Responsible for the content

Privacy policy

Thank you for visiting our website www.paps-test.de and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practice is in accordance with the legal regulations of the EU's General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

Responsible person

The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.

With regard to our website, the responsible person is:

SCC EVENTS GmbH
Olympiapark Berlin, Hanns-Braun-Straße/Adlerplatz
14053 Berlin
Germany

E-mail: impressum@scc-events.com
Tel: +49 3030128810
Fax: +49 3030128840

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 of the GDPR. You can reach our data protection officer under the following contact details:

Nicole Rosenfeld, c/o SCC EVENTS GmbH, Datenschutz
Olympiapark Berlin, Hanns-Braun-Straße/Adlerplatz
14053 Berlin
Germany
E-mail: datenschutz@scc-events.com

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.) used to access it.

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message whether the retrieval was successful;
(9) Amount of data transmitted

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of the data processing

The temporary (automated) storage of the data is necessary for the course of a website visit to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of objection and deletion

You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

Special functions of the website

Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:

Questionnaire / PAPS test

Scope of the processing of personal data

The data you enter in the input mask of the questionnaire as answers to the PAPS Test questions are part of the data processing. An evaluation is generated from the answers you enter, which allows you to make an initial assessment of your individual health risk while exercising. In addition, a so-called PAPS code is generated after the evaluation, which is valid one year from the date of generation and which can be used to register for our sports events. The evaluation of the answers to the PAPS test questions is available to you for personal and use and can support you in preparing for sporting competitions. The results of the PAPS test are merely a recommendation for the participants and have no influence on whether or not you successfully register for one of our sports events.

In addition, those who take advantage of this offer can provide the Medical Board of SCC EVENTS with the individual evaluation by using the PAPS code and providing further information after a medical health check for the further development of the questionnaire as well as for statistical purposes and scientific evaluations.

Legal basis for the processing of personal data

Art. 6(1)a GDPR (consent by clear affirmative action or conduct)

Purpose of data processing

We see the "Personal Activity and Prevention Screening Test" (PAPS test) as the minimum of what we can do to make those participating in our sporting events aware of the importance of monitoring their body and health and undergoing regular medical examinations, especially with regard to preparation for athletic competitions. The PAPS test enables users of this service to assess their individual health risk during sport. The results to the evaluation are only available to the respective user of the service (via display on the screen and as a print option).

The PAPS code can be used as proof of having utilised this screening option when registering for our sports events. This is voluntary information. The answers from the questionnaire and the evaluation are stored in a separate database on a server that is physically separate from the registration process for the event (separate data centre) and are not linked or merged with the registration or the PAPS code.

The data records will only be passed on for the further development of the questionnaire, for statistical purposes and scientific evaluations to scientifically active doctors from the Medical Board of SCC EVENTS GmbH, who are bound by their medical confidentiality obligations. The data records, including further details of information following a medical health check, will only be transmitted if you have expressly consented to this. Personal data will be anonymized during transmission to the extent that no conclusions can be drawn about the user(s) of the service.

Duration of storage

Once the PAPS code has been generated, it is stored for one year. There is no reference to the questionnaire or the evaluation. It is therefore not possible to draw any conclusions about the participant when registering for a sporting event.

The users of the service are solely responsible for protecting the individual evaluation results of the PAPS test, as they are the only ones to receive the results on the screen or as a printout.

Data that is provided for scientific analysis is not subject to a storage limit. It is not possible to draw conclusions about users of the website due to the anonymization process.

Revocation and deletion option

The revocation and deletion options are based on the general regulations on the right of revocation and deletion under data protection law described below in this data protection declaration.

There is no reference or connection between the questionnaire, PAPS key and registration for the event. A derivation of patterns or to specific persons is excluded.

Necessity of providing personal data

The use of the questionnaire is on a voluntary basis and is neither contractually nor legally required. The PAPS test is answered exclusively via this questionnaire. No additional personal data will be collected.

If you wish to generate and use the PAPS code, you must complete the fields marked as mandatory on the questionnaire

Information about the use of cookies

We integrate and use no cookies on this website.

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organisational measures during collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so that we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Your rights

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have the right to be informed about the information named in Art. 15 (1) of the GDPR, insofar as the rights and freedoms of other persons are not affected (cf. Art. 15 (4) of the GDPR). We will also be happy to provide you with a copy of the data.

Right of rectification

In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data stored by us (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.

Right to erasure

Pursuant to Art. 17 (1) of the GDPR, you have the right to demand that we delete the personal data we have collected about you if

• the data is either no longer required;
• the legal basis for the processing has ceased to exist without replacement due to the withdrawal of your consent;
• You have objected to the processing and there are no legitimate grounds for processing;
• Your data is processed unlawfully;
• a legal obligation requires this or a collection pursuant to Art. 8 (1) GDPR has taken place.

Pursuant to Article 17 (3) of the GDPR, this right does not exist if

• processing is necessary for the exercise of the right to freedom of expression and information;
• Your data have been collected on the basis of a legal obligation;
• processing is necessary for reasons of public interest;
• the data are necessary for the assertion, exercise or defence of legal claims.

Right to restriction of processing

According to Art. 18 (1) GDPR, you have the right in individual cases to demand the restriction of the processing of your personal data.

This is the case when

• the accuracy of the personal data is disputed by you;
• the processing is unlawful and you do not consent to its erasure;
• the data is no longer needed for the purpose of processing, but the collected data is used for the assertion, exercise or defence of legal claims;
• an objection to the processing has been lodged pursuant to Art. 21 (1) GDPR and it is still unclear which interests prevail.

Right of withdrawal

If you have given us express consent to process your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent until the revocation is not affected by this.

Right to object

In accordance with Art. 21 of the GDPR, you have the right to object at any time to the processing of personal data relating to you that has been collected on the basis of Art. 6 (1) (f) (in the context of a legitimate interest). You only have this right if there are special circumstances against the storage and processing.

Right to data portability

Pursuant to Article 20 of the GDPR, you have a right to the transfer of personal data relating to you. We will provide the data in a structured, common and machine-readable format. The data can be sent either to you or to a person responsible named by you.

We provide you with the following data upon request pursuant to Art. 20 para. 1 GDPR:

• Data collected on the basis of explicit consent pursuant to Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR;
• Data that we have received from you in accordance with Art. 6 Para. 1 lit. b GDPR within the scope of existing contracts;
• Data that has been processed within the scope of an automated procedure.

We will transfer the personal data directly to a data controller of your choice as far as this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Art. 20 (4) of the GDPR.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

SCC EVENTS GmbH
Olympiapark Berlin, Hanns-Braun-Straße/Adlerplatz
14053 Berlin
Germany

E-mail: impressum@scc-events.com
Tel: +49 (0) 30 / 30128810
Fax: +49 (0) 30 / 30128840

Right of appeal to the supervisory authority pursuant to Art. 77 para. 1 GDPR

If you suspect that your data is being processed illegally on our site, you can of course have the issue clarified by the courts at any time. In addition, any other legal option is open to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Article 77 (1) of the GDPR. The right of complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.