Privacy Policy

Here we inform you in accordance with Article 13 of the General Data Protection Regulation (GDRP) about the nature, scope and purpose of the collection and use of personal data by this website.

In addition, you will find information about the relevant legal basis and your rights regarding this data processing.

Name and contact

Person responsible: Mr. Felix Schlösser

Allgemeiner Studierendenausschuss der TU-Hamburg
Am Schwarzenberg-Campus 3
Building E, Room 0.069
21073 Hamburg

Types of data processing

This site is operated on the servers of the Rechenzentrum of the TU-Hamburg, which are located on the campus. No data is processed outside the TUHH network or outside the European Union. Under no circumstances will data be passed on to third parties.

Usage data

When visiting this website, the following usage data is automatically logged by the web server:

  • Your IP address
  • the requested hostname and port
  • the requested resource
  • the HTTP status code
  • the size of the response in bytes
  • a timestamp

The data is processed solely for the purpose of ensuring the reliability of the web server and stored in a log file for 30 days. For troubleshooting purposes, longer storage periods are possible for a limited period of time.

Request via forms

In addition to the above-mentioned usage data, the data you provide when contacting us via our forms will be stored and processed by us. In the case of the contact form at, this includes, for example:

  • the specified name
  • the specified e-mail address
  • the request text

This is done solely for the purpose of processing your request and, if desired, for subsequent contact. The data is stored exclusively on the mail servers provided by the computer center of the TU-Hamburg and can only be processed by authorized persons. The processing is based on our legitimate interest. The data collected in connection with your request will be deleted a maximum of 5 years after the last mail contact.


Cookies are small text files that a website can store on a website visitor's browser. These do not contain any personal data and expire automatically after the specified time. The following are sent with every request to our domain:

Name Purpose Domain Expiration Time
django_language Serves for comfortable use by saving the language preference of the user. Will be saved after closing the browser Session
sessionid Serves the comfortable use for example for automatic login. 2 weeks
csrftoken Used to protect against cross-site request forgery attacks. The reason for setting such a long expiration time is to avoid problems in case a user closes the browser or bookmarks a page and then loads that page from the browser cache. Without persistent cookies, form submission would fail in this case. 1 year

You can prevent the placement of cookies by setting your browser accordingly. In this case, the functionality of some forms can no longer be guaranteed.

Your rights 

  • Art. 15 GDPR: Right of access of the data subject
    You have the right to obtain information from us about what data we process about you.
  • Art. 16 GDPR: Right to rectification
    If the data concerning you is incorrect or incomplete, you may request the correction of incorrect or the completion of incomplete information.
  • Art. 17 GDPR: Right to erasure
    Under the conditions of Art. 17 GDPR, you can request the erasure of your personal data.
  • Art. 18 GDPR: Right to restriction of processing
    Under the conditions of Art.18 GDPR, you may request the restriction of the processing of personal data concerning you.
  • Art. 21 GDPR: Right to object
    For reasons arising from your particular situation, you may object at any time to the processing of data concerning you.
  • Art. 7 para. 3 GDPR: Right to withdraw consent
    You have the right to revoke your consent to the processing of your personal data at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

In the event of difficulties in exercising your rights or if you are of the opinion that we have not complied with data protection regulations when processing your data, you can lodge a complaint with the Hamburg Commissioner for Data Protection and Freedom of Information.

Updated: April 9, 2022