Privacy Policy

Understand SciBridge’s Commitment to Data Privacy

This section details SciBridge GmbH’s dedication to protecting personal data, outlining its compliance with GDPR and the principles that shape its privacy policies and practices.

Privacy Policy

  1. Controller

The controller within the meaning of the GDPR is:

SciBridge GmbH
Pestalozzistraße 25
22305 Hamburg, Germany

Phone: +49 40 41188460
Email: staff@scibridge.info
Web: https://www.scibridge.info

Represented by the Managing Director:
Priv.-Doz. Dr. med. Sied Kebir

  1. Processing of personal data when visiting the website

2.1 Server log files

When you access our website, the hosting provider automatically records the following data:

  • IP address
  • Date and time of the request
  • Time zone difference to GMT
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred
  • Website from which the request originates (referrer URL)
  • Browser type, version, and operating system

Purpose: Ensuring technical operation, IT security, and error analysis.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and stable provision of the website).
Storage period: Log files are generally deleted after no more than 30 days, unless longer storage is required for evidence purposes (e.g. in case of security incidents).

  1. Cookies and similar technologies

We only use technically necessary cookies or comparable technologies (e.g. local storage).

Technically necessary cookies: required for the operation of the site (e.g. language settings, login sessions).

Legal basis: Art. 6(1)(f) GDPR in conjunction with Section 25(2) TTDSG.

You can withdraw any consent you have given at any time with effect for the future via your browser settings or the consent banner.

[If you use a specific consent tool, name it here.]

  1. Contacting us (email / contact form)

If you contact us by email or via a contact form, we process:

  • Name
  • Email address
  • Phone number (if provided)
  • Content of your message

Purpose: Handling your enquiry and any follow-up questions.
Legal basis: Art. 6(1)(b) GDPR (contract initiation or performance) or Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries).
Storage period: We delete your enquiries once they have been fully processed and no statutory retention obligations prevent deletion.

  1. Seminar booking, participant management, and payment

When you book seminars, we process the following data depending on the form:

  • Name, title
  • Billing address
  • Email address
  • Institution/company (if applicable)
  • Booked seminar and date
  • Payment information (see below regarding payment service providers)

Purpose: Contract performance, invoicing, and organisation of participation (including sending access data, course materials, and certificates of attendance).
Legal basis: Art. 6(1)(b) GDPR (performance of a contract).

5.1 Payment service providers (Stripe, PayPal)

For payment processing we use external payment service providers (e.g. Stripe, PayPal). Payment data is transmitted directly to the respective provider; we do not receive complete credit card details.

Purpose: Secure processing of payments.
Legal basis: Art. 6(1)(b) GDPR (contract performance) and, where applicable, Art. 6(1)(f) GDPR (legitimate interest in efficient payment processing).

The payment service providers process data under their own responsibility (e.g. for fraud prevention and legal retention obligations). For details, please refer to the privacy policies of the respective providers.

Note on third countries:
Stripe and PayPal may transfer data to third countries (in particular the USA). In doing so, they generally rely on EU Standard Contractual Clauses or equivalent safeguards to ensure an adequate level of data protection.

  1. Conducting online seminars (e.g. via Zoom)

To conduct online seminars, we use videoconferencing services (e.g. Zoom or similar providers). The following data is processed:

  • Name / display name
  • Email address
  • IP address
  • Session metadata (date, time, duration)
  • Chat messages, audio and video data (if applicable)

Purpose: Delivery of the booked online seminars.
Legal basis: Art. 6(1)(b) GDPR (performance of a contract).

The respective provider acts as a processor or, in part, under its own responsibility. Data may be transferred to third countries. Where required, we conclude EU Standard Contractual Clauses and/or use data protection–compliant data centre locations.

  1. Newsletter

If you subscribe to our newsletter, we process:

  • Email address
  • Name (if provided)
  • Time of registration and confirmation (double opt-in)

Purpose: Sending information about seminars, offers, and news from SciBridge.
Legal basis: Art. 6(1)(a) GDPR (consent).

You can withdraw your consent at any time by using the unsubscribe link in each email or by contacting us directly. The lawfulness of processing carried out prior to withdrawal remains unaffected.

  1. Overview of legal bases

We process personal data on the basis of:

  • Art. 6(1)(a) GDPR – consent
  • Art. 6(1)(b) GDPR – contract/contract initiation
  • Art. 6(1)(c) GDPR – legal obligation (e.g. statutory retention under tax and commercial law)
  • Art. 6(1)(f) GDPR – legitimate interests (e.g. IT security, efficient communication, economic operation of our website)
  1. Storage period

We store personal data only for as long as necessary for the purposes stated above or as required by statutory retention periods (e.g. under commercial and tax law). After the purposes cease to apply or the retention periods expire, the data is deleted or anonymised.

  1. Your rights as a data subject

Under the GDPR, you have in particular the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object to processing based on Art. 6(1)(e) or (f) GDPR (Art. 21 GDPR)
  • Right to withdraw consent with effect for the future (Art. 7(3) GDPR)

To exercise these rights, a simple email to staff@scibridge.info is sufficient.

You also have the right to lodge a complaint with a data protection supervisory authority, for example with our competent authority:

The Hamburg Commissioner for Data Protection and Freedom of Information
Ludwig-Erhard-Str. 22
20459 Hamburg, Germany
https://datenschutz-hamburg.de

  1. Updates to this Privacy Policy

This Privacy Policy is valid as of 26 November 2025.
We reserve the right to adapt it in the event of changes to our processing activities or to the legal situation. The current version is always available at https://www.scibridge.info.

Contact Us Anytime

We’d love to hear from you!