Data-Protection Declaration

A very warm welcome to the Website of cfan.eu.

We are pleased about your interest for our services and our offerings. The protection of your personally referred data is very important for us, and therefore we would now seek to inform you of which data we use and for what purpose, every time you visit our website. Should you however have any queries, you can always contact our Authorised Data Protection Officer (contact details below).

The Society 'Christus fuer alle Nationen e.V. (Christ for All Nations, Reg.), Orber Strasse 67, D-60386 Frankfurt am Main, Germany (email address: info@cfan.eu) is the responsible owner of this website.

Personally Referred Data

Personally referred data includes all information raised on an identified or identifiable natural person (comp. Art. 4 GDPR).

The foregoing includes, for example, the name, postal address, email address, but also the ‘IP’ address. These are allocated individually by an ‘ISP’ - internet services’ provider to its customers for all computers, smart phones or any other terminal devices, which are connected to the internet via the servers of that ‘ISP’.

Data Processing on the Webserver

We raise and automatically store in our server log files information transmitted to us by the internet browser programs of our website visitors. These are:

  • the browser software type and version used to access and display hypertext files on the internet;
  • the ‘OS’ operational system employed by the devices of our website visitors;
  • the  ‘URL’ - uniform resource locator (the internet address of the website visited, and the file name extension as required);
  • the host name of the accessing computer or device (the so-called ‘IP’ address); and
  • the time of day of the query from an outside server.

The data is not allocated to any one person in particular, but is employed for technical purposes to rectify errors or disruptions on our servers.

Google Analytics

  • Purpose of Data Processing: We use GA4 to analyse visitor behaviour on our website, aiming to enhance both our site and services.
  • Type of Data Processed: This may include data about interactions with the site, such as page views, time spent on the site, and geographic locations.
  • Legal Basis: Processing is based on your consent (Article 6(1)(a) GDPR) or our legitimate interest in analysing user behaviour (Article 6(1)(f) GDPR).
  • Google Analytics Opt-Out Add-On:http://tools.google.com/dlpage/gaoptout
  • For more information on Google Analytics' privacy practices, we recommend reviewing their own data policies at Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), https://policies.google.com/privacy

Google Ads (with Conversion Tracking)

  • Purpose of Data Processing: We use Google Ads to promote our services and products. Conversion Tracking helps us determine the success of individual advertising campaigns.
  • Type of Data Processed: This may include click statistics, IP address, and information about the device used.
  • Legal Basis: Processing is based on your consent (Article 6(1)(a) GDPR) or our legitimate interest in effective advertising (Article 6(1)(f) GDPR).
  • For more information on Google Ads' privacy practices, we recommend reviewing their own data policies at Google Advertising Products (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), www.google.de/intl/de/policies/privacy/

Google Tag Manager

  • Purpose of Data Processing: Google Tag Manager helps us manage website tags through an interface without using cookies or creating or storing user profiles.
  • Type of Data Processed: Google Tag Manager does not process personal data, as it is solely for managing tags. Google only learns the IP address, which is necessary to run Google Tag Manager.
  • Legal Basis: Usage is based on our legitimate interest in efficiently managing our website tags (Article 6(1)(f) GDPR).
  • For more information on Google Tag Manager's privacy practices, we recommend reviewing their own data policies at https://policies.google.com/privacy and https://support.google.com/tagmanager/answer/7157428

‘Cookies’

Our internet website also employs so-called ‘Cookies’ in other sections of the website. These serve to make our internet- appearance and -offering more user-friendly, effective and secure. ‘Cookies’ are small text files, which are downloaded onto the devices of our website visitors, and saved and stored by their browser software. Most of the ‘Cookies’ employed for this purpose are so-called ‘Session Cookies’, and are automatically erased when the website visitor departs from visiting our website. Such ‘Cookies’ however cause no damage to processors and contain no viruses. Website visitors can also prevent the installation of ‘Cookies’ on their processors and devices, by altering the appropriate settings in their browser software. We would however draw attention to the fact, that in such cases not all the possible functions of our website can be fully enjoyed.

Social Plugins

We provide the possibility on our website of using so-called ‘Social Media Buttons’. In order to protect the personally referred data of our website visitors, we use the so-called ‘Shariff’ problem solution in their implementation. This means, that such buttons on our website are merely connected as ‘graphics’, which only contain a link to the relative website of the button provider. By clicking on the ‘graphic’, our website visitors will thus be transferred to the relative services of that provider. Only then will your personally referred data be transmitted to the relative provider. When our website visitors do not click on the buttons, no exchange of information takes place between our website visitors and the provider of the relative social media button. More information concerning the raising of the personally referred data of our website visitors in social media networks, can be found in the user terms and conditions of the relative social media provider. Additional information on the ‘Shariff Problem Solution’ can be found via this link: www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html

We have set up the following social media buttons on our website:
Facebook Ireland Ltd. (4 Grand Canal Square, Dublin 2, Ireland),
Twitter International Company (100 Cumberland Place, Fenian Street, Dublin, D02 AX07, Ireland),
WhatsApp Ireland Ltd. (4 Grand Canal Square, Dublin 2, Ireland).

Social Media Presence

To give our users information about our ministry quickly and efficiently through multiple channels, we operate on several different platforms.
These include:

Facebook Pixel

We use the Facebook pixel from Facebook on our website. For this purpose, we have implemented a code on our website. The Facebook pixel is a snippet of JavaScript code that loads a collection of functions that allow Facebook to track your user actions if you came to our website through Facebook ads. For example, when you purchase a product on our website, the Facebook pixel is triggered and stores your actions on our website in one or more cookies. These cookies allow Facebook to match your user data (customer data such as IP address, user ID) with your Facebook account data. Then Facebook deletes this data again. The collected data is anonymous and not visible to us and can only be used in the context of ad placements. If you yourself are a Facebook user and are logged in, the visit to our website is automatically assigned to your Facebook user account.

We want to show our services or products only to those people who are really interested in them. With the help of Facebook pixels, our advertising measures can be better tailored to your wishes and interests. Thus, Facebook users (if they have allowed personalized advertising) get to see suitable advertising. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.

If you are logged in to Facebook, you can change your settings for advertisements yourself at www.facebook.com/ads/preferences/. If you are not a Facebook user, you can basically manage your usage-based online advertising at www.youronlinechoices.com/de/praferenzmanagement/. There you have the option to deactivate or activate providers.

If you want to learn more about Facebook's data protection, we recommend that you read the company's own data policies at www.facebook.com/policy.php.

Third-Party Services

For several other functions on our website, we employ the services of other providers. Usually, the ‘IP’ addresses of our website visitors are transmitted to such providers when the visitors visit our website. ‘Cookies’ can also be employed by such providers from their websites, as well.

To facilitate attendees booking tickets for our events, we use the services of Cvents. Their privacy policy can be found here: www.cvents.eu/legal/privacy/privacy_en.html

To ensure a secure functionality of our website, we integrate certain software program packages (jQuery) via the ‘program libraries’ of ‘Google’: (https://developers.google.com/speed/libraries/). This means, that we can ensure that only current error-free program packages are employed.

Several of the special fonts, which we employ on our website, are also taken from the services provided by ‘Google’ (https://fonts.google.com/).

The search function on our website is provided with the assistance of the ‘Google’ user-defined search engine (https://cse.google.de/cse/).

The data-protection rules and regulations of ‘Google’ can be found here: policies.google.com/privacy

To show videos on our website, we generally employ ‘YouTube’. Because such services belong to ‘Google’, the data-protection guidelines of ‘Google’ are also applied: (https://policies.google.com/privacy). Videos are also included via ‘Vimeo’: (https://vimeo.com/privacy), ‘LightCast’: (https://www.lightcast.com/) and ‘Facebook’: (https://www.facebook.com/policy.php).

In order to reproduce ‘audio files’, we employ ‘SoundCloud’: (https://soundcloud.com/pages/privacy).

On some pages we use ‘AddEvent’ to provide easy calendar entries: (https://www.addevent.com/privacy).

And, for ‘social media’ we occasionally employ the plugin ‘AddThis’ from ‘Oracle’: (http://www.addthis.com/privacy/privacy-policy).

Postal Mail

When our website visitors wish to receive information post on our website by postal mail, we shall need a valid and complete postal address. Any further personally referred data on the person concerned is however voluntary. Visitors to our website can however select to revoke their approval for the saving and storage of personally referred data, their email addresses and their use for the sending of postal mail, at all times.

Newsletter and personalized user experience

For the transmission of our newsletter, and in order to bring you a personalized user experience in the future, we are utilizing the “Pardot” service from the Salesforce group (Salesforce.com Germany GmbH, 31 Erika-Mann Street, 80636, Munich, Germany).

For a registration with reference to our newsletter, we require a valid email address. In order to check that the registration is actually made by the owner of an e-mail address, we use the "double opt-in" procedure. For this purpose, we log the order for the newsletter, the dispatch of a confirmation email and the receipt of the response requested. You can easily unsubscribe from our newsletter at any time by clicking on the unsubscribe link at the end of every newsletter that we send you.

In addition to sending our newsletters, Pardot enables us to record and evaluate the use of our website by our website visitors. Inasmuch as the Salesforce group of companies processes personal data with their services, the processing takes place exclusively on our behalf and according to our instructions.

When you visit our website, Pardot records your click path and uses this to create an individual usage profile using a pseudonym. For this purpose, cookies are used that enable your browser to be recognized. By agreeing to the use of cookies when using our website for the first time by confirming the cookie acceptance banner, or by continuing to use our website, you also consent to the use of Pardot cookies.

You can revoke your consent at any time with effect for the future. To do this, use the contact details given at the end of this privacy policy. In addition, you can deactivate the creation of pseudonymised usage profiles at any time by configuring your Internet browser so that cookies from the “pardot.com” domain are not accepted. However, this can lead to certain restrictions in the functions and user-friendliness of our offering.

The Online Shop and Registration

For our Online Shop at: shop.cfan.eu, we employ the services of the provider: ‘HostEurope’, whose servers are located in Cologne and Strasburg. The services of ‘HostEurope’ process the personally referred data for us, which Online Shop visitors indicate when ordering from the Online Shop. The personally referred data of website visitors will not be passed to- or exploited –by third parties for other purposes. Registered users however have the possibility of changing or erasing their already registered personally referred data, if required. Of course, we will also provide further information to website visitors at any time concerning their personally referred data stored on our system. We shall also be glad to make corrections or erasures as required at the request of website visitors, provided that no statutory archiving obligations prevent this.

Online Contributions and Payments made in the Online Shop

In order to provide for the highest degree of security in the processing of financial data, we use the possibility of the ‘Spendino’ online tool made available by GRUEN Software AG (LLC/Ltd.) of Pascal-Strasse 6, D-52076 Aachen, Germany, for processing online donations. The data of all financial transactions are only processed on the ‘Spendino’ servers. The data-protection declaration of the ‘Gruen AG’ company, can be found at the appropriate section of the donation procedure.

As regards payments in the Online Shop, we take advantage of the services of PayPal (Europe) S.à r.l. et Cie., S.C.A. of 22-24 Boulevard Royal, L-2449 Luxembourg. Even here also, the financial data is not saved and stored on our servers, but only on those of ‘PayPal’.

ECJ judgment: Privacy Shield

Christ for all Nations is an international missions organization. In order to fulfill our mandate, we therefore use services that are widely accepted and distributed internationally. All of our service providers operate data centers in Europe, but most of them are headquartered in the USA.

So far, the so-called "Privacy Shield" has provided the legal basis for GDPR-compliant data processing by US service providers in many cases. With judgment of July 16, 2020 (Az. C-311/18, Schrems II), the European Court of Justice in Luxembourg declared this basis to be invalid.

Our contracts with the relevant service providers are already or are currently being converted to standard contractual clauses, which, according to the above-mentioned judgment of the ECJ, offer an alternative legal basis for data processing.

Nevertheless, we would like to point out that according to current case law in the USA, there is no adequate level of data protection. In addition, government surveillance measures in the USA may result in which no adequate legal protection can be claimed against these measures.

By agreeing to the use of cookies by the relevant service provider when using our website for the first time by confirming the cookie acceptance banner, or by continuing to use our website, you also consent to any data processing that may take place in the USA.

You can revoke your consent at any time with effect for the future. To do this, use the contact details given at the end of this privacy policy.

Website Visitor Rights

Website visitors have the following rights concerning their personally referred data deposited with our organisation:

  • the right to obtain information;
  • the rights of correction and erasure;
  • the right of a restriction of the processing activities;
  • the right of the revocation of data processing activities;
  • the right of data transferability.

Website visitors are also entitled to submit complaints to the supervisory data-protection authorities on the processing of their personally referred data by us.

Changes to the Data Protection Declaration

Changes are always being made to our website. For this reason, we therefore reserve the right to change this data-protection-declaration and adjust it to meet current circumstances. The current status is September 2020.

The Authorised Data-Protection Officer

Your confidence in our services is very important for us. For this reason, we would always seek to respond to the queries of our website visitors concerning the processing of their personally referred data. When website visitors have any queries, which are not answered in this data-protection declaration, or whenever they require indepth information on any of the points discussed therein, they should please contact our Authorised Data-Protection Officer at any time:

Datenschutzbeauftragter
Christus fuer alle Nationen e.V. (Reg.)
Orber Strasse 67
D-60386 Frankfurt am Main, Germany

Email address: dst@cfan.eu

Only the German version of our data protection declaration is legally binding.