Data Protection & Privacy Policy

Our Commitment

At Rolfes SDG Academy (RSA), we take your privacy seriously. This policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR).

Who We Are

Organisation: Rolfes SDG Academy
Responsible: Dr. Yuno Rolfes
Address: Albert-Schweitzer-Str. 22, 32602 Vlotho, Germany
Email: info@rolfessdgacademy.org
Website: www.rolfessdgacademy.org

Data We Collect

Registration & Participation:

• Name, email address, phone number
• Country of residence
• Educational background
• Motivation statement (for program applications)

Communication:

• Email communications
• WhatsApp messages (if you contact us via WhatsApp)
• Feedback and survey responses

Website Usage:

• IP address and browser information (via standard website analytics)
• Pages visited and time spent on site

How We Use Your Data

• Program administration: processing applications, sending course materials, issuing certificates
• Communication: newsletters, event updates, opportunity alerts
• Learning improvement: feedback surveys to enhance our programs
• Impact measurement: anonymized data to report on outcomes
• Legal compliance: meeting GDPR and German non-profit requirements

We do not:

• Sell or share your data with third parties for marketing
• Use your data for purposes you have not agreed to
• Store data longer than necessary

Your Rights Under GDPR

• Access: request a copy of your personal data
• Correction: update or fix inaccurate information
• Deletion: request deletion of your data (right to be forgotten)
• Restriction: limit how we use your data
• Portability: receive your data in a portable format
• Opt-out: unsubscribe from communications

To exercise any of these rights, email: info@rolfessdgacademy.org

Data Sharing

• Partner organisations: only with your consent and for stated purposes
• Service providers: GDPR-compliant platforms for email, video conferencing, and learning management
• Legal requirements: if required by German law or court order

Data Security

• Encrypted communications (HTTPS)
• Secure password protection
• Limited internal access
• Regular security reviews

Cookies & Analytics

• Essential cookies for website functionality
• Google Analytics (anonymised) to understand visitor behaviour

You can disable cookies in your browser settings at any time.

Retention Period

• During active participation in programs
• Up to 2 years after participation for alumni records and impact measurement
• Longer if required by German law or non-profit regulations

Children’s Data

RSA programs are for ages 18+. We do not knowingly collect data from minors. If we become aware that a child has provided personal data, we will delete it immediately.

Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of those websites. Please review their privacy policies separately.

Updates to This Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page. Continued use of RSA services constitutes acceptance of the updated policy.

Contact Us

Email: imprint@rolfessdgacademy.org
Address: Albert-Schweitzer-Str. 22, 32602 Vlotho, Germany

We will respond to privacy-related requests within 14 days.

Legal Basis for Processing

• Your consent
• Contractual necessity (program participation)
• Legal obligations under GDPR and German law
• Legitimate interests (program improvement and impact measurement)