Privacy & cookies policy

​

Last updated: 7 February 2026

​

This Privacy & Cookies Policy explains how Organization for Science, Education & Global Society gGmbH (OSEGS) (“we”, “us”) processes personal data when you visit or interact with this website, and how cookies and similar technologies are used.

Legal notice / imprint: https://www.globalsociety.earth/legalnotice

​

1) Controller and contact

 

Controller (Art. 4(7) GDPR):
Organization for Science, Education & Global Society gGmbH (OSEGS)
Am Inselpark 19, 21109 Hamburg, Germany, European Union

Contact for privacy requests and inquiries: https://www.globalsociety.earth/contact

We do not publish a public email address or telephone number. All requests must be submitted via the contact page above.

​

2) Data we process

 

Depending on how you use the website, we may process the following categories of personal data:

 

A. Contact data (submitted by you)
If you contact us via the contact page, we process the information you submit (which may include your name, email address, organisation, and message content).

 

B. Technical and usage data (server logs)
When you access the website, our systems may automatically record technical information such as IP address, date/time of access, requested page/URL, referrer URL, browser/user-agent, device and operating system information, and error logs.

 

C. Consent data (cookie choices)
If you interact with the cookie banner/settings, we record your consent status and preferences (including timestamp and technical identifiers necessary to store and respect your choices).

Important: Please do not submit special categories of personal data (Art. 9 GDPR) unless strictly necessary.

​

3) Purposes and legal bases (Art. 6 GDPR)

 

We process personal data only where permitted by law and only as necessary:

 

A. Operating, securing, and maintaining the website
Purpose: website delivery, IT security, abuse prevention, troubleshooting, and stability.
Legal basis: Art. 6(1)(f) GDPR (legitimate interests).

 

B. Handling inquiries
Purpose: receiving and responding to messages sent via the contact page.
Legal basis: Art. 6(1)(b) GDPR (steps prior to engagement / responding to a request) and/or Art. 6(1)(f) GDPR (legitimate interests).

 

C. Legal compliance and protection of rights
Purpose: compliance with applicable law; establishment, exercise, or defence of legal claims.
Legal basis: Art. 6(1)(c) GDPR and Art. 6(1)(f) GDPR.

 

D. Optional cookies and similar technologies
Purpose: any non-essential cookies/technologies (if any) are used only as described in the cookie banner/settings.
Legal basis: Art. 6(1)(a) GDPR (consent), where required.

 

4) Cookies and similar technologies

 

4.1 What cookies are

Cookies are small files stored on your device. Similar technologies (e.g., local storage) may store or access information on your device.

 

4.2 Cookie categories on this website

 

This website uses the Wix cookie banner and settings mechanism. Cookies/technologies may be used in the following categories:

• Strictly necessary cookies: required to operate the website, ensure security, and provide core functions.

• Functional/preference cookies: support site preferences where enabled.

• Optional cookies: any other cookies (if present) are only used where lawful and, where required, after your consent.

 

No analytics: We do not intentionally deploy third-party analytics tools such as Google Analytics or Google Tag Manager.

 

4.3 Consent management

 

Where legally required, non-essential cookies/technologies are used only after you provide consent via the Wix cookie banner/settings. You can accept, decline, or manage your preferences via “Settings”, and you may change or withdraw your consent at any time by reopening the cookie settings on the site.

 

4.4 Browser controls

 

You can also restrict or delete cookies through your browser settings. Disabling strictly necessary cookies may affect website functionality.

 

5) Google search console (SEO and technical diagnostics)

 

We use Google Search Console to monitor and improve the website’s visibility in Google Search and to diagnose technical issues (e.g., indexing and security issues). Search Console reports may provide aggregated performance information (such as clicks, impressions, CTR and average position). Certain search queries may be omitted or anonymised by Google.

​

Purpose: technical diagnostics, security monitoring, and improvement of search visibility.
Legal basis: Art. 6(1)(f) GDPR (legitimate interests).

Provider: Google (typically Google Ireland Limited for EU services; Google LLC may be involved depending on service configuration).

​

Cookie note: Google Search Console is an administrative service and is not typically implemented as a visitor-side tracking script on the website.

 

6) Service providers (processors) and hosting

​

We use service providers that may process personal data on our behalf under contractual safeguards (Art. 28 GDPR), in particular:

​

• Website platform: Wix (website creation/hosting environment and standard cookie banner/settings).

• Domain / related services provider: IONOS (ionos.de) (as configured for domain and related services).

 

We do not sell personal data. We disclose personal data only to service providers under binding safeguards, and where required by law or necessary to protect rights, safety, and integrity.

​

7) International transfers

 

If personal data is processed outside the European Economic Area (EEA), this occurs only with appropriate safeguards under Chapter V GDPR (e.g., EU Standard Contractual Clauses and supplementary measures where required) or another lawful transfer mechanism.

 

8) Retention

 

We retain personal data only as long as necessary:

​

• Contact submissions: up to 24 months after completion of the matter, unless longer retention is required by law or for dispute handling.

• Server/security logs: typically up to 90 days, unless extended due to security incidents or investigations.

• Consent records: as necessary to demonstrate compliance and respect your settings (typically up to 24 months or per platform configuration).

​

9) Your rights (GDPR)

​

Subject to legal conditions, you have the right to request access, rectification, erasure, restriction, portability, and to object to processing (Arts. 15–21 GDPR). Where processing is based on consent, you may withdraw consent at any time (Art. 7(3) GDPR).

How to exercise your rights:

Submit your request via https://www.globalsociety.earth/contact.
To prevent unauthorised disclosure, we may request reasonable proof of identity.

 

10) Complaints / supervisory authority

 

You may lodge a complaint with a supervisory authority. For Hamburg, this is typically the Hamburg Commissioner for Data Protection and Freedom of Information (HmbBfDI). You may also contact any supervisory authority in the EU/EEA, particularly in your place of residence or work.

​

11) Security

 

We maintain appropriate technical and organisational measures to protect personal data. No online system is perfectly secure; however, we implement safeguards proportionate to the risks.

​

12) Third-party links

 

This website may contain links to third-party websites. We are not responsible for their content, security, or privacy practices. Please review their policies independently.

​

13) Changes to this policy

 

We may update this Policy to reflect changes in law, technology, or our practices. The “Last updated” date indicates when this Policy was most recently revised.