Data Protection Statement

The Initiative for Blended Finance (IBF) takes data protection very seriously; in this statement, we explain which user data are collected, processed, and disclosed by IBF, and for what purpose, and we describe the measures taken to safeguard the security of these data. All measures conform to the prevailing provisions on data protection.

Data protection serves to protect the privacy of individuals. It requires data processors to act lawfully, and confers enforceable rights to the affected persons with regard to the processing of their personal data. Section 3 of the Canton of Zurich’s Act on Information and Data Protection (Gesetz über die Information und den Datenschutz [IDG ZH]) defines personal data as any information related to an identified or identifiable individual. This includes details such as names, addresses, phone numbers, and e-mail or IP addresses.

Every time the IBF web page is requested or called up, the following access data are collected and stored in a web server file on IBF’s servers:

• The IP address of the requesting computer (e.g. 123.456.97.36)
• The site or address (URL) from which the IBF web page was requested
• The path and name of the requested IBF web page
• The date and time of the request (e.g. [12/Apr/2016:00:00:01 +0200])
• The volume of data transferred
• The access status
• The type of access
• A description of the type of web browser and/or operating system used
• The session ID
• The serial number of the requesting computer

These data are processed for the following purposes:

• Safeguarding the network infrastructure and facilitating technical administration
• Optimizing the use of specific web offerings
• Identifying and tracking unauthorized access attempts

Web server log files are stored for six months after access is terminated. Once this period has elapsed, web server log files are automatically deleted, provided there has been no identified attack on the University’s network infrastructure necessitating the civil or criminal prosecution of the intruder and thus requiring that the log file be stored longer.

Use of specific functions or services on the IBF website (e.g. newsletters, contact forms, and web applications) may require further collection, processing, and long-term storage of personal data such as names, addresses, and e-mail addresses. By entering and sending this data, you give your consent for this information to be processed.

Personal data will be disclosed to third parties (e.g. other authorities) only if required by binding legal provisions (e.g. the ruling of an authority, court orders) or for the purposes of legal or criminal prosecution (e.g. in the event of attacks on UZH’s network infrastructure). Personal data will not be disclosed to third parties for other purposes.

Nevertheless, IBF may commission service providers to process data collected via the IBF website for the purposes described above. Legal, technical, and organizational measures will be put in place requiring IBF and external service providers to comply with the relevant provisions of data protection law.

To be able to better adapt website content and navigation tools to the needs of users, visits to pages and elements clicked within pages are logged and analyzed using the software Piwik. Piwik uses «cookies» (see point 6. below regarding the use and how to prevent the use of such cookies). The usage information generated by the cookies, including their abbreviated IP address, will not be forwarded to third parties, but stored on IBF’s servers for the purpose of usage analysis and website optimization. The IP addresses will immediately be anonymised during this process. It is therefore not possible to trace the results of this analysis back to a specific IP address or to monitor the behavior of a data subject.

So-called temporary cookies may be used when individual IBF web pages are accessed. Temporary cookies are small files that the IBF web page visited stores on your computer to enable optimal use of the website; the cookies are deleted automatically when the web browser is closed. You can block the use of temporary cookies by adjusting the relevant settings in your web browser. Please note that disabling, blocking, or deactivating cookies can limit the functionality of the IBF web pages.

The data protection statement applies only to IBF web pages. In the case of links providing access to external sites, please refer to the data protection policies of the providers in question. IBF is not responsible for the content or for the data protection policies of these providers. In particular, IBF cannot guarantee that content provided by other providers is free of malware.

The IBF website does not use additional programs in the form of so-called social media plugins that send IP addresses direct to the providers of social networks. The buttons that appear on the IBF website are merely links to the corresponding social network providers.

Google is the central search engine used within the IBF website. The integrated search engine enables full-text searches for content from the official IBF website. This search function can be accessed via a search field at the top of each page of the IBF website. By using the full-text search function and accessing the page of search results, you consent to using the Google search engine and thus to the disclosure of data to the Google service. Please note that a different data protection policy applies to Google than to IBF.

IBF undertakes technical and organizational security measures to ensure that the data it collects and processes via the IBF website remain confidential and are safeguarded from accidental or unauthorized access, changes or disclosure, loss, and destruction; moreover, only the persons who require access to personal data due to their job and work-related duties are granted access on a need-to-know basis.

The measures selected depend on the type of information, the type and purpose of use, and the technology available.

IBF reserves the right to amend this data protection statement at any time with future effect if the implementation of new technologies or the legal situation so requires. For this reason, we advise you to check the data protection statement on a regular basis.

If you would like information on data relating to your person that has been collected and processed, if you want such data to be corrected, destroyed, or blocked, or if you have further questions on the use of such data, please contact:

info@roots-of-impact.org