Social media links on the Charité website
During your visit to our website, no personal data will initially be passed on to the operators of the social media platforms. On our website you will only find passive links to Facebook, Instagram and Twitter. They are neither disabled social media buttons nor active plug-ins. Therefore, personal data are transmitted to the operators of the social media platforms only when you actively click on the links and are thus redirected to the social media website itself.
The legal basis for the processing of data via access by link on our website based on your consent is Section 6(1) lit. a GDPR, which you have given by activating the link (1. click). We would like to point out that data processing by Facebook, Twitter and Instagram may involve processing of user data outside the European Union. This could result in risks for users, because it could, for example, make it more difficult to enforce user rights. For details, please refer to the data privacy statements of Facebook, Twitter and Instagram. With regard to U.S. providers that are certified under the Privacy Shield, we point out that this obligates them to comply with EU data protection standards.
Charité social media websites
You can also find us on Facebook, Twitter and Instagram with our own presence. For this purpose, we use plug-ins that contain offers from third parties not affiliated with us. With the social media sites of the Charité – Universitätsmedizin, we are expanding our multimedia information offer and have the opportunity to exchange information with you on topics that are important to you. Beyond the respective providers of the social networks, we also collect and process personal user data on fan pages. This data privacy statement provides information on the data we collect from you in our social media presences and how we use them.
In connection with the social media channels we operate, we are responsible, together with the social media providers, for the collection of your data, their processing on our respective social media channel and their disclosure by transmission, cf. Section 26 EU-GDPR. The legal basis for the processing are our legitimate interests pursuant to Section 6 (1) lit. f GDPR to provide you with health information, to do public relations work and to directly communicate with visitors. For any further processing in connection with the offer in conjunction with the social media channels, the social media providers are solely responsible for the purpose of the EU-GDPR.
In the case of the website provided by us via the social media provider, the social media provider grants us access to the following data categories:
The social media provider grants us access to statistical analyses that provide information about the use of our social media website. The analytics available to us do not allow analysis of the usage patterns of individual persons. We can only view aggregate data (including number of hits, likes, followers, region of origin, age group, gender) that provide insight into our audience and usage of our social media site. The data of the respective user that the analyses are based on are not transmitted to us.
We can set the target group to be reached for the social media website or for individual published posts. The setting is done on the basis of general parameters (e.g. age group, language, region, interests), through which our content can be targeted to specific groups. We cannot address or identify individual persons based on the data provided by our social media provider.
Insofar as you contact us directly via the social media provider or interact with us in any other way and thereby deliberately transmit personal data (e.g. direct networking with our social media website), we store and process these personal data for the purposes for which they were transmitted.
We process these data solely for the purpose of publicizing content on our social media website in a manner appropriate to the target group and to better understand and optimize the use of our social media website.
We save user names and comments that are blocked or deleted due to violation of netiquette. These are kept on file only as possible proof in the event of legal disputes within the statute of limitations.
Please refer to the offer listed below for each social media platform for additional data processing purposes and data categories.
Facebook
Our website contains a link to the social network Facebook of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA, operated within the EU by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (collectively “Facebook”). A click on the link will redirect you to the Facebook website. In the process, Facebook obtains knowledge of the IP address assigned to you as well as the information that the user of this IP address has accessed the corresponding page you visited. If you are logged in to Facebook, Facebook can associate the visit with your Facebook account. Interaction with the plugins, for example clicking the “Like” button or posting a comment, transmits the corresponding information from your browser directly to Facebook and stores it there.
On Facebook, we present our company on the channel Charité – Universitätsmedizin Berlin. You can find us at @ChariteUniversitaetsmedizinBerlin. In this context, the Charité – Universitätsmedizin has accepted the page insights supplement regarding the data controller of Facebook.
If you visit our fan page, Facebook collects, stores and processes your personal data in accordance with the Facebook data privacy directive. The data privacy directive can be found here: www.facebook.com/policy.php/
We process data to the above-mentioned and limited extent only (see Item 12.1.2).
Not only Facebook Ireland Limited, but also Facebook Inc. in the U.S. processes your personal data. The U.S. is a third country that is not covered by an adequacy decision of the European Commission and therefore does not provide an adequate level of protection for personal data. By using standard contractual clauses, Facebook Inc. guarantees that EU data protection requirements are also complied with when processing data in the USA. You can view the standard contractual clauses here: https://www.facebook.com/policy.php/
Twitter
After clicking on the Twitter link, you will be redirected to our Twitter channel, a service of Twitter Inc. 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. The link can be identified by the corresponding Twitter logo. The Twitter channel @ChariteBerlin is used for press and public relations work on all topics of the Charité – Universitätsmedizin Berlin.
If you visit our channel, Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, as the operator of Twitter, will store and process personal data to the extent described in the data privacy directive. The person responsible for processing the data of persons living outside the U.S. is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland. The data privacy directive can be found here: twitter.com/de/privacy
We have no influence on the type and scope of the data processed by Twitter, the way they are processed and used, or the transfer of these data to third parties. Nor do we have any effective means of control in this respect.
When you use Twitter, your personal information will be collected, transferred, stored, disclosed and used by Twitter Inc. and, in doing so, will be transferred to and stored and used in the U.S., Ireland and any other country in which Twitter Inc. does business, regardless of your country of residence.
On the one hand, Twitter processes your voluntarily entered data like name, user name, e-mail address, telephone number or contacts of your address book when you upload or synchronize it.
On the other hand, Twitter also evaluates the content you share to determine your subjects of interest, stores and processes confidential messages you send directly to other users, and can determine your location using GPS data, wireless network information, or your IP address in order to send you advertising or other content.
Twitter Inc. may use analysis tools like Twitter Analytics or Google Analytics for evaluation purposes. The Charité has no influence on the use of such tools by Twitter Inc. and has not been informed about such potential use. If Twitter Inc. uses tools of this kind for the Charité account, the Charité has neither commissioned nor approved this nor otherwise supported it in any way. Nor are the data obtained from the analysis made available to them. The Charité can view only certain non-personal information about tweeting activity, such as the number of profile or link clicks through a particular tweet, through its account. Moreover, the Charité has no way to prevent or disable the use of such tools on its Twitter account.
After all, Twitter also receives information when you view content, for example, even if you have not created an account. These so-called “log data” may be IP address, browser type, operating system, information about the website you visited previously and the pages you viewed, your location, mobile provider, terminal device you use (including device ID and application ID), the search terms you entered and cookie information.
You have options to restrict the processing of your data in the general settings of your Twitter account and in “Privacy and security”. You can also restrict Twitter's access to contact and calendar data, photos, location data, etc. on mobile devices (smart phones, tablet computers) in the settings options there. However, this depends on the currently used operating system.
We process data to the above-mentioned and limited extent only (see Item 12.1.2).
Not only Twitter Ireland, but also Twitter, Inc. in the U.S. processes your personal data. The U.S. is a third country that is not covered by an adequacy decision of the European Commission and therefore does not provide an adequate level of protection for personal data. By using standard contractual clauses, Twitter Inc. guarantees that EU data protection requirements are also complied with when processing data in the USA.
You can view the standard contractual clauses here: https://twitter.com/de/privacy
Facelift
We use the Facelift tool of the data processing company Facelift brandbuilding technologies GmbH, Gerhofstr. 19, 20354 Hamburg, Germany, to more easily manage our social media channels. You can find the data privacy directive here: www.facelift-bbt.com/de/imprint
Facelift's primary purpose is to make it easier to manage all the social media channels we maintain. If a user asks a question defined in more detail in Facelift via the comment function on our social media site, the text will enter the tool together with the user name and be displayed to us. The transmitted text as well as the user name will be deleted as soon as the request is answered. The legal basis for the data processing is Section 6(1) lit. f GDPR. We use Facelift because of our legitimate interest in managing the content on our Twitter profile in a way that saves time and money, but is equally effective, which includes collecting and responding to comments from visitors to our profile. In this respect, it is also in the interest of visitors that their comments are noted centrally and promptly and – depending on the content – acknowledged or answered by the Charité. This gives us a better overview of user comments, which facilitates communication with visitors of our social media sites. This is also our legitimate interest in processing personal data according to Section 6 lit. f GDPR.
Instagram
Our Instagram account is operated by Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland (“Facebook”). The link used on our website is marked with the Instagram logo in the form of an “Instagram camera”. You can find us at @chariteberlin.
Your browser establishes a direct connection to the Facebook servers only when you click on the link. When you visit our Instagram channel, Facebook will receive the information that your browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are not currently logged in to Instagram. This information (including your IP address) is transmitted from your browser directly to a Facebook server in Ireland and the U.S. and stored there.
When you visit our fan page, personal data are stored and processed by Facebook as the provider in accordance with Facebook's data privacy directive. The data privacy directive can be found here. https://www.facebook.com/help/instagram/155833707900388
We process data to the above-mentioned and limited extent only (see Item 12.1.2).
Not only Facebook Ireland Limited, but also Facebook Inc. in the U.S. processes your personal data. The U.S. is a third country that is not covered by an adequacy decision of the European Commission and therefore does not provide an adequate level of protection for personal data. By using standard contractual clauses, Facebook Inc. guarantees that EU data protection requirements are also complied with when processing data in the U.S. You can view the standard contractual clauses here: https://www.facebook.com/policy.php/.
Talkwalker
The Charité uses Talkwalker for the purpose of brand monitoring on our social media websites and to optimize our campaigns. Brand monitoring includes monitoring, recording and analyzing mentions, statements and perceptions related to the Charité on the various social media websites. The main aim is to monitor the reputation and acceptance of the Charité among the public and consumers, and to evaluate it specifically in terms of demographics. The web analytics service is provided by Talkwalker Sàrl, 12-16 Avenue Monterey, L-2163 Luxembourg. Talkwalker employs methods that allow analysis of the use of all social media platforms you use, such as cookies. The offer notably includes comprehensive data analysis and provision of all information and opinions about the Charité on the social media platforms, a search engine option for brand and trend checks and for the comparison with competitors, as well as the tracking of campaigns launched by the Charité. We process your personal data on the basis of our legitimate interest pursuant to Section 6(1) lit. f) GDPR. Our interest is to always be informed about what is being published and said about the Charité and to have the information to respond to issues such as fake news or security-related issues. The data collected in this context will be deleted after the end of the purpose and the end of our use of Talkwalker.