Skip to main content

Privacy

Privacy Policy

Last updated: 06/02/2026

This Privacy Policy explains how onehealth-implementation-guide.org (“Website”) processes personal data when you visit and use this publicly accessible website.

The Website is operated by:
Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH
Friedrich-Ebert-Allee 32 + 36
53113 Bonn, Germany
Email: info@giz.de
Website: https://www.giz.de
Data Protection Officer
Email: datenschutzbeauftragter@giz.de

1. Personal Data We Process

This Website is publicly accessible. It does not provide user registration, login, or personal user accounts.

GIZ processes personal data only to the extent that this is technically necessary to ensure the secure operation, stability, and improvement of the Website.

1.1 Data collected automatically (server logs files)

When you access the Website, the following technical information is processed automatically and stored temporarily in server log files:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Requested pages and HTTP status codes
  • Referrer URL (if provided)

These data are technically required to ensure the security and proper functioning of the Website.

2. Purpose and Legal Basis of Processing

2.1 Website operation and IT security

The processing of technical access data and server log files is carried out in order to:

  • Ensure the secure and stable operation of the Website
  • Detect, analyse, and prevent technical faults and misuse
  • Safeguard the integrity and availability of the Website

Legal basis:
Art. 6(1)(f) GDPR — legitimate interest in the secure and reliable operation of the Website.

3. Cookies and Consent Management

3.1 Borlabs Cookie

This Website uses Borlabs Cookie, which sets a technically necessary cookie to store your cookie consent preferences.

Borlabs Cookie is used to:

  • Obtain and document legally compliant user consent
  • Store information about which services you have consented to
  • Enable you to revoke or change your consent at any time

Borlabs Cookie does not process personal data for its own purposes and does not pass data on to third parties.

Legal basis:
Art. 6(1)(c) GDPR — compliance with a legal obligation
Art. 6(1)(f) GDPR — legitimate interest in consent management

You can change or revoke your consent at any time via the cookie settings button in Section 5 below the tables.

4. Web Analytics (Matomo)

This Website uses Matomo, an open-source web analytics service, to analyse the use of the Website and to continuously improve its content and functionality.

Matomo processes information about the use of this Website, including:

  • Anonymised IP address
  • Pages accessed
  • Date and time of access
  • Referrer URL
  • Browser and device information

The data collected by Matomo is not used to identify you personally and is not merged with other data sources.

Consent-based use

Matomo is used only after you have given your consent via the cookie Cookie Banner, or the button below.

Legal basis:
Art. 6(1)(a) GDPR — consent

You may revoke your consent at any time with effect for the future via the same cookie settings button in Section 5 below the tables.

5. Cookies Used on This Website

5.1 Technically necessary cookies

Cookie namePurposeDuration
borlabs-cookieStores your cookie consent preferences6 months
borlabs-cookie-consentDocuments consent status6 months

These cookies are required to comply with legal obligations and to ensure proper consent management.

5.2 Optional cookies (only with consent)

Cookie namePurposeDuration
_pk_id.*Matomo: distinguishes users for statistical purposesUp to 13 months
_pk_ses.*Matomo: temporary session cookie for page analysisSession (up to 30 minutes)

6. Data Storage and Retention

  • Server log files: retained for 7–30 days for security and troubleshooting purposes
  • Cookie consent data: stored for the duration of the consent documentation requirement
  • Web analytics data (Matomo): stored in anonymised or aggregated form in accordance with configured retention periods

Personal data are deleted or anonymised as soon as they are no longer required for the stated purposes.

7. Data Sharing

Personal data are processed confidentially and are shared only where necessary and legally permitted.

7.1 Technical service providers

Hosting providers and IT service providers may process data on behalf of GIZ on the basis of data processing agreements pursuant to Art. 28 GDPR.

7.2 No commercial use

Personal data are not sold and are not used for advertising or commercial profiling purposes.

8. Your Rights Under the GDPR

You have the right to:

  • Access your personal data (Art. 15 GDPR)
  • Rectification of inaccurate personal data (Art. 16 GDPR)
  • Erasure of your personal data (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Object to processing based on legitimate interests (Art. 21 GDPR)
  • Withdraw consent at any time with effect for the future (Art. 7 GDPR)
  • Data portability, where applicable (Art. 20 GDPR)

To exercise your rights, please contact:
datenschutzbeauftragter@giz.de

You also have the right to lodge a complaint with the competent supervisory authority:

Federal Commissioner for Data Protection and Freedom of Information (BfDI)
https://www.bfdi.bund.de

9. Data Security

GIZ implements appropriate technical and organisational measures in accordance with Art. 32 GDPR to protect personal data, including:

  • HTTPS encryption
  • Secure hosting infrastructure
  • Access controls and monitoring
  • Regular security updates and maintenance

10. External Links

This Website may contain links to external websites.
GIZ has no influence on the content or data protection practices of external providers and assumes no responsibility for them.

11. Changes to This Privacy Policy

This Privacy Policy may be updated to reflect legal requirements or changes to the Website.

The current version is always available on this page.