Data Protection Information

When you use this website, we process your personal data as data controllers and save them for the duration required to fulfill the defined purposes and legal obligations. The sections below provide further details about the data this involves, how they will be processed and which rights you have in this regard.

Personal data, as defined by Article 4 (1) General Data Protection Regulation (GDPR) include all information related to an identified or identifiable natural person.

1. Scope of Application

This data protection information applies to the data processing within the conference platform of the National Research Center for Applied Cybersecurity ATHENE (Short: “ATHENE”). Within the scope of this conference platform, the Fraunhofer-Gesellschaft for its Fraunhofer-SIT and its Fraunhofer-IGD, the Technical University Darmstadt and the University of Applied Sciences Darmstadt are joint controllers within the meaning of Art. 4 no. 7 GDPR.    

2. Name and Contact Information of Controller and Corporate Data Protection Officer

The joint controllers are:

  • Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V. (Fraunhofer-Society), Hansastraße 27 c, 80686 München (Munich, Germany) for its Fraunhofer SIT and for its Fraunhofer IGD, Tel.: 06151-869-100, E-Mail: 
  • Technical University Darmstadt, Karolinenplatz 5, 64289 Darmstadt (Germany), Tel.: 06151-16-01, E-Mail:
  • University of Applied Sciences Darmstadt, Haardtring 100, 64295 Darmstadt, Tel.: 06151-16-02, E-Mail:

The joint controllers have entered into an agreement on joint controllership for the processing of personal data pursuant to Art. 26 para. 1 S. 2 GDPR. The agreement stipulates that you, as the data subject, may contact the Fraunhofer-Gesellschaft to enforce your data subject rights.

You can contact the Data Protection Officer of Fraunhofer for any questions concerning your data protection rights and/or your rights as data subject under the joint controllership. You can reach the Data Protection Officer of Fraunhofer at: Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V., c/o Data Protection Officer, Hansastrasse 27 c, D-80686 München (Munich, Germany) or at

3. Personal Data Processing and Purposes of Data Processing

a) Visiting the website

By using this website, the browser installed on your terminal device automatically transmits information to the server of our website (e.g. browser type and version, date and time of access) to enable connection with the website, including the IP address of your requesting terminal device. This information is temporarily stored in a so-called log file and deleted after no more than 30 days.

Your IP address is processed for technical and administrative purposes regarding connection set-up and stability, to guarantee the security and functioning of our website and to be able to track any illegal attacks on the website, if required.

The legal basis for processing the IP address is Art. 6 (1) lit. f GDPR. Our legitimate interest ensues from said security interest and the necessity of the unobstructed availability of our website.

Moreover, we use cookies when you visit our website. Further details can be found further below in this data protection information.

b) Registering for events

In order to register to ESORICS and associated networking and socializing events, our website’s visitors have to provide some mandatory data, which usually include:

  • Title
  • Firm
  • Last name, first name
  • Address
  • Payment information and
  • Email address

Any other mandatory data are marked as such (e.g. with *). Further information can be provided voluntarily.

We process the mandatory data to identify you as event participant and to reserve a place for you. In addition, we conclude and perform the participation contract with you and provide you with information before, during and after the event to ensure that you enjoy your participation and that the event proceeds as smoothly as planned. Your payment information are needed to process the participation fee. Voluntary data allow us to plan and conduct the event based on participant interest.

We collect the data in response to the enquiries of interested participants. Pursuant to the first sentence of Article 6(1), point (b) GDPR, data collection for the purposes mentioned is necessary for the performance of the participation contract and in order to take steps prior to entering into the participation contract.

We store data we collect in context with registrations to events for three (3) years unless we are legally obligated to store them for a longer period of time in accordance to Article 6(1), point (c) GDPR (and in particular according to § 147 AO [German Fiscal Code]) or unless you consented to a longer storage period than set forth in the first sentence of Article 6(1), point (a) GDPR.

c) Information about other events and career opportunities

Once you have given your explicit consent pursuant to Art. 6 (1) lit. a GDPR, we will use your email address to send you selected information about other events and/or career options in ATHENE and/or other subjects. The subjects and contents of the information are determined by your consent.

You may withdraw your consent at any time, e.g., via a link at the end of each mail. Alternatively, you may send your request to withdraw your consent by email:

Once we have received your withdraw, we will immediately delete your email address.

d) Conduct of the event

To conduct ESORICS ATHENE processes your first- and last name, technical meta data (including the name of the conference attended, IP address, device information), content data of the conference (depending on the type of your participation, among others, audio and video data as well as chat data, course affiliations and other information such as areas of interest, profile description, speaker information and ratings, photos, comments entered, documents shared).

Your personal data will be processed for the purpose of performing the virtual event. The legal basis for the processing is your customer contract with ATHENE (Article 6(1), point (b) GDPR).

Additionally, MP4 files are created to document the entire event (including any oral, written, visual or other contributions you have made). In this context, it may be possible that you can be identified directly or indirectly. The processing of the MP4 files is based on our legitimate interest in accordance to Art. 6(1), point (f) GDPR. The aforementioned purposes are legitimate interests within the meaning of this provision.

4. Transfer of Personal Data

We only give your personal data to third parties if:

  • You consented explicitly to the data transfer to a third party according to Article 6(1), point (a) GDPR
  • The data transfer is required for the contractual performance of the contract with you according to Article 6(1) point (b) GDPR, such as
  • We are legally obligated to surrender the data to financial or judicial authorities according to Article 6 para. 1, page 1 lit. c GDPR.
  • Payment data transmission to payment service providers and credit institutes for payment transactions
  • We contracted a processor in accordance to Article 28 GDPR; we especially do so for the maintenance and hosting of the conference platform, the realization of the videoconference and streaming as well as for payment. Some of the processors are US-based companies that process your personal data in the USA (especially “Zoom” and “Vimeo”). For further protection, we concluded the EU-Standard Contractual Clauses with these contract data processors.

Third parties may use the transferred data only for the above-mentioned purposes.

5. Cookies

This website uses cookies. Cookies are small files that your browser automatically generates and stores on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not harm your device nor do they contain viruses, Trojans or other malware.

Cookies store information associated with the specific device used. That does not mean that we can directly identify you.

We use cookies for the purpose of making the use of our offers more convenient and pleasant for you. For example, we use so-called session cookies to detect that you have previously visited various pages of our website.

We also use temporary cookies to optimize user-friendliness; these cookies are stored on your device for a specific fixed time interval. When you visit our site again to use our services, these cookies will automatically detect that you have visited our site in the past and will reapply your previous entries and settings so that you do not have to enter them again.

The data processed by the cookies are necessary for the above-mentioned purposes to protect our legitimate interests and those of third parties pursuant to Art. 6 (1) lit. f GDPR.

Most browsers automatically accept cookies. However, you can configure your browser to not save any cookies on your computer or to display a notice before new cookies are saved. Completely disabling cookies may mean that you cannot fully use all functions of our website.

6. Rights of the Data Subject

You have the following rights with regard to your personal data, that is being processed by us:

  • Right to information,
  • Right to correction,
  • Right to erasure,
  • Right to restrict the processing,
  • Right to data portability.

You also have the right to complain to a data protection supervisory authority about our processing of your personal data.

7. Data Security and Storage Duration

All your personal data are transmitted in encrypted format, using the widely used and secure TLS (Transport Layer Security) standard. TLS is a secure and proven standard that is also used, for instance, in online banking. You will recognize a secure TLS connection by the additional s after http (i.e., "https://...") in the address bar of your browser or by the lock icon in the lower part of your browser.

In all other regards, we use suitable technical and organizational security measures to protect your data against accidental or intentional manipulations, partial or complete loss, destruction, or the unauthorized access of third parties. We continuously improve our security measures in accordance with the state of the art.

Your personal data that is being processed within the review platform of ATHENE will be stored as long as we are obliged to by the funding conditions of the ATHENE-funding-bodies.

8. Timeliness and Amendments to this Data Protection Information

Statutory or regulatory requirements may make it necessary to amend this data protection information. You may access and print out the latest data protection information at any time when accessing the conference platform.

Additional Information

More information 1:

My personal data will be processed by

  • the Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V. for its Institute for Secure Information Technology (SIT) and its Institute for Computer Graphic Research (IGD)
  • Technical University of Darmstadt (TU) and
  • University of Applied Sciences Darmstadt (h_da)

to inform me by e-mail about vacant positions and career options at the ATHENE Center and at Fraunhofer SIT. My consent to this data processing is voluntary. I have the right to withdraw my consent at any time with effect for the future. If I want to assert my right to withdraw my consent, an email to will suffice. The ATHENE participants are joint controllers and have entered into an agreement on joint controllership for the processing of personal data pursuant to Art. 26 para. 1 S. 2 GDPR. Further information on the processing of my personal data can be accessed at any time from the following link:

More information 2:

We will inform you by e-mail about events, seminars and training courses of ATHENE Centre. You consent to your provided data being collected and processed by Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V. for its Institute for Secure Information Technology (SIT) in order to inform you about ATHENE events. You can revoke your consent at any time with effect for the future. The revocation is to be addressed to: You can obtain further information on the processing of your personal data at any time under the following link

More information 3:

We will send you information from the sponsors of the conference by e-mail or (push) messages via the conference platform. You consent to your provided data being collected and processed by Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V. for its Institute for Secure Information Technology (SIT). Your provided data is not shared with the sponsors. You can revoke your consent at any time with effect for the future. The revocation is to be addressed to: You can obtain further information on the processing of your personal data at any time under the following link:

Contact and Legal Notice · Contact Address:
Privacy Statement · Conference: ESORICS 2021
Conference Software - ConfTool Pro 2.6.142
© 2001 - 2021 by Dr. H. Weinreich, Hamburg, Germany