Privacy

Privacy Policy for the N3XTCODER Platform and Participation in Programmes

This privacy policy provides you with the information on how we process personal data for the N3XTCODER Platform, accessible via n3xtcoder.org (hereinafter also called the “Platform”) and regarding your participation in events organised via the Platform like hackathons or innovation programs (hereinafter each and together also called a or the “Programme(s)”). The protection of your data is always an important concern for us. This privacy policy explains how we process personal data and what rights you are entitled to.

This privacy policy can be accessed and printed out at any time on our website.

Contents
Privacy Policy for the N3XTCODER Platform and Participation in Programmes 1

I. General information 1

II. Controller 2

III. Data Protection Officer 2

IV. Scope of data processing 2

V. Data security 2

VI. Processing of personal data 3

VIII. Storage and deletion of data 14

X. Transfer of data / third country transfers 14

XI. Data processing when accessing linked content 15

XII. Automated decision-making/profiling 15

XIII. Up-to-dateness and amendment of this privacy policy 15

General information

This privacy policy informs you about how we handle your personal data when you use our Platform and participate in Programmes. In particular, it explains what data we collect and what we use it for. It also informs you how and for what purpose this is done.

Personal data ("data") means any information relating to an identified or identifiable person. "Processing" of data means any operation which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. The legal basis for data protection can be found in particular in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC ("General Data Protection Regulation", GDPR) as well as in the German Federal Data Protection Act (BDSG) and the German Telecommunications and Telemedia Data Protection Act (TTDSG).

Controller

Responsible for the processing of your data is:

Nextcoder Softwareenwicklungs GmbH
Linienstrasse 71
10119 Berlin
[email protected]

Nextcoder Softwareenwicklungs GmbH is the controller. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

Please contact the controller (also referred to a “us”/”we”) at any time using these contact details if you have specific questions about your data, its processing or your rights.

Data Protection Officer

We have appointed a company data protection officer for our company. You can reach our DPO under:

Our Data Protection Officer is:

Gregor Klar

[email protected]

Scope of data processing

We treat personal data confidentially and in accordance with the statutory data protection regulations and on the basis of this privacy policy. We process your data only to the extent necessary for the purpose of providing a functional and user-friendly Internet presence or a functional and user-friendly website and for the provision of our content and services, specifically the provision of our Platform and the participation in the Programmes. Failure to provide the data may have legal disadvantages, such as the inability to fulfil a contract. As part of data processing, we use third-party providers in the areas of hosting, online event organisation, online registration, online collaboration, online marketing, mailing services and customer/data management (CRM), each of which processes data on our behalf. We have concluded corresponding data processing agreements with these third-party providers, insofar as the third parties are processors, which ensure that an adequate level of data protection is also guaranteed for our processors (Art. 28 GDPR).

Data security

We have taken technical and organisational measures to ensure that the data protection regulations are complied with both by us and by external service providers. For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption.

Processing of personal data

The following overview lists all types of data processed by us, the purposes of their processing and the legal basis for their processing.

Visiting the Platform website

If you visit our website without transmitting data to us in any other way (e.g. by registering or using the contact form), we collect the following data on our web server temporarily and anonymised via server log files:

Website from which our website was requested (so-called referrer URL)
Name and URL of the requested website
Date and time of access to the website
Description of the type, language and version of the web browser used
IP address of the requesting computer, which is shortened so that a personal reference can no longer be established
Message as to whether access was successful (access status/ HTTP status code)
Internet service provider of the accessing system
Amount of data transferred in each case
Operating system used and its interface
the GMT time zone difference

This processing is technically necessary in order to display our website to you. We also use the data for statistical analyses to ensure the operational security and stability of our website. The legal basis for this processing is Art. 6 para. 1 sentence 1 lit. f GDPR. The processing of the aforementioned data is necessary for the provision of the website and to ensure the stability and operational security of the website and thus serves to safeguard a legitimate interest of our company.

We also use the data to fulfil our legal obligations for reasons of data security. The legal basis for this processing is Art. 6 para. 1 sentence 1 lit. c GDPR.

Registration on our Platform

You can register on our website to use / be part of our Platform and to participate in Programmes. Your email address and name is required for signing up. After registration, you will receive an email to confirm the registration (“double opt-in”). As part of the registration process, you will be provided with the required mandatory data. The processed data includes in particular the login information (email address, name, password).

Within the scope of the use of our registration and login functions as well as the use of the Platform, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as those of the users in protection against misuse and other unauthorised use. As a matter of principle, this data is not passed on to third parties unless it is necessary for the prosecution of our claims or there is a legal obligation to do so. We process the following data in connection with registration, login and the user Platform account:

inventory data (e.g. name)
contact data (e.g. email address, telephone number if applicable)
content data (e.g. entries in the online form, information on your skillset and experience if applicable)
device data (device name, country code if applicable, language, name of operating system and version)
connection data (IP address, mail provider)
date and time of registration and confirmation.

Processing during registration is carried out on the basis of our legitimate interests for the performance and/or initiation of a user contract, for the provision of customer service, for the administration and/or answering of enquiries, and as a security measure (legal basis: Art. 6 para. 1 p. 1 lit. b GDPR contract performance and pre-contractual enquiries; Art. 6 para. 1 p. 1 lit. f GDPR legitimate interests).

For the registration process we use the following third-party technologies:

Name, provider: Typeform (Typeform S.L., Carrer Bac de Roda, 163, 08018 Barcelona)

Personal data processed: IP Address, name, email address, other data voluntarily entered

Purpose: Contact forms, use Typeform as part of our service

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR to initiate a contract, Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest to optimise the registration process and improve our service.

More information: Please see Typeform’s Privacy policy for more information about how your personal data is processed.

As a registered Platform user, you will be able to log in to https://circle.so (“Circle”), a learning platform solution, using your user account. To facilitate this, we will share your name and email address with Circle through a Single Sign-On (SSO) integration. This data is required to enable your login and access to the content available on Circle.

Name, provider: CircleCo, Inc. (228 Park Ave S. PMB 52933 New York, NY 10003)

Personal data processed: name, email address

Purpose: to login into Circle and access the content on Circle

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR (contractual necessity), to provide the services (access to Circle)

More information: Please see Circle’s Privacy policy for more information about how your personal data is processed. If you have terminated your user account, your data relating to the user account will be deleted, subject to any legal permission, obligation or consent on your part. It is your responsibility to back up your data if you have terminated your account before the end of the contract. Subject to any legal permission, obligation or consent on your part, we are entitled to irretrievably delete all data stored during the term of the contract.

We use Certifier.io ("Certifier"), a service that automates the issuance and management of certificates, for our registered Platform users upon their completion of courses offered on Circle.

Name, provider: Certifier sp. z o.o. (Dolnych Młynów 3/1, 31-124 Krakow, Polen)

Personal data processed: name, email address

Purpose: to create and send certificates to users after successful completion of a course on Circle

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR (contractual necessity), to provide the services (use of Circle)

More information: Please see Certifier’s Privacy policy for more information about how your personal data is processed. We use Zapier, an integration platform, to facilitate the transfer of data between our services, including the forwarding of personal data to Certifier for the issuance of certificates.

Name, provider: Zapier Inc. (548 Market St #62411, San Francisco, California 94104-5401)

Personal data processed: name, email address

Purpose: to create and send certificates to users after successful completion of a course on Circle

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR (contractual necessity), to provide the services (use of Circle)

More information: Please see Zapier's Privacy policy for more information about how your personal data is processed.

3. Use of our Platform

Once you have successfully registered on our Platform you can use and be part of our Platform. The Platform facilitates participation in different Programmes, by matching up and connecting participants and project owners, thereby enabling collaboration on specific projects. For this purpose, we process the following data in connection with the use of the Platform:

inventory data (e.g. name, age)
contact data (e.g. email address, telephone number if applicable)
content data (e.g. entries in the online form, information on your skillset and experience and interest in topics if applicable)

In particular, we will use your email address to contact you once a new project has been published to the Platform and to inform you about future events and Programmes. Furthermore, we will use your content data (e.g. information on your skillset, experience, and interest in topics) to match you with specific projects. Moreover, to connect you with other participants we may share your name and email address with other registered Platform users.

Processing to provide the Platform is carried out on the basis of our legitimate interests for the performance of a user contract, (legal basis: Art. 6 para. 1 p. 1 lit. b GDPR contract performance; Art. 6 para. 1 p. 1 lit. f GDPR legitimate interests).

To provide our Platform, especially to connect you with other Platform users and to inform you about future events and Programmes, we may use the following third-party technologies:

Name, provider: Microsoft 365 (Microsoft Corporation One Microsoft Way, Redmond, Washington 98052 USA)

Personal data processed: Inventory data, contact data, content data

Purpose: We use Microsoft 365 to provide our Platform and to connect you with specific projects, future Programmes and other Platform users.

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR if the use is based on a contract, Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest to effectively provide the Platform, optimise processes, and improve our service.

More Information: Please see Microsoft’s Privacy Policy (https://privacy.microsoft.com/en-gb/privacystatement) for more information about how your personal data is processed.

Data processing outside the EU/EEA and applicable safeguards: Microsoft may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU. Google is certified under the EU-US Data Privacy Framework (DPF).

Name, provider: Google Cloud (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)

Personal data processed: Inventory data, contact data, content data

Purpose: Art. 6 para. 1 s. 1 lit. b. GDPR if the use is based on a contract, Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest to effectively provide the Platform, optimise processes and improve our service.

More Information: Please see Google’s Privacy Policy (https://cloud.google.com/terms/cloud-privacy-notice) for more information about how your personal data is processed.

Data processing outside the EU/EEA and applicable safeguards: Google may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU. Google is certified under the EU-US Data Privacy Framework (DPF).

Name, provider: AppSignal B.V., Rietwaard 4, 5236WC in 's-Hertogenbosch, the Netherlands

Personal data processed: AppSignal may process personal data, including, as applicable: IP address, name, phone number, email address, address, any other personal data that users send or log in the service

Purpose: We use AppSignal on our website and applications to log, capture, and analyze errors and monitor the performance of our services. This tool assists with bug reporting and platform monitoring to enhance the stability and performance of our services.

Legal basis: Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest in ensuring the functionality, security, and efficiency of our services.

More Information: Please see AppSignal’s Privacy Policy (https://www.appsignal.com/privacy-policy) for more information about how your personal data is processed.

Participation in a Programme

During our Programme execution / your participation in a Programme, we may process the following personal data:

inventory and identification data (e.g. first name, last name, username or similar identifier, password, image, title, age, gender)
profile data (e.g. username, password, preferences, feedback and survey responses)
contact data (e.g. email address, telephone number (optional))
content data (e.g. entries in the online form, information on your skills and experience if applicable, other text inputs, audio data, videos, documents).
Usage data (e.g., visited websites, time of access, date, type of access, information about the data/files/documents accessed, and all activities related to usage, such as creating, modifying, deleting a document, setting up a team (and channels within teams), taking notes in the notebook, starting a chat, responding in chat).
Meta/communication data (e.g., IP addresses, device/hardware information, location data if approved by the user, live transmission of sound and image)

We process your personal data insofar as this is necessary for the implementation of pre-contractual measures and/or for the establishment, implementation and, if applicable, termination of the Programme. In particular, we process your data for the purposes of selecting participants for the Programme, notifying participants about their participation in the Programme announcing winning entries, if applicable, and to organise and execute the Programme events.

During your participation in the Programme, you may be asked to register to third party tools to be able to collaborate online during the Programme. Details about the third-party services used during our Programme execution are set out here:

Name, Provider: Microsoft 365 (Microsoft Ireland Operations, Ltd. One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland)

Personal data processed: Various types of data are processed when you use Microsoft 365 applications. The scope of this data depends, among other things, on which application is used and which data details you provide. Certain information is already processed automatically as soon as you use Microsoft 365 applications. The following personal data may be processed:

Identification data (e.g., names, addresses, e-mail, telephone numbers, profile picture (optional), user name).
Content data (e.g. text entries, audio data, videos, documents)
Usage data (e.g. websites visited, time of access, date, type of access, information on the data/files/documents accessed and all activities in connection with usage, such as creating, changing, deleting a document, setting up a team (and channels in teams), making notes in the notebook, starting a chat, replying in the chat)
Meta/communication data (e.g. IP addresses, device/hardware information, location data if authorised by the user, live transmission of sound and images)

Purpose: Your data will be processed in order to be able to use Microsoft 365 applications such as Teams, SharePoint, OneDrive for the purpose of communication, collaboration and document management during the Programme.

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR if the use is based on a contract, Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest to effectively organise and conduct online meetings and events in the context of the Programmes, optimise processes and improve our service.

More Information: Please see Microsoft’s Privacy Policy (https://privacy.microsoft.com/en-gb/privacystatement) for more information about how your personal data is processed.

Data processing outside the EU/EEA and applicable safeguards: Microsoft may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU. Microsoft is certified under the EU-US Data Privacy Framework (DPF).

Name, provider: Google Workspace (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)

Personal data processed: Various types of data are processed when you use Google Workspace applications. The scope of this data depends, among other things, on which application is used and which data details you provide. Certain information is already processed automatically as soon as you use Google Workspace applications. The following personal data may be processed:

Identification data (e.g., names, addresses, e-mail, telephone numbers, profile picture (optional), user name).
Content data (e.g. text entries, audio data, videos, documents)
Usage data (e.g. websites visited, time of access, date, type of access, information on the data/files/documents accessed and all activities in connection with usage, such as creating, changing, deleting a document, setting up a team (and channels in teams), making notes in the notebook, starting a chat, replying in the chat)
Meta/communication data (e.g. IP addresses, device/hardware information, location data if authorised by the user, live transmission of sound and images)

Purpose: Your data will be processed in order to be able to use Google Workspace applications such as Google Calendar, Gmail, Google Meet, Google Drive, Google Maps for the purpose of communication, collaboration and document management during the Programme.

More information: Please see Google's privacy policy for more information (https://policies.google.com/privacy?hl=en-US) about how your personal data is processed. You can also adjust your privacy settings on your Google Account to control the data that is shared with Google.

Name, provider: Miro (RealtimeBoard Inc. dba Miro 201 Spear Street Suite 1100 San Francisco, CA 94105 United States)

Personal data processed: Identity, Contact, Profile, Usage, Marketing and Communications, Technical, User generated, Transaction

Purpose: We use Miro as an online collaboration and brainstorming tool.

Legal basis for data processing: Art. 6 para. 1 s. 1 lit. b. GDPR if the use is based on a contract, Art. 6 para. 1 s.1 lit. f. GDPR with our legitimate interest to effectively conduct online meetings and events in the context of the Programmes, optimise processes and improve our service.

More information: Privacy Policy

Data processing outside the EU/EEA and applicable safeguards: Miro may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU by using the EU Standard Contractual Clauses.

Name, provider: Hopin (StreamYard, Inc., 2810 N. Church Street, Wilmington, DE 19802)

Personal data processed: Identity, Contact, Profile, Usage, Marketing and Communications, Technical, User generated, Transaction

Purpose: Use Hopin for online/hybrid event execution and communication tool

More information: Please see Streamyard’s Privacy Policy (https://support.streamyard.com/hc/en-us/articles/15401585037204-Privacy-Policy) for more information about how your personal data is processed.

Data processing outside the EU/EEA and applicable safeguards: Streamyard may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU by using the EU Standard Contractual Clauses.

Name, provider: StreamYard, Inc. (2810 N. Church Street, Wilmington, DE 19802)

Personal data processed: Identity, Contact, Profile, Usage, Marketing and Communications, Technical, User generated, Transaction

Purpose: We use Streamyard as a live streaming and video production tool.

More information: Please see Streamyard’s Privacy policy for more information about how your personal data is processed.

Name, provider: Slack Technologies Inc., located at 500 Howard St, San Francisco, CA 94105, United States

Personal data processed: Identity, Contact, Profile, Usage, Marketing and Communications, Technical, User generated, Transaction

Purpose: We use Slack as a team communication and collaboration tool.

More information: Please see Slack's privacy policy for more information about how your personal data is processed.

Data processing outside the EU/EEA and applicable safeguards: Slack may process data outside your country of residence, including the European Economic Area (EEA) and the US and guarantees compliance with data protection regulations in the EU. Slack is certified under the EU-US Data Privacy Framework (DPF).

Image, video and sound recordings

If you participate in a Programme, we may create and use image, film and sound recordings, including screenshots and live recordings of you and the other participants. These image, film and sound recordings may also be created by the participants themselves and submitted to us for evaluation. We may also publish these created images, film and sound recordings in:

Daily press, weekly and monthly magazines, trade press,
Annual reports and print media from the controller, the controller’s organisational partners and all other strategic partners and sponsors of the controller
Homepages: www.n3xtcoder.org, as well as other partner websites (including all subpages and subdomains)
Social media network accounts (e.g. Facebook, Instagram, Twitter, LinkedIn, YouTube, Vimeo)
Live streaming / recording on the channel from the controller, the controller’s organisational partners and all other strategic partners and sponsors of the controller on the video platform www.youtube.com, www.streamyard.com, www.vimeo.com, www.meet.google.com and www.hopin.com
Distribution of the content via partners & ambassadors (e.g. influencers)
Radio and television

The processing of your personal data is based on Art. 6 (1)(a) GDPR. It is carried out for the purpose of the controller’s, the controller’s organisational partners’ and all other strategic partners’ and sponsors’ of the controller press and public relations work.

You can revoke your consent at any time in writing to [email protected] with effect for the future.

In the event of revocation, the image, film and sound recordings will be removed from the respective platform. If the recordings were available on the internet, they would be removed as long as they are subject to the organizer's power of disposal.

The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. This is particularly relevant in the case of printed work, cases where the print order has already been placed. If consent is not withdrawn, it is valid for an unlimited period of time.

Contact and Emails

If you write to us, e.g. by sending us an email or using the contact form, we will store the contact details you provide, such as your name, address, mobile phone number, email address and the information provided in your enquiry.

If you contact us as part of an existing contractual relationship or contact us in advance for information about our range of services or our other services, the data and information you provide will be processed for the purpose of processing and responding to your contact enquiry on the legal basis of Art. 6 para. 1 sentence 1 lit. b GDPR. Insofar as you have consented to the processing for the purpose of answering your enquiry, the legal basis is Art. 6 para. 1 sentence 1 lit. a GDPR. Otherwise, we process your data to safeguard our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR for the purpose of responding appropriately to customer/contact enquiries.

Newsletter and E-Mail-Marketing

You have the option of subscribing to our newsletter. With our newsletter we inform you about us and our offers. Your e-mail address is required to register for the newsletter. If you register for the newsletter, your e-mail address will be transmitted to us (or our e-mail provider) and stored there. After registering, you will receive an e-mail to confirm your registration ("double opt-in"). In this context, we (or our email provider) process the following data

Inventory data (e.g. name, address)
Contact data (e.g. email address, telephone number if applicable)
Content data (e.g. entries in the online form)
Device data (device name, country code if applicable, language, name of the operating system and version)
Connection data (IP address, email provider)
Date and time of registration and confirmation

Our newsletter is sent on the basis of your prior express consent, Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent to the processing of data for the purpose of sending the newsletter or analysing the associated data at any time. The cancellation can be made via a link contained in every newsletter or by sending us a separate message.

If we have received your e-mail address in connection with the conclusion of a contract and the provision of our products and services and you have not objected to this, we may regularly send you newsletters with offers for similar products and services. Marketing emails are sent on the basis of our legitimate interest, Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is based on performing direct marketing.

If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in efficient and secure dispatch. The legal basis in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR.

You can withdraw your consent to the processing of data for the purpose of sending the newsletter or analysing the associated data or object to the use of your email address for e-mail marketing purposes at any time. The withdrawal/objection can take place over a link, which is contained in each newsletter/e-mail, or by separate message to us. You will not incur any costs other than the transmission costs according to the basic tariffs.

Mailchimp

We use Mailchimp for sending our newsletters. Mailchimp is a service with which the sending of newsletters can be organised and evaluated. For this purpose, we forward your e-mail address and the information as to whether you have registered for the newsletter, the waiting list and/or for further product information to Mailchimp.

With the help of Mailchimp, we can analyse our newsletter campaigns. When you open an email sent with Mailchimp, a file contained in the email (a so-called web beacon) connects to Mailchimp's servers in the USA. This enables us to determine whether a newsletter message has been opened and which links have been clicked on. In addition, technical information is collected (e.g. time of registration, IP address, browser type and operating system). This information is used for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

The US company of Mailchimp guarantees compliance with data protection regulations in the EU by using the EU Standard Contractual Clauses (SCCs). For more information please also refer to Mailchimp’s privacy policy and data processing agreement with us.

Mailchimp, Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA, Website: https://mailchimp.com/de/, Privacy Policy: https://www.intuit.com/privacy/statement/.

Brevo

We use Brevo to send our newsletter and to carry out other online marketing activities. These include email marketing, including the sending of newsletters and automated mailings, for example to provide downloads. We also use Brevo to integrate and manage contact forms on our websites. As part of these activities, personal data such as your e-mail address, first name, surname and any other voluntary personal details are processed. We use this information to provide you with targeted and relevant content and to continuously improve our offering.

When you subscribe to the newsletter and use Brevo’s other marketing functions, we store the date of your registration and other relevant usage data. This information is necessary to prevent possible misuse of the email address used for registration and to effectively optimize our marketing measures. The newsletters and other e-mail communications are individualized so that we can recognize whether a newsletter or an automated e-mail has been opened by a recipient and whether one of the articles or links contained therein has been accessed. The personal data collected in this way, including your interactions with the emails, is stored and evaluated in order to optimize our offer and to be able to adapt the content of future communications even better to the interests of our subscribers and users.

For more information please also refer to Brevo’s privacy policy and data processing agreement with us.

Brevo, Sendinblue SAS, 106 boulevard Haussmann, 75008 Paris, France, Website: https://www.brevo.com/, Privacy Polics: https://www.brevo.com/legal/privacypolicy/

Cookies

We use cookies on our website that are either provided by us or by third parties.

Cookies are small text files that are stored on the device you are using and saved by the browser. Cookies are used to make our website more user-friendly, effective and secure. There are different types of cookies that are used for different purposes. Some cookies ensure that our services function correctly or that you are recognised on your end device after successful registration ("necessary" cookies). By placing these necessary cookies, for example, we make it easier for you to visit our website and use the services available there. Other cookies are placed to analyse user preferences and thus improve our services ("enhanced cookies"). We use these for purposes such as tracking (e.g. interest/behavioural profiling), remarketing, visitor action evaluation, conversion measurement, reach measurement (e.g. access statistics, recognition of returning visitors), target group formation and cross-device tracking. We only set non-essential cookies with your consent. When you visit our website for the first time, a pop-up is displayed ("cookie banner") in which the individual cookies are described in more detail. There you have the option of allowing or rejecting cookies according to your preferences. You can change your settings at any time by clicking on the link to “Cookie Policy” in the footer of https://n3xtcoder.org. Please note that deactivating cookies may limit the functionality of this website.

Depending on the browser settings, the following data is processed when cookies are used:

Usage data (e.g. websites visited, interest in content, access times),
Meta/communication data (e.g. device information, IP addresses)
Location data (data that indicates the location of an end user's end device)

If personal data is processed when using "necessary" cookies, this is based on Art. 6 para. 1 sentence 1 lit. f GDPR due to legitimate interests in quality assurance and a technically flawless presentation of the website. The processing of personal data when using so-called "extended cookies" is based on your consent (Art. 6 para. 1 sentence 1 lit. a GDPR).

Recipients of your data

Below we give you an overview of the categories of recipients of your data. These include in particular:

Other Platform participants in the context of matching up and connecting participants and project owners, thereby enabling collaboration on specific projects as described in section 3,
Third-party service providers as described in the above sections,
Our organisational partners, strategic partners, sponsors, moderators, facilitators who support the implementation of the Programme,
Public authorities and institutions, insofar as we are legally obliged to do so.

We take appropriate technical and organisational measures to ensure that any sharing of your personal data with these recipients is conducted in compliance with the GDPR and other applicable data protection laws.

Storage and deletion of data

The data processed by us will be deleted in accordance with the legal requirements as soon as the consent given for processing is revoked or other authorisations cease to apply (e.g. if the purpose for processing this data no longer applies or it is not required for the purpose). This means that we only store your personal data for as long as is necessary for the respective processing purpose and limit the storage period to the minimum required. In addition, we only store your data if we are authorised or obliged to do so in accordance with statutory retention periods (e.g. in accordance with the German Commercial Code (HGB) or German Fiscal Code (AO)). For hosting services, we use Scalingo with its servers based in France. Scalingo functions as our processor with which we concluded a respective data processing agreement.

Our data protection notices may also contain further information on the retention and deletion of data, which apply primarily to the respective processing operations.

Your rights

You have the following rights:

the right to information,
the right to rectification or erasure,
the right to restriction of processing,
the right to data portability,
the right to withdraw your consent with effect for the future.
the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6 (1) GDPR, including profiling based on those provisions.

To exercise your above rights, you can send an email to [email protected]. You also have the right to complain to a data protection supervisory authority of your choice about the processing of your personal data, for example at Berliner Beauftragte für Datenschutz und Informationsfreiheit, Alt-Moabit 59-61, 10555 Berlin, E-Mail: [email protected], Internet: https://www.datenschutz-berlin.de/.

If you have any questions with regard to the processing of your data, feel free to contact us at any time.

Transfer of data / third country transfers

As a matter of principle, we only pass on your data to third parties if you have consented to this or if there is another legal basis. If we use third-party tools that process your data outside the EU/EEA, we ensure that the legal requirements of Art. 44 et seq. GDPR for such a third country transfer are complied with and your data is processed in the third country in question in accordance with the European data protection standard. With regard to data transfers to the US we rely on the so-called EU-US Data Privacy Framework (DPF), provided that the service provider is certified under the DPF. In other cases, we use the so-called EU standard contractual clauses (SCC), which we conclude with the respective provider. In addition, in accordance with the requirements of the ECJ ("Schrems II"), a case-by-case risk analysis is carried out with regard to the respective third country transfer in order to ensure that your data is processed lawfully in the third country concerned and, in particular, to prevent access to your data by state authorities.

Data processing when accessing linked content

This privacy policy only applies to this website. However, the website may also contain external links or hyperlinks to websites of other providers. These are to be distinguished from our own content. This external content does not originate from us, nor do we have any influence over the content of third-party sites. If you are redirected to other pages via links within the website, please inform yourself there about the respective handling of your data.

Automated decision-making/profiling

We do not use automated decision-making or profiling (an automated analysis of your personal circumstances).

Up-to-dateness and amendment of this privacy policy

This privacy policy is currently valid and has the status February 2025.

Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.