skip to main content

Data Privacy Statement – Cluster of Excellence “Controlling Microbes to Fight Infections” (CMFI) at the University of Tübingen

Dear users of our website,

Thank you for visiting our web pages. We appreciate your interest in the University of Tübingen and the Cluster of Excellence “Controlling Microbes to Fight Infections” (CMFI).


This privacy statement is to inform you about the processing of your personal data (hereinafter referred to as "data") resulting from your visiting or using our website functions.

We ask you to read this privacy statement carefully before you continue to visit our website or use the functions contained on the website.

By visiting our website, you consent to the processing and use of your data as described below.

Our privacy statement is valid for our website only and not for the webpages of third parties.

Data privacy and security

The protection of your privacy is important to us. To protect your data, the University of Tübingen takes a variety of technical and organizational measures to effectively prevent unauthorized access and disclosure, manipulation, loss and unauthorized deletion.

The measures we take are subject to constant updating. We are guided by legal requirements, best practice approaches and technical developments.

In the following, we provide information about the type, scope and purpose of the collection, processing and use of your data by the University of Tübingen, insofar as they result from your visit to or use of the functions of our website.

Responsible for the data privacy statement and this website

Public Relations Department
Dr. Karl Guido Rijkhoek
Wilhelmstrasse 5
72074 Tübingen
Phone  +49 7071 29-77854

Contact for data privacy

Data Protection Officer
72074 Tübingen
 Phone: +49 70 71 29-0
Data protection officer’s webpage

Scope of data collection, processing and use

We pursue the goal of limiting the collection, processing and use of personal data during your visit to our webpages to the minimum necessary. We also generally only collect the data from you that we absolutely need to fulfill the purpose.

Also, we do not knowingly collect any personal data from minors (= persons under the age of 18). In cases where we determine that personal data has been provided to us by minors, we delete this data immediately if no downstream process follows. We recommend that legal guardians keep an eye on the internet activities of minors in their care.

Personal data

According to article 4 of the GDPR, personal data is any information that relates to an identified or identifiable natural person. This includes, for example, information such as first and last names, addresses, e-mail addresses, telephone or mobile phone numbers, and usually also the IP address.

Purpose of data processing

If you voluntarily provide us with your data for the purposes listed below, we will process and use this data exclusively for the purposes for which you provided us with your data. This currently includes the following:

Online newsletter

If you wish to receive our newsletter, you can provide us with your data, for example, by registering for the newsletter (link: on our webpages voluntarily. We will then use this data exclusively to send you the newsletter you requested. Please understand that we use the double opt-in procedure for your security when ordering the newsletter and that you will be asked to confirm receipt of the newsletter via e-mail. Without your express consent, we will not send you our newsletter. If you no longer wish to receive the newsletter in the future, you are free at any time and without giving reasons to revoke your consent to receive our newsletter; you may unsubscribe from our newsletter free of charge for the future (link: You can unsubscribe via the unsubscribe link in each newsletter sent, by sending an email to the following address: or by regular letter to the following address: University of Tübingen, Cluster of Excellence CMFI, Public Relations Auf der Morgenstelle 28 72076 Tübingen, Germany (or to the address given on the webpage of the respective newsletter)

Online applications

If you make an application to the University of Tübingen and send us your application documents in electronic form, we will process and use this data, which you have voluntarily provided to us, solely for the application procedure and possibly to initiate an employment relationship at the University of Tübingen. Your data will only be passed on to third parties if you expressly authorize us to do so in writing, stating the recipients.

Online contact forms

If you send us your data as part of an inquiry, feedback or message, or fill out the online contact form available on our website and send it to us, we will process and use this data exclusively to process your request or to respond to your inquiry.


You have the opportunity to become a member of Alumni Tübingen (Link:, the University of Tübingen alumni network, and as a former researcher at the University of Tübingen also a member of the Tübingen Research Alumni Center (TRACe) (Link: For this purpose, we provide an online registration form. The information provided will be stored and used in an internal university database exclusively for the purpose of alumni work. By registering with Alumni Tübingen or TRACe, the user expressly agrees to be contacted by e-mail and/or post for the purpose of maintaining contact with the University of Tübingen, to be informed about events and activities of the respective alumni network and the University of Tübingen, and to be approached for projects and surveys. The data will only be viewed, changed or deleted upon notification by the member. Data will be passed on to external third parties only with the express consent of the alumni member. There shall be no consolidation with other data sources.

Membership of Alumni Tübingen and/or TRACe – and the consequent consent to the storage and use of personal data – may be revoked in writing at any time with effect for the future. To do so, please contact the Alumni Office and for TRACe, the TRACe Office Your data will then be deleted without delay. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
Note: For its circular mailings – four issues per year – TRACe uses the online marketing tool Newsletter2GO, a service provided by Newsletter2Go GmbH, Nürnberger Straße 8, 10787 Berlin. For this purpose, the e-mail addresses for which there is consent to receive the circulars are transmitted via a secure connection to the database of Newsletter2Go and stored as a distribution list, which is accessible only to TRACe. Newsletter2GO does not pass on the data to third parties. Consent to receive the circular mail may be revoked at any time but not retroactively. The e-mail address will then be deleted from the mailing list.
Further information at:

Online orders

If you register with our alumni network (link: and order the research magazine attempto! free of charge, we will also use your data to process your order and for shipping. This also includes the forwarding of contact data to our print shop for the purpose of shipment. The magazine is published three times a year. You can cancel your subscription at any time by contacting the Alumni Office (

If, as part of a registration in our Alumni Network (link: you order the online newsletter of the University of Tübingen, we will use your e-mail address to process your order and to send it. In this case, the double opt-in procedure normally used for the online newsletter does not apply. Information on how to unsubscribe from the newsletter can be found under "Online newsletter" in this privacy policy.

If you register with our alumni network (link: for English-language circular mails to research alumni, we use this data to process and send your order. The English-language circulars to research alumni are sent out by TRACe using the online marketing tool Newsletter2GO. Information on this can be found under "Alumni" in this privacy policy.

Portals and platforms for data exchange

If you make available or provide us with your data via portals or platforms accessible via our website, we will process and use the data provided by you exclusively for the purposes for which you have provided us with the data. We point out that if the portals or platforms are operated by external website providers, other data protection rules may apply. Please inform yourself about this in advance and also read "Linked websites" in this data protection notice.

Improvement of our website

In order to improve the design and content of our webpages, the functions of our online presence and the user-friendliness of our pages, we collect, process and use the following data:

  • IP address of the computer accessing the page
  • Date and time of access
  • URL path of the requested page/file and desired access method
  • Access status of the web server (e.g. file transferred, file not found)
  • Transferred data volume
  • Information about the software used for access (usually browser type and version, operating system of the accessing computer)
  • URL from which the page/file was accessed

The University of Tübingen uses the stored access log data to identify and track unauthorized access attempts and accessing of the website. The server log files are stored for a period of 14 days and then deleted. For the purpose of optimizing the website, the stored access log data is evaluated in anonymized form. Persons are then no longer identifiable with this data.

We collect, process and use this data exclusively for the aforementioned statistical and non-commercial purposes in anonymized or pseudonymized form, so that any inference to your person is prevented.

Use of the web analytics service Matomo

We use Matomo (Piwik), an open-source software for statistical analysis of visitor access. Matomo enables an anonymized analysis of your use of the website. Cookies are only used for the opt-out option. Matomo is configured so that no tracking cookies are set. It is not possible to draw conclusions about a specific person, as your IP address is anonymized immediately after processing and before storage.

You may lodge an objection to the storage and analysis of this data by Matomo at any time (link: In this case, an “opt-out cookie” is permanently stored in your browser, which causes Matomo not to collect any data for storage and evaluation. However, if you delete this cookie intentionally or unintentionally, the objection to data storage and evaluation will also be lifted and can be renewed via the above link.

Alternatively, most modern browsers have a "Do Not Track" option, with which you tell websites not to track your user activities. Matomo respects this option.


The Cluster of Excellence “Controlling Microbes to Fight Infections” (CMFI) website uses cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our service more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
The following cookies are set:

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of our website may be limited.

Cookies help us

  • to identify the frequency of visits to the website areas
  • to recognize the preferences of our website visitors and to be able to optimally design the webpages accordingly
  • to facilitate navigation on our webpages and thus to increase the user-friendliness of our webpages
  • To keep information for a certain period of time and to identify the website visitor's computer as soon as they return to our webpages. This makes it possible, for example, to use the settings you have previously selected so that you do not have to choose the settings again (e.g. language settings, log-in information).

YouTube plugins and YouTube videos

Our webpages may contain YouTube plugins or videos published on the "YouTube" platform. YouTube is a service of Google Inc. When you visit our webpages that contain a YouTube plugin or video, a connection to the YouTube servers is established and YouTube is informed which of our webpages you have visited. In the process, YouTube places cookies on your device.

If you are logged into your YouTube account while visiting our webpages that contain a YouTube plugin or video, it is possible for YouTube to associate your visit to our webpages with your YouTube account. 

If you are logged into your YouTube account during your visit to our webpages that contain a YouTube plugin or video and activate a YouTube plugin by selecting a video button on our webpages or leave a comment on our video uploaded to YouTube, YouTube will assign this information to your YouTube account. 

If you do not want YouTube to collect, process or use data about your visit to our webpages and link it to your user account, you must log out of YouTube before visiting our webpages and block the setting of cookies by YouTube in your browser or delete cookies set by YouTube in the past from your computer. 

For more information on the purposes and scope of the collection, processing and use of your data by YouTube, please see Google's Privacy Policy & Terms of Use ( ).

Supplementary data privacy information when using Twitter

The Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) uses the technical platform and services of Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103 U.S.A. for the short message service.

1. responsibility

The data controller for individuals living outside the U.S. is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland.

We would like to point out that you use the Twitter short message service offered here and its functions under your own responsibility. This applies in particular to the use of the interactive functions (e.g. sharing, rating).


The Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) has no influence on the type and scope of the data processed by Twitter, the type of processing and use or the transfer of this data to third parties. Nor does it have any effective means of control in this respect.

2. Data processed by Twitter

Information on what data is processed by Twitter and for what purposes can be found in Twitter's privacy policy:

- (external link).

Twitter Inc. has committed to the principles of the EU-US Privacy Shield. More details can be found at:

- (external link).

By using Twitter, your personal information is collected, transferred, stored, disclosed and used by Twitter Inc. and transferred to and stored and used in the United States, Ireland and any other country in which Twitter Inc. does business, regardless of your country of residence.

On the one hand, Twitter processes your voluntarily entered data such as name and user name, e-mail address, telephone number or the contacts of your address book when you upload or synchronize it.

On the other hand, Twitter also evaluates the content you share to determine what topics you are interested in, stores and processes confidential messages that you send directly to other users, and can determine your location using GPS data, wireless network information or your IP address in order to send you advertising or other content.

For analysis, Twitter Inc. may use analytics tools such as Twitter or Google Analytics.

The Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) has no influence on the use of such tools by Twitter Inc. and has not been informed about such potential use. Should tools of this kind be used by Twitter Inc. for the account of the Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI), the CMFI has neither commissioned, approved nor otherwise supported this in any way. Nor will it be provided with the data obtained during the analysis. Only certain non-personal information about tweet activity, such as the number of profile or link clicks by a particular tweet, is viewable by the account of the Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) via the account. Moreover, the CMFI has no way to prevent or stop the use of such tools on its Twitter account.

Finally, Twitter also receives information when you view content, for example, even if you have not created an account. This so-called "log data" may be the IP address, browser type, operating system, information about the website you previously visited and the pages you viewed, your location, your mobile provider, the terminal device you use (including device ID and application ID), the search terms you used and cookie information.

Via Twitter buttons or widgets embedded in websites and the use of cookies, it is possible for Twitter to record your visits to these websites and assign them to your Twitter profile. Based on this data, content or advertising can be offered tailored to you.

Since Twitter Inc. is a non-European provider with a European branch only in Ireland, it is not bound by German data protection regulations according to its own interpretation. However, due to the principle of establishment in Art. 3 (1) GDPR, Twitter Inc. is bound by the regulations of the GDPR.

You have options for restricting the processing of your data in the general settings of your Twitter account and under the item "Privacy and security". In addition, you can restrict Twitter's access to contact and calendar data, photos, location data, etc. on mobile devices (smartphones, tablet computers) in the settings options there. However, this depends on the operating system used. More information on these points is available on the following Twitter support pages:

- (external link)

- (external link)

- You can find out about the possibility of viewing your own data on Twitter here: (external link).

- Information about the inferences Twitter draws about you can be found here: (external link)

- Information on the available personalization and data protection setting options can be found here (with further references): (external link)

- Furthermore, you have the option to request information via the Twitter privacy form or the archive requests: (external link)

- (external link)

3. data processed by the Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI)

The Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) also processes your data. Admittedly, it does not collect any data itself via your Twitter account. We do not integrate Twitter as a plugin, but only as an image-text link. By embedding the tweets of the Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) on their homepage, the IP addresses of the site visitors are not transmitted to Twitter Inc.

However, the data you enter on Twitter, in particular your username and the content published under your account, will be processed by us insofar as we may re-tweet or reply to your tweets or also compose tweets from us that refer to your account. The data you freely publish and disseminate on Twitter are thus included by the Cluster of Excellence "Controlling Microbes to Fight Infections" (CMFI) in its offer and made available to its followers.

Location maps (OpenStreetMap)

We use the OpenStreetMap service to display the locations of university buildings. The privacy policy of the OpenStreetMap Foundation is available here: 

Linked websites

Our webpages have links to external websites. We have no influence on the content of these websites and therefore accept no responsibility or liability for the permissibility, accuracy, presentation and completeness of the content published, displayed or retrievable there.

We hereby inform you that when you access these external websites, your IP address may be logged by the relevant website operator.

When you leave our website, we recommend that you check the privacy policy of the external website operators before you access the website or use the functions there.

Transmission or sharing of your data

There shall be no transfer to third parties or sharing with our business partners of your data collected, processed or used by us without your express consent, unless this is:

  • necessary for the processing of our contractually guaranteed services.
  • necessary for the enforcement of our claims.
  • legitimate by a legal authorization or we are required by law to disclose the data.
  • necessary for the purposes of law enforcement, security or protection of our webpages.
  • necessary to enforce the rights of third parties or in the context of the legal obligations to provide information or a court order to provide the information.

Right to information

In accordance with article 15 GDPR, visitors to our website have the right to request information about their personal data processed at the University of Tübingen at any time, free of charge. The scope of the information is set out in article 15 GDPR.

Please send your request for information via e-mail to the following address ( or by post to the following address: University of Tübingen, Data Protection Officer, Geschwister-Scholl-Platz, 72074 Tübingen, Germany

Right to correction of your data

In accordance with article 16 GDPR, you have the right to request the correction or completion of incorrect or incomplete information about you. We will examine such requests and take the necessary measures in justified cases.

Right to deletion and blocking of your data

Under article 17 GDPR, you have the right to deletion of your data. The data we store about you will be destroyed or deleted in accordance with data protection law if 

  • the legal retention periods have expired, or
  • the collection or processing is or was unlawful, or 
  • the data is no longer required to fulfill the purposes for which it was collected, or
  • if you have revoked your consent to the processing and use
  • provided you object to the processing of your data in accordance with article 21 GDPR and there are no overriding legitimate grounds for the processing.

We inform you that a complete deletion will only take place after the expiry of the corresponding deadlines under tax and commercial law. Until the expiry of these periods and until final deletion, your data will be blocked accordingly and will not be further processed by us.

Right to restriction of data processing

Under article 18 of the GDPR, you have the right to request that we restrict the processing of your data in the cases, and to the extent, specified in article 18 of the GDPR. We will examine such requests and take the necessary measures in justified cases.

Right to data portability

In accordance with article 20 GDPR, you have the right to receive your data processed by us in a structured, common and machine-readable format. At your express request, we will transfer your data to the bodies clearly designated by you, insofar as we can technically do so and this is permissible under data protection law.

Right of revocation and objection

You have the right to revoke your consent to the collection, processing and use of your data for the future at any time and free of charge and without giving reasons, or in accordance with article 21 GDPR to object to the processing of your data. Please send your revocation of your consent or objection via e-mail to the following address ( or by post to the following address: University of Tübingen, Data Protection Officer, Geschwister-Scholl-Platz, 72074 Tübingen, Germany

Right to complain to a supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority under article 14 in conjunction with article 77 GDPR if you believe that the processing of your data violates the GDPR. The responsible authority is the Baden-Württemberg Ministry of Science, Research and the Arts.

Right to an effective judicial remedy against the controller

In accordance with article 79 GDPR, you have the right to an effective judicial remedy if you believe that your rights as listed above have been violated as a result of processing of your data by us or by a processor engaged by us that does not comply with the requirements of the GDPR.

Liability and right to damages

Under article 82 of the GDPR, you have the right to claim damages against us or the processors commissioned by us if you have suffered material or immaterial damage due to a breach of the GDPR.

Updates to Data Privacy Statement

This data privacy statement will be updated with effect for the future in the event of new legal requirements or significant changes to the functional scope of our webpages. We therefore recommend that you read through our data privacy statement at regular intervals.

Last updated: 15.07.2022