As the provider of the CrossAsia services, Staatsbibliothek zu Berlin – Preußischer Kulturbesitz handles your personal data responsibly. All data processing follows the guiding principles of integrity, confidentiality, earmarked usage and data economy. In the following, we want to explain the most important facts regarding data protection in the usage of CrossAsia, as well as the services it provides.
General aspects of data protection at the Staatsbibliothek zu Berlin and the usage of the Special Subject Portal CrossAsia (Specific aspects of data protection)
Specific aspects of data protection in the usage of CrossAsia Open Access Repository
To use CrossAsia Open Access Repository as a publication platform for Open-Access-Publishing of texts, reseach data, videos, sound and image documents in the field of Asian Studies, you need to personally register for CrossAsia. According to Art. 4 Nr. 11 of EU-Datenschutz-Grundverordnung (EU General Data Protection Regulation), this registration is understood by Staatsbibliothek zu Berlin – Preußischer Kulturbesitz as consent to the processing of relevant personal data. For registration with CrossAsia, it is necessary to provide data on personal and family name of the author or another person entrusted with the publication (secretary etc.), address data, date of birth, and an email address (ideally an official email address). In addition, servers collect and protocol date and time of the last login in an account. The following persons have access to personal data in the server-based user accounts: Persons responsible for the fulfillment of order data and members of the CrossAsia team who have administrator rights. Emails that are sent in the context of a first registration with CrossAsia are visible to all members of the CrossAsia team. Since in all likelihood no serious risk to rights and freedom of concerned persons is to be expected, a data protection impact assessment is not necessary.
In addition, metadata will be requested for the purpose of Open Access publication. This metadata can be linked with the data in the Gemeinsamen Normdatei of Deutsche Nationalbibliothek. The provision of data in this context is voluntary and is in agreement with the purpose of making research known to the public, as is the purpose of CrossAsia Open Access Repository. The collecting of other personal data during the login process (IP address, data and time of registration) serves the purpose of impeding fraud.
The legal basis for processing login-data is Art. 6 Abs. 1 lit. e DSGVO i.V.m. § 3 BDSG. It is necessary to temporarily save the IP address to our system, to enable the delivery of the website to the user. For this, the IP address of the user must be saved for the duration of the session. It is necessary to save logfiles to ensure functionality of the website. In addition, the data is used to optimize the website and to ensure the safety of our information system. Data will not be used for marketing purposes. These purposes also constitute the legitimate interest of CrossAsia in the processing of data according to Art. 6 Abs. 1 lit. f DSGVO.
All collected personal data is saved on the server infrastructure of Verbundzentrale des Gemeinsamen Bibliotheksverbunds (Platz der Göttinger Sieben 1, D-37073 Göttingen, www.gbv.de). All transfer of data is encoded securely according to Hypertext Transfer Protocol Secure (HTTPS). There is no other transfer of personal data. All personal data will be saved for an undefined duration of time, but no longer than up to the revocation of consent, normally until the account is deleted. At any time, users can request that their CrossAsia account is permanently deleted by contacting the contact addresses given below, or through contacting the person responsible for the collection of data. This will also revoke consent to saving the data collected during registration. Other personal data collected during registration (IP address, date and time of registration) are normally deleted seven days after registration.
The following agency is responsible in the sense of the General Data Protection Regulation (Datenschutz-Grundverordnung) and other relevant data protection policies for the collection of data in the context of the use of CrossAsia Open Access Repository as a publication platform:
Stiftung Preußischer Kulturbesitz, represented by its President
Prof. Dr. Hermann Parzinger
+49 (0)30 / 266 411 401
info [at] sbb.spk-berlin.de
Please contact the official data protection officer of Staatsbibliothek zu Berlin for questions regarding data protection at Staatsbibliothek zu Berlin:
Stiftung Preußischer Kulturbesitz – Hauptverwaltung
+49 (0)30 / 266 411 414
Datenschutzbeauftragte [at] hv.spk-berlin.de
Please contact the official data protection officer of Gemeinsamer Bibliotheksverbund for questions regarding data protection at Gemeinsamer Bibliotheksverbund:
Verbundzentrale des Gemeinsamen Bibliotheksverbunds
Platz der Göttinger Sieben 1
+49 (0)551 / 395 207
datenschutz [at] gbv.de
You are entitled to inquire about your personal data and to have your data corrected or deleted. You have the right to restrict processing of your data and – if you have consented to data processing – to object against data processing. And you may have a right to data portability.
You can file a complaint with our official data protection agency, Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (Federal Commissioner for Data Protection and Freedom of Information), Husarenstr. 30, 53117 Bonn, Email: poststelle [at] bfdi.bund.de