Privacy Policy Comanos GmbH.
Thank you for your interest in our company and for visiting our website. At Comanos GmbH (hereinafter referred to as “We” or “Comanos”) and its subsidiaries and affiliated companies, We attach great importance to data protection.
Comanos GmbH is a subsidiary of Comanos Holding GmbH and part of the Cobalt Group www.cobaltrecruitment.com.
Below We are informing you specifically about how We handle your personal data (hereinafter referred to in brief as “Data”) as a visitor (m/f/d; hereinafter referred to in brief as “Visitor”) to our website and user (m/f/d; hereinafter referred to in brief as “User”) of the services there, the rights you are entitled to in respect of your data and how you can exercise them.
The information specifically for candidates (m/f/d; hereinafter referred to as “Candidates”) can be found in Part B of this Data Protection Notice.
To improve legibility, We may only use the masculine form in our data protection information. Of course, all persons are at all times addressed, irrespective of their gender.
Please note that this Data Protection Notice is occasionally updated. All amendments shall be published on this website and come into force on the date of publication. The website was last updated in May 2024.
1. Controller in accordance with data protection law
The controller within the meaning of the data protection laws (EU General Data Protection Regulation, hereinafter referred to in brief as “GDPR”, German Federal Data Protection Act, hereinafter referred to in brief as “BDSG”) for the processing of your data as described below is
Comanos GmbH, Dortustraße 40, 14467 Potsdam (simultaneously service provider within the meaning of the German Telecommunications and Telemedia Data Protection Act (hereinafter referred to in brief as “TTDSG”) and its subsidiaries
- Comanos Freelance GmbH, Dortustraße 40, 14467 D-Potsdam (Data Protection Notices)
- Comanos Executive GmbH, Dortustraße 40, 14467 D-Potsdam (Data Protection Notices
E-mail: datenschutz@comanos.de
2. Data protection officer
Our data protection officer is
Diana Pikalowa-Seyfert, Franz-Joseph-Straße 14, D-80801 Munich
Tel.: +49 (0) 89 2 1547 6785
E-mail: datenschutz@comanos.de
3. Data collection and data use (processing)
The manner in which your data are processed differs depending on whether you simply visit our website (informational use) or use the available services.
a) Use geared towards obtaining information
As a matter of principle, using our website exclusively to obtain information without providing personal data is possible as long as you do not complete and submit any of the forms provided. Until you do so, only general information that is automatically made available by your internet browser is collected and used. This includes, for example,
- The type and version of browser you are using
- The website from which you came to our website (so-called referrer)
- the sub-websites that are accessed on our website
- The date and time of access to our website
- Country, country code, city and time zone (components of your IP address) from which you access our website
Such information does not permit any conclusions to be drawn about the data subject. Moreover, it is geared towards
- Enabling our website to be accessed correctly
- Optimising the content of our website
- Guaranteeing permanent functionality of our website
- Preparing anonymous statistics about the frequency of our website
- Making the necessary information available to provide law enforcement authorities in the event of a cyberattack, for example
Such anonymous data are stored in our server’s log files. The data are only analysed for statistical purposes and to continually increase data security at our company.
Data are processed on the legal basis of Article 6(1), Sentence 1, Point f, GDPR (Legitimate interest), and with the intention of making our website available to you as far as possible so that it is reliable and free of malfunctions.
b) Use of the contact options
Insofar as you contact us via our contact form, the following data shall be collected as compulsory fields
- First Name
- Surname
You can also use the fields
- Form of address (dropdown)
- Telephone number
- Land / region
- Message
c) Whistleblower protection
Insofar as you would like to send us a report as a whistleblower, you do not need to make personal data available because you can submit a report anonymously. Only the following are compulsory fields
- Issuing a password (for subsequent viewing of your report)
- Notice
You can also use the fields
- Surname
- E-mail address
- File upload
Please note our separate data protection and usage information at https://cobalt-deutschland.hinweisgeberschutz.onl/
The data that you forward to us voluntarily shall be stored or used for the purpose of processing and/or contacting you.
If your enquiry is based on an existing contractual relationship with us or you are interested in entering into such a relationship, the data are processed on the legal basis of Article 6(1), Sentence 1, Point b, GDPR (Performance of contract). Otherwise, data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent) or Article 6(1), Sentence 1, Point f, GDPR (Legitimate interest) and with the intention of answering your enquiry accordingly.
4. Use of Cookies and other technologies
We use Cookies and other technologies on our website. Please refer to our notes about Cookies and other technologies Part C for further information.
5. Calling on the services of service providers
Under certain circumstances, your data may be forwarded to service providers who support us (including IT service providers who operate and maintain software or systems that We use externally or data destruction companies). This occurs exclusively for the purposes stated above or for the provision of our website.
We regularly monitor our service providers and they are subject to our instructions. In all other cases, data shall only be forwarded to third parties if this is expressly stated in this Data Protection Notice or if there is a legal obligation to do so.
In the capacity of controller responsible for the processing of personal data, We have put in place numerous technical and organisational measures to ensure that the personal data processed via this website are protected as fully as possible. Nevertheless, data forwarded via the internet can have security gaps as a matter of principle. Absolute protection cannot, therefore, be guaranteed.
6. Recipients
a) Internal recipients:
Your data are processed at our company by the relevant department, e.g. consultants at various hierarchical levels, branch managers at our locations, the management or the administration team.
b) External recipients:
Furthermore, We forward your data to other companies in the Cobalt Consulting Holdings Limited Group, namely
- Comanos Freelance GmbH (wholly-owned subsidiary of Comanos Holding GmbH)
- Comanos Executive GmbH (wholly-owned subsidiary of Comanos Holding GmbH)
c) What data?
The data that are forwarded and processed in this context are limited to that which you make available to us, for example in one of our contact forms. The data that We request as compulsory fields can be found in section three of this Data Protection Notice.
Data are processed on the legal basis of Article 6(1), Sentence 1, Point f, GDPR (Legitimate interest), and with the intention of offering you the best possible service and, therefore, access to the candidate databases of Comanos subsidiaries.
We are looking for candidates for our clients in the field of “Temporary employment.” By contrast, our subsidiary Comanos Freelance GmbH places candidates in the “Interim” sector, while our subsidiary Comanos Executive GmbH places candidates in the “Permanent employment” sector. To present you with potential candidates in these two areas, We also forward your data to these two subsidiaries, which process the data for the aforementioned purposes and may contact you. The data protection notices of these companies, which you can find here [Comanos Freelance GmbH; Comanos Executive GmbH] apply to the data processing there.
7. Erasing your data
If you have contacted us via one of our forms, you can request the erasure of your data at any time. To that end, please send us an e-mail at datenschutz@comanos.de.
8. Your rights as a data subject in accordance with GDPR
You have the right to request confirmation from us as to whether personal data concerning you are being processed. If this is the case, you have a right to information about such personal data and the information listed in detail in Article 15, GDPR.
You have the right to demand from us without delay rectification inaccurate personal data concerning you and, where applicable, completion of incomplete personal data (Article 16, GDPR).
You have the right to demand from us the erasure of personal data concerning you without delay where one of the grounds stated in Article 17, GDPR, applies, e.g. if the data are no longer required for the purposes pursued (right to erasure).
You have the right to demand that We restrict the processing if one of the conditions stated in Article 18, GDPR applies, e.g. if you have objected to the processing.
You have the right to object on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Point e or f of Article 6(1), GDPR. We shall then no longer process the personal data unless We can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims (Article 21, GDPR).
You have the right to withdraw any consent you have granted us at any time with effect for the future (right to withdraw in accordance with Article 7(3), GDPR).).
You have the right to receive the data concerning you, which you have made available to us, in a structured, commonly used and machine-readable format. You can also forward such data to other organisations or have it forwarded by us (right to data portability).
To exercise your rights, please contact: datenschutz@comanos.de.
Irrespective of any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, if you believe the processing of your personal data infringes upon GDPR (Article 77, GDPR). The competent supervisory authority in Brandenburg: State Commissioner for Data Protection and the Right of Access to Files, Dagmar Hartge, Stahnsdorfer Damm 77, 14532 Kleinmachnow.
Below we, Comanos GmbH (hereinafter referred to as “We” or “Comanos”), are informing you specifically about how We handle your personal data (hereinafter referred to as “Data”) as a candidate (m/f/d; hereinafter referred to as “Candidate”), the rights you are entitled to in respect of your Data and how you can exercise them.
In other respects, our general Data Protection Notices on the website also apply, to which We may also refer you with regard to the handling of your Data when you visit our website. Such information can be found in Part A of these Data Protection Notices.
1. Controller in accordance with data protection law
The controller within the meaning of the data protection laws (EU General Data Protection Regulation, hereinafter referred to in brief as “GDPR”, German Federal Data Protection Act, hereinafter referred to in brief as “BDSG”) for the processing of your data as described below is
Comanos GmbH, Dortustraße 40, 14467 D-Potsdam (simultaneously service provider within the meaning of the German Telecommunications and Telemedia Data Protection Act (hereinafter referred to in brief as “TTDSG”) and its subsidiaries
- Comanos Freelance GmbH, Dortustraße 40, 14467 D-Potsdam (Data Protection Notices)
- Comanos Executive GmbH, Dortustraße 40, 14467 D-Potsdam (Data Protection Notices)
E-mail: datenschutz@comanos.de
2. Data protection officer
Our data protection officer is
Diana Pikalowa-Seyfert, Franz-Joseph-Straße 14, D-80801 München
Tel.: +49 (0) 89 2 1547 6785
E-mail: datenschutz@comanos.de
3. Categories of personal data We collect
As a matter of principle, there are two situations in which We process your personal data.
a) When you approach us
We receive your personal data from you when you make such data available to us in the form of your application documents. This can be done by e-mail or post as well as via our website (direct or unsolicited application).
As part of our service, We, therefore, generally collect and process the data that you make available to us.
Typically, these are the following categories of personal data:
Master data: including name, address, e-mail address, telephone number
Professional information: including identity, salary information, education, professional career, certificates, expectations, skills, personality, insofar as these relate to the desired professional activity.
All documents you make available to us: including certificates, CV and photographs
Additional/supplementary data and information you make available to us in the course of personal or telephone interviews or documents you make available to us additionally/on a further-reaching basis once you have submitted your application documents.
b) When We approach you
In the course of our recruitment activities, which are a significant part of our work, We identify personal data, e.g. via professional networks (including Xing, LinkedIn) or based on research, e.g. on the website of your current employer. This means that We may collect your name, current position and current employer as well as your professional contact details and store such data temporarily. Please note that information you disclose on professional networks is publicly visible.
c) Further information
If you enter into an employment relationship with us, we may collect further personal data that is relevant for the fulfilment of the contractual activity. This will then be done in accordance with our employee information on data processing, which you will receive.
4. Special categories of personal data
Certain personal data, namely data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data pertaining to health matters or data concerning a natural person’s sex life or sexual orientation are particularly protected.
a) When you approach us
We do not request such data in your (online) application, but you are free to make such data available. The consent you grant us expressly includes the processing of any special categories of personal data made available in your application documents.
b) When We approach you
We shall not search for and/or process special categories of personal data at any time.
5. Purposes and legal bases
Our activities are based on a contract entered into us and our clients to find and place a suitable candidate for vacancies there. As part of this activity, We process your data as a potential candidate.
a) When you approach us
We process the data you make available in direct or unsolicited applications via our website and/or the application documents you submit to us for the purpose of presenting you as a candidate with interesting job offers from our clients and, if possible, placing you with a suitable employer or client. To honour this purpose, We process your data, in particular, as follows:
- A Comanos consultant shall contact you by phone (call, SMS or WhatsApp Business) or e-mail to engage in a detailed conversation with you.
- The information you make available during the conversation shall be taken into account for the selection of suitable job offers and matched against these for consistency with these.
- In the event of a suitable job offer, and once We have consulted you, We shall forward your application documents to potential employers or clients.
- To support and conduct an application process with a potential employer or client.
- To forward your data to our subsidiaries, Comanos Freelance GmbH and Comanos Executive GmbH, as well as our affiliated company Cobalt Deutschland GmbH (cobaltrecruitment.de) and it`s subsidiaries.
We are looking for candidates for our clients in the field of “Temporary employment.” By contrast, our subsidiary Comanos Freelance GmbH places job offers in the “Interim” sector, while our subsidiary Comanos Executive GmbH places candidates in the “Permanent employment” sector. Cobalt Deutschland GmbH operates as a recruitment consultancy in the construction and real estate industry and places job offers in the areas of "permanent employment" (Cobalt Deutschland GmbH), "Interim" (Concord Cobalt Recruitment GmbH) and "Temporary employment" (Cobalt Temporary Solutions GmbH).
To present you with potential offers in these additional areas, We also forward your application data to these subsidiaries or affiliate companies, which process the data for the aforementioned purposes and may contact you. We shall separately request your consent to include your data in the database of our affiliated companies.
The Data Protection Notices of these companies, which you can find here [Comanos Freelance GmbH; Comanos Executive GmbH; Cobalt Deutschland GmbH; Concord Cobalt Recruitment GmbH] apply to the data processing there.
The above processing of your data, including the forwarding of data to the subsidiaries and affiliated companies and the processing there, applies on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent).
Insofar as you may have sent us special categories of personal data as part of your application documents, the processing of such data is similarly based on your consent in accordance with Article 6(1), Sentence 1, Point a, in conjunction with Article 9(2), Point a, GDPR.
Your data are rendered anonymous for the purpose of statistical evaluations based on Article 6(1), Sentence 1, Point f. GDPR (Balancing of interests), whereby our interest lies in continually improving our services and candidate satisfaction. Any special categories of personal data sent to us by you shall, of course, not be used for this purpose.
b) When We approach you
Your data are accessed and processed in the course of our recruitment and research activities as described in section 3b for the purpose of presenting you with interesting job offers from our customers and, if possible, placing you with a suitable employer or client. To honour this purpose, We process your data, in particular, as follows:
- A Comanos consultant identifies your name, current position and current employer as well as your professional contact details and
- contacts you by telephone or message via professional networks to briefly outline the position and arrange a detailed interview.
- Should you be interested, you shall receive an e-mail with the consultant’s contact details, the position description and a request for your consent to data processing.
The above processing of your data applies exclusively to publicly available information.
We shall ask about your interest as part of the initial contact with you. If there is no such interest, We shall make a note of this and erase your data immediately. If you are interested, We shall send you an e-mail after contacting you with the option of consenting to the further processing of your data for the purpose of mediation. Unfortunately, We cannot take action without such consent.
The legal basis for the above data processing is Article 6(1), Sentence 1, Point f, GDPR (Balancing of interests). Our interest is to find suitable candidates for existing positions with our clients and to send them the most suitable job offers possible.
In the event that consent is granted, the further handling of your data shall be based on section 5. a) above.
c) For both cases
In the event of successful placement, We also require your data (name, position, salary, start of employment, but no other application data) for the purpose of invoicing our services to our customers. The legal basis in this respect is Article 6(1), Sentence 1, point f, GDPR (balancing of interests). We have an interest in properly invoicing our services.
6. Erasing your data and restriction of processing (“Blocking”)
a) Erasing your data when you approach us
If you grant us your consent, your data shall remain in our systems for two years, otherwise We will erase it without delay. This also applies if you do not respond to our requests for consent.
Prior to expiry of two years, you shall receive an e-mail and can either grant your consent again for a further two years or refuse it. If you decline or do not respond within 28 days, We shall erase your data without delay.
b) Erasing your data when We approach you
If We have collected your data as part of our recruitment and research measures (see sections 3.b. and 5.b), We shall erase such data at the latest three months after collecting the data if We have not received your consent beforehand.
c) Exceptions
In the event of successful placement by Cobalt, We shall store your necessary data for billing purposes for our customers in accordance with the storage periods and obligations in accordance with tax and commercial law for 10 years (from the end of the calendar year in which the billing took place) and then erase it. The legal basis in this respect is Article 6(1), Sentence 1, Point c, GDPR (Legal obligation) in conjunction with the provisions HGB (German Commercial Code) and AO (German Tax Code).
A further exception applies in the event of a legal dispute. In such a case, We only erase the data once the dispute has been concluded and the claims have fallen under the statute of limitations. The legal basis for such storage and processing is Article 6(1), Sentence 1, Point f, GDPR (Balancing of interests). We have an interest in asserting or defending claims or rights.
8. Recipients
a) Internal recipients:
Your data are processed at our company by the relevant department, e.g. consultants at various hierarchical levels, branch managers at our locations, the management or the administration and research team.
b) External recipients:
Furthermore, We forward your data to potential employers or clients.
Similarly, We forward your data to service providers who support us (such as IT service providers who operate software or systems that We use externally or data destruction companies). See Part A, sub-section 5.
Ferner übermitteln wir Ihre Daten an
Furthermore, We forward your data to
- Comanos Freelance GmbH (affiliated company, part of the Cobalt Group)
- Comanos Executive GmbH (affiliated company, part of the Cobalt Group)
- Cobalt Deutschland GmbH (affiliated company)
- Concord Cobalt Recruitment GmbH (wholly-owned subsidiary of Cobalt Deutschland GmbH)
- Cobalt Temporary Solutions GmbH (wholly-owned subsidiary of Cobalt Deutschland GmbH)
The legal basis for the data processing is Article 6(1), Sentence 1, point a, GDPR (Consent). In this respect, please see sub-section 5a.
9. Your rights as a data subject in accordance with GDPR
You have the right to request confirmation from us as to whether personal data concerning you are being processed. If this is the case, you have a right to information about such personal data and the information listed in detail in Article 15, GDPR.
You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you and, where applicable, the completion of incomplete personal data (Article 16, GDPR).
You have the right to demand from us the erasure of personal data concerning you without delay where one of the grounds stated in Article 17, GDPR, applies, e.g. if the data are no longer required for the purposes pursued (right to erasure).
You have the right to demand that We restrict the processing if one of the conditions stated in Article 18, GDPR applies, e.g. if you have objected to the processing.
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you, which is based on Article 6(1), Point e or f, GDPR. We shall then no longer process the personal data unless We can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims (Article 21, GDPR).
You have the right to withdraw any consent you have granted us at any time with effect for the future (right to withdraw in accordance with Article 7(3), GDPR).
You have the right to receive the data concerning you, which you have made available to us, in a structured, commonly used and machine-readable format. You can also forward such data to other organisations or have it forwarded by us (right to data portability).
To exercise your rights, please contact: datenschutz@comanos.de.
Irrespective of any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, if you consider that the processing of personal data relating to you infringes the GDPR (Article 77, GDPR). The competent supervisory authority in Brandenburg: State Commissioner for Data Protection and the Right of Access to Files, Dagmar Hartge, Stahnsdorfer Damm 77, 14532 Kleinmachnow.
Below, we, Comanos GmbH (hereinafter referred to as “We” or “Comanos”), are informing you about the Cookies and other technologies that We use on our website. We explain when your consent is required, how you can exercise your rights in relation to Cookies and give you an overview of Cookies and other technologies in conjunction with our website.
In other respects, our general Data Protection Notices for the website (Part A) and those specifically for candidates (m/w/d) (Part B) also apply.
1. Use of Cookies
We use Cookies on our website to personalise content and advertisements, offer functions for social media and analyse access to our website. Cookies make it possible to provide a user-friendly service that would not be possible without them.
Cookies are small data records that are stored on a computer system (computer, tablet computer or smartphone) via an internet browser and stored for subsequent retrieval.
The setting of Cookies without consent is only permitted by law if they are technically absolutely necessary for a service expressly requested by the site visitor. This means that Cookies categorised as necessary/essential are processed based on Article 6 (1), GDPR. We require your consent (Article 6(1), Point a, GDPR) for all other Cookies.
Please note that some Cookies are set by third party providers.
a) Used Cookies
When you visit our website for the first time, our Cookie banner (Cookiebot by Usercentrics) shows you the Cookies used, divided into different categories - necessary, preferences, statistics, marketing and unclassified.
Necessary Cookies are those that are absolutely essential. In that respect, these help make our website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these Cookies. We do not require consent for the use of these strictly necessary Cookies.
Preference Cookies enable a website to remember information that changes the way a website behaves or looks, such as your preferred language or the region that you are in. You can consent to these Cookies via our cookie banner or decline their activation.
Statistics Cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously. You can opt-in or opt-out of these Cookies via our cookie banner.
Marketing Cookies are used to follow visitors on websites. The intention is to show adverts that are relevant and engaging to the individual visitor/user and, therefore, more valuable to publishers and third party advertisers. You can consent to these Cookies via our cookie banner or decline their activation.
Unclassified Cookies are Cookies that We are currently trying to classify, in conjunction with providers of individual Cookies.
Each individual Cookie is labelled with its name, provider, purpose, expiry and type.
You can change your consent with regard to Cookies at any time for the future. To do so, please click on the bracket symbol at the bottom left of our website.
Other Cookies may be set by way of third party plug-ins. You can find more information in 2. Use of third party providers and social plug-ins.
b) Deactivating Cookies
You decide whether you want to accept or reject Cookies that are not absolutely necessary. You can select and save your Cookie preferences via our Cookie banner when you visit our website for the first time. You can change or withdraw your settings at any time for the future by clicking on the bracket symbol at the bottom left of our website.
You can prevent the setting/storage of Cookies at any time by making the appropriate settings in your internet browser and, therefore, permanently object to the setting of Cookies. Furthermore, Cookies that have already been set can be deleted at any time via an internet browser or other software programmes. If you deactivate the setting of Cookies in your internet browser, you may not be able to fully use all the functions on our website. Further details on deactivating Cookies can be found at https://allaboutcookies.org/.
2. Use of third party tools and social plug-ins
Our website uses social plug-ins from social/professional networks (marked with the corresponding logo) from the service providers stated below as well as other third party tools. We have carefully selected third party providers in accordance with the GDPR provisions. Where necessary, We have entered into order processing contracts.
Plug-ins may be used to send information, which may also include personal data, to the respective third party service provider and may be used by them. We prevent the unconscious and unwanted collection and forwarding of data to the service provider by way of a 2-click solution. To activate a desired social plug-in, it must first be activated by clicking on the corresponding button. Such activation is required to trigger the potential collection of information and forwarding it to the service provider. We do not collect any personal data ourselves by way of the social plug-ins or via their use.
If you are a member of one of the stated networks and are logged in there while visiting our website, the corresponding service provider shall assign such information to your personal user account. When you interact with one of the plug-ins, e.g. by clicking on one of the buttons, such information is forwarded directly to the respective service provider via your browser and stored there in your respective personal user account. The information you share from our website is forwarded to the respective service provider.
We do not exert any influence on the data that are collected by an activated plug-in and how such data are used by the service provider. At present, it must be assumed that a direct connection to the provider’s services is established and that at least the IP address and device-related information are collected and used. Similarly, the service providers can attempt to store Cookies on the used computer. Please see the data protection information of the respective service provider to find out the specific data that are collected and how they are used.
a) Using Google
Our website uses a range of Google services, all of which are operated by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin 4, Ireland, and are stated below.
As part of the processing, data may also be forwarded to the following recipients:
- Google LLC.
- Alphabet Inc.
Both located at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
You can find Google’s Data Protection Policy at https://policies.google.com/privacy
As part of the processing by Google, data may be forwarded to the USA. The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
For more detailed information please see https://policies.google.com/privacy/frameworks?hl=de, and https://business.safety.google/compliance/?hl=de and https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en
If a data transfer is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de.
It should also be noted that Google LLC. DPF (Data Privacy Framework) is certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
I) Google Analytics
Our website uses Google Analytics, a website analysis service that enables conclusions to be drawn about user behaviour on our website by setting Cookies.
The information generated by the Cookie about your use of our website is usually forwarded to a Google server in the USA and stored there. As a result of activation of the IP anonymization on our website, your IP address will be shortened by Google before it is forwarded. This applies within the Member States of the European Union or in other signatory states to the European Economic Area. Only in exceptional cases will the entire IP address be sent to a Google server in the USA and shortened there. Google shall use such information on our behalf (We have entered into a contract data agreement with Google) to analyse your use of our website, compile reports on website activity and make available to us as the website operator other services associated with website and internet use. The IP address forwarded as part of Google Analytics from your browser shall not be grouped with other data from Google.
The following data are collected and processed with the help of Google Analytics
- IP address (anonymised)
- Usage data
- Click path
- App updates
- Browser information
- Device information
- JavaScript support
- Visited pages
- Referrer URL
- Downloads
- Flash version
- Location information
- Widget interactions
- Date and time of the visit
You can prevent the storage of the Cookies by way of a corresponding setting in your browser software. Please note, however, that in such a case you may not be able to fully use all the functions on our website. You can also prevent Google from collecting the data generated by the Cookie and relating to your use of the website (including your IP address) and from processing such data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
Further information is available at https://support.google.com/analytics/answer/6004245?hl=de#zippy=
The data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent), and with the intention of continually adapting and optimising the website based on the evaluations of website usage.
II) Using Google Maps
We use content from Google Maps, an online map service provided by Google LLC, on our website to display maps of the surrounding area.
When you use the neighbourhood maps, Google receives the information that you are accessing this page of our website.
The following data are collected and processed with the help of Google Maps:
- IP address
- Location information
- Usage data
- Date and time of the visit
- URLs
The data are forwarded irrespective of whether or not you are logged into a Google user account or do not have one. If you are logged into a Google user account, such data are assigned directly to your account. If you log out of your Google user account, you should not want such data to be assigned.
The data are processed on the legal basis of Article 6(1), Sentence, 1 Point a, GDPR (Consent), and with the intention of showing you as simply as possible where you can find us and how you can get to us.
b) Using Facebook
We have integrated components of the company Facebook on our website. The operating company of Facebook is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (hereinafter referred to as “Facebook”), a subsidiary of Meta Platforms Inc. (hereinafter referred to as “Meta”). If a data subject lives outside the USA or Canada, the controller for the processing of personal data is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each time you access a sub-page of our website on which a Facebook component (Facebook plug-in) has been integrated, your internet browser is automatically prompted to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins is available at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook receives information about the specific sub page of our website you are visiting.
If you are logged in to Facebook at the same time, Facebook recognises which specific sub-page you are visiting each time you access our website and for the entire dwell time of your visit. This occurs irrespective of whether or not you click on the Facebook component.
The information about your use of our website is collected by the Facebook component and assigned by Facebook to the respective Facebook account. If you click on one of the Facebook buttons integrated in our website, for example the “Like” button, or if you enter a comment, Facebook assigns this information to your personal Facebook user account and stores such personal data.
If you do not want this information to be forwarded, you can prevent it from being forwarded by logging out of your Facebook account before accessing our website.
The data policy published by Facebook, which can be viewed at https://de-de.facebook.com/about/privacy/ provides information about the collection, processing and use of personal data by Facebook.
As part of the processing, data may be forwarded to the USA. The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
More detailed information is available at https://de-de.facebook.com/legal/EU_data_transfer_addenDum
If the forwarding of data is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de.
In addition, Meta Platforms, Inc. is DPF (Data Privacy Framework) certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
Data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent), and with the intention of offering you a simple interface to the social network Facebook.
c) Using WhatsApp Business API
We use the WhatsApp Business API instant messaging service (hereinafter referred to as “WhatsApp API”) for communication purposes. The operating company of WhatsApp API is WhatsApp Inc., a subsidiary of Meta Platforms Inc. If a data subject lives outside the USA or Canada, the controller for the processing of personal data are WhatsApp Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
WhatsApp API is a technical interface that provides us with a WhatsApp company account and thus the ability to send WhatsApp messages from our Customer Relationship Management (“CRM” in brief). In this constellation, your data are not stored by WhatsApp but by our business solution partner. We have entered into a so-called order processing contract with our partner, Carerix BV, Airportplein 28, 3045 AP Rotterdam.
Further information is available at https://www.whatsapp.com/legal/business-policy/?locale=de_DE and https://faq.whatsapp.com/820124435853543/?helpref=hc_fnav&locale=de_DE.
Should data nevertheless be forwarded to the USA in the course of processing, please note the following: The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
If the forwarding of data is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de.
It should also be noted that WhatsApp LLC is DPF (Data Privacy Framework) certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
Data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent), and with the intention of contacting you quickly and easily.
d) Using Instagram
We have integrated components of the company Instagram on our website. The operating company of Instagram.com is or is represented by Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland.
Further information about Facebook can be found in section 2b) and at https://help.instagram.com/519522125107875?helpref=page_content or https://help.instagram.com/196883487377501?ref=dp.
Data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent), and with the intention of offering you a simple interface to the social network Instagram.
e) Using LinkedIn
We have integrated components of the company LinkedIn on our website. The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court. Mountain View, CA 94043, USA (hereinafter referred to as “LinkedIn” in brief). If a data subject lives outside the USA or Canada, the controller for the processing of personal data are LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter similarly referred to as “LinkedIn”).
The Cookies used in this case enable LinkedIn to recognise you as a visitor to our website within the LinkedIn network.
You can prevent the storage of the Cookies by way of a corresponding setting in your browser software. Please note, however, that in such a case you may not be able to fully use all the functions on our website. You can also object to advertising by LinkedIn based on your usage behaviour at any time. More detailed information is available at https://de.linkedin.com/legal/privacy-policy and https://de.linkedin.com/legal/cookie-policy?
More information is available at https://de.linkedin.com/legal/l/dpa.
As part of the processing, data may be forwarded to the USA. The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
If the forwarding of data is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de
It should also be noted that the LinkedIn Corporation is DPF (Data Privacy Framework) certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
Data are processed on the legal basis of Article 6(1), Sentence 1, Point a, GDPR (Consent), and with the intention of offering you a simple interface to the LinkedIn social network.
f) Using XING
We have integrated components of the company New Work SE (XING) on our website. The operating company of XING.com is New Work SE, Am Strandkai 1, 20457 Hamburg, Germany.
The “XING Share Button” is used on our website. When you visit our website, your browser establishes a short-term connection to the servers of New Work SE (“XING”), which are used to provide the “XING Share Button” functions (in particular the calculation/display of the counter value). XING does not store any of your personal data when you access this website. XING does, in particular, not store any IP addresses. There is also no evaluation of your usage behaviour via the use of Cookies in conjunction with the “XING Share Button.” The current data protection information about the “XING Share Button” and additional information can be found on this website: https://dev.xing.com/plugins/share_button/privacy_policy
g) Using HubSpot
We use the services of the software manufacturer HubSpot on our website. HubSpot is a software company from the USA (HubSpot, Inc.) with a branch in Ireland (HubSpot European Headquarters, Ground Floor, Two Dockland Central, Guild Street, Dublin 1, Ireland).
HubSpot is a service platform. The service used is an integrated software solution that enables us to manage customer data and cover various aspects of our online marketing. This includes analysing landing pages and reporting. In that respect, so-called “Web beacons” are used and Cookies are stored on the end device you are using.
In that respect, the following personal data may be collected, for example
- IP address (anonymised)
- Geographical location
- Browser type
- Dwell time
- Pages accessed
The information collected and the content of our website are stored on the servers of our software partner HubSpot Ireland. We use HubSpot to analyse the use of our website. This enables us to continually optimise our website and make it more user-friendly. In addition, We use information to determine which of our company’s services are of interest to customers and newsletter subscribers and to contact them for advertising purposes. We also use the analysis to optimise our website for you.
However, We only use your IP address in a truncated version. This means that the IP address of users is shortened by HubSpot within Member States of the European Union or in other signatory states to the Agreement on the European Economic Area.
You can find more information at https://www.hubspot.com/de/data-privacy/privacy-shield.
You can find more information about how HubSpot works at https://legal.hubspot.com/privacy-policy and https://legal.hubspot.com/security.
As part of the processing, data may be forwarded to the USA. The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
If the forwarding of data is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de.
It should also be noted that HubSpot, Inc. is DPF (Data Privacy Framework) certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
The data are processed on the legal basis of Article 6(1), Point a, GDPR (Consent), and with the intention of continually adapting and optimising the website based on the evaluations of website usage.
h) Using Microsoft Bookings
We use the Microsoft Bookings planning tool on our website. Microsoft Bookings is a service of the provider Microsoft Ireland Operations Limited (parent company in the USA Microsoft Corporation), One Microsoft Place, South County Business Park, Leopardstown, Dublin 18 D18 P521 (hereinafter referred to as “Microsoft”).
The data you enter in the form to book an appointment shall be used exclusively for the purpose of establishing contact with you.
To make a successful appointment booking, your input data shall be forwarded to Microsoft. Further-reaching information is available at https://privacy.microsoft.com/de-de/privacystatement
As part of the processing, data may be forwarded to the USA. The European Commission has authorised use of so-called adequacy decisions as a suitable means of ensuring an adequate level of protection when forwarding data outside the EEA.
If the forwarding of data is not covered by an adequacy decision, standard contractual clauses may continue to apply. The standard contractual clauses issued by the European Commission can be found at https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?hl=de&locale=de.
It should also be noted that the Microsoft Corporation is DPF (Data Privacy Framework) certified. DPF is an agreement entered into by the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with DPF undertakes to comply with these data protection standards. More information can be found at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active
Data are processed on the legal basis of Article 6(1), Point a, GDPR (Consent), and with the intention of offering you an efficient appointment booking option.
3. Links to other websites
You will find links to other websites on our website. By clicking on these links (occasionally marked with the logo of the respective third party provider), you activate a connection to the respective third party provider. This could then result in data processing. We exert no influence on that data that are processed when you click on links to other websites. Please inform yourself about the possible processing of your data in the Data Protection Notices of the respective third party provider.