Privacy policy

Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) GDPR serves as the legal basis for the processing of personal data.

Article 6 (1) (b) GDPR serves as the legal basis for the processing of personal data required for the performance of a contract to which the data subject is party. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.

Insofar as processing of personal data is necessary to comply with a legal obligation to which our company is subject, Article 6 (1) (c) GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 (1) (d) GDPR serves as the legal basis.

If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first interest, Article 6 (1) (f) GDPR serves as the legal basis for the processing.

The personal data of the data subject will be erased or blocked as soon as the purpose of storage no longer applies. Storage can also take place if this has been stipulated by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. The data will also be blocked or erased if a storage period stipulated in the aforementioned regulations expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

We take all reasonable precautions to keep your personal information secure and require any third party that handles or processes your personal information on our behalf to do the same. Access to your personal information is restricted to prevent unauthorized access, alteration or misuse. Our employees and people working for our company may only access this information to the extent necessary to carry out their tasks.

We cannot be held responsible for the content of other websites that you can access via a link from our website.

You have the right to obtain information about your personal data stored by us in accordance with Article 15 GDPR.

You have the right to have incorrect data corrected or correct data completed in accordance with Article 16 GDPR.

Every person affected by the processing of personal data has the right to demand that the person responsible restrict the processing if one of the conditions specified by the legislator in Article 18 (1) GDPR is met.

If the legal requirements are met, you can request the erasure or restriction of processing and object to the processing of your personal data (Articles 17, 18 and 21 GDPR).

If you have consented to the data processing and the data processing is carried out using automated procedures, you may have a right to data portability (Article 20 GDPR).

If you have asserted the right to rectification, erasure or restriction of processing vis-à-vis the person responsible, the latter is obliged to notify all recipients to whom your personal data has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort.

You have the right to be notified about these recipients by the person responsible.

Every person affected by the processing of personal data has the right to object to the processing of personal data relating to them, which is based on Article 6 (1) (e) or (f) GDPR, on grounds relating to their particular situation at any time. This also applies to profiling based on these provisions.

In the event of objection, our company will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.

Any person affected by the processing of personal data has the right to revoke consent to the processing of personal data at any time. You have the right to revoke your declaration of consent under data protection law at any time. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the point of revocation.

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your place of residence, your place of work or the place of the alleged infringement, if you believe that the processing of your personal data violates the GDPR.

The supervisory authority with which the complaint has been lodged will inform the complainant about the status and the results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the IP address of the user must remain stored for the duration of the session.

Storage in log files takes place to ensure the functionality of the website. We additionally use the data to optimize the website and to ensure the security of our information technology systems.

The legal basis for the temporary storage of the data and the log files is Article 6 (1) (f) GDPR.

The data will be erased as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

If the data is stored in log files, this is the case after seven days at the latest. Storage beyond this period is possible.

The collection of the data for the provision of the website and the storage of the data in log files are absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

The legal basis for the processing of personal data using technically necessary cookies is Article 6 (1) (f) GDPR.

Cookies are stored on the user's computer and transmitted to our site. As a user, you therefore also have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. These functions require the browser to be recognized even after a page change. You can request a list of the applications for which we require cookies directly from us. The user data collected by technically necessary cookies is not used to create user profiles. Our legitimate interest in the processing of personal data in accordance with Article 6 (1) (f) GDPR also lies in these purposes.

If you contact us via e-mail, the required legitimate interest in processing the data applies.

The legal basis for the processing of data transmitted in the course of a contact request or e-mail, letter or fax is Article 6 (1) (1) (f) GDPR. The person responsible has a legitimate interest in the processing and storage of the data to be able to answer user inquiries, to preserve evidence for liability reasons and, if necessary, to be able to comply with its legal storage obligations for business correspondence. If the aim of the contact is to conclude a contract, the additional legal basis for processing is Article 6 (1) (1) (b) GDPR.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent via e-mail, this is the case when the respective conversation with the user has ended. This is to be assumed if it can be inferred from the circumstances that the facts in question have been finally clarified.

You can object to the storage of your personal data at any time. If you do so, however, the conversation cannot be continued. All personal data that was saved in the course of making contact will be deleted in the case of objection.

The legal basis is Article 6 (1) (b) GDPR and Section 26 of the German Federal Data Protection Act (BDSG). If you voluntarily transmit special categories of personal data to us, for example data concerning your health or religious affiliation, the legal basis is also Article 9 (2) (b) GDPR.

If your application is unsuccessful, we will delete your data after six months at the latest. The storage until then takes place to answer any questions about the application process and to fulfill our obligation to provide evidence as stipulated in the German General Equal Treatment Act (AGG). If you withdraw your application, we will delete your data immediately.

We process the data you send us via these networks to communicate with you and answer messages you send us on these networks.

The legal basis for the processing of personal data is our legitimate interest in communicating with the users and our public image for the purpose of advertising pursuant to Article 6 (1) (1) (f) GDPR. If you have granted the controller of the social network your consent to process your personal data, the legal basis is Article 6 (1) (1) (a) and Article 7 GDPR.

You can find the privacy policies and the information and objection (opt-out) options of the corresponding networks at:

• Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy / Opt-Out: http://instagram.com/about/legal/privacy/

• XING (XING AG, Dammtorstrasse 29–32, 20354 Hamburg, Germany) - Privacy Policy / Opt-Out: https://privacy.xing.com/en/privacy-policy

• LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Cookie Policy and Opt-Out: https://www.linkedin.com/legal/cookie-policy, Privacy Shield of the US-based company LinkedIn Inc.: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active

We use Hubspot CRM on this website. The provider is Hubspot Inc. 25 Street, Cambridge, MA 02141 USA(hereafter Hubspot CRM).

Hubspot CRM enables us, among other things, to manage existing and potential customers and customercontacts, to communicate with you and to plan and execute marketing activities in line with your interests.
Hubspot CRM enables us to capture, sort and analyze customer interactions via email, social media, or phoneacross multiple channels. The personal data collected in this way can be evaluated and used forcommunication with the potential customer or marketing measures (e.g., newsletter mailings). HubspotCRM also enables us to collect and analyze the user behavior of our contacts on our website.
The use of Hubspot CRM is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the most efficient customer management and customer communication. If appropriate consent has beenobtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG,insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g.,device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.
‍
For details, please refer to Hubspot’s privacy policy: https://legal.hubspot.com/de/privacy-policy.
Data transmission to the US is based on the standard contractual clauses of the EU Commission. Details canbe found here: https://www.hubspot.de/data-privacy/privacy-shield.

The application of CDN – a CDN distributes your files throughout data centers worldwide, then delivers them to visitors via the data center that is closest to them. This means snappy page loads for all your visitors, worldwide. Of course, we wanted to make sure your website loads as fast as possible for people across the globe, so we took it a step further by using not one, but two CDNs:

• Fastly
• Amazon Web Services (AWS)
• Cloudflare