Data Controller

https://www.facebook.com/legal/controller_addendum

The platform operator makes the essential contents of this agreement available to the data subjects.

Facebook’s data protection officer can be reached using the following web form:

https://www.facebook.com/help/contact/540977946302970

Categories of data concerned

We process the following categories of data when operating our Facebook fan page:

• User ID and public profile data (registered users only)
• Communication data (registered users only)
• Contract processing data at the request of registered visitors
• Pseudonymized data such as statistics and evaluations, other analyses and measurements

The pseudonymized data cannot be used by us with the corresponding attribution characteristic (e.g. names). This means that it is not possible for us to identify individual visitors, who therefore remain anonymous to us.

We receive the data either from Facebook or from the data subject themself.

Purposes and legal basis of the processing

We process the data on the basis of the following legal bases for the following purposes:

• For external presentation and advertising based on your consent in accordance with Art. 6 (1) (a) GDPR
• For the initiation and execution of a contract in accordance with Art. 6 (1) (b) GDPR
• For communication and data exchange, for recruiting young talent and event management on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR or on the basis of your consent in accordance with Art. 6 (1) (a) GDPR

Profiling and automated individual decision-making

We do not use profiling ourselves and do not carry out automated individual decisions. In addition, we have no influence on the use of such tools by the platform operator and have not been informed about such a potential use.

Storage period

Data transfer to third countries

Rights of data subjects

Data Controller

The above-mentioned controller is responsible for data processing in accordance with Art. 26 para. 1 GDPR together with LinkedIn Ireland Unlimited Company., Wilton Square, Dublin 2 (Ireland). An agreement was established between the joint controllers as to who fulfils which obligation under the GDPR. The agreement within the meaning of Art. 26 para. 1 GDPR can be found under the following link:

https://legal.linkedin.com/pages-joint-controller-addendum

 The platform operator makes the essential contents of this agreement available to the data subjects.

LinkedIn’s Data Protection Officer can be reached using the following web form:

https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Categories of data subjects

LinkedIn registered and unregistered visitors to our fan page

We would like to point out to the data subjects that they use LinkedIn and its functions on their own responsibility. This applies in particular to the use of interactive functions (e.g. sharing, rating).

Categories of data concerned

We process the following categories of data when operating our LinkedIn fan page:

• User ID and public profile data (registered users only)
• Communication data (registered users only)
• Contract processing data at the request of registered visitors
• Pseudonymized data such as statistics and evaluations, other analyses and measurements

The pseudonymized data cannot be used by us with the corresponding attribution characteristic (e.g. names). This means that it is not possible for us to identify individual visitors, who therefore remain anonymous to us.

We receive the data either from LinkedIn or from the data subject themself.

Purposes and legal basis of the processing

We process the data on the basis of the following legal bases for the following purposes:

• For external presentation and advertising based on your consent in accordance with Art. 6 (1) (a) GDPR
• For the initiation and execution of a contract in accordance with Art. 6 (1) (b) GDPR
• For communication and data exchange, for recruiting young talent and event management on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR or on the basis of your consent in accordance with Art. 6 (1) (a) GDPR

Profiling and automated individual decision-making

We do not use profiling ourselves and do not carry out automated individual decisions. In addition, we have no influence on the use of such tools by the platform operator and have not been informed about such a potential use.

Storage period

Data transfer to third countries

Rights of data subjects

Data Controller

The above-mentioned controller is responsible for data processing in accordance with Art. 26 para. 1 GDPR together with Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4 (Ireland). An agreement was established between the joint controllers as to who fulfils which obligation under the GDPR. The agreement within the meaning of Art. 26 para. 1 GDPR can be found under the following link:

The platform operator makes the essential contents of this agreement available to the data subjects.

Youtube’s data protection officer can be reached using the following web form:

https://support.google.com/policies/contact/general_privacy_form

Categories of data subjects

Registered and unregistered visitors to our fan page on Youtube

We would like to point out to the data subjects that they use YouTube and its functions on their own responsibility. This applies in particular to the use of interactive functions (e.g. sharing, rating).

Categories of data concerned

We process the following categories of data when operating our LinkedIn fan page:

• User ID and public profile data (registered users only)
• Communication data (registered users only)
• Contract processing data at the request of registered visitors
• Pseudonymized data such as statistics and evaluations, other analyses and measurements

The pseudonymized data cannot be used by us with the corresponding attribution characteristic (e.g. names). This means that it is not possible for us to identify individual visitors, who therefore remain anonymous to us.

We receive the data either from LinkedIn or from the data subject themself.

Purposes and legal basis of the processing

We process the data on the basis of the following legal bases for the following purposes:

• For external presentation and advertising based on your consent in accordance with Art. 6 (1) (a) GDPR
• For the initiation and execution of a contract in accordance with Art. 6 (1) (b) GDPR
• For communication and data exchange, for recruiting young talent and event management on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR or on the basis of your consent in accordance with Art. 6 (1) (a) GDPR

Profiling and automated individual decision-making

We do not use profiling ourselves and do not carry out automated individual decisions. In addition, we have no influence on the use of such tools by the platform operator and have not been informed about such a potential use.

Storage period

Data transfer to third countries

Rights of data subjects

Data Controller

We use Vimeo, a service of Vimeo Inc., to show you video content. To protect your privacy, we have integrated the service by means of a local preview.

 Click on the preview to call up a video embedded via Vimeo. This establishes a direct connection between your browser and a Vimeo server and stores information about your visit and your IP address.

 If you have a Vimeo user account and do not want Vimeo to collect data about you through this website and link it to your member data stored with Vimeo, you must log out of Vimeo before visiting this website.

Vimeo also calls up Google Analytics via an iFrame in which the video is embedded. You can prevent logging by Google Analytics as shown in the cookie banner.

 The privacy policy for Vimeo with more information on the collection and use of your data by Vimeo can be found under http://vimeo.com/privacy.

By pressing the start button on the video, you consent to the transfer of the data to Vimeo LLC, as well as to the transfer of the data to a third country without an adequate level of data protection.

 Recipient of the data: Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA

The legal basis for the transfer is the certification of Vimeo under the adequacy decision “EU-US Data Privacy Framework” in accordance with Art. 45 para. 1 GDPR.

The collection and processing of your personal data is carried out for the following purposes based on the following legal bases:

• Initiation and execution of contracts in accordance with Art. 6 (1) (b) GDPR
• Customer management according to Art. 6 para. 1 lit. b), c), f) GDPR
• Communication and data exchange in accordance with Art. 6 para. 1 lit. a), b), c), f) GDPR
• External presentation and advertising in accordance with Art. 6 para. 1 lit. a), f) GDPR
• Implementation of declarations of consent in accordance with Art. 6 para. 1 lit. a) GDPR
• Ensuring the proper operation of a data processing system in accordance with 6 para. 1 lit. c) and f) GDPR
• Applicant selection procedure in the context of personnel and resource management on the basis of Art. 6 para. 1 lit. a), b) GDPR in conjunction with § 26 BDSG.

We will only transmit your data as described below:

• For the purpose and to the extent necessary for the execution of our business relationship with you, we transmit your personal data to our group of companies within the meaning of Art. 4 No. 19 GDPR.
• We also use service providers to provide services and process your data. These include, for example, services such as hosting, newsletter dispatch, sending letters or e-mails as well as maintaining and analyzing databases, securing our web servers or website tracking. These service providers are carefully selected by us and process personal data exclusively for the purpose of the services commissioned.
• In exceptional circumstances, we transfer personal data to law enforcement and criminal investigation authorities. This is done based on corresponding legal obligations, e.g. from the Code of Criminal Procedure, the Tax Code, the Money Laundering Act or state police laws.

 If your data is processed in a country that does not have a recognized high level of data protection such as the European Union, we ensure that your personal data is adequately protected by means of contractual provisions or other recognized guarantees in accordance with Art. 44 et seq. GDPR. We would like to draw your attention to this again in the context of the individual services.

We store your personal data for as long as it is necessary to retain it for the fulfilment of the respective purpose or for as long as there are statutory retention periods. After the retention period has ceased to apply and the purpose has been fulfilled, we will delete your data.

If certain conditions are met in accordance with Art. 15 to Art. 18 GDPR, you have a right to information,correction or deletion of personal data concerning you or a right to restriction of data processing by the controller. They also have the right to revoke their consent to the processing of their personal data at any time with effect for the future (Art. 7 para. 3 GDPR).

Furthermore, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the General Data Protection Regulation (GDPR), Art. 77 GDPR.

If you wish to exercise any of your rights, please contact the above-mentioned controller or data protection officer.

We use Vimeo, a service of Vimeo Inc., to show you video content. To protect your privacy, we have integrated the service by means of a local preview.

Click on the preview to call up a video embedded via Vimeo. This establishes a direct connection between your browser and a Vimeo server and stores information about your visit and your IP address.

If you have a Vimeo user account and do not want Vimeo to collect data about you through this website and link it to your member data stored with Vimeo, you must log out of Vimeo before visiting this website.

By pressing the start button on the video, you consent to the transfer of the data to Vimeo LLC, as well as to the transfer of the data to a third country without an adequate level of data protection.

Recipient of the data: Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA

Our website uses social media buttons (Facebook, YouTube, Instagram, LinkedIn) to enable you to interact with third parties.

These social media buttons are not integrated as plugins via a so-called iFrame, but stored as links. By clicking the social media buttons, you will be redirected directly to the website of the corresponding provider. The respective provider is then responsible for compliance with the data protection regulations and for the accuracy, up-to-dateness and completeness of the data processing information provided there.

We provide you with a customer portal as part of our website. A user account is required to use the Customer Portal. For this purpose, we collect the following data:

• E-mail address (required)
• Username (required)
• Password (required)

After your registration, a manual check of the granting of access will take place. We reserve the right to grant access according to our own criteria and to deny it accordingly. After the manual check, the account will be activated, and you will receive notification of the activation of your access. You can then set a password. After registration, we will ask for your username and password when you log in.

You can change your profile data at any time and send us the changed data via the update function. In addition, you can also manage your profile data in the My Account section.

At your express request, we will send you our newsletter on the topics you have chosen as well as information about our company. Please note that delivery can only take place once you have expressly confirmed your request for occupancy within the framework of our double opt-in procedure. The personal data collected as part of the newsletter registration will be used exclusively for sending and personalizing the newsletter (e.g. to address you by name).

Newsletter usage analysis

Our newsletter contains tracking pixels. A tracking pixel is an invisible graphic in HTML e-mails with the purpose of enabling a log file recording when the e-mail is opened as well as a recording of the links activated from the newsletter with subsequent analysis. This enables us to evaluate the success of our newsletter campaigns by means of statistical evaluations and to optimize our newsletter in order to provide you, for example, with topics and offers that are better suited to your interests.

Data that you submit to us via our contact form will be processed for the purpose of communication and data exchange, i.e. to respond to your specific request. This data will be stored for as long as its processing is necessary for these purposes or until the expiry of any subsequent retention periods.

We offer you the opportunity to apply to us online. The data entered by you as well as the file attachments sent with it are transmitted via a transport-secured connection. Your electronic application data will be accepted by the responsible HR department and will only be forwarded to the specialist department responsible for the respective position or to the people entrusted with the processing.

After completion of the applicant selection process, we will keep your application documents for 3 months and then delete them or destroy any copies, unless we have concluded an employment contract with you. If we want to include your application documents in our applicant pool, we will contact you to do so. In the notification, you can actively consent to the continued storage of your documents. Your applicant account and the data stored in it will remain stored regardless of a specific active application, as long as you do not deactivate it, so that you have the opportunity to apply for other jobs with us.

Please note that applications that you send us by e-mail will be transmitted to us unencrypted. We therefore recommend using the online application portal.