Data Protection

The responsible person for the pages of the Baltic Sea Business Day Portal in terms of General Data Protection (GDPR) and other national data protection laws of Member States and also other data protection-related regulations is:

1. Scope of processing personal data

We generally only process our users’ personal data as far as this is necessary in order to provide a functioning website and also our content and services. Our users’ personal data is generally processed after the user has given their consent. The only exceptions to this are cases where obtaining consent beforehand is not possible for practical reasons and the processing of the data is permitted by statutory regulations.

Personal data includes information such as your name, address, postal address, phone number and mail address. Information which is not associated with your identity (such as the number of users of certain web pages) is not included. 

If you order informational material, register for the press subscription service or for state government regional government events (e.g. citizens’ forum as part of “Regional Government on the Ground”), we ask you for your name and other personal information. You can freely decide whether to enter this information.

Your data is transferred via an encrypted https connection.

We use the information received from you exclusively to send you the publications you order by post or to give you information on new press releases according to the selection you make yourself and to simplify the registration process for events. The data you supply is not used for anything beyond this.

2. Legal basis for the processing of personal data

Insofar as the consent of the person affected must be obtained for processing personal data, Article 6 Paragraph1 lit a of the EU data protection directive (GDPR) shall serve as a legal basis.

When processing personal data which is necessary to fulfil a contract and the person affected is a party to the contract, Article 6 Paragraph 1 lit. b GDPR shall serve as a legal basis. This also applies to processing procedures which are necessary to perform pre-agreement measures.

Insofar as personal data is processed to fulfil a legal obligation which Mecklenburg-Vorpommern Regional Government is subject to, Article 6 Paragraph lit c GDPR shall serve as a legal basis.

In case the vital interests of the person affected or some other natural person make the processing of personal data necessary, Article 6 Paragraph 1 lit. d GDPR shall serve as a basis.

If processing is necessary to complete a task which is in the public interest or if it is done during the process of exercising public authority which has been transferred to the responsible person, Article 6 Paragraph 1 lit. e in conjunction with Section 4 Paragraph 1 of the State Data Protection Act shall serve as a legal basis.

3. Data deletion and storage duration

The personal data of the person affected is deleted or blocked as soon as the purpose for storage no longer applies. Storage can take place beyond this if this is provided for by European or national legislators, union law ordinances, laws or other regulations which the responsible person is subject to. Data blockage or deletion takes place when the storage deadline dictated by the aforementioned standards expires unless there are further grounds for the continued storage of the data for concluding an agreement or contract fulfilment.

We store your data on especially protected servers with the DVZ Datenverarbeitungszentrum Mecklenburg-Vorpommern GmbH. Lübecker Str. 283, 19053 Schwerin. Access is only possible for a small circle of especially authorised persons who are involved with the technical, commercial or editorial supervision of the server.

The following data is stored temporarily in a log file in connection with access to the web pages of Mecklenburg-Vorpommern’s government portal:

-       Information on the browser type and the version used

-       The user’s IP address

-       The date and time of access

-       The method, path, name and parameters of the file accessed

-       The quantity of data transmitted

-      A report on successful access

This information flows anonymised into an evaluation statistic. The log files recorded are deleted three days after at the latest.

1.) Description and scope of data processing

As described in III) 3) Data deletion and storage duration above, our system automatically collects data and information on the computer system calling up a particular web page every time a page is accessed.

2.) Legal basis for data processing

The legal basis for the temporary storage of data and logfiles is Article 6 Paragraph 1 lit. c, e GDPR.

3.) Purpose of data processing

The temporary storage of the IP address by the system is necessary in order to make possible the delivery of the website to the user’s computer. The IP address must be stored for this purpose for the duration of the session.

Storage in log files takes place in order to ensure the functionality of the website. In addition, the data serves to optimise the website and ensure the security of our technical information systems. No analysis for marketing purposes takes place in this connection.

Processing is necessary to fulfil a legal obligation which the responsible person is subject to or to fulfil a task which is in the public interest or which is performed to exercise public authority which has been transferred to the responsible person in accordance with Article 6 Paragraph1 lit c, e GDPR.

4.) Storage duration

Data is deleted as soon as it is no longer needed for achieving the purpose for which it was collected. In case of data collection to provide the website, this is the case if the respective session is ended.

In case of the storage of data in logfiles, this is the case three days afterwards at the latest. Storage beyond this is possible. In this case, the user’s IP addresses are deleted or modified so that they can no longer be allocated to the accessing client.

Possibility of objection and elimination

The collection of data to provide the website and the storage of data in log files is absolutely necessary for the operation of the website. There is therefore no possibility for the user to object.

a) Description and scope of data processing

Our website uses cookies. Cookies are text files which are stored either in the Internet browser or by the Internet browser on the user’s computer system. If a user accesses a website, a cookie may be stored on the user’s operating system. The cookie contains a characteristic sequence of characters which permit the unique identification of the browser when the website is accessed.

We use temporary cookies to make our website more user-friendly. A number of elements in our Internet page require us to identify the accessing browser including after a change of page.

The following data is therefore stored in the cookies and transmitted:

(1)  Status of a tree node when opening a dynamic tree view (navigation)

(2)  Reference to the contrast design when the user activates the contrast version

These temporary cookies contain no personal data.

Most browsers are basically set up so that they automatically accept cookies. You can, however, disable the storage of cookies or set up your browser to inform you as soon as cookies are sent.

We use cookies in conjunction with the Siteimprove Analytics web analysis service to make our website more user-friendly.

The following data may be transmitted in this way:

-       Search terms entered

-       Frequency of page access

-       Use of website functions

-       Chronology of page access

The user date thus collected is pseudonymised by technical means. It is therefore no longer possible to attribute the data to the accessing user. The data is stored separately from other personal user data.

The information is used by the respectively competent person (editors in the press offices of the State Chancellery and the ministries) to analyse the user behaviour of visitors to the website, to compile reports on use and ultimately to improve the website experience for their visitors. This information is not passed on to third parties.

The following cookies are used in the government portal:

Cookie name: nmstat

Type: Persistent - expires after 1,000 days

About the cookie: This cookie is used to record user behaviour on the website. It is used to collect statistics about website use such as when visitors last visited the website. The cookie contains no personal data and is used purely for web analysis.

Cookie name: siteimproveses

Type: Session cookie

About the cookie: This cookie is used to follow the sequence of the pages which a visitor views during their visits to the website. The cookie contains no personal data and is used purely for web analysis.

Processing is necessary to fulfil a task which is in the public interest or is done during the process of exercising public authority which has been delegated to the responsible person in accordance with Article 6 Paragraph 1 lit. e GDPR.

The first time a government portal page is accessed, you are given the following information via an information banner and are informed about the use of cookies for the purpose of analysis with the following text:

The Government Portal M-V uses cookies for web analytics to continuously optimise its content for you as a user. By clicking "Activate Webanalytics" you give your consent to such use of cookies. If you do not give your consent to such use of cookies but nevertheless wish to use the Government Portal, please click on "Deactivate Webanalytics".

You can object to your data being collected by Siteimprove Analytics or revoke the consent you have given at any time by clicking on .... After this, an opt-in-cookie is set (Activation) respectively deleted (Deactivation - which prevents the future collection of your data if you visit our website).

b) Legal basis for data processing

The legal basis for processing personal data using technically necessary cookies is Article 6 Paragraph 1 lit. e GDPR.

The legal basis for processing personal data using cookies for analytical purposes is Article 6 Paragraph 1 lit. a GDPR.

c) Purpose of data processing (see also "Description and scope of data processing" under a)

The purpose of processing technically necessary cookies is to simplify the use of websites for the user. Some functions of our Internet page cannot be provided without using cookies. For these pages it is necessary for the browser to be recognised again after the page has been changed.

Analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies we learn how the website is used and can thus constantly improve its content.

Processing is necessary here to complete a task which is in the public interest or to exercise public authority which has been transferred to the responsible person.

d) Duration of storage, possibility of objection and elimination (see also Description and Scope of Data Processing under a)

Cookies are stored on the user’s computer and transmitted to our web page by the computer. As the user, you therefore have full control over the use of cookies. You can disable or limit the transmission of cookies by changing settings in your Internet browser. Cookies already stored can be deleted at any time. This can also be done automatically. If cookies for our website are disabled it is possible that some website functions can no longer be used in their entirety.

Videos are available on our website via the video portal Vimeo. We use the so-called two-click solution: When you call up government portal pages with video offers, only a preview image of the video appears at first, which does not forward any data. After the first click on the video, you will first be asked if you want to play the video. The notice reads: "This video is published on an external video platform. When the video is displayed, your IP address is transmitted to the external provider. If you want to watch the video, click on "Start video." The action can also be canceled at this point, which prevents data transfer.

The provider of the video portal is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

When you play the video, a connection to the Vimeo servers is established. The Vimeo server is informed which of our pages you have visited. Vimeo also receives your IP address if you are not logged in to Vimeo or do not have an account with Vimeo. The information collected by Vimeo is transmitted to the Vimeo server in the USA.

If you are logged into your Vimeo account, you enable Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.

Vimeo is used in the interest of a graphic representation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. e GDPR.

Further information on handling user data can be found in Vimeo's data protection declaration
So far, this information is only available in English.

If your personal data is processed you are the person affected in terms of the GDPR and you have the following rights via-à-vis the responsible person from the State Chancellery or the respective ministries:

1. Right to information

You can request confirmation from the responsible person from the State Chancellery or the respective ministries as to whether personal data which affects you has been processed by the State Chancellery or the respective ministries.

If such processing has taken place, you can request the following information from the responsible person:

(1)  The purposes for which the personal data was processed

(2)  The categories of personal data which were processed

(3)  The recipient or the categories of recipient to whom data affecting you was or will be disclosed

(4)  The planned duration of storage for the personal data affecting you or, if it is not possible to give definite information on this, criteria for determining the duration of storage

(5)  The existence of the right to correction or deletion of personal data which concerns you, the right to limit processing by the responsible person or the right to object against this processing

(6)  The existence of the right to complain to a supervisory authority

(7)  All available information about the origin of the data if the personal data was not collected from the person affected

The existence of automated decision-making including profiling in accordance with Article 22 Paragraphs 1 and 4 GDPR and – at least in these cases – meaningful information on the logic involved and also the importance and the intended effects of such processing for the person affected.

2. Right to correction

You are entitled to have data corrected and/or gaps in it filled by the responsible person insofar as the processed personal data which concerns you is incorrect or incomplete. The responsible person must make the corrections immediately.

3. Right to limitation of processing

Subject to the following preconditions, you can request the limitation of processing of personal data concerning you by the responsible person:

(1) If you dispute the correctness of the personal data relating to you for a period which permits the responsible person to check the correctness of the personal data;

(2) The processing is unlawful and you reject the deletion of the personal data and instead demand the limitation of the use of the personal data;

(3) The responsible person no longer needs the personal data for the purpose of processing but you, however, need it to assert, exercise or defend legal claims, or

(4) If you have lodged an objection against processing in accordance with Article 21 Paragraph GDPR and it is not yet certain whether the justified grounds of the responsible person take precedence over your reasons.

If the processing of personal data concerning you is limited, this data may only be processed – apart from being saved – with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural person or legal entity or for reasons of urgent public interest of the EU or a Member State.

If the limitation on processing was limited in accordance with the aforementioned prerequisites you will be informed by the responsible person before the limitation is revoked.

4. Right to deletion

a)     Duty of deletion

You can demand that the responsible person immediately delete the personal data concerning you, and the responsible person is obliged to delete this data immediately insofar as one of the following grounds applies:

(1) The personal data concerning you is not necessary for the purposes for which it was collected or otherwise processed.

(2) You revoke your consent on which the processing is based in accordance with Article 6 Paragraph 1 lit. a or Article 9 Paragraph 2 lit. a GDPR and there is no other legal basis for processing.

(3) You lodge an objection to processing in accordance with Article 21 Paragraph 1 GSPR and there are no overriding justifiable grounds for processing, or you lodge an objection against processing in accordance with Article 21 Paragraph 2 GDPR.

(4) The personal data concerning you was processed illegally.

(5) The deletion of the personal data concerning you is necessary to fulfil a legal obligation in accordance with EU law or the law of the Member State to which the responsible person is subject.

(6) The personal data concerning you was collected in relation to information services in accordance with Article 8 Paragraph GSPR.

b)     Information to third parties

If the responsible person has made public personal data concerning you and if they are obliged to delete it in accordance with Article 17 Paragraph 1 GDPR, they shall take the appropriate measures taking into account the available technology and the implementation costs, including of a technical kind, in order to inform the persons responsible for data processing who process the personal data that you as the person affected have requested the deletion of all links to this personal data or of copies or replications of this personal data.

c)     Exceptions

The right to deletion does not apply insofar as the processing is necessary

(1) To exercise the right to free expression of opinion and information;

(2) To fulfil a legal obligation which requires processing in accordance with EU law or the law of the Member States which the responsible person is subject to, or to realise a task which is in the public interest or to exercise public authority which has been transferred to the responsible person;

(3) For reasons of public interest in the area of public health in accordance with Article 9 Paragraph 2 lit. h and i as well as Article 9 Paragraph 3 GDPR;

(4) For archiving purposes in the public interest, the purposes of scientific or historical research or for statistical purposes in accordance with Article 89 Paragraph 1 GDPR, insofar as the law mentioned in Section a) foreseeably makes the realisation of the aims of this processing impossible or seriously impairs it, or

(5) To assert, exercise of defend legal claims.

5. Right of information

If you have asserted your right to correction, deletion or the limitation of processing towards the responsible person, they are obliged to inform all recipients to whom the personal data concerning you has been disclosed of this correction or deletion of the data or limitation of processing unless this proves to be impossible or is linked to an unreasonable amount of time and effort.

You are entitled to be informed by the responsible person of who these recipients are.

6. Right to data transferability

You are entitled to receive the personal data concerning you which you have provided the responsible person with in a structured, conventional and machine-readable format. You are also entitled to transfer this data to another responsible person without impairment by the responsible person to whom the personal data was made available insofar as

(1) The processing is based on consent in accordance with Article 6 Paragraph 1 lit. a GDPR or Article 9 Paragraph 2 lit. a GDPR or on an agreement in accordance with Article 6 Paragraph 1 lit. b GDPR and

(2) The processing shall take place with the aid of automated procedures.

Furthermore, in exercising this right you also have the right to insist that the personal data concerning you be transmitted directly from one responsible person to another responsible person, insofar as this is technically possible. The freedoms and rights of other persons may not be impaired by this.

The right to data transferability does not apply to processing personal data which is necessary to carry out a task which is in the public interest or to exercise public authority which has been bestowed on the responsible person.

7. Right of objection

You have the right to object to the processing of personal data concerning you which takes place due to Article 6 Paragraph 1 lit. e or f GDPR for reasons which arise from your specific situation at any time; this also applies to profiling based on these regulations.

The responsible person shall not process the personal information concerning you any more unless they can prove compelling protectable grounds for processing which outweigh your interests, rights and freedoms, or if processing serves to assert, exercise or defend legal claims.

If personal data concerning you is processed in order to carry out direct advertising, you have the right to object to the processing of personal data concerning you for the purpose of such advertising at any time; this also applies to profiling insofar as it is connected to such direct advertising.

Should you object to processing for the purpose of direct advertising, the personal data concerning you will no longer be processed for this purpose.

You have the opportunity to exercise your right to object by means of automated processes with which technical specifications are used in connection with the use of information society services– regardless of Directive 2002/58/EC.

8. Right to revocation of the data protection declaration of consent

You have the right to revoke your data protection declaration of consent at any time. The legitimacy of processing up to the time of revocation is not affected by revoking consent.

9. Right to complain to a supervisory authority

Regardless of any contradictory administrative or court advice on legal remedies, you have the right to complain to a supervisory authority, specifically in the Member State in which you live or work or the location of the suspected infringement if you are of the opinion that the processing of personal data concerning you is a violation of the GSPR.

The supervisory authority with which the complaint is lodged informs the complainant of the state of affairs and the results of the complaint including the possibility of a court remedy as per Article 78 GDPR.

Protection of minors

Children and persons under the age of 18 should not transmit any personal data to us without their parents’ or guardian’s consent. We do not request any personal data from children, do not collect it and do not pass it on to third parties.

Links to other websites

Our online offering contains links to other websites. We have no influence over whether their operators comply with the data protection regulations.