Privacy Statement


1. Data Storage and Data Use


The data you have entered in connection with an event is collected, processed and saved by Hasso Plattner Institute for Digital Engineering gGmbH for the purpose of invoicing and for the forwarding of further information offers.
Under no circumstances is the data disclosed to unauthorized third parties, unless required by law. You may revoke the consent you have given at any time and/or object to the future use of your data.


2. Usage and Handling of Personal Data


Personal data is only required to use the adavanced features of the HPI-VDB. The account information requires a valid email address and a username, which will be used for identification of the User. Additional information, such as first name or last name are optional. The full user record can be investigated in the user details overview. The email address will be used to send information about recently discovered vulnerabilities, if the user selected this feature. Besides this the information is not aggregated, transmitted to third parties or used in another way. If a user wants to delete all of his information from the website, he can simply write an email request to hpi-vdb-webadmin(at)hpi.de.


3. Right of Objection and Right of Access:


Your consent regarding the receipt of information offers by post and/or by email, or any other kinds of consent granted, can be revoked at any time with future effect by sending an informal letter to: Hasso Plattner Institute for Digital Engineering gGmbH, Prof. Dr. Helmert Strasse 2–3, 14482, Potsdam, Germany or by sending an email to our data protection officer (datenschutz(at)hpi.de).
Furthermore, our data protection officer can also provide you information about your data stored with us.
At your request, we will undertake the necessary steps to erase or block your data completely. In this case, please send your request in writing to:
Hasso Plattner Institute for Digital Engineering gGmbH
Data Protection Officer (Datenschutzbeauftragter)
Campus Griebnitzsee
Prof. Dr. Helmert Strasse 2-3
14482 Potsdam, Germany
or alternatively by email to: datenschutz(at)hpi.de.
At all times you have the right to disclosure of your stored, personal data, as well as its provenance, recipients and the purpose of its use. You also have a right to the correction, blocking or deletion of your data. In the event of such queries, please use the addresses stated in the imprint to contact us.


4. Cookies and Tracking Technology:


This website uses so-called cookies to establish and handle the user sessions. For more information about the extent of the usage of cookies, refer to the documentation of the django framework, which is used in this website.
Every time you access the HPI-VDB website the following data is stored in a server log file:

  • Name of the accessed file
  • Date and time of access
  • Volume of Data transmitted
  • Notification of whether file retrieval was successful
  • IP address
  • Previously accessed web address (referrer)
  • Information about the operating system and the browser

The information generated by the cookie about your use of this website is stored on the server of the service provider in Germany. This data is evaluated for the sole purpose of optimizing the website. This data is not disclosed to third parties whether for commercial or noncommercial purposes.
You may refuse the use of cookies by selecting the appropriate settings on your browser. Please note that by doing this you may not be able to use the full functionality of this website.
In addition, we also use JavaScript and Flash to increase the user-friendliness of our website.
JavaScript does not store any personal information. If you disable JavaScript via your browser setting, you can still make extensive use of our Internet services.
Cookies serve to make our site more user-friendly. Cookies are small text files that are placed on your computer and stored by your browser. Most of the cookies we use are so-called “session cookies”, which are automatically deleted after your visit. HTTP cookies are transmitted in the header via HTTP. They serve to identify the subscriber, whereas the browser usually offers the user restrictive settings:
  • Non-acceptance of cookies
  • User query with each cookie
  • Deletion of all cookies after user leaves site
  • And more


5. Links to Other Websites


Our website contains links to the websites of other, unrelated providers. After clicking on such a link, we no longer have any influence on the processing of any data that is transferred to the third party (such as the IP address or the URL on which the link is located), since the behavior of third parties is beyond our control. Therefore, we cannot accept any responsibility for the processing of any such data by third parties.


6. Server Log Files


The page provider collects and stores information in so-called “server log files,” which your browser automatically transmits to us.(See also Point 3)
This data cannot be associated with specific individuals. A combination of this data with other data sources is not carried out. We reserve the right to retroactively check this data if we become aware of warranted indications of unlawful use.


7. SSL/TLS Encryption


This site uses SSL encryption for security reasons and to protect the transmission of sensitive content—such as the requests you send to us as site operator. You can recognize an encrypted connection in the change of the browser’s address line from “http: //” to “https: //” and by the lock symbol in your browser line. When SSL encryption is activated, the data you have sent us cannot be read by third parties.