Privacy Notice SAE Institute (Region DACH)
SAE Institute respects your right to privacy. Below you will find comprehensive information on how we process your personal data at our company or on our website.
To make it easier to read this notice, “SAE Institute” is also referred to as “we” or “us” in this privacy notice.
Person responsible and contact details of the data protection officer:
The responsible person within the meaning of the General Data Protection Regulation (GDPR) is the
If you have any data protection concerns, please do not hesitate to contact our data protection officer at the above address or the following e-mail address:
The legal basis and purposes for processing your personal data:
When we collect your information, we ensure that we only collect the information that is strictly necessary for us to provide our services.
Performance of a contract:
We use this data to draw up a contract setting out your obligations as a student or employee and our obligations as a provider of student services or employer.
Compliance with legal requirements:
Fulfilment of official requirements resulting or compliance with legal obligations arising, for example, from local labour law.
Providing information about special events in the company or news.
Categories of personal data:
In certain circumstances, your personal data may be transferred to us by third parties. A possible example would be the transfer of your data by a student placement or employment service. The categories of this data would be: Contact details, identity and immigration documents, bank details, education and qualifications information, communication history, employment initiation information, next of kin details, your image, voice and written contributions.
Duration of data storage:
We have a detailed document management system and all records (paper and electronic) are managed in accordance with security and deletion processes.
Disclosure of personal data:
We may share your personal information with trusted third parties. We will set clear standards for the security and protection of your privacy and personal data as required by law for these organisations. The requirements and expectations are set out in our contract with the third party and include, but are not limited to: Providing only the information needed to perform the specific service, specifying the purpose for which personal data is transferred, requiring that appropriate technical and organisational measures are taken to protect your data, deleting or anonymising data that is not needed, and promptly notifying you in the event of a suspected or actual personal data breach.
The categories of third parties we work with include:
Educational institutions, education professionals, government agencies, telecommunication services, IT companies, cloud-based storage companies, customer relationship management solution providers, online webinar providers, insurance companies, and financial services providers.
Transfer of data to countries outside the European Union:
We make a point of processing your data within the EU / EEA. However, we may use service providers who process data outside the EU / EEA. In these cases, we ensure that an adequate level of data protection comparable to the standards within the EU is established at the recipient before transferring your personal data. This can be achieved, for example, via EU standard contracts or Binding Corporate Rules or special agreements to whose regulations the company can submit.
Further information about the transfers can be obtained from the contact address of the data protection officer given.
You have a right to request access to your personal data processed by SAE Institute GmbH as described in Article 15 of the GDPR. In addition, you have the right to rectification, the right to restriction of processing, the right to erasure and the right to data portability under the respective legal conditions.
Links to websites of other providers
This data protection declaration does not cover links to websites of other providers. Please refer to the data protection information of the respective providers.