Email
Main Content

General Information on the Processing of Your Data

The processing of data by Philipps-Universität Marburg is carried out in accordance with the data protection regulations, in particular the European General Data Protection Regulation (GDPR) and the Hessian Data Protection and Freedom of Information Act (HDSIG). This privacy policy provides you with the information required by Article 13 GDPR. Philipps-Universität Marburg takes the protection of your data seriously. We want to inform you in a precise, transparent, understandable, and easily accessible manner about when we collect which data when you access our website and how we use it. Your data is stored and processed in the state of Hesse, Germany, and not in countries outside the scope of the GDPR. The internet offer is operated on IT systems of Philipps-Universität Marburg. Due to the further development of our website and the implementation of new technologies, changes to the content of this privacy policy may become necessary. We therefore ask you to read this privacy policy again from time to time.

Scope

This privacy policy applies to the web form service of Philipps-Universität Marburg under „https://forms.uni-marburg.de“ and to the personal data collected there. For websites of other providers, to which reference is made, for example, via links, the respective data protection notices and declarations apply.

Name and Address of the responsible person

Responsible for the processing of personal data on this website is the:

Philipps-Universität Marburg - The President Prof. Dr. Thomas Nauss
Biegenstraße 10, 35037 Marburg, Germany
Tel. +49 (0)6421 28-20
Fax +49 (0)6421 28-22500
Internet: https://www.uni-marburg.de
E-Mail: info@uni-marburg.de

Data Protection Officer

Philipps-Universität Marburg - Data Protection Dr. Rainer Viergutz
Biegenstraße 10, 35037 Marburg, Germany
Tel. +49 (0)6421 28-20
E-Mail: datenschutz@uni-marburg.de

Processing of Your Data

According to Article 4 GDPR, „personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.“

Purposes and Legal Basis for the Processing of Personal Data

The purpose of the web form service of Philipps-Universität Marburg is the digital implementation of processes to support research, teaching, administration, and services in the sense of a family-friendly university. This includes, among other things, registrations, applications, orders, and notifications. To the extent that we obtain the consent of the data subject for the processing of personal data, Article 6(1)(a) GDPR serves as the legal basis for the processing. If the processing of personal data is necessary for the performance of a legal obligation, we process your data on the basis of Article 6(1)(c) GDPR. If the processing is necessary for the performance of a task in the public interest or in the exercise of official authority vested in Philipps-Universität Marburg, Article 6(1)(e) GDPR serves as the legal basis.

Access Data

To deliver the web application to your computer or web browser, a temporary storage of the IP address by the web servers of Philipps-Universität Marburg is necessary. When you access our website, the following data is stored in the form of access logs:

  • the IP address of the client/accessing computer
  • the (server) time of access the HTTP method and URL of the request (the resource accessed)
  • the HTTP status code of the server response (access success)
  • the byte size of the server response the referrer (the website from which you accessed our website)
  • the user agent (the browser's self-description) Accesses to the web application are stored in log files for seven complete days and then deleted by rotation. The IP addresses stored in the log files are truncated by the last byte and thus anonymized. Assigning an IP address to a natural person is therefore not possible or only possible with disproportionate effort. To defend against an ongoing or imminent intentional attack on our website and to secure evidence, Philipps-Universität Marburg reserves the right to temporarily deactivate the anonymization of the IP address in the log files.

Non-Authenticated Use of the Web Application

In the case of non-authenticated users, in addition to the temporary processing of the complete IP address, the data entered in the form is processed.

Authenticated Use of the Web Application

Using Personalized Accounts In the case of authenticated users, the following personal data is processed in addition to the above: name of the user name of the home organization name of the department (e.g., name of the faculty, institute, or working group) type of affiliation with the home organization (e.g., member, faculty, staff, student) official address and contact information (e.g., official address, official email address) username, password, and session cookies affiliations to groups roles and rights, permissions for editing forms.

Cookies

When you access the web form service, cookies are generated and stored in your browser on your device. A cookie is a text fragment that the web application places on the computer of the requesting party via the web browser and transmits back to the web application with each subsequent access. For purposes limited to the functionality of the web application, temporary cookies (session cookies) are set, which do not allow cross-application identification of the user and become invalid after the end of the session or closing the browser. This includes, in particular, the following purposes: authentication of the current web session of the user against the web application storage for application-specific settings, e.g., the language selected by the user To protect the web form service from overload by automated queries, software is used that detects and blocks automated queries. To avoid repeated checks, a cookie with a validity period of 7 days is set after the first successful check. This cookie contains only the information that the subsequent requests are not automated accesses and does not allow cross-application identification of the user. The storage of cookies can be deactivated in the web browser used by the user. In this case, no cookies are stored. However, this means that no personalized functions of the web application can be executed (see above).

Evaluations

The web application does not use analysis software for statistical evaluation of accesses by users.

Transferring of Personal Data

The web form service may contain references („links“) to content outside the web form service. The links may refer to services operated by Philipps-Universität Marburg or services operated by other providers. Philipps-Universität Marburg has no influence on whether other providers also comply with the legal data protection regulations. Please always check the privacy policies of other providers.

Recipients of Your Data in Case of Legal or Judicial Obligation

The data stored when you access our website will only be passed on to third parties to the extent that we are legally or judicially obliged to do so or if this is necessary in the event of an attack on our website for the purpose of legal or criminal prosecution.

Your Rights

Pursuant to the relevant data protection laws, you have rights that are based on the processing of personal data by the controller for the purposes mentioned above:

  • You have the right to information pursuant to Article 15 GDPR, the right to rectification pursuant to Article 16 GDPR, the right to erasure pursuant to Article 17 GDPR, the right to restriction of processing pursuant to Article 18 GDPR, the right to notification pursuant to Article 19 GDPR, and the right to data portability pursuant to Article 20 GDPR.
  • To the extent that the data processing is based on your consent, you have the right to withdraw your consent at any time, in whole or in part, without giving reasons. You can declare this withdrawal to Philipps-Universität Marburg informally. A withdrawal renders any further use of your data for the future impermissible. The lawfulness of the previous processing of your personal data remains unaffected by your withdrawal.
  • If you believe that your personal data is not being processed lawfully, you can contact the data protection officer at datenschutz@uni-marburg.de.
  • Furthermore, there is a right of complaint to the supervisory authority:
    Hessischer Beauftragter für Datenschutz und Informationsfreiheit
    Postfach 3163 65021 Wiesbaden Germany
    Internet: https://datenschutz.hessen.de
    E-Mail: poststelle@datenschutz.hessen.de

Validity

This privacy policy is currently valid and was last amended on 29.07.2025.