In the following, we would like to explain the type, scope and purpose of the collection and use of personal data. This information is available on our website at any time.
Please note: In case of any inconsistencies between the German language version of this data protection policy and this translation, the German version of the data protection policy shall prevail.
Technical University of Munich
Telephone +49 89 289-01
Fax: +49 89 289-22000
Data protection officer at Technical University of Munich is:
Prof. Dr. Uwe Baumgarten
Telephone: +49 89 289-17052
For further contact details please visit www.datenschutz.tum.de.
The purpose of processing on this website is to fulfil the public tasks assigned to us by the legislator, in particular to provide information to the public.
The legal framework for the processing of your data is, unless otherwise stated, Article 4 paragraph 1 of the Bayerisches Datenschutzgesetzes (BayDSG) in conjunction with Article 6 paragraph 1 subpara. 1 letter e of the General Data Protection Regulation (GDPR). Accordingly, we are authorised to process the data required to carry out a task incumbent upon us.
With registration or respectively login on the website further data is collected and stored for the purpose of maintaining the relationship between TUM and its members, as well as for the organisation of events and further services. According to Art. 2 para. 5 clause 3 BayHSchG the cultivation of the university’ s relationship to its alumni is one of TUM’ s duties. As stipulated in §20 of TUM’s Basic Order [Grundordnung], alumni are members of the university according to Art. 17 para. 1 clause 6 BayHSchG. Another objective is the promotion of students’ career entry as defined in Art. 2 para. 5 clause 2 BayHSchG.
Registration in the “TUM Community” is an exclusive right of TUM members or persons with a proven connection to TUM. This includes current and former students, doctoral students, post-doctoral students, guest researchers, guest students and employees of TUM in particular.
The members of TUM are free to register themselves on the platform and community and agree to share their data based on a freely given informed declaration of consent according to Article 4 no. 11, Article 6 paragraph 1 subpara. 1 letter a, Article 7 GDPR.
In the following, the term “users” refers to all persons who have registered with the “TUM Community”.
The data will in particular be used by the university or its departments and other organisational units to send information, invitations to lectures and other events to alumni and other TUM members by e-mail or regular mail, or to contact them directly, e.g. for project-related purposes. In addition, the TUM Community enables the members to connect with each other.
Nature of the Personal Data
Registration for services (e.g. events and counselling services) in the is restricted to registered users.
To verify the affiliation to TUM, as little personal data as necessary is collected and processed. In the course of the first login, the following data is requested via a secure connection:
- first name and last name,
- date of birth,
- email address,
- details regarding TUM affiliation,
We would like to point out that personal data of the users during registration and login on www.community.tum.de will be transferred from TUMonline (central campus management system of TUM) to the database of the “TUM Community” where it will be stored. The data in question are as follows: gender, first name, last name, maiden name, date of birth, place of birth, citizenship, title, matriculation number, email address, street address, postal code, city and country, course of study with date of examination and date of completion of the degree programme, as well as the department.
The data collected during the self-registration process and the imported data from TUMonline are only accessible to authorised employees of TUM.
The personal user profile of “TUM Community” allows users to manage the services available (e.g. subscription to publications). These settings can be changed and cancelled at any time. In addition the user profile features the option of providing voluntary information regarding your curriculum vitae (CV).
When a binding registration for a “TUM Community” event is submitted, further mandatory information may have to be provided. Depending on the type of event, the required data may vary, e.g. uploading a document ( such as the CV when using the Online CV Check) or number and age of accompanying persons.
Recipients of Personal Data
Your data will be used strictly for the above-mentioned purposes and will only be passed on in individual cases to fulfil the tasks assigned to the university by the BayHSchG. In order to carry out mailings via mail and email, contact data will temporarily be passed on to respective service providers. These include lettershops and a newsletter tool (domain community-tum.de). Administrators of contracted service providers have access to all data for the purpose of operating the systems and troubleshooting.
For the mailing of newsletters, as well as its operation, maintenance and support:
Matoma Internet Consulting GmbH, Achauerstr. 8, 78647 Trossingen
For IT project management and system maintenance:
interfacewerk GmbH, Siegfriedstr. 8, 80803 München
Community members are also able to access and edit their own data, as well as see the data shared by other members for the purpose of exchange between the community members. The following profile information in the TUM Community is visible to all users:
- Title, first name, last name, TUM studies and / or current employment at TUM.
- Published contributions, comments, uploads and non-commercial offers / requests are visible to all registered users.
For the following profile data users of the TUM Community can individually set the visibility:
- Birth date, email, address, telephone number, and information in the section “Career”.
The following information is never visible to other users in the TUM Community:
- Language of correspondence, country of birth and services.
Users may send private messages to other users and receive messages from other users. The messages sent and received are stored under “Messages”, but can be deleted at any time and can only be viewed by the respective user.
Every “TUM Community” user is also able to join existing groups or to start their own group(s). Each group has a group administrator. The group administrator decides whether the group is public (within the “TUM Community”) or only accessible and/or visible to a selected group of people.
If necessary, your data will be forwarded to the responsible supervisory and auditing authorities for the purpose of exercising the respective monitoring rights.
In order to avert threats to security in information technology when electronically transmitting data, data may be forwarded to the Landesamt für Sicherheit in der Informationstechnik and processed there on the basis of Art. 12 ff. of the Bayerisches E-Gouvernment-Gesetz.
Length of Storage of Personal Data
The user may at any time request the deletion of their data from the TUM Community. The deletion of this data is then handled by Alumni & Career.
Due to the mandate of lifelong support of our alumni (e.g. 50 or 25 year anniversaries of diploma or doctorate, alumni meetings, invitations by the president, alumni magazine mailings etc.) data of alumni will be stored in the TUM CRM permanently. In the case of death the data will be deleted without any written request, provided that the passing of the alumni is known. All personal data will be deleted except for data necessary to clearly identify the person in order to avoid re-imports of the same personal data, as well as information relating to communication. These basic details will be stored for 120 years in order for the university to take them into consideration with regard to the fulfilment of its tasks, especially for gathering statistics and organising anniversary events.
Users may request the deletion of their data from the TUM CRM in writing to Alumni & Career at any time.
- You have the right to access information on the data stored pertaining to your person (Art. 15 GDPR).
- Should incorrect personal data be processed, you have the right to rectification (Art. 16 GDPR).
- If the legal requirements are met, you have the right to request the erasure or restriction of processing (Art. 17 and 18 GDPR).
- If you have agreed to the processing of your data or if a contract for data processing has been concluded and the data processing is carried out by automated means, you may have the right to data portability (Art. 20 GDPR).
- If you have agreed to the processing and the processing is based on this consent, you have the right to object to the future processing of your data at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal (Art. 21 GDPR) .
- Restrictions and modifications of the aforementioned rights may ensue from Art. 9 and 10 BayDSG and Art. 20 BayDSG.
- You have the right to object to the processing of your data at any time for reasons arising from your particular situation, if the processing is carried out exclusively on the basis of Article 6 paragraph 1 letter e or f GDPR (Article 21 paragraph 1 sentence 1 GDPR).
Furthermore, you have the right to lodge a complaint with the Bavarian Data Protection Commissioner. He can be reached via the following contact details:
Mailing address: Postfach 22 12 19, 80502 Munich
Address: Wagmüllerstraße 18, 80538 Munich
Telephone: +49 89 212672-0
Fax: +49 89 212672-50
Leibniz Supercomputing Centre (LRZ)
85748 Garching b. München
When accessing these or other websites, your internet browser transmits data to our web server. During an ongoing connection for communication between your internet browser and our web server, the following data is temporarily recorded in a log file:
- IP adress of the requesting computer
- Date and time of access
- Name, URL and transferred data volume of the retrieved file
- Access status (requested file transferred, not found etc.)
- Identification data of the browser and operating system used (if transmitted by the requesting web browser)
- Website from which the access was made (if transmitted by the requesting web browser)
The data in this log file is processed as follows:
- The log entries are continuously and automatically evaluated in order to detect threats to the web servers and to react accordingly.
- In individual cases, i.e. in case of reported malfunctions, errors and security incidents, a manual analysis is performed.
- Log entries older than seven days are made anonymous by shortening the IP address.
- The anonymised logs are used to generate access statistics. The software used here is operated on site by the LRZ.
The LRZ does not link the IP addresses contained in the log entries to other data sets. Accordingly, it is not possible for the LRZ to draw conclusions about individual persons.
In order to extend the functional scope of our website and to make it more user-friendly, we sometimes use so-called “cookies”. These cookies allow data to be stored on your computer when you access our website. However, you may deactivate the storage of cookies or adjust your browser settings so that cookies are only stored for the duration of the respective connection to the internet. However, this may restrict the functionality of our website.
Videos on this website are sometimes embedded from YouTube. When playing the videos, the service provider may store cookies on the user’s computer. We have no influence on this process.
On this website, data is collected and stored using the web analysis service software Matomo (www.matomo.org), a service of InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, based on our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes in accordance with Art. 6 para. 1 lit. f GDPR. For the same purpose pseudonymised user profiles can be created and evaluated from this data. Cookies may be used for this purpose. Cookies are small text files which are stored locally in the cache of the visitor’s internet browser. Among other things, the cookies enable the recognition of the internet browser. The data collected with Matomo technology (including your pseudonymised IP address) are processed on LRZ servers.
The information generated by the cookie in the pseudonymised user profiles is not used to personally identify the visitor of this website and is not being combined with personal data relating to the person concerned.
Deactivating Matomo Tracking (Opt-Out)
Should you, upon visiting our website, not agree with the storage and evaluation of the data by Matomo, you may object to the storage and use of your data at any time with a simple mouse click. In this case a so-called opt-out cookie is stored in your browser, which means that Matomo does not collect any session data.
Attention: By deleting your cookies, the opt-out cookie will also be deleted and you may need to reactivate it again.
Two clicks – more privacy
A social network button is only activated by clicking on it and your browser then establishes a direct connection with the respective servers. The first click on the button therefore implies that you give your consent to the transfer of data to the respective provider.
By activating the button, the user is notified that they have accessed the corresponding page of our website. If you are logged in to the respective social network, from this moment on the visit can be assigned to your account, even if you do not press the button a second time. By interacting with the plugins, e.g. making a comment by clicking the button a second time, the corresponding information is transmitted from your browser directly to the provider and will be stored there .
You have questions?
Should you still have questions on data protection, further information is available on the websites of our data protection officer.