Data protection

Welcome to the website of Christian Dörr Headhunting GmbH. In the following data protection information you will learn what happens to your data, the so-called personal data, and above all why. We will also tell you how we protect your data, when the data will be deleted and what rights you have thanks to data protection.

First of all: We comply with data protection laws and the European General Data Protection Regulation and protect your privacy as best we can.

But we want to be completely open: The Internet thrives on data exchange and still has many security gaps. Even if your data is encrypted when you visit our website, there is always a residual risk when exchanging data with external websites. If you visit other websites – for example via a link on our website – please note that this data protection information does not apply to these external websites, but only to our website!
Please also note that emails are generally an unencrypted and therefore fundamentally insecure communication medium. If you wish to exchange personal data with us, please agree the transmission method with us in advance.

We believe that information and knowledge about data protection help you to better assess possible dangers and risks. For this reason, we have prepared this data protection information and compiled all relevant information. It has been compiled to the best of our knowledge and belief and in accordance with the requirements of Article 13 of the EU GDPR. Because it is important to us that your trust is honored here.

Business purpose and processing of personal data

We process the personal data (hereinafter referred to as “data”) of our clients, employees and all business contacts exclusively in order to provide our brokerage and consulting services of the highest quality and with the greatest reliability. Data is processed in both automated and non-automated form.

This involves the following data: Name and address/address as well as e-mail address, account details and telephone numbers (landline and mobile). In addition, special category data will also be processed as part of our services, especially in personnel and intermediary transactions. This is always done on the basis of necessity, lawfulness and purpose in accordance with Article 5 GDPR.

“Processing of data” includes, for example, the following operations: Collecting, recording, organizing, storing, using, transmitting, disseminating and deleting data (Article 4 No. 2 General Data Protection Regulation – GDPR).

We process data that is required to justify and fulfill the contractual services and point out the necessity of its disclosure. Disclosure to external parties only takes place if it is really necessary in the context of an order. When processing data provided to us within the scope of an order, we act in accordance with the instructions of the client and commissioner as well as the legal requirements of order processing in accordance with Art. 28 GDPR and do not process the data for any purpose other than that specified in the order.

Who can you contact?

Section 38 BDSG (new version) applies in the company. The responsible body within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is

Responsible in terms of data processing:
Managing director/owner: Christian Dörr

Data protection officer

We have appointed an external, certified data protection officer for our company. This person is available to you as a direct contact in all data protection matters relating to our company.

What are your rights?

You can contact us at any time if you have any questions about your data protection rights or wish to assert any of the following rights:

  • Right to withdraw consent pursuant to Art. 7 (3) GDPR (e.g. you can contact us if you wish to withdraw consent you have previously given for a newsletter)
  • Right to information in accordance with Art. 15 GDPR (e.g. you can contact us if you would like to know what data we have stored about you)
  • Correction in accordance with Art. 16 GDPR (e.g. you can contact us if your e-mail address has changed and we should replace the old e-mail address)
  • Deletion in accordance with Art. 17 GDPR (e.g. you can contact us if you want us to delete certain data that we have stored about you)
  • Restriction of processing in accordance with Art. 18 GDPR (e.g. you can contact us if you do not want us to delete your e-mail address, but only to use it to send absolutely necessary e-mails)
  • Data portability in accordance with Art. 20 GDPR (e.g. you can contact us to receive your data stored by us in a compressed format, e.g. because you want to make the data available to another service provider)
  • Objection pursuant to Art. 21 GDPR for processing pursuant to Art. 6 para. 1, lit. f. (e.g. you can contact us if you do not agree with one of the advertising or analysis procedures specified here)
  • Right to lodge a complaint with the competent supervisory authority pursuant to Art. 77 para. 1, f. GDPR (e.g. you can also contact the data protection supervisory authority directly in the event of complaints)

The competent supervisory authority is:

  • State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
  • Kavalleriestraße 2-4
  • 40213 Düsseldorf
  • Phone: 0211 38424-0
  • Fax: 0211 38424-10
  • E-mail: [email protected]

Categories of affected persons

Visitors and users of our online offer (hereinafter we also refer to the data subjects collectively as “users”). Furthermore, business contacts, suppliers, service providers and business partners who work with us on a basis of trust.

Purpose of the processing

  • Provision of the online offer, its functions and contents
  • Answering contact requests and communicating with users
  • Safety and protective measures
  • Reach measurement/marketing (cookies and analysis tools)

In addition, personal data will only be processed within the scope of our business purpose in accordance with Article 6 GDPR and Article 9 GDPR (2) (h). This is always done on the basis of necessity, lawfulness and purpose in accordance with Article 5 GDPR.
Data will only be passed on to third parties if we are legally obliged to do so. Data is not transferred to third countries.

Relevant legal bases for processing

In accordance with Art. 13 GDPR, we inform the users of our website and our business contacts of the legal basis of our data processing. For users from the area of application of the General Data Protection Regulation (GDPR), i.e. the EU and the EEC, the following applies if the legal basis is not mentioned in the data protection declaration:

  • the legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR;
  • the legal basis for the processing for the fulfillment of our services and implementation of contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b GDPR;
  • the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR;
  • In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) GDPR applies.
  • lit. d GDPR as the legal basis.
  • the legal basis for the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the
  • The data controller is Art. 6 para. 1 lit. e GDPR.
  • the legal basis for processing to protect our legitimate interest is Art. 6 para. 1 lit. f GDPR.
  • the processing of data for purposes other than those for which they were collected is governed by the provisions of Art. 6 (4) GDPR.
  • the processing of special categories of data (in accordance with Art. 9 para. 1 GDPR) is determined in accordance with the provisions of Art. 9 para. 2 GDPR.

Deletion of data and storage duration

Unless otherwise stated, we will delete your data as soon as it is no longer required, e.g. your e-mail address after you have unsubscribed from our newsletter. Your data will also be blocked or deleted if a storage period prescribed by law expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.
Certain data may have to be stored for longer for legal reasons. You can of course request information about the stored data and their retention periods at any time. We regularly review the necessity of storing the data; in the case of statutory retention obligations, the data will be deleted after their expiry (e.g.: 6 years, in accordance with Section 257 (1) HGB, 10 years, in accordance with Section 147 (1) AO).

Visit our website

When you visit our website, SSL or TLS encryption is used to protect the transmission of incoming and outgoing requests. You can recognize an encrypted connection by the fact that the address line of the browser begins with “https://” and by the lock symbol in the browser line. If you merely wish to browse our website, no personal data will be collected, with the exception of the data that your browser transmits to enable you to visit the website, first and foremost:

  • Name of the website accessed (e.g. the website that has just been accessed)
  • Date and time of retrieval (e.g. 11:45 on 25.05.2018)
  • Amount of data transferred (e.g. 2427 bytes)
  • Notification of successful retrieval (e.g. information on whether there was an error when the page was accessed)
  • Browser type and version (e.g. the Firefox 60.0.1 browser used)
  • the operating system of the user (e.g. MacOS 10.13.4)
  • Referrer URL (the previously visited page)
  • IP address and the requesting provider (e.g. 95.91.215.example or 2a02:8109:9440:1198:bdb1:551f:example)
  • Status codes (e.g. status code 200: request successfully processed)

The most interesting data for you as a visitor to our website is the IP address, as this is data that can theoretically be traced back to you as a person. As a protective measure in favor of your privacy, all data is therefore deleted from the website after your visit. The purpose of temporarily storing the data at the beginning is to ensure the connection, accessibility and correct display of our website. The IP address and the aforementioned technical data are required to display the website, prevent display problems for visitors and resolve error messages. The legal basis is our so-called legitimate interest pursuant to Art. 6 para. 1 lit. f. GDPR.

SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL encryption is activated, the data that you send via the contact form, for example, cannot be read by third parties.

Collection, processing and disclosure of personal data upon commissioning

When commissioning our services, we collect and process personal data only insofar as this is necessary to fulfill and process the order and to process the request. The provision of the data is necessary for the conclusion of the contract or for the completion of the order. Failure to provide the data means that no contract can be concluded. The processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR and is necessary for the fulfillment of the contract with you. Your data will only be passed on if required by law and as part of contractually regulated processes. In all cases, we strictly observe the legal requirements. The scope of data transfer is limited to a minimum.

Types of data processed

  • Inventory data (e.g., personal master data, names or addresses).
  • Contact details (e.g., e-mail, telephone numbers).
  • Content data (e.g., text entries, photographs, videos).
  • Usage data (e.g., websites visited, interest in content, access times).
  • Meta/communication data (e.g., device information, IP addresses).

Contact us

When contacting us (e.g. by e-mail, telephone, contact form or via social media), the information provided by the user, including all resulting personal data (name, e-mail address), is used to process the contact request and its handling in accordance with Art. 6 para. 1 lit. b. (in the context of contractual/pre-contractual relationships), Art. 6 para. 1 lit. f. GDPR (other requests). The user’s details may be stored in a system-supported environment (“CRM system”) or comparable applications (invoicing). We delete the requests if they are no longer required. The necessity is checked regularly. Furthermore, the statutory archiving and retention obligations apply. Inquiries that are not relevant or do not need to be stored are deleted. This also applies to unsolicited applications and advertising.

Security measures – technical and organizational measures

We take appropriate technical and organizational measures (TOM) in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, transfer, safeguarding of availability and its separation. Furthermore, procedures are in place to ensure that the rights of data subjects are exercised, data is deleted and we respond to data threats. Furthermore, we take the protection of personal data into account as early as the development and selection of hardware, software and processes, in accordance with the principle of data protection through technology design and data protection-friendly default settings. This applies in particular to our online offering and the information compiled here. System and process-side GoBD conformity is also taken into account.

Cooperation with processors, joint controllers and third parties

If we disclose data to other persons and companies (processors, joint controllers or third parties) as part of our processing, transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission.
We ensure that cooperation with contracting parties and service providers is either governed by an order processing contract or that a declaration of commitment to confidentiality and compliance with data and business secrecy has been concluded. In the case of joint responsibility, we ensure that our business contacts are also committed to data protection.

Transfers to third countries

If data is processed in a third country (i.e. countries outside the European Union) or in the context of the use of third-party services (software, applications, etc.), this only takes place if it is necessary to fulfill our (pre)contractual obligations or if we have consent to do so. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the legal requirements are met. This means, for example, that the processing takes place on the basis of special guarantees or in compliance with officially recognized, special contractual obligations. For providers from so-called third countries for which there is no agreement with the EU, it is necessary to observe and comply with the standard contractual clauses defined by the EU-DSK. Accordingly, we refer the contracting parties to compliance with these clauses. We do not actively transfer any data to third countries.

Cookie banner and cookie notice

According to the current ruling of the BGH, an active cookie banner is required if cookies (of any kind) are used. Our website uses the cookie consent technology of Borlabs Cookie to obtain your consent to the storage of certain cookies in your browser and to document this in compliance with data protection regulations. The provider of this technology is Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg, Germany (hereinafter referred to as Borlabs).
When you enter our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie.
The data collected is stored until you ask us to delete it or delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on Borlabs Cookie data processing can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie
Borlabs Cookie Consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.

Note on deactivating or deleting cookies

Each user can set their web browser so that the storage of cookies on their end device is generally prevented or they are asked each time whether they agree to the setting of cookies. Once cookies have been set, the user can delete them at any time. How this works is described in the help function of the respective web browser.

Please note: a general deactivation of cookies may lead to functional limitations of websites.

Right to object to direct advertising

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US website https://www.aboutads.info/choices/ or the EU website https://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by deactivating them in the browser settings. Please note that you may then only be able to use website functions to a limited extent.

You can configure, block and delete cookies in your browser settings. The Federal Office for Information Security provides helpful information and instructions for the most common browsers: https://www.bsi-fuer-buerger.de/BSIFB/DE/Empfehlungen/EinrwirtungSoftware/EinrwirtungBrowser/Sicherheitsmassnahmen/Cookies/cookies_node.html

Hosting and e-mail delivery

The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail dispatch, security services and technical maintenance services that we use for the purpose of operating this online offering.

We, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta and communication data of business contacts, interested parties and visitors to this online offer on the basis of our legitimate interest in the efficient and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with. Art. 28 GDPR (conclusion of order processing contract).

Data protection information in the application process

We process the data of applicants and candidates only for the purpose and within the scope of the application process in accordance with the legal requirements. The processing of application data is carried out to fulfill our (pre-)contractual obligations in the context of the application procedure within the meaning of Art. 6 para. 1 lit. b. GDPR and Art. 6 para. 1 lit. f. GDPR if the data processing becomes necessary for us, e.g. in the context of legal proceedings (in Germany, § 26 BDSG also applies).

The application process requires applicants to provide us with their application details. The necessary information is derived from the job descriptions and generally includes personal details, postal and contact addresses and the documents relating to the application, such as cover letter, CV and certificates. Applicants can also voluntarily provide us with additional information.

By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process in accordance with the type and scope set out in this data protection information.

Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are voluntarily communicated as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b GDPR (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are requested from applicants as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. a GDPR (e.g. health data if this is necessary for the exercise of the profession).

Applicants can send us their applications by e-mail. Please note, however, that e-mails are generally not sent in encrypted form and applicants must ensure that they are encrypted themselves. We can therefore accept no responsibility for the transmission path of the application between the sender and receipt on our server and therefore recommend only sending us attachments in PDF format and encrypting them with a password. The password should always be sent to us separately.

In the event of a successful application, the data provided by the applicant may be processed and forwarded by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is not successful, the applicant’s data will be deleted unless we have been given consent for further storage or placement. Applicants’ data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time.

Subject to a justified revocation by the applicant, deletion will take place after a period of six months so that we can answer any follow-up questions about the application and meet our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses are archived and stored in accordance with tax law requirements.

Tools and products on our website

In order to make websites not only interesting and modern, but also secure, it is necessary to integrate specialized services on the website. Our website has been created with the help of a content management system. Below you will find an overview of the services and products we have integrated on our website with brief explanations of how they work.

We have compiled this information to the best of our knowledge and belief and refer to the respective data protection guidelines/data protection declarations provided by the providers.

OpenStreetMap

We use the open source map service “OpenStreetMaps” (also known as “OSM”) from the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom, to display geodata.

OSM is used to provide an interactive map on our website that shows you how to find and reach us. This service enables us to display our website in an appealing way by loading map material from an external server. The following data is transmitted to the OSM server during the display: The pages of our website that you have visited and the IP address of your device. The legal basis for the processing of your data in relation to the “OSM” service is Art. 6 para. 1 sentence 1 letter f) GDPR (legitimate interest in data processing). The legitimate interest arises from our need for an appealing presentation of our online offer and the easy findability of the places indicated on our homepage.

You can find more information on the handling of usage data in OSM’s privacy policy: https://wiki.osmfoundation.org/wiki/Privacy_Policy

Video conferencing/communication (online media)

In order to be able to communicate with our business contacts and candidates as personally as possible, even in special times and situations, we use the appropriate software solutions available to offer telephone conferences, online meetings and video conferences as required.

To take part in “online meetings” or to enter a “meeting room”, you may be asked to provide at least your name. This is so that the moderator can grant you access. Anonymous participation is often also possible.

Personal data that is processed in connection with participation in “online meetings” is not passed on to third parties unless it is intended to be passed on. Please note that content from “online meetings”, as with face-to-face meetings, is often used to communicate information with business contacts, interested parties or third parties and is therefore intended to be passed on.

Meeting metadata: Topic, description (optional), participant IP addresses, device/hardware information. For recordings: MP4 file of all video, audio and presentation recordings,

M4A file of all audio recordings, text file of the online meeting chat.

Other recipients: The provider of the online conference necessarily receives knowledge of the above-mentioned data. It should be noted that, depending on the provider, data may be processed outside the European Union. If the service is provided by a provider from the USA, personal data is usually processed in a third country.

Use of messenger services – data protection information for WhatsApp

We offer our business contacts the option of contacting us via the WhatsApp messenger service and receiving feedback on your request via WhatsApp. Please note that if you contact us via the WhatsApp messenger service, you will automatically send us your mobile number.

The operator of this service is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“WhatsApp”), a subsidiary of Facebook. When you communicate with us via WhatsApp, both we and WhatsApp receive your telephone number and the information that you have contacted us.

The aforementioned data is also forwarded by WhatsApp to Facebook servers in the USA and processed by WhatsApp and Facebook in accordance with the WhatsApp Privacy Policy, which also includes processing for their own purposes, such as improving the WhatsApp service. We would like to point out that WhatsApp also accesses the address book of the device used and the contact data stored therein. For more information on the purpose and scope of data collection and the further processing of this data by WhatsApp and Facebook, as well as your rights in this regard and settings options for protecting your privacy, please refer to WhatsApp’s privacy policy at: https://www.whatsapp.com/legal/#privacy-policy.

We process your telephone number, your name and other data provided by you and the content of your request or message only in order to process your request and to be able to answer any queries you may have.

The basis for this processing and the transmission to WhatsApp in this context is Art. 6 para. 1 sentence 1 b) GDPR, insofar as your request concerns an existing contractual relationship with us or serves to initiate such a contractual relationship. Otherwise, this data processing is carried out on the basis of Art. 6 para. 1 sentence 1 f) GDPR, whereby our legitimate interest is the careful processing of your respective request and the solution of any technical problems. We take your interests into account by the fact that communication via WhatsApp only exists as an additional option. We therefore ask you to contact us preferably, for example by telephone call, e-mail or via our contact form on the website. In addition, we use a separate device for the contact option via WhatsApp where possible, in which only the contact details of the inquirers who communicate with us via WhatsApp are stored, so that WhatsApp only receives data from inquirers who use the service voluntarily. In this context, the terms of use and privacy policy of WhatsApp www.whatsapp.com/legal apply.

Online presence in social media

We maintain online presences within social networks and platforms in order to communicate with the business contacts, interested parties and users active there and to inform them about our services.

We would like to point out that user data may be processed outside the European Union. This may result in risks for the user because, for example, the enforcement of the user’s rights could be made more difficult.

Furthermore, user data is generally processed for market research and advertising purposes. For example, usage profiles can be created from the usage behavior and the resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the user’s computer, in which the user’s usage behavior and interests are stored. Furthermore, data can also be stored in the user profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

The processing of users’ personal data is based on our legitimate interests in effectively informing users and communicating with users in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR. If the users are asked by the respective providers of the platforms for consent to the data processing described above, the legal basis for the processing is Art. 6 para. 1 lit. a., Art. 7 GDPR.

For a detailed description of the respective processing and the opt-out options, we refer to the following linked information from the providers.

In the case of requests for information and the assertion of data subject rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the user’s data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

LinkedIn (LinkedIn Sunnyvale, California, United States, Operator: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy https://de.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Xing (New Work SE, Am Strandkai 1, 20457 Hamburg, Germany) – Privacy Policy/ Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung

Data protection information Facebook/Instagram (meta) fan page

In accordance with the current legal assessment of the European data protection authorities, we are jointly responsible for data processing in the context of the Facebook fan page and our Instagram profile with Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook” and “Instagram”). Details on the delimitation of responsibility can be found in the following agreement concluded between Meta/Facebook and us: https://www.facebook.com/legal/terms/page_controller_addendum.

According to this agreement, Facebook is responsible for enabling the rights of data subjects in accordance with Art. 15-20 GDPR with regard to the processing of personal data by Facebook.

Furthermore, as agreed, we would like to point out that you can find the information required in accordance with Art. 13 para. 1 lit. a) and b) GDPR in Facebook’s data policy at: https://www.facebook.com/about/privacy

In particular, you will find information on how Facebook and Instagram process personal data, including the legal basis on which Facebook relies and the options for exercising the rights of data subjects vis-à-vis Facebook.

You can contact Facebook’s data protection officer here: https://www.facebook.com/help/contact/540977946302970. Settings options for the processing of personal data by Facebook can be found in your Facebook profile under the menu item Settings.

We only process personal data via our Facebook/Instagram (meta) page if you interact with our Facebook/Instagram (meta) page, e.g. if you leave a comment, click a Like button or send us a message.

The legal basis for data processing by us in this regard is, on the one hand, Art. 6 (1) (b) GDPR (e.g. if you send us a contract-relevant inquiry). On the other hand, data processing may also be based on your consent in accordance with Art. 6 (1) (a) GDPR (e.g. if you “like” a post from us, comment on it or upload content to our site). You can revoke your consent at any time with effect for the future by deleting the comment or the content in question. Revocation does not affect the legality of the processing carried out on the basis of the consent until revocation.

We also analyze the views and interactions on our Facebook/Instagram (Meta) page. For this purpose, Facebook/Instagram (Meta) creates user profiles and provides us exclusively with anonymous data in the “Insights” section.

Please note that when you use and access our Facebook (Meta) page, your personal data will also be processed by the operating companies of “Facebook”. This is Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
In addition to the processing described above, Facebook (Meta) also processes your data for analysis and advertising purposes or to create personalized advertising. To the best of our knowledge, Facebook (Meta) also uses cookies that store your usage behavior (also across different end devices). This allows Facebook (Meta) to create targeted advertising within its own platform and on third-party sites. Further information can be found in Facebook (Meta)’s privacy policy, which is available here: https://www.facebook.com/about/privacy/. Facebook (Meta) also offers the option of objecting to certain data processing; information on this and opt-out options can be found at https://www.facebook.com/settings?tab=ads.

Please note that according to the Facebook (Meta) privacy policy, data is also processed in the USA or other third countries. According to its privacy policy, Facebook (Meta) only transfers data to countries for which an adequacy decision has been made by the European Commission in accordance with Art. 45 GDPR or on the basis of suitable guarantees in accordance with Art. 46 GDPR.

With regard to data processing via our Facebook (Meta) page, you also have the option of asserting your data subject rights against Facebook (Meta). Further information on this can be found in Facebook (Meta)’s privacy policy. https://www.facebook.com/about

We also have a profile on Instagram (Meta). The provider is Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2. For details on how they handle personal data, please refer to the Instagram (Meta) privacy policy: https://help.instagram.com/519522125107875

Twitter short messages

We offer our business contacts the opportunity to use the Twitter short message service as a means of communicating with us. The provider of this platform and the services is Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

We would like to point out that you use the Twitter short message service offered here and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. sharing, rating). The data collected about you when you use the service is processed by Twitter Inc. and may be transferred to countries outside the European Union.

This includes your IP address, the application you are using, information about the device you are using (including device ID and application ID), information about websites you have visited, your location and your mobile phone provider. This data is assigned to the data of your Twitter account or your Twitter profile.

We have no influence on the type and scope of the data processed by Twitter, the type of processing and use or the disclosure of this data to third parties. Information about which data is processed by Twitter and for what purposes it is used can be found in Twitter’s privacy policy https://twitter.com/privacy?lang=de and via the option to view your own data on Twitter https://help.twitter.com/de/managing-your-account/accessing-your-twitter-data.

You also have the option of requesting information via the Twitter data protection form or the archive requirements: https://support.twitter.com/forms/privacy https://help.twitter.com/de/managing-your-account/how-to-download-your-twitter-archive. As the provider and user of the information service, we also collect and process data from your use of our channel. You have the option of restricting the processing of your data in the general settings of your Twitter account and under “Data protection and security”.

On mobile devices (smartphones, tablet computers), you can also restrict Twitter’s access to contact and calendar data, photos, location data, etc. in the settings options there. However, this depends on the operating system used. Further information on these points is available on the following Twitter support pages https://support.twitter.com/articles/105576#

Twitter buttons or widgets integrated into websites and the use of cookies enable Twitter to record your visits to these websites and assign them to your Twitter profile. This data can be used to tailor content or advertising to you. You can find information on this and the available setting options on the following Twitter support pages: https://help.twitter.com/de/using-twitter/tailored-suggestions https://help.twitter.com/de/rules-and-policies/twitter-cookies

Data protection notice on the use of YouTube

On our website, we use the services of the provider YouTube to publish our videos. The operator of this site is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When you actively access one of our videos, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

Further information on the handling of user data can be found in YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy. Opt-out: https://adssettings.google.com/authenticated

Vimeo video platform

Our website embeds videos from Vimeo, which is operated by Vimeo LLC, 555 West 18th Street, New York 10011 (“Vimeo”). The plugins are marked with a Vimeo logo, for example in the form of the letter “V” or the lettering “vimeo”.

When you access a page on our website that contains such a plugin, your browser establishes a direct connection to the Vimeo servers. The content of the plugin is transmitted by Vimeo directly to your browser and integrated into the page. Through this integration, Vimeo receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Vimeo profile or are not currently logged in to Vimeo.

This information (including your IP address) is transmitted directly from your browser to a Vimeo server in the USA and stored there. If you are logged in to Vimeo, Vimeo can directly associate your visit to our website with your Vimeo account. If you interact with the plugins, for example by clicking the “Vimeo” button, this information is also transmitted directly to an Instagram server and stored there.

The information will also be published on your Vimeo account and displayed to your contacts there.

If you do not want Vimeo to assign the data collected via our website directly to your Vimeo account, you must log out of Vimeo before visiting our website. Further information on this can be found in Vimeo’s privacy policy(https://vimeo.com/privacy).

Objection to advertising e-mails

We hereby object to the use of our contact data published in the context of the imprint obligation to send unsolicited advertising and information material. As the site operator of the pages offered, we expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Changes and updates to the privacy policy

Please inform yourself regularly about the content of this data protection information. This is because it will be updated as soon as changes to the data processing carried out by us make this necessary or legal requirements demand it.

For reasons of better readability, we have avoided the simultaneous use of female and male language forms and in some cases have used the generic masculine. All personal designations apply equally to all genders.

Status 09/2022