Privacy Statement

Data Privacy Policy

to fulfill the information obligations according to Art. 12 to 14 GDPR

Purpose of data processing

The Journal of Virtual Reality and Broadcasting JVRB is operated via the OJS publication system. This is used to provide and operate the infrastructure for the publication of open-access journals and is made available by the Cologne University Library Center (hbz). All necessary business processes are mapped electronically, such as the submission process, the review process and the publication process. Published papers are permanently archived electronically and can be searched via search engines, library catalogs and relevant databases.

Data processing is carried out to create a user account with this journal. This is only necessary for the submission, review or editorial processing of articles.

With regard to personal data, the following activities are carried out with this system:

  • Authors submit scientific works they have written (e.g. specialist articles) for peer review
  • Reviewers evaluate the works assigned to them
  • Editors
  • manage the submission and review processes
  • release works for publication after positive review and approval by the authors
  • assign additional metadata for the works
  • export metadata to register persistent identifiers for long-term archiving and to index the works in catalogs and databases

The connection data is processed

  • to ensure the secure operation of the website
  • to identify unauthorized access attempts and accesses and to track them

Session cookies contain a session ID that can be used to assign various browser requests to a session. This is used for login and session settings (e.g. language).

To increase the dissemination and visibility of publications, publication-related metadata of published articles is passed on via common interfaces (e.g. OAI-PMH) for indexing in catalogs and databases. To assign persistent identifiers (Digital Object Identifier DOI), publication-related Metadata is forwarded to the registration agency DataCite. As part of the obligation to submit online publications in accordance with §§ 15 ff. DNBG, metadata of published articles are delivered to the German National Library DNB or made available for collection.

Categories of data

The following personal data is processed:

  • User name (username) and password for access to the required functions of OJS depending on role and authorizations
  • First name, last name (first name, surname) to document the data processing carried out
  • Email for sending event-related notifications from the system
  • IP address to ensure the secure operation of the service
  • Names, personal IDs (e.g. ORCID), email addresses, business addresses of authors and other parties involved in the submitted works and registered users are stored for the purpose of
  • Provenance
  • Proper processing and preservation
  • Liability (e.g. copyright)
  • Rights of use
  • Making available

              both within the works and in the descriptive metadata.

  • Correspondence (event-related notifications) that arises as part of editorial processes for documentation
  • Voluntary profile information (preferred public name, e-mail signature, telephone number, address, function (reader, author, reviewer), profile picture, CV, personal homepage) for the provision of contact data by the users themselves

Legal basis

The legal basis for processing the data of authors and reviewers is consent in accordance with Art. 6 para. 1 lit. a) GDPR.

The legal basis for the processing of employee data is the fulfillment of obligations arising from the employment contract pursuant to Art. 6 para. 1 lit. b) GDPR (for tariff employees) or the fulfillment of the university's tasks in the public interest pursuant to Art. 6 para. 1 lit. e) GDPR (for civil servants) in conjunction with Art. 88 GDPR in conjunction with Art. 88 GDPR. Art. 88 GDPR in conjunction with. § SECTION 18 DSG NRW.

The legal basis for processing the data of persons named in the media is the fulfillment of the tasks of the university in the public interest pursuant to Art. 6 para. 1 lit. e) GDPR or, if applicable, a contract pursuant to Art. 6 para. 1 lit. b) GDPR and, in the case of special categories of data, Art. 9 para. 2 lit. e) GDPR, as the data subject has made the data public himself/herself.

The connection data is processed in accordance with Art. 6 (1) (f) GDPR on the basis of the above-mentioned legitimate interest in ensuring the secure operation of the website and the identification of unauthorized access attempts and accesses and their tracking.

Responsible institution

Hochschule Düsseldorf
Hochschulbibliothek
Münsterstr. 156, 40476 Düsseldorf
bibliothek@hs-duesseldorf.de

Data Protection Officer

Hochschule Düsseldorf
Datenschutzbeauftragte
Münsterstr. 156, 40476 Düsseldorf
datenschutzbeauftragter@hs-duesseldorf.de

Recipient of data

Access to the personal metadata of authors and persons named in the media is public.

Access to the complete personal metadata as well as statistical connection data is granted to the responsible processors in the university library.

The Düsseldorf University of Applied Sciences uses the hbz as a processor. The hbz is responsible for hosting the publication system based on the open source software OJS.

Hochschulbibliothekszentrum des Landes NRW (hbz)
Jülicher Str. 6
50674 Köln

There is no data transfer to third countries within the OJS publication system.

Duration of storage

User accounts will be deleted upon request. The deletion includes the personal data of the account. The deletion cannot be reversed. Voluntary profile information in user accounts can be changed or deleted by the users themselves at any time.

Submitted, published and rejected/not published articles remain in the system for the purpose of scientific documentation in the sense of good scientific practice and authors and reviewer names remain assigned for technical and organizational reasons. Subsequent deletion of (non-published) articles, including all messages associated with the submission, is possible in justified exceptional cases.

Subsequent deletion of correspondence is only possible after a period of 10 years for the purpose of scientific documentation in accordance with good scientific practice.

The personal metadata of published articles will be stored indefinitely and made publicly accessible with the consent of the authors.

The logged connection data is stored for a period of one day and then anonymized. To prevent and track IT attacks, the IP range and IP addresses are stored for a longer period of time for troubleshooting purposes.

Session cookies are automatically deleted after the browser is closed.

Rights of data subjects

You have the right

  • to information about the data stored about you.
  • to withdraw your consent at any time.
  • to rectification of incorrect data.
  • to the deletion or deactivation of data that is no longer required or for the use of which you have withdrawn your consent.
  • to object to further data processing for reasons arising from your particular situation.
  • to restrict the processing of your stored data in certain cases in accordance with Art. 18 of the EU General Data Protection Regulation.

Right to lodge a complaint

You also have the right to lodge a complaint with the data protection supervisory authority in the member state of your place of residence as well as with the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia (www.ldi.nrw.de) as the data protection supervisory authority of Düsseldorf University of Applied Sciences.

Source of the data

The data is collected from the data subjects themselves.