As of January 18, 2024

I. Information on the processing of your data in accordance with Article 13 of the European Union General Data Protection Regulation (GDPR)

  1. Contact details of the controller and data protection

Folkwang University of the Arts
Department of Design / Industrial Design / SBYD.SPACE
Martin-Kremmer-Str. 21
D-45327 Essen

Tel: +49 201 6505-1545

Folkwang University of the Arts is a corporation under public law, legally represented by the Rector Prof. Dr. Andreas Jacob.

The universities of art and music in North Rhine-Westphalia, Germany have appointed a joint supervisory authority, whom you can contact as follows:

Folkwang University of the Arts 
Regulatory Data Protection Officer
Klemensborn 39
45239 Essen

Phone: +49 201 4903-0


2. Data processed for website provision and log file creation

a. What data is processed for what purpose?

On each access to the website content, data is temporarily stored that may allow identification. The following data is collected:

– Date and time of access
– IP address
– Hostname of the accessing computer
– Website from which the website was accessed
– Websites accessed through the website
– Visited page on our website
– Notification as to whether the retrieval was successful
– transferred data volume
– Information about the browser type and version used
– Operating system

The temporary storage of data during a website visit is required to enable the website delivery. Further storage in log files is done to ensure the functionality of the website and the security of information technology systems. Our legitimate interest in data processing is also based on these purposes.

b. On what legal basis this data is processed?

The data is processed based on of Article 6(1)(f) GDPR.

c. How long will the data be stored?

The data is deleted as soon as it is no longer required for the purpose of its collection. In the case of website provision, this occurs when the respective session is terminated. The log files are stored directly and exclusively accessible to administrators for up to 24 hours. Afterwards, they are only available indirectly through reconstruction of backup tapes and are permanently deleted after four weeks of storage.

3. Social media presences

As part of our public relations work, as well as our freedom of research, teaching, and art we create content on official social media accounts and thus see contributions and interactions of the community with them. It is our ambition to provide the target audience with specific content and to encourage them to interact with us on these platforms.

Content and contributions or inquiries that violate the rights of third parties or constitute a criminal offense or administrative offense do not comply with legal or contractual obligations. In such cases we disclose them to the relevant authorities and social media providers and may block or delete them.

The legal basis for data processing on our social media offerings and elements is in accordance with Article 6(1)(e) GDPR in conjunction with § 3(3) KunstHG.

Social media posts and messages that you have not publicly transmitted to us are regularly reviewed to determine if whether storing your inquiries is still necessary. If no further requirements exist your data will be restricted in processing and stored according to legal retention obligations and in compliance with archive law.

If you have communicated with us through social media recognized by the public or parts thereof, you may decide on the duration of publication yourself or request deletion. We delete this data in compliance with archiving law within our area of responsibility. If copies of the data remain in our possession after deletion, they will be restricted in processing and stored according to legal retention obligations and considering archive law.

Additional data privacy policies given by service providers or services:

Social media providers often create comprehensive profiles of their members and those who get in touch with their telemedia services (e.g., clicking a “like” button or visiting websites). These profiles are used, among other things, for advertising purposes. If you use our offerings with these providers, they are aware that there is a relationship between you and us. As we are in parts jointly responsible for these data processing activities with the providers, we provide further information on data processing by the providers here.

You can limit the amount of these data processing activities through general browser settings or browser extensions. Recommended information can be found at Providers also offer individual settings to manage, for example, advertisements and tracking. This sometimes requires accounts with the respective providers. We have listed important information, including essential terms of use, here for you.

a. Instagram

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland


Terms of Use:
Privacy policy:
Cookie policy:
Platform policy:
Opt-out options: 

b. LinkedIn

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland

Privacy Policy:
User agreement:
Cookie policy:
Page policies:
Opt-out options:

4. Rights of the data subject

a. Right of access

You may request information in accordance with Article 15 GDPR about your personal data processed by us. 

b. Right to object 

You have the right to object for specific reasons (see point II). 

c. Right to rectification 

If the information concerning you is not (anymore) accurate, you may request rectification in accordance with Article 16 GDPR. If your data is incomplete, you may request completion. 

d. Right to deletion (‘right to be forgotten’)

You may request the erasure of your personal data in accordance with Article 17 GDPR. 

e. Right to restriction of processing

In accordance with Article 18 GDPR, you have the right to request restriction of the processing of your personal data. 

f. Right to complain

If you believe that the processing of your personal data violates privacy law, you have the right to lodge a complaint with a supervisory authority of your choice in accordance with Article 77 (1) GDPR. This includes the supervisory authority responsible for the controller: State Commissioner for Data Protection and Freedom of Information for North Rhine-Westphalia (Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen), 

g. Right to data portability 

If the conditions of Article 20 (1) GDPR are met, you have the right to receive the data processed based on your consent or in fulfilment of a contract in an automated manner, either to yourself or to third parties. The collection of data for the provision of the website and the storage of log files are essential for the operation of the website. They are therefore not based on consent pursuant to Article 6(1)(a) GDPR or on a contract pursuant to Article 6(1)(b) GDPR but are justified pursuant to Article 6(1)(f) GDPR. The requirements of Art. 20 (1) GDPR are therefore not fulfilled in this regard.

5. Validity of this data privacy information

We reserve the right to amend this privacy information to adapt it to changes in relevant laws or regulations or to better meet your needs. This privacy information is valid in the last version published by the university.

II Right to object in accordance with Article 21 (1) GDPR

You have the right, for reasons arising from your particular situation to object at any time to the processing of your personal data based on Article 6(1)(e) GDPR. The controller will then no longer process the personal data unless they can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves the assertion, exercise, or defence of legal claims. The collection of data for the provision of the website and the storage of log files are essential for the operation of the website and are therefore mandatory.

This site is registered on as a development site. Switch to a production site key to remove this banner.