Data protection (Privacy Statement)

1. Basic principles

Name and address of the person responsible


The person responsible within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other provisions of data protection law is:


Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH

Dag-Hammarskjöld-Weg 1-5, 65760 Eschborn, Germany

Friedrich-Ebert-Allee 36 + 40, 53113 Bonn, Germany

Tel.: +49 6196 79-0




If you have any specific questions concerning the protection of your data, please contact our data protection officer:


Personal data


Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person can be identified directly or indirectly – in particular by means of an association with an identifier such as a name, an identification number, location data or an online identifier. Which data is required and processed for which purpose and on which basis depends primarily on the type of service that is used by you and on the purpose for which it is required.


Users’s rights


As a user of this website, you have the right


– to receive information about your data stored by us (Art. 15 GDPR) to obtain without undue delay the rectification of inaccurate personal data (Art. 16 GDPR),

– to request the erasure of your data stored by us (Art. 17 GDPR),

– to request restriction of the processing of your data (Art. 18 GDPR),

– to object to the processing of your data if your personal data are processed on the basis of Art. 6 para. 1 sentence 1 lit. f and e GDPR (Art. 21 GDPR),

– to receive your personal data in a structured, commonly used and machine-readable format, in order to, if necessary, have them forwarded to another data processor (Art. 20 GDPR).


You also have the right to lodge a complaint with the respective data protection supervisory authority pursuant to Art. 19 GDPR. This authority is the Federal Commissioner for Data Protection and Freedom of Information (BfDI). If you have any questions or complaints about this website, you can contact the above-mentioned contact address of our data protection officer.

2. General information on data processing

Scope of the processing of personal data


The processing of personal data is carried out in accordance with the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG).


We process the personal data of our users only to the extent necessary to provide a functioning website as well as our content and services. The processing of personal data of our users only takes place with the consent of the user. An exception applies in those cases in which it is not possible to obtain prior consent for actual reasons and the processing of the data is permitted by statutory provisions. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses and user behaviour.


Processing of personal data when visiting our website


When you use our website for informational purposes only, i.e. when you do not send us any other information, we only collect the personal data that your browser sends to our server. If you wish to view our website, we collect the data that is technically necessary for us to display our website and to ensure its stability and security.


In more detail, the following data is temporarily stored in a log file for each access/retrieval:


– Technical features of the browser used

– Users‘ IP address

– Date and time of access

– Page/name of the file accessed

– Amount of data transferred

– Message indicating whether the access/retrieval was successful


The data is also stored in the log files of our system. These data are not stored together with other personal data of the user. GIZ is additionally obliged, on the basis of Art. 6 para. 1 lit. e GDPR in conjunction with § 5 of the BSI-Gesetz, to store data to protect against attacks on the internet infrastructure of GIZ and the communication technology of the Federal Government beyond the time of your visit. This data is analyzed and, in the event of attacks on communications technology, may be required to initiate legal and criminal prosecution. The data will be deleted as soon as it is no longer required for the fulfilment of the task.


Data that is logged when you access the website is only transferred to third parties if we are legally obliged to do so or if the transfer is necessary for legal or criminal prosecution in the event of attacks on the communication technology of the German Federal Government. We do not pass on information in other cases. A consolidation of this data with other data sources does not take place either.


Purpose of data processing


The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the IP address of the user must remain stored for the duration of the session. The data is stored in log files in order to ensure the functionality of the website. The data is also used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.


Duration of data storage


Your data will not be stored for longer than is necessary for the purpose for which it is processed or as required by law.

3. Cookie policy

Description and scope of cookie policy


Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When a user visits a website, a cookie can be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. We use cookies to make our website more user-friendly. Some elements of our website may require that the calling browser can be identified even after a page change. The following data is stored and transmitted in the cookies: Session cookies

Purpose of the cookie policy


The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized after a page change as well. The user data collected by technically necessary cookies are not used to create user profiles.


Possibility of objection and removal


Via your browser Cookies are stored on the user’s computer and transmitted to our site by the user. Therefore, you as a user have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it is possible that all functions of the website can no longer be used to their full extent.

4. Plugins and tools


cookie consent management; Service Provider: Borlabs; Website:; Further information: An individual user ID, language and types of consent and the time of their submission are stored on the server and in the cookie on the user’s device.



We have integrated Wordfence on this website. The provider is Defiant Inc., Defiant, Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter Wordfence).

Wordfence is used to protect our website from unwanted or malicious access

cyber attacks. For this purpose, our website establishes a permanent connection to the Wordfence servers so that Wordfence can compare and, if necessary, block its databases with the access made to our website.

Wordfence is used on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in protecting its website from cyber attacks as effectively as possible. If a corresponding consent has been requested, the processing takes place exclusively on the basis of Article 6 (1) (a) GDPR; the consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission.

Details can be found here:

5. Information on data processing when contacting us

Contact forms


Our website contains contact forms which can be used for electronic contact. When using the contact form, your e-mail address, full name, phone number (if applicable), company and function (if applicable) as well as your message are processed. The processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR for the purpose of processing your request. By sending the contact form you agree to the transmission and storage of your personal data. If you do not agree with the processing of your data, you can cancel the contact process at any time. Then, your message will not be sent.


Contact via e-mail


Alternatively, it is possible to contact us via the provided e-mail address. In this case, the user’s personal data transmitted with the e-mail – at least the e-mail address as well as the information contained in the e-mail (any personal data you may have transmitted) – will be stored exclusively for the purpose of contacting and processing your request.


The legal basis for the processing of data in the course of sending an e-mail is Art. 6 para. 1 lit. e GDPR.

6. Transfer of your data abroad

GIZ does not transfer personal data to third countries. If you use third-party social media, the data protection regulations of the respective providers apply.

7. Duration of data storage

Your data will not be stored for longer than is necessary for the purpose for which it is processed or as required by law.

8. Objection or revocation against the processing of your data



If the GIZ processes your personal data for the performance of a task in the public interest (Art. 6 para. 1 letter e GDPR), you have the right to object to this processing in accordance with Art. 21 GDPR for reasons arising from your particular situation.




If personal data is processed on the basis of your consent (Article 6 paragraph 1 letter a DGPR), you can revoke this consent at any time for the corresponding purpose. The legality of the data processed based on your consent remains unaffected until receipt of your revocation