Privacy Policy

The data protection regulations of LMU Munich apply.

Supplementary applies:

Terms of use and data usage notice for the use of the portal application "matorixmatch" of the Career Services of LMU Munich.

The following terms and conditions apply to all users of the application matorixmatch of the Career Services of the University of Munich (LMU), hereinafter abbreviated by "portal application". They apply to all registered users of the portal application as well as users of visitor access.

§ 1 Purpose - What is "Matorixmatch" and what can it be used for?

Matorixmatch is a SaaS application used by LMU Career Services to manage its events and services. Through the portal application, the Career Services establishes contacts with mentor:ing and companies from the Career Service's career network. The data is shared exclusively with the companies and between the mentors and mentees selected by the students.

§ 2 Data protection

In the course of using the portal application, personal data is collected from and processed about you. This data is linked to your person. It is therefore our duty to inform you about what data is collected and processed and what rights you have with regard to data collection and processing. We use an appropriate IT security infrastructure to ensure that internally only those persons who need access to this information for the performance of their tasks are granted access. Personal data is treated confidentially by us and is not made available to third parties, in particular not publicly, without authorization.
The legal basis for the collection and processing of personal data is your consent pursuant to Article 6 (1) a) DSGVO. The data processing is carried out in accordance with the relevant data protection regulations, in particular on the basis of the Basic Data Protection Regulation, as well as the Bavarian Data Protection Act.
The collected data will be processed for the purpose described under § 1 by the respective employees of LMU and cooperating companies in the context of the events and services offered. Data processing is also carried out to the extent necessary for the purpose of continuous improvement of system operation, i.e. for quality assurance, by the operator of the portal application (see § 4).
In the following, we describe which personal data is processed. The processing of further personal data requires a corresponding legal basis or additional consent.

§ 2.1 Login to the portal application

The use of this system is only allowed for users over 16 years of age. If you are under 16 and the use of the portal application is mandatory for you, please contact the system operator as described in § 4.

§ 2.2 What data is stored?

Most of the data is entered by you, this is so-called "master data".
Master data is information such as your name and e-mail address (as described in § 2.1).
Transaction data includes which events and services you use.
Diagnostic data (automatic storage of master, inventory and transaction data as a result of an error condition occurring) is collected to maintain/enhance system stability, performance and security.

§ 2.3 Cookies

  • Cookies (short text information) are used by the portal application in several ways:
  • Session cookie: this cookie is necessary to allow the Portal Application to identify you across multiple page views without requiring you to re-authenticate/login each time you change pages. The cookie is set the first time you access the portal application and remains set until you log out of the portal application or close your browser (the latter may be prevented by local browser settings) or remove the cookies from your browser or change the corresponding security settings on your PC.
  • Usability cookies: Individual components of the portal application use cookies to increase user-friendliness - for example, to save the state of displayed or hidden website elements over several page views.
The use of cookies is in your interest. Please note that individual Matorixmatch pages or functions can no longer be used or displayed appropriately if you disable cookies.

§ 2.4 Who has access to what?

Access is granted to the employees of the Career Service of LMU as well as to companies that you select yourself in the context of the events and services.

§ 2.5 Sharing of data

We only pass on your data to the associated companies, mentors and/or trainers in the context of the events and services you have selected. We obligate the companies to comply with the legal requirements for data protection and to adhere to the usual storage, processing, and deletion periods in recruiting. We ourselves block access to participant data immediately after the conclusion of an event.

§ 2.6 Deletion

Personal data is deleted from the system as soon as it is no longer required for the purpose for which it was collected. A deletion check and implementation takes place regularly and at least annually. Of course, we will also pass on your request for deletion to any companies you may have chosen.

§ 2.7 Your rights

You have various claims against the controller with regard to the data stored about you. Please note that master data provided by external institutions (e.g. universities of the DFN, vhb) can only be accessed, corrected or deleted by the respective institution. Your rights include:
  • Right to information (Art. 15 DSGVO): You have the right to obtain information about the personal data processed about you, Please note that you can also find data in your usage profile.
  • Right to rectification (Art. 16 DSGVO): If incorrect personal data is stored, you can partly adjust it yourself (profile data collected by yourself) or request the controller to do so. The responsible party will comply with the request, provided that the correction is justified and permissible.
  • Right to erasure (Art. 17 GDPR): You have a right to have personal data erased that is demonstrably false or for which the controller cannot demonstrate a purpose for processing. There is no right to erasure of personal data if the controller is obliged to still retain the data for legal reasons or due to official obligations (proof of instruction, proof of quality assurance, copyright usage rights, right to audit). The obligation to delete personal data may also exist after the end of the study program/participation in the course/employment relationship or upon revocation of consent. There is also no right to deletion if information has been collected by you yourself and this information is in an indissoluble context with information from other users (e.g. forum posts). The request for deletion can be interpreted as a revocation of consent. This may mean that you will no longer be able to access the portal application and that you will no longer be able to participate in a course. Evidence, e.g. performance records, may no longer be provided in this way.
  • Right to restriction of processing (Art. 18 GDPR) : Controllers will ensure that, in the case of legitimate restriction of processing, personal data are only accessible to those who need to process the data. For this purpose, they may use the means of pseudonymization and anonymization. Restriction of processing may result in you no longer being able to access the portal application thereafter and participation in a course will no longer be possible. Evidence, e.g. proof of performance, may thus no longer be provided.
  • Right to object (Art. 21 DSGVO): You can object to the further use of the data under the legal conditions. This can only take effect in the future. The right to object is not an automatic obligation for the data controller to delete the data. If the responsible party has storage obligations for other legal reasons, these take precedence.... The objection may result in you no longer being able to access the portal application thereafter and participation in a course will no longer be possible. Evidence, e.g. proof of performance, may thus no longer be provided.
  • Right to data portability Art. 20 DSGVO): Subject to the legal requirements, you have a right to receive data collected by yourself in an electronic format that can be used for use elsewhere. The right is limited to data that are not subject to a trade secret and therefore may not be transferred to other entities or that affect the rights of others ,e.g. their personal rights or copyright.
  • Right of withdrawal (Art. 7 para. 3 DSGVO): You have the right to revoke your consent to the processing of your data for the future. The revocation does not affect the lawfulness of the processing until the time of revocation. The revocation may result in you no longer having access to the portal application thereafter and participation in a course is no longer possible. Evidence, e.g. proof of performance, may thus no longer be provided. If the processing takes place within the scope of an employment contract, the right of revocation may be restricted.
  • In the event of a breach of statutory provisions for the protection of data stored about you, you can contact the competent supervisory authority. You can find the responsible supervisory authority under § 4. Please first contact the person responsible or the official data protection officer (see § 5) so that your request can be examined as quickly as possible and, if necessary, complied with.
  • In the event of deletion, restriction or revocation, further use of the portal application and access to the learning content stored there as well as participation in the activities and functions available there is no longer guaranteed with immediate effect.
§ 3 Further regulations

§ 3.1 Liability on the part of the users

If a user culpably violates the terms of use or legal obligations, he/she shall be liable for the damage incurred in accordance with the statutory provisions. In addition, liability is possible according to labor or employment law, civil and criminal law or the law of regulatory offenses.

§ 3.2 Exclusion of use

In the event of a violation of the terms of use, the user will be requested to cease such behavior immediately. If the user does not comply with this request, he or she will be temporarily or permanently excluded from use by the administrators of the portal application or by the LMU university management. There is no entitlement to re-admission. A prerequisite for re-admission is, among other things, a written application with the credible evidence that the abusive behavior will be refrained from in the future and that any damage has been compensated.

§ 3.3 Liability of LMU

As the operator of the portal application, LMU is liable exclusively for grossly negligent or intentional breaches of duty. This applies in particular to damages caused by the downloading of software or materials by Users. LMU shall be indemnified against claims of third parties due to the non-observance of copyrights by the users of the portal application upon first request. Liability for personal injury follows from the law.

§ 3.4 Companies using student data are obligated to the following

Please note that you may only use the data and documents of our students and graduates transmitted to you for recruiting purposes in the temporal and organizational environment of the events booked and used by you. Therefore, please delete these data and documents no later than four weeks after the event. For longer and more extensive data storage, use and processing, you must obtain the student's consent separately, e.g. as part of a continuation of the application and recruitment process in your company.

§ 3.5 Photo and video recordings at events

Pictures and possibly also video recordings are regularly taken at our events. By registering and participating, you agree to this. Of course, you can contact us at any time (see & 4) if you do not want to see your picture published, e.g. on the websites and/or social media pages of LMU and/or the companies. Note on copyright: LMU has acquired the rights to the images and films. Companies and LMU may use them for internal purposes and for public reporting. If commercial use is planned, please contact the photographer Sabine Jakobs ( in advance.

§ 3.6 Modification of the Terms of Use

LMU reserves the right to extend or amend these Terms of Use.
Users of the portal application will be informed of any changes to the Terms of Use on an ongoing basis. The currently valid Terms of Use are published on the portal application.

§ 3.7 Legal validity

These statements are to be regarded as part of the Internet offer from which reference was made to this page. If sections or individual terms of this statement are not legal or correct, the content or validity of the other parts remain uninfluenced by this fact.

§ 3.8 Declaration on data protection and terms of use

I am aware of the data protection information and terms of use and agree to them.
I have taken note that when using the portal application, mandatory personal data is processed and consent is voluntary. I understand that I will not be granted access to the portal application if I do not consent.

I agree with the processing of this data stored in the "personal profile" and the contributions published by me in my name. Likewise, I consent to the processing of the data generated by my use in the context of a "course" or the platform.

I can view this consent at any time on the home page of the portal application.
By using Matorixmatch or the corresponding connected systems, e.g. Casus, Zammad, Zoom, I also agree to the validity of the corresponding privacy statements.

§ 4 Responsible parties

System Support:
Career Service of the LMU

Data Protection Officer:
Ludwig-Maximilians-University Munich
- Data Protection Officer -
Geschwister-Scholl-Platz 1
80539 Munich
Tel.: 089-2180-2414

Data Privacy Supervisor:
Prof. Dr. Thomas Petri
P.O. Box 22 12 19, 80502 Munich
Wagmüllerstrasse 18, 80538 Munich, Germany
Phone: 089 212672-0
Fax: 089 212672-50

What are you looking for?