate Press Business
- Translate Press Multilingual
- W3 Total Cache
7 cookies
We use cookies on our website to make our offer user-friendly. Cookies are small files that are automatically created by your browser and stored on your terminal device (laptop, tablet, smartphone, etc.) when you visit our site. The cookies remain stored until you delete them. This allows us to recognize your browser on your next visit.
If you do not wish this, you can set up your browser so that it informs you about the setting of cookies and you allow them in individual cases. However, we would like to point out that deactivating cookies means that you will not be able to use all the functions of our website.
The legal basis for the data processed by cookies is Art. 6 (1) lit. f DSGVO.
The cookies remain valid for a maximum of 1 year and are then deleted by your browser.
8 Matomo
For web-based solutions, we use the open source software "Matomo" to analyze and statistically evaluate the use of the services. We therefore collect personal data via Matomo and pass this on to the provider. A corresponding contract for order data processing according to Art. 28 DSGVO has been concluded.
With "Matomo", no data is transmitted to servers that are located outside digihub.li's own server structure. The data collected is not passed on to third parties.
Cookies are used to analyze the use of the website. Information about usage obtained through the cookies is transmitted to the server and summarized in pseudonymous usage profiles. Your IP address is anonymized so that we have no technical way of identifying you as a logged-in user. An assignment to individual users is therefore not possible.
We would like to use it to further improve the website and adapt it even more to the needs of the users.
The processing of the data is based on Art. 6 para. 1 lit. a DSGVO. You can revoke your consent at any time by deleting the cookies in your browser or changing your privacy settings.
If you agree to web analysis using Matomo, the following data will be stored:
- Location
- Country
- Language
- Device
- Device type
- Device model
- Device brand
- Screen resolution
- Software
- Operating system
- Browser
- Other
- Transaction code
- Timestamp
For more information, visit https://matomo.org/privacy/.
9 Use of contact details
The use of contact data published within the scope of the imprint obligation for the transmission of not expressly requested advertising and information materials is hereby contradicted. We expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
10 Transfer of personal data to third parties
Personal data may be disclosed to third parties who act on behalf of digihub.li to process the personal data in accordance with its underlying purpose, for example, fulfillment of the services offered, evaluation of user behavior of the website or technical support. These third parties are contractually bound by digihub.li by means of agreements provided for by law to use personal data only for the agreed purpose or not to disclose your personal data to other parties without authorization, unless required by law. If you would like more information about digihub.li's data processors, please feel free to contact us at the address listed in Section 1. If other categories of recipients of personal data arise in the course of future data collection, digihub.li will inform you of this at the time of collecting this information for this purpose.
Personal data may be disclosed in particular to the following third parties:
- External Third Parties.
- Suppliers and outside agencies we engage to process information on our behalf and/or your behalf, including to provide you with information and/or materials you request.
- Our subsidiaries, affiliates and agents as necessary to facilitate your relationship with us.
- The Data Protection Authority, supervisory authorities, law enforcement authorities and other authorities that may require reporting of processing activities or request information from us under applicable law and in certain circumstances.
- The European Commission (Directorate-General for Communications Networks, Content and Technology, https://european-digital-innovation-hubs.ec.europa.eu/edih-privacy-statement).
- third parties to whom we may sell, transfer or combine parts of our business or assets (successors in title). Alternatively, we may seek to acquire or merge with other businesses. If our business changes, the new owners may use your personal information in the same manner and for the same purposes as set forth in this policy.
A transfer of personal data may be necessary under the following circumstances:
- If we are under a duty to disclose or share your personal data in order to comply with a legal obligation, judgment or order of a court or governmental authority; or
- if we believe that your actions are inconsistent with our terms and conditions or policies, or to protect the rights, property, or safety of digihub.li or others; or
- in connection with or during negotiations for a merger, sale of company assets, financing or acquisition of all or a portion of our business by another company; or
- When we have your consent or at your direction.
We may also share aggregated or de-identified information that cannot be used to identify you.
The Company transfers your personal data only to countries that have been certified by the EU Commission as having an adequate level of data protection. If the Company transfers your personal data to countries that do not have an adequate level of data protection, the Company will take steps to ensure the protection of your data by contracting with recipients in those countries under the standard contractual clauses (2010/87/EC[2] and/or 2004/915/EC[3]).
11 Protection of personal data
The company takes appropriate technical and organizational measures with regard to data processing and data storage as well as with regard to its Internet presence in order to protect all data from loss, unauthorized access or misuse.
Regardless of the measures taken to protect data, you must be aware that data transmission via the Internet - this applies to both websites and e-mail services - is uncontrolled and cross-border. Even if the sender and the recipient are in the same country, there may be cross-border data transmission. The company can therefore not guarantee the confidential treatment of data transmitted via the Internet. If you disclose personal information over the Internet, you must be aware of the fact that third parties may access, read, modify, falsify, monitor, destroy or misuse the information. Data transmission may also be delayed. Furthermore, the data may be lost during transmission. Furthermore, third parties could draw conclusions about existing business relationships. Therefore, the company cannot assume any responsibility for the security of your data during transmission via the Internet and disclaims any liability for direct and indirect damage.
12 Storage and retention of personal data
The company's systems required for data processing are located in Liechtenstein and Switzerland. The data transmitted by you will be stored in accordance with the statutory deletion and retention periods and will remain stored as long as this is operationally necessary or required by law. A list of the most important deletion and retention periods can be found under the following link of the data protection agency: https://www.datenschutzstelle.li/application/files/4415/3719/5024/Gesetzliche_Loesch-
_and_retention_periods.pdf
In the case of contracts, we store the data at least for the duration of the contractual relationship. It should be noted that our business relationship as a continuing obligation is designed for years.
We also store personal data if we have a legitimate interest in storing it. This may be the case in particular if we need personal data to enforce or defend claims, for archiving purposes, to ensure IT security or if limitation periods for contractual or non-contractual claims are running. Often, for example, a limitation period of ten years applies, in some cases also one of five years or one year.
We also retain your personal data for as long as it is subject to a statutory retention obligation (e.g. compliance with commercial and tax law).
After the expiry of the aforementioned periods, we delete or anonymize your personal data.
13 Newsletter
Newsletter data
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data is not collected or only on a voluntary basis. For the handling of the newsletter, we use a specially hosted newsletter software, which is described below. The newsletter is sent via our own mail servers.
MailPoet
This website uses the WordPress plugin MailPoet for sending newsletters. Information on the privacy-compliant use of MailPoet can be found at: https://kb.mailpoet.com/article/246-guide-to-conform-to-gdpr?_gl=1*2tmyt4*_ga*MTcyNDQwMzA2Ni4xNjg1NTQxOTUw*_ga_F3B52ZPQFP*MTY5MzQ5MjU0Mi4xLjAuMTY5MzQ5MjU0NS42MC4wLjA.*_ga_Y03T2W7R2S*MTY5MzQ5MjU0Mi4xLjAuMTY5MzQ5MjU0Mi4wLjAuMA..
MailPoet is a WordPress plugin that can be used to organize and analyze the sending of newsletters, among other things. The data you enter for the purpose of receiving newsletters is stored on our own servers.
If you do not want any analysis by MailPoet, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in each newsletter message.
Data analysis by MailPoet
With the help of MailPoet, it is possible for us to analyze our newsletter campaigns. For example, we can see whether a newsletter message was opened and which links, if any, were clicked. In this way, we can determine, among other things, which links were clicked on particularly often.
In addition, we can recognize whether certain previously defined actions have been carried out after opening/clicking (conversion rate). For example, we can see whether you have made a purchase after clicking on the newsletter.
MailPoet also allows us to subdivide ("cluster") newsletter recipients based on various categories. In doing so, the newsletter recipients can be subdivided according to age, gender or place of residence, for example. In this way, the newsletters can be better adapted to the respective target groups.
For detailed information about MailPoet's features, see the following link: https://www.mailpoet.com/mailpoet-features/.
You can find MailPoet's privacy policy at: https://automattic.com/privacy/?utm_medium=automattic_referred&utm_source=mpcom_footer
Legal basis
The data processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time for the future.
Storage duration
The data you provide for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after unsubscribing from the newsletter or after the purpose has ceased to exist. We reserve the right to delete or block e-mail addresses from our newsletter distribution list at our own discretion within the scope of our legitimate interest pursuant to Art. 6 (1) lit. f DSGVO. Data that has been stored by us for other purposes remains unaffected by this.
After you have unsubscribed from the newsletter distribution list, your e-mail address will be stored by us or the newsletter service provider in a blacklist, if necessary, to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 (1) f DSGVO). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.
14 Contact form
If you send us inquiries via contact form or e-mail, your data including the contact information you provided will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.
The processing of the entered data is therefore based exclusively on your consent. You can revoke this consent at any time. For this purpose, an informal communication by e-mail to us is sufficient (the contact details are given in this statement). The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
15 Data collection from job applicants
By submitting your application documents, you consent to the processing of personal data for the purpose of our personnel selection. This data includes name, title, address, telephone number, date of birth, education, work experience, as well as those data and images that are included, for example, in the cover letter, resume, letter of motivation, references or other documents submitted to us.
Your data will not be disclosed to third parties without your consent. There is also no automated decision-making according to Art. 22 DSGVO. Data processing is based on the legal provisions of Art. 6 para. 1 lit. a (consent) and lit. b (necessary for the performance of the contract) of the DSGVO. If no employment takes place, we delete your data within 6 months in order to be documented for any legal proceedings. At your request, we will delete the data immediately if the application process does not lead to employment.
16 Courses, coaching and community
For bookings of our courses, coachings and for participation in our community you have to register once and define a username and a personal password. On future visits to our website, you can log in with your username and password and do not have to re-enter your address and payment information for each order transaction. Your password is stored in encrypted form and cannot be viewed by us.
When registering, you must provide your name and e-mail address and, for individual services, your dates of birth or the date and place of establishment of your company. In order for us to store the registration data (as your personal customer account), your express consent is required. At the appropriate place on the registration page, we first inform you comprehensively about the purpose and scope of data processing. You can then give your declaration of consent by activating a checkbox. Your declaration of consent will be logged by us; in doing so, we will store your name, e-mail address, the corresponding location on the website, as well as the date and time.
You have the option to informally revoke your declaration of consent at any time. The revocation is to be sent to the address in chapter 1 of this privacy policy.
The data of your orders will also be stored in your customer account.
We use the personal data collected during registration and ordering exclusively for the proper processing of your order.
You can view the data in your customer account at any time and change it yourself. If you update information, we keep a copy of your original information stored to clarify any issues between you and us.
You can object to the use of the data for the purpose just mentioned at any time. In this case, a complete registration is required again for each order. The objection should be sent to the address in chapter 1 of this privacy policy.
We delete all data that we do not have to keep due to legal requirements, e.g. in accounting, as soon as the order is completed.
You have the option to delete your customer account at any time, as soon as no booking is open.
17 Taking and publishing photos and moving images
Within the scope of digihub.li's activities, events open to the public, courses and coaching sessions, as well as non-public events (prior registration under www.digihub.li required) are carried out. All events, courses, coaching, etc. can take place physically, online or hybrid (physical and online).
Photos and moving images are used in the context of public relations and presentation of digihub.li's activities. The processing of the data is based on the legitimate interest of digihub.li pursuant to Art. 6 (1) f). Publication by digihub.li takes place for global marketing and PR purposes, such as digihub.li's social media channels, as well as on the company website, campaign-related landing pages, print media, classic advertising media and videos (tutorial, advertisement, image). Accordingly, the personal data may also be accessible in countries that do not have data protection provisions comparable to those in the EU/EEA.
18 Interviews, collection of statistical data, measurement of digital maturity.
Digihub.li collects statistical data in relation to the activities carried out and services provided in connection with public sector organizations, SMEs / companies and international cooperations. The collection of data takes place in the context of personal interviews, the annual "Digital Maturity Assessment" (short: DMA) as well as the internal impact measurement.
The processing of the data is based on legal provisions of Art. 6 para. 1 lit. a (consent) and lit. b (necessary for the performance of the contract) as well as the legitimate interest of digihub.li pursuant to Art. 6 para. 1 let. f.
The above-mentioned data will be anonymized or deleted as far as possible, provided that no legal retention periods exist.
19 Contact
When contacting us by e-mail or other electronic message, your information will only be stored for the processing of the request and possible related further questions and used only in the context of the request. The legal basis for processing your request is Art. 6 para. 1 p. 1 lit. b DSGVO. We will delete your email address after your request has been dealt with.
If you have any questions regarding data protection and data processing, please contact the person responsible or the data protection officer in writing.