Table of contents
- Data protection at a glance. 2
- Hosting.. 2
- General information and mandatory information.. 3
- Data collection on this website. 6
- Plugins and Tools. 8
- Audio and video conferences. 10
- Own Services. 11
- Our social media presences. 13
Hetzner The provider is Hetzner Online GmbH, Industriestrasse 25, 91710 Gunzenhausen (hereinafter referred to as Hetzner). Details can be found in Hetzner's privacy policy. The use of Hetzner is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in presenting our website as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and § 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time. Order processing We have concluded a contract processing agreement (DPA) for the use of the above-mentioned service. This is a contract required by data protection law that ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. 3. General information and mandatory informationPrivacy The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. When you use this website, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done. We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) may have security gaps. It is not possible to completely protect the data from access by third parties. Note on the responsible body The person responsible for data processing on this website is: R RAYMON Bicycles GmbH Rudolf-Diesel-Straße 35 97424 Schweinfurt Germany Phone: +49 9721 539 35 96 20 Email: info@raymon.com The controller is the natural or legal person who, alone or jointly with others, decides on the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.). Storage period |
Unless a specific storage period has been specified in this privacy policy, your personal data will remain with us until the purpose for which the data is processed no longer applies. If you assert a justified request for erasure or revoke consent to data processing, your data will be deleted, unless we have other legally permissible grounds for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the deletion takes place after these reasons have ceased to exist. General information on the legal basis of data processing on this website If you have consented to data processing, we process your personal data on the basis of Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, insofar as special categories of data are processed in accordance with Art. 9 (1) GDPR. In the case of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 (1) (a) GDPR. If you have consented to the storage of cookies or access to information in your device (e.g. via device fingerprinting), data processing is also carried out on the basis of Section 25 (1) TDDDG. The consent can be revoked at any time. If your data is required for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1) (b) GDPR. Furthermore, we process your data if it is necessary to comply with a legal obligation on the basis of Art. 6 (1) (c) GDPR. Data processing may also be carried out on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Information on the relevant legal bases in each individual case is provided in the following paragraphs of this data protection declaration. Data protection supervisor We have appointed a data protection officer. Dipl. Ing. Lars Ebertz on behalf of EBERTZ DATENSCHUTZ GmbH Ober den Wiesen 17 35756 Mittenaar (Germany) E-Mail: lars@ebertz-datenschutz.de Recipients of personal data As part of our business activities, we work together with various external bodies. In some cases, it is also necessary to transmit personal data to these external bodies. We only pass on personal data to external bodies if this is necessary in the context of the performance of a contract, if we are legally obliged to do so (e.g. disclosure of data to tax authorities), if we have a legitimate interest in the disclosure in accordance with Art. 6 (1) (f) GDPR or if another legal basis allows the data transfer. When using We only pass on personal data of our customers to processors on the basis of a valid contract for order processing. In the case of joint processing, a joint processing contract is concluded. Withdrawal of your consent to data processing Many data processing operations are only possible with your explicit consent. You can revoke any consent you have already given at any time. The lawfulness of the data processing carried out up to the time of revocation remains unaffected by the revocation. Right to object to data collection in special cases as well as to |
Direct marketing (Art. 21 GDPR) IF THE DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 PARA. 1 LIT. E OR F GDPR YOU HAVE THE RIGHT AT ANY TIME TO WITHDRAW FROM THE SITUATION AGAINST THE PROCESSING OF YOUR PERSONAL DATA TO LODGE AN OBJECTION; THIS SHALL ALSO APPLY TO AN APPLICATION BASED ON THESE PROVISIONS PROFILING. THE RESPECTIVE LEGAL BASIS ON WHICH THE PROCESSING IS BASED, PLEASE REFER TO THIS PRIVACY POLICY. IF YOU FILE AN OBJECTION, IF WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED, IT WILL BE UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING OF EVIDENCE THAT OUTWEIGHS YOUR INTERESTS, RIGHTS AND FREEDOMS OR THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21 PARA. 1 GDPR). YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOU AT ANY TIME CONCERNING PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING ; THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS RELATED TO SUCH DIRECT ADVERTISING IN CONNECTION. IF YOU OBJECT, YOUR PERSONAL DATA WILL THEN NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ART. 21 PARA. 2 GDPR). Right to lodge a complaint with the competent supervisory authority In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged infringement. The right of appeal exists without prejudice to other administrative or judicial remedies. Right to data portability You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible. Information, correction and deletion Within the framework of the applicable legal provisions, you have the right to free use of the Information about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, a right to rectification or deletion of this data. You can contact us at any time for this and other questions on the subject of personal data. Right to restriction of processing You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this. The right to restriction of processing exists in the following cases: If you contest the accuracy of your personal data stored by us, we will need usually time to check this. For the duration of the audit, you have the right to request the restriction of the processing of your personal data. If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion. |
The website operator has a legitimate interest in the storage of necessary cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies, the processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG); consent can be revoked at any time. You can set your browser to inform you about the setting of cookies and Allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general as well as enable the automatic deletion of cookies when the browser is closed. If you disable cookies, the functionality of this website may be limited. You can find out which cookies and services are used on this website in this privacy policy. Consent with Usercentrics This website uses Usercentrics' consent technology to obtain your consent to the storage of certain cookies on your device or to the use of certain technologies and to document them in compliance with data protection regulations. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, website: https://usercentrics.com/de/ (hereinafter referred to as "Usercentrics"). When you enter our website, the following personal data will be transferred to Usercentrics: Your consent(s) or the withdrawal of your consent(s) Your IP address Information about your browser Information about your device Time of your visit to the website Geolocation Furthermore, Usercentrics stores a cookie in your browser in order to be able to assign you the consents you have given or their revocation. The data collected in this way will be stored until you ask us to delete it, delete the Usercentrics cookie yourself or the purpose for which the data is stored no longer applies. Mandatory statutory retention obligations remain unaffected. Usercentrics is used to obtain the legally required consents for the use of certain technologies. The legal basis for this is Art. 6 (1) (c) GDPR. Order processing We have concluded a contract processing agreement (DPA) for the use of the above-mentioned service. This is a contract required by data protection law that ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. Server log files The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are: Browser type and browser version operating system used Referrer URL Hostname of the accessing computer Time of the server request IP address This data is not merged with other data sources. This data is collected on the basis of Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website – for this purpose, the server log files must be recorded. Contact If you send us inquiries via the contact form, your information from the Enquiry form including the contact details you provide there for the purpose of processing the enquiry and stored with us in the event of follow-up questions. We do not pass on this data without your consent. The processing of this data is carried out on the basis of Art. 6 (1) (b) GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the Effective processing of the requests addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR), if this has been requested; consent can be revoked at any time. The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to its storage or the purpose for which the data is stored no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular retention periods – remain unaffected. Contact by E-Mail, Phone or Telefax If you contact us by e-mail, telephone or fax, your enquiry will be complied with, including all the |
The resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent. The processing of this data is carried out on the basis of Art. 6 (1) (b) GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the Effective processing of the requests addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR), if this has been requested; consent can be revoked at any time. The data you send to us via contact requests will remain with us until you ask us to delete it, revoke your consent to its storage or the purpose for which the data is stored no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected. 5. Analytics Tools and Advertising Google Tag Manager We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not carry out independent analyses. It only serves to Administration and playout of the tools integrated via him. However, Google Tag Manager does collect your IP address, which may also be transmitted to Google's parent company in the United States. The use of Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR. The Website operators have a legitimate interest in the quick and uncomplicated integration and management of various tools on their website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link. Google Analytics This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics enables the website operator to analyse the behaviour of website visitors. In doing so, the website operator receives various usage data, such as page views, dwell time, operating systems used and origin of the user. This data is assigned to the respective end device of the user. There is no assignment to a user ID. Furthermore, we can use Google Analytics to, among other things: Record your mouse and scroll movements and clicks. In addition, Google Analytics uses various modeling approaches to complement the collected data sets and uses machine learning technologies in data analysis. Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the United States and stored there. The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. The consent can be revoked at any time. Data transfer to the United States is based on the EU Commission's Standard Contractual Clauses. Details can be found here. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link. IP anonymization Google Analytics IP anonymization is activated. This shortens your IP address by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the United States. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide further information with the website. website use and internet use to provide services to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data held by Google. Browser Plugin You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link. You can find more information about the handling of user data by Google Analytics in Google's privacy policy. Order processing We have concluded a contract processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics. Meta pixel (formerly Facebook Pixel) This website uses the Facebook/Meta visitor action pixel to measure conversion. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected will also be transferred to the United States and other third countries. In this way, the behavior of the site visitors can be tracked after they have clicked on a Facebook ad was redirected to the provider's website. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimized. The data collected is anonymous for us as the operator of this website, we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook uses the data for its own advertising purposes, in accordance with the Facebook Data Use Policy . This allows Facebook to enable the placement of advertisements on and off Facebook pages. This use of the data cannot be influenced by us as the site operator. The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. The consent can be revoked at any time. We use the function of advanced matching within the meta pixels. Advanced matching allows us to collect different types of data (e.g., city, state, postal code, hashed email addresses, names, gender, date of birth or phone number) of our customers and prospects that we collect through our website to Meta (Facebook). This activation allows us to tailor our advertising campaigns on Facebook even more precisely to people who are interested in our offers. In addition, advanced matching improves website conversion attribution and expands Custom Audiences. Insofar as personal data is collected on our website with the help of the tool described here, and sent to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the recording of the Data and its disclosure to Facebook. The processing by Facebook after the transfer is not part of the joint responsibility. The obligations incumbent on us together have been set out in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for the provision of data protection information when using the Facebook tool and for the implementation of the tool on our website in a manner that is secure under data protection law. Facebook is responsible for the data security of Facebook's products. You can assert the rights of data subjects (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your rights as a data subject with us, we are obliged to forward them to Facebook. Data transfer to the United States is based on the EU Commission's Standard Contractual Clauses. Details can be found here and here. In Facebook' s privacy policy you will find further information on how to protect your privacy. You can also opt out of the Custom Audiences remarketing feature in the Ad Settings section at this link . To do this, you must be logged in to Facebook. If you do not have a Facebook account, you can opt out of Facebook usage-based advertising on the European Interactive Digital Advertising Alliance website . The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link.
6. Plugins and ToolsYouTube with extended data protection This website embeds videos from the YouTube website. The website is operated by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. When you visit one of these websites on which YouTube is integrated, a connection to YouTube's servers is established. The YouTube server is informed which of our pages you have visited. When you are logged in to your YouTube account, you enable YouTube to share your Assign surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. We use YouTube in extended privacy mode. Videos played in extended privacy mode are not used to personalize browsing on YouTube, according to YouTube. Ads that are displayed in the extended data protection mode are also not personalized. No cookies are set in the extended privacy mode. Instead, however, so-called local storage elements are stored in the user's browser, which, similar to cookies, contain personal data and can be used for recognition. Details about the extended data protection mode can be found here. If necessary, further data processing operations may be triggered after the activation of a YouTube video, over which we have no influence. YouTube is used in the interest of an appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. Provided that a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time. For more information about privacy at YouTube, please see their privacy policy at. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. More |
You can obtain information on this from the provider under the following link. Google Fonts This site uses so-called Google Fonts, which are provided by Google, for the uniform display of fonts. When you call up a page, your browser loads the required fonts into your browser cache in order to display texts and fonts correctly. For this purpose, the browser you use must connect to Google's servers. This makes Google aware that this website has been accessed via your IP address. The use of Google Fonts is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time. If your browser does not support Google Fonts, a default font will be used by your computer. You can find more information about Google Fonts at and in Google's privacy policy. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link. Google Maps This site uses the Google Maps map service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can integrate map material on our website. In order to use the functions of Google Maps, it is necessary to store your IP address. These Information is usually transmitted to and stored on a Google server in the United States. The provider of this site has no influence on this data transfer. If Google Maps is enabled, Google may use Google Fonts for the purpose of displaying fonts consistently. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the places we indicate on the website. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. Provided that a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time. Data transfer to the United States is based on the EU Commission's Standard Contractual Clauses. |
. You can find more information on the handling of user data in Google's privacy policy. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link. . 7. Audio and video conferencingData processing For communication with our customers, we use online conference tools, among other things. The specific tools we use are listed below. If you communicate with us via video or audio conference via the Internet, your personal data will be collected and processed by us and the provider of the respective conference tool. The conference tools collect all data that you provide/use to use the tools (e-mail address and/or your telephone number). In addition, the conference tools process the duration of the conference, the start and end (time) of participation in the conference, the number of participants and other "contextual information" related to the communication process (metadata). Furthermore, the provider of the tool processes all technical data necessary for the processing of the online communication are required. This includes, but is not limited to, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speakers, and the type of connection. If content is exchanged, uploaded or otherwise made available within the tool, this is also stored on the servers of the tool providers. Such content includes, but is not limited to, cloud recordings, chat/instant messages, voicemails, photos and videos uploaded to voicemails, files, whiteboards, and other information shared while using the Service. Please note that we do not fully influence the data processing processes of the tools used. Our options are largely based on the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the privacy policies of the respective tools used, which we have listed below this text. Purpose and legal basis The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6 para. 1 lit. b GDPR). Furthermore, the use of the tools serves to simplify and accelerate the overall process of Communication with us or our company (legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR). If consent has been requested, the use of the tools in question is based on this consent; consent can be revoked at any time with effect for the future. Storage period The data collected directly by us through the video and conferencing tools will be processed by our systems deleted as soon as you ask us to delete them, revoke your consent to storage |
or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory statutory retention periods remain unaffected. We have no influence on the storage period of your data, which is stored by the operators of the conference tools for their own purposes. For details, please contact the operators of the conference tools directly. Conference tools used We use the following conference tools: Microsoft Teams We use Microsoft Teams. The provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. Details on data processing can be found in the Microsoft Teams privacy policy . The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the United States that is intended to ensure compliance with European data protection standards for data processing in the United States. Every company certified according to the DPF is committed to complying with these data protection standards. Further information on this can be obtained from the provider under the following link.
Order processing We have concluded a contract processing agreement (DPA) for the use of the above-mentioned service. This is a contract required by data protection law that ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. 8. Own servicesHandling of applicant data We offer you the opportunity to apply to us (e.g. by e-mail, post or online Application form). In the following, we will inform you about the scope, purpose and use of your personal data collected in the course of the application process. We assure you that the collection, processing and use of your data will be carried out in accordance with applicable data protection law and all other legal provisions and that your data will be treated in the strictest confidence. Scope and purpose of data collection If you send us an application, we will process your associated personal data (e.g. contact and communication data, application documents, notes in the context of job interviews, etc.), insofar as this is necessary for the decision on the establishment of a employment relationship. The legal basis for this is § 26 BDSG under German law (initiation of an employment relationship), Art. 6 (1) (b) GDPR (general contract initiation) and – if you have given consent – Art. 6 (1) (a) GDPR. The consent can be revoked at any time. Your personal data will only be passed on within our company to persons who are involved in processing your application. |
If the application is successful, the data submitted by you will be processed on the basis of § 26 BDSG and Art. 6 (1) (b) GDPR for the purpose of carrying out the employment relationship in our data processing systems. Data retention period If we are unable to make you a job offer, you decline a job offer or your application , we reserve the right to use the data transmitted by you on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR) up to 6 months from the end of the application process (rejection or withdrawal of the application) with us. The data will then be deleted and the physical application documents destroyed. Storage serves in particular for the purpose of providing evidence in the event of a legal dispute. If it is apparent that the data will be processed in accordance with expiry of the 6-month period (e.g. due to an imminent or pending legal dispute), deletion will only take place if the purpose for the further There is no need for storage. Longer storage may also take place if you have given your consent (Art. 6 para. 1 lit. a GDPR) or if statutory retention obligations preclude deletion. Inclusion in the applicant pool If we do not make you a job offer, you may have the opportunity to join our applicant pool . In the event of admission, all documents and information from the application will be included in the applicant pool to contact you in case of suitable vacancies. Admission to the applicant pool is exclusively based on your explicit consent consent (Art. 6 para. 1 lit. a GDPR). The giving of consent is voluntary and has no relation to to the ongoing application process. The data subject can revoke his consent at any time. In this case, the data will be irrevocably deleted from the applicant pool, unless there are legal retention reasons. The data from the applicant pool will be processed no later than two years after the consent has been given. irrevocably deleted.
|