Privacy Policy

 

Effective Date: 24.08.2024

 

Introduction

​

​

At AW-Recruiting, we take the protection of our website and mobile app users' data very seriously and are committed to safeguarding the information users provide to us in connection with their use of our website and mobile app. Furthermore, we are committed to protecting and using your data in accordance with applicable laws.

​

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your data through the use of our digital assets when you access our services via your devices.

Please read this Privacy Policy carefully and make sure you fully understand our practices regarding your data before using our services. If you have read and fully understood this policy and do not agree with our practices, you must discontinue the use of our digital assets and services. By using our services, you acknowledge the terms of this Privacy Policy. Your continued use of the services constitutes your consent to this Privacy Policy and any amendments made to it.

​

​

This Privacy Policy will inform you about, among other things:

​

How We Collect Data

​

What Data We Collect

​

Why We Collect This Data

​

Who We Share Data With

​

Where Data Is Stored

​

Hosting

​

How Long We Retain Data

​

How We Protect Data

​

What Are Your Rights Regarding Your Data?

​

Notice Regarding the Data Controller

​

General Notes on Legal Grounds

​

Right to Lodge a Complaint with the Relevant Supervisory Authority

​

Social Media, Newsletter

​

Updates or Changes to the Privacy Policy

​

Contact Information

​

What Data Do We Collect?

​

Below is an overview of the types of data we may collect:

​

Non-Identifiable and Non-Identifiable Information that you provide during the registration process or collected through your use of our services. Non-personal data cannot be used to identify individuals. The non-personal data we collect primarily includes technical and aggregated usage information.

Individually Identifiable Information, i.e., data that can identify you or could reasonably be used to identify you. The personal data we collect through our services may include information that we may request periodically, such as names, email addresses, postal addresses, phone numbers, IP addresses, and more. If we combine personal and non-personal data, we treat the combined information as personal data as long as it remains combined.

How Do We Collect Data?

Outlined below are the primary methods we use to collect data:

​

We collect data during your use of our services. When you visit our digital assets and use our services, we may collect, record, and store information related to your usage sessions.

​

We collect data that you provide directly, such as when you contact us via a communication channel (e.g., an email, contact form with a comment, or feedback).

​

We may collect data from third-party sources as described below.

We collect data you provide to us when you log into our services via a third party, such as Facebook, Instagram, WhatsApp, TikTok, LinkedIn, or Google.

​

​

Why Do We Collect This Data?

​

We may use your data for the following purposes:

​

​

To provide and operate our services;

​

To develop, customize, and improve our services;

​

To respond to your feedback, requests, and inquiries and to provide

​

support;

​

To analyze usage patterns and requirements;

​

For other internal, statistical, and research purposes;

​

To enhance our data security and fraud prevention capabilities;

​

To investigate violations and enforce our terms and policies and

​

comply with applicable law, regulations, or governmental orders;

​

To send updates, notifications, promotional materials, and other

​

information related to our services. For promotional emails, you may

​

opt out at any time by clicking the unsubscribe link in these emails.

​

Who Do We Share This Data With?

​

​

We may share your data with our service providers to operate our services (e.g., data storage via third-party hosting services, providing technical support, etc.).

We may also disclose your data under the following circumstances: (i) to investigate, detect, prevent, or take action regarding illegal activities or other wrongdoing; (ii) to establish or exercise our right of defense; (iii) to protect our rights, property, or personal safety, as well as the safety of our users or the public; (iv) in the event of a change of control in our company or one of our affiliates (e.g., through a merger, acquisition, or purchase of substantially all assets); (v) to collect, hold, and/or manage your data through authorized third-party providers (e.g., cloud service providers) as reasonably necessary for business purposes; (vi) to work jointly with third parties to improve your user experience. For clarity, we reserve the right to transfer, share, or otherwise use non-personal data at our discretion.

​

Where Do We Store Data?

​

Non-Personal Data

​

Please note that our company, along with our trusted partners and service providers, is located worldwide. For the purposes outlined in this Privacy Policy, we store and process all non-personal data collected in various jurisdictions.

​

Hosting

​

​

Our website content is hosted by: Wix.com Ltd.
Yunitsman 5 St, Tel Aviv, Israel
Website: www.wix.com
Phone: +972 (3) 545-4900

​

AW-Recruiting Collects Personal Data

​

Personal Data

Personal data may be maintained, processed, and stored in the United States, Ireland, South Korea, Taiwan, Israel, and in other jurisdictions as required for the proper provision of our services and/or as legally mandated (as further detailed below).

​

How Long Do We Retain Data?

​

Please be aware that we retain the collected data for as long as necessary to provide our services, comply with our legal and contractual obligations, resolve disputes, and enforce our agreements. We reserve the right to correct, supplement, or delete inaccurate or incomplete data at our discretion.

​

How Do We Protect Data?

​

The hosting service for our digital assets provides us with the online platform that enables us to offer our services. Your data may be stored through the data storage, databases, and general applications of our hosting provider. They store your data on secure servers behind a firewall and offer secure HTTPS access to most areas of their services.

​

Despite the measures and efforts undertaken by us and our hosting provider, we cannot and do not guarantee absolute protection or security for data that you upload, post, or otherwise share with us or others. For this reason, we encourage you to set secure passwords and to refrain from sharing confidential information that could result in significant or lasting harm if disclosed. Since email and instant messaging are not considered secure forms of communication, we also advise against sharing any confidential information via these channels.

​

​

We only use your personal data for the purposes set forth in this Privacy Policy and only if we are confident that:

​

​

The use of your personal data is necessary to perform or enter into a contract (e.g., to provide the services themselves, customer care, or technical support);

The use of your personal data is necessary to comply with applicable legal or regulatory obligations; or

The use of your personal data is necessary to support our legitimate business interests (provided that this is done in a manner that is proportionate and respects your privacy rights at all times).

As an EU resident, you have the right to:

Request confirmation of whether personal data concerning you is being processed and access your stored personal data along with certain supplementary information;

​

Request to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format;

​

Request the correction of your personal data stored with us;

​

Request the deletion of your personal data;

​

Object to our processing of your personal data;

​

Request the restriction of the processing of your personal data; or

​

Lodge a complaint with a supervisory authority.

Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how we use it, please contact us as indicated below.

In providing our services, we may transfer data internationally to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using our services, you consent to the transfer of your data outside the EEA.

​

If you reside within the EEA, your personal data will only be transferred to locations outside the EEA where we are confident that an adequate or comparable level of data protection is in place. We will take appropriate steps to ensure we have proper contractual agreements with our third parties to guarantee that appropriate security measures are in place to minimize the risk of unlawful use, alteration, deletion, loss, or theft of your personal data, and to ensure that these third parties comply with applicable laws at all times.

California Consumer Privacy Rights

​

If you are a California resident using our services, you may be entitled to request access to and deletion of your data under the California Consumer Privacy Act (CCPA).

​

To exercise your right to access and delete your data, please refer to the contact information below.

​​

What Rights Do You Have Regarding Your Data?

​

You have the right to request free information at any time about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have granted consent for data processing, you can revoke this consent at any time for the future. Additionally, you have the right to request the restriction of processing your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the relevant supervisory authority.

​

For any inquiries regarding data protection or to exercise your rights, please feel free to contact us. Your satisfaction and the protection of your data are extremely important to us, and we will do everything possible to facilitate this.

​

Right to Restrict Processing

​

You have the right to request the restriction of processing your personal data. You can contact us at any time to exercise this right. The right to restrict processing exists in the following cases:

​

If you dispute the accuracy of your personal data stored with us, we typically require time to verify this. During the verification period, you have the right to request the restriction of processing your personal data.

If the processing of your personal data was unlawful, you may request the restriction of data processing instead of deletion.

​

If we no longer require your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of processing your personal data instead of deletion.

​

If you have lodged an objection under Article 21(1) of the GDPR, a balancing of interests must be conducted between yours and our interests. Until it is determined whose interests prevail, you have the right to request the restriction of processing your personal data.

​

If you have restricted the processing of your personal data, such data may only be processed, aside from storage, with your consent or for the establishment, exercise, or defense of legal claims, for the protection of another natural or legal person’s rights, or for important public interest reasons of the European Union or a member state.

​

Responsible Entity
​
AW-Recruiting
Margaretenweg 7
86842 Türkheim
Email: info@aw-recruiting.com
Phone: +49 1714561439

​

The responsible entity is the natural or legal person that alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

​

Note on Data Transfer to Non-Secure Third Countries
​
We utilize tools from companies based in non-secure third countries, as well as US tools from providers not certified under the EU-US Data Privacy Framework (DPF). When these tools are active, your personal data may be transferred to and processed in these countries. Please note that in non-secure third countries, no comparable level of data protection to that in the EU can be guaranteed.

​

​

The United States is generally considered a safe third country, with a level of data protection comparable to that of the EU, provided the recipient has DPF certification or suitable additional guarantees. Information on transfers to third countries, including data recipients, can be found in this privacy policy.

​

Recipients of Personal Data​​
​
In our business operations, we collaborate with various external parties, which sometimes requires the transfer of personal data to these external parties. We only share personal data with external parties if this is necessary for the performance of a contract, if we are legally obliged to do so (e.g., sharing data with tax authorities), if we have a legitimate interest in the data transfer according to Article 6(1)(f) of the GDPR, or if another legal basis permits data sharing. When employing processors, we share personal data only based on a valid data processing agreement. In the case of joint processing, a contract for joint processing is concluded.

​

General Information on the Legal Basis for Data Processing on This Website​​
​
If you have consented to data processing, we process your personal data based on Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, where special categories of data are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing also occurs based on Article 49(1)(a) of the GDPR. If you consent to the storage of cookies or access to information on your device (e.g., via device fingerprinting), data processing is additionally based on Section 25(1) of the TTDSG. Consent can be revoked at any time. If your data is necessary for the performance of a contract or for the implementation of pre-contractual measures, we process your data based on Article 6(1)(b) of the GDPR. Furthermore, we process your data if it is necessary to comply with a legal obligation based on Article 6(1)(c) of the GDPR. Data processing may also occur based on our legitimate interests according to Article 6(1)(f) of the GDPR. Relevant legal bases for each case are discussed in the following paragraphs of this privacy policy.

​

Objection to Advertising Emails​​
​
We hereby object to the use of contact data published under the legal notice for the sending of unsolicited advertising and informational materials. The operators of the website expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails.

 

​​AW-Recruiting Blog/Forum​​

​

Please note that our services allow for social interactions (e.g., posting content, information, and comments publicly and chatting with other users). We would like to remind you that any content or data you provide in these areas may be read, collected, and used by others. We advise against posting or sharing information that you do not want to make public. Uploading content to our digital assets or otherwise providing it while using a service is done at your own risk. We cannot control the actions of other users or members of the public with access to your data or content. You acknowledge and confirm that copies of your data may remain accessible even after deletion on cached and archived pages or after third parties have created copies/stored your content.

Users of the services who are residents of California and under the age of 18 can request the deletion of their published content via email at the address provided in the "Contact" section below. These requests must be marked with “California Removal Request.” All requests must include a description of the content you wish to have deleted and sufficient information to help us locate the material. We do not accept notifications that are not marked or not properly submitted, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not ensure that the material will be completely or comprehensively deleted. Material published by you may, for example, be republished or reposted by other users or third parties.

Cookies and Similar Technologies
​
​

If you have restricted the processing of your personal data, such data may only be processed apart from storage — with your consent or for the assertion, exercise, or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of substantial public interest of the European Union or a member state.

Notice of the responsible entity

AW-Recruiting
Margaretenweg 7
86842 Türkheim
info@aw-recruiting.com
Tel: +49 1714561439

The responsible entity is the natural or legal person that decides alone or jointly with others on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Notice on data transfer to data protection law non-secure third countries and transfer to US companies not certified under the DPF

We use tools from companies based in data protection law non-secure third countries, as well as US tools whose providers are not certified under the EU-US Data Privacy Framework (DPF). When these tools are active, your personal data may be transmitted to and processed in these countries. We point out that no data protection level comparable to that of the EU can be guaranteed in data protection law non-secure third countries. We emphasize that the USA generally has a data protection level comparable to that of the EU. Data transfer to the USA is permissible if the recipient has a certification under the “EU-US Data Privacy Framework” (DPF) or has suitable additional guarantees. Information on transfers to third countries, including data recipients, can be found in this privacy policy.

Recipients of personal data

In the course of our business activities, we work with various external entities. In this context, it is sometimes necessary to transmit personal data to these external entities. We only pass on personal data to external entities if this is necessary for the fulfillment of a contract, if we are legally obliged to do so (e.g., transfer of data to tax authorities), if we have a legitimate interest in the transfer pursuant to Art. 6 para. 1 lit. f GDPR, or if another legal basis permits the data transfer. When using processors, we only share our customers' personal data on the basis of a valid contract for processing. In the case of joint processing, a contract for joint processing will be concluded.

General notes on the legal bases for data processing on this website

If you have consented to data processing, we process your personal data on the basis of Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, if special categories of data under Art. 9 para. 1 GDPR are processed. In the case of explicit consent for the transfer of personal data to third countries, the data processing also takes place on the basis of Art. 49 para. 1 lit. a GDPR. If you have consented to the storage of cookies or to accessing information on your device (e.g., via device fingerprinting), data processing also takes place on the basis of § 25 para. 1 TTDSG. Consent can be revoked at any time. If your data is necessary for the fulfillment of a contract or for carrying out pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, we process your data if it is necessary for fulfilling a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR. Data processing can also occur on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Information on the relevant legal bases for each individual case will be provided in the following sections of this privacy policy.

Objection to advertising emails

The use of contact data published in the context of the imprint obligation for sending unsolicited advertising and informational materials is hereby contradicted. The operators of the sites expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example, through spam emails.

AW-Recruiting Blog/Forum

Please note that our services allow for social interactions (e.g., publicly posting content, information, and comments and chatting with other users). We advise that any content or data you provide in these areas may be read, collected, and used by others. We advise against posting or sharing information you do not wish to make public. If you upload content on our digital assets or otherwise make it available in the course of using a service, this is done at your own risk. We cannot control the actions of other users or members of the public who have access to your data or content. You acknowledge and confirm that copies of your data may remain accessible even after deletion on cached and archived pages or after creation of a copy/storage of your content by third parties.

Users of the services who are residents of California and under 18 years of age may request the deletion of their published content via email at the address provided in the “Contact” section. These requests must be marked “California Removal Request.” All requests must include a description of the content you wish to be deleted as well as sufficient information to help us locate the material. We will not accept notifications that are not marked or not properly submitted, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not ensure that the material will be completely or comprehensively deleted. Material you posted may be re-published or reposted by other users or third parties.

Cookies and similar technologies

When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services ("tracking technologies"). These tracking technologies may enable third parties to automatically collect your data to improve the navigation experience on our digital assets, optimize performance, ensure a tailored user experience, and for security and fraud prevention purposes.

Our websites use so-called "cookies." Cookies are small data packets that do not damage your device. They are either temporarily stored for the duration of a session (session cookies) or stored permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit ends. Persistent cookies remain on your device until you delete them yourself or they are automatically deleted by your web browser.

Cookies can originate from us (first-party cookies) or from third parties (so-called third-party cookies). Third-party cookies enable the integration of certain services from third parties within websites (e.g., cookies for payment services).

Cookies serve various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or video display). Other cookies can be used to evaluate user behavior or for advertising purposes.

Cookies that are required for conducting the electronic communication process, for providing certain functions requested by you (e.g., for the shopping cart function), or for optimizing the website (e.g., cookies for measuring web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is provided. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services.

If consent for the storage of cookies and similar recognition technologies has been requested, processing occurs exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG); consent can be revoked at any time.

You can configure your browser to be informed about the setting of cookies and to allow cookies only on a case-by-case basis, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser.

If you disable cookies, the functionality of this website may be limited.

You can find out which cookies and services are used on this website in this privacy policy.

To learn more, please read our cookie policy.

Contact Form

If you contact us via contact form, your details from the request form, including the contact details you provided there, will be stored for processing the request and for follow-up questions. We will not share this data without your consent.

The processing of this data takes place on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for carrying out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling the requests directed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if it has been requested; the consent can be revoked at any time.

The data you enter in the contact form will remain with us until you request us to delete it, withdraw your consent to storage, or the purpose for data storage ceases to exist (e.g., after completing the processing of your request). Mandatory legal provisions — particularly retention periods — remain unaffected.

Inquiry via email, phone, or fax

If you contact us via email, phone, or fax, your request, including all resulting personal data (name, inquiry), will be stored and processed for the purpose of addressing your concern. We will not share this data without your consent.

The processing of this data takes place on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for carrying out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling the requests directed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if it has been requested; the consent can be revoked at any time.

The data you send us via contact requests will remain with us until you request us to delete it, withdraw your consent to storage, or the purpose for data storage ceases to exist (e.g., after completing your inquiry). Mandatory legal provisions — particularly statutory retention periods — remain unaffected.

Appointment Scheduling

If individuals wish to schedule a meeting with the responsible entity, they can view available appointments via an appointment booking portal integrated into our website and choose one. We then receive a notification from the appointment booking portal. In this context, the following data is processed: all data collected during the appointment scheduling (usually name, email address, appointment). However, we do not guarantee attendance at the booked appointment.

Automation in contract-related communication

In the context of establishing, executing, or terminating contracts or confirming simple emails/WhatsApp messages, the responsible entity has automated parts of the communication with you. In doing so, it processes all communication data of the affected parties that trigger automated responses from the responsible entity, such as the delivery of a product or service. It controls, to this extent:

the collection of your personal data when initiating the respective contract,

the communication necessary for establishing, executing, and/or terminating the contract (especially via email) with the affected parties as well as

the delivery of products and/or services.

The following data is processed: 1. all contact and order data you entered, 2. possibly payment data, 3. delivery data, and 4. data regarding the assertion of rights of the affected parties and the response of the responsible entity.

Useful Information via Email

AW-Recruiting processes the data of affected individuals to possibly send them useful, promotional information via email. This includes regularly and irregularly published electronic newsletters. At the beginning, you provide the responsible entity with the data required for registration. In this context, the following data is processed: cookie-based data, which carries the following information: The responsible entity processes the data that the affected parties voluntarily provide for this purpose (usually email and name) as well as the data necessary to prove the granting of consent and possibly data for the revocation of consent.

Comment Function on this Website

For the comment function on this page, along with your comment, the time of creation of the comment, your email address, and, if you do not post anonymously, the username you have chosen will be stored.

Storage Duration of Comments

The comments and the associated data will be stored and remain on this website until the content being commented on has been completely deleted or the comments must be deleted for legal reasons (e.g., offensive comments).

Subscribing to Comments

As a user of the site, you can subscribe to comments after registering. You will receive a confirmation email to verify whether you are the owner of the provided email address. You can unsubscribe from this feature at any time through a link in the info emails. The data entered during the comment subscription will be deleted in this case; however, if you have provided this data for other purposes and in other places (e.g., newsletter subscription), this data will remain with us.

Legal Basis

The storage of comments takes place on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your consent at any time. A simple informal notification via email to us is sufficient for this. The lawfulness of the data processing operations already carried out remains unaffected by the revocation.

Login Area

On our website, users have the option to register for the use of an internal area, log in there, and then log out again. When registering for the internal area, the responsible entity collects the data that you provide during the registration process. Within the internal area, the responsible entity logs actions of the affected parties as far as this is necessary for providing the internal area with its functions. The following data is processed: 1. the registration data entered by the affected parties, 2. login data, 3. actions that the affected parties perform within the login area, and 4. logout status.

AW-Recruiting is NOT associated with an advertising service

Without your consent, we will not share your email address or other personal data with advertising companies or advertising networks.

AW-Recruiting does not sell users' data

We do not sell users' personal data for the purposes and intents of the CCPA.

Right to Complain to the Competent Supervisory Authority

In the event of violations of the GDPR, affected individuals have the right to lodge a complaint with a supervisory authority, especially in the member state of their habitual residence, workplace, or the location of the alleged violation. The right to complain exists without prejudice to other administrative or judicial remedies.

Social Media:

Facebook

​

This website integrates elements from the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. However, according to Facebook, the collected data is also transmitted to the USA and other third countries.

An overview of the Facebook social media elements can be found here:https://developers.facebook.com/docs/plugins/?locale=de_DE.

​

When the social media element is active, a direct connection is established between your device and the Facebook server. This allows Facebook to receive the information that you have visited this website with your IP address. If you click the Facebook "Like" button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to associate your visit to this website with your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the transmitted data or how Facebook uses it. More information can be found in Facebook's privacy policy at:  https://de-de.facebook.com/privacy/explanation.

​

The use of this service is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. Consent can be revoked at any time. To the extent that personal data is collected on our website using the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited to the collection of the data and its forwarding to Facebook. The processing that occurs after the forwarding by Facebook is not part of this joint responsibility. Our jointly held obligations have been documented in an agreement on joint processing. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum

​

According to this agreement, we are responsible for providing data protection information when using the Facebook tool and for the data protection-compliant implementation of the tool on our website. Facebook is responsible for the data security of its products. Rights of the data subjects (e.g., requests for information) regarding the data processed by Facebook can be asserted directly with Facebook. If you assert your rights with us, we are obliged to forward them to Facebook.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:https://www.facebook.com/legal/EU_data_transfer_addendum , https://de-de.facebook.com/help/566994660333381 und https://www.facebook.com/policy.php.

​

The company has a certification under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA, which aims to ensure compliance with European data protection standards for data processing in the USA. Any company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider at the following link:https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

 

X (formerly Twitter)

This website has integrated functions of the service X (formerly Twitter). These functions are offered by the parent company X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. For the data processing of individuals living outside the USA, the subsidiary responsible is Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.

When the social media element is active, a direct connection between your device and the X server is established. This allows X (formerly Twitter) to receive information about your visit to this website. By using X (formerly Twitter) and the “Re-Tweet” or “Repost” function, the websites you visit will be linked to your X (formerly Twitter) account and made known to other users. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the transmitted data or how X (formerly Twitter) uses it. For more information, please see the privacy policy of X (formerly Twitter) at: https://twitter.com/de/privacy.

The use of this service is based on your consent according to Article 6 (1) lit. a GDPR and § 25 (1) TTDSG. Consent can be revoked at any time. Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html. You can change your privacy settings at X (formerly Twitter) in your account settings at https://twitter.com/account/settings.

LinkedIn

The social network LinkedIn of LinkedIn Ireland Unlimited Company (Ireland-EU) is used. However, it cannot be ruled out that data transfer or integration with the parent company, LinkedIn Corporation (USA), takes place. Details on the nature and manner of processing by the third party are described here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.

The use of this third-party service does not preclude the possibility of data transfer to or integration with the US-based parent company.

The processing of personal data through this tool occurs only if the affected individuals consent to the associated data transfer to the USA (see Article 49 (1) lit. A GDPR). This happens vis-à-vis the local responsible party, as far as they control the data processing. If the providers of the social network or medium control the processing (e.g., if the affected individuals visit the social network independently of an action on this website), there is no transmission by the local responsible party to the USA, so the local responsible party does not need to provide further guarantees in accordance with Articles 44ff. GDPR. Here, there exists a relationship between the local responsible party and the provider of the social network according to Article 26 GDPR.

Instagram

This website incorporates functions of the Instagram service. These functions are offered by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.

When the social media element is active, a direct connection between your device and the Instagram server is established. Instagram thus receives information about your visit to this website. If you are logged into your Instagram account, you can link the content of this website to your Instagram profile by clicking the Instagram button. This allows Instagram to assign your visit to this website to your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the transmitted data or how Instagram uses it.

The use of this service is based on your consent according to Article 6 (1) lit. a GDPR and § 25 (1) TTDSG. Consent can be revoked at any time.

As far as personal data is collected on our website using this tool and forwarded to Facebook or Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the collection of data and its transfer to Facebook or Instagram. The subsequent processing of data by Facebook or Instagram is not part of the joint responsibility. The obligations we share have been documented in an agreement on joint processing. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum.

According to this agreement, we are responsible for providing the data protection information when using the Facebook or Instagram tool and for the data protection-compliant implementation of the tool on our website. Facebook is responsible for the data security of Facebook or Instagram products. Rights of affected individuals (e.g., requests for information) regarding the data processed by Facebook or Instagram can be asserted directly with Facebook. If you assert your rights with us, we are obligated to forward these to Facebook.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy/, and https://de-de.facebook.com/help/566994660333381.

Further information can be found in the privacy policy of Instagram: https://privacycenter.instagram.com/policy/.

The company has a certification under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards in data processing in the USA. Any company certified under the DPF commits to adhering to these data protection standards. Further information can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/s/participantsearch/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active.

​

TikTok

​

We use the social network "TikTok," which is jointly offered by TikTok Technology Limited (Ireland - EU) and TikTok Information Technologies UK Limited (United Kingdom of England and Northern Ireland). However, the providers' privacy policy indicates that they also share data with other companies within their "group," without specifying which companies are involved. Despite publicly stated contrary assertions, it cannot be ruled out that data is processed by companies in the USA and/or the People's Republic of China, specifically by the parent company Beijing Bytedance Technology Ltd. (People's Republic of China). If the responsible party and the providers of the social network or medium are jointly responsible, they have established joint responsibility under Article 26 GDPR. In all other cases, the provider of the social network or medium has been commissioned under Article 28 GDPR. Further details on the processing by these third-party providers are described here: https://www.tiktok.com/legal/privacy-policy-eea?lang=de. The use of this third-party service does not preclude the possibility of data transmission to the USA or the People's Republic of China. The processing of personal data through this tool occurs only if the affected individuals consent to the associated data transfer to the USA or the People's Republic of China (see Article 49 (1) lit. a GDPR). This happens vis-à-vis the local responsible party, as far as they control the data processing. If the providers of the social network or medium control the processing (for example, if the affected individuals visit the social network independently of an action on this website), there is no transmission by the local responsible party to the USA, so the local responsible party does not need to provide further guarantees in accordance with Articles 44ff. GDPR. Here, there exists a relationship between the local responsible party and the provider of the social network according to Article 26 GDPR.

The responsible party also maintains a corporate or product page with this provider, which is also linked on this website. If affected individuals click this link (referring to the link to the corporate or product page), they will be directed to the responsible party's profile.

The responsible party has integrated a plugin from the provider of the social network or medium on this website. If the affected individuals click this plugin, they will be directed to the responsible party's profile. The responsible party uses the so-called two-click solution. This means that after the click, no personal data is generally transmitted to the provider of the plugin. The provider can be recognized by the design of the plugin (e.g., through the logo). The responsible party allows the affected individuals to communicate directly with the provider of the plugin via the button. Only if they click the marked field and activate it will the provider receive information that the affected individuals have visited this website. Only then will the above-mentioned data be transmitted. Thus, by activating the plugin, personal data of the affected individuals will be transmitted to the provider mentioned above and may be stored or transmitted to the USA. This data transfer occurs regardless of whether the affected individuals have an account with the provider mentioned above and are logged in there. If they are logged in, the data collected by the local responsible party will be directly assigned to the account that the affected individuals maintain with the provider mentioned above. It is advisable to log out of a social network regularly, especially before activating the button, as this way the affected individuals can avoid linking to their profile with the provider.

The responsible party uses the “TikTok Pixel.” This is an analytics tool that allows the responsible party to measure the effectiveness of advertising. It is generally used to understand and track actions of individuals on a website. The responsible party has implemented the pixel on this website by placing the pixel code in the header of the website. When affected individuals visit the website and take action (e.g., completing a purchase), the pixel is triggered, and the action is reported. In this way, the responsible party learns when an affected individual takes an action and can evaluate this. There is also the possibility of advanced matching, which the responsible party also uses, and its use is also covered by consent. The pixel also enables the transmission of affected data (e.g., first name, last name, email address) to TikTok. Affected individuals can view the information that is processed through the TikTok pixel in the provider's privacy policy: https://www.tiktok.com/legal/privacy-policy-eea?lang=de. Further information can be found on the website: https://www.tiktok.com/business/en/learn/what-is-tiktok-pixel.

The use of this service is based on your consent according to Article 6 (1) lit. a GDPR and § 25 (1) TTDSG. Consent can be revoked at any time.

​​

Newsletter Data Collection

​

To subscribe to the newsletter offered on our website, we require an email address and information that allows us to verify that you are the owner of the specified email address and consent to receiving the newsletter. We will only collect additional data on a voluntary basis. This data is exclusively used to send the requested information and is not shared with third parties.

The data you enter in the newsletter sign-up form is processed solely on the basis of your consent (Art. 6(1)(a) GDPR). You may revoke your consent to the storage of your data, your email address, and its use for newsletter distribution at any time, for example, via the “Unsubscribe” link in the newsletter. The legitimacy of any data processing conducted before we receive the revocation remains unaffected.

Data stored with us for the purpose of newsletter subscription will be retained until you unsubscribe from the newsletter. After your unsubscription, it will be deleted from our records. Additionally, we may, at our discretion, delete or block email addresses from our newsletter distribution list in accordance with our legitimate interests (Art. 6(1)(f) GDPR).

Data stored for other purposes remains unaffected by this policy. After unsubscribing, your email address may be stored on a blacklist to prevent future mailings, in line with our legitimate interest in legal compliance for newsletter distribution. You can oppose this storage if your interests outweigh ours.

​

YouTube

 

This website incorporates videos from YouTube, operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you access a page on our website with an embedded YouTube video, a connection to YouTube’s servers is established, and YouTube is informed about the pages you visited. YouTube may also store cookies on your device or use similar recognition technology (e.g., device fingerprinting). This enables YouTube to gather information about website visitors, which is used to compile video statistics, improve user experience, and prevent fraud.

If you are logged into your YouTube account, YouTube can associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

Using YouTube serves our interest in an appealing presentation of our online offerings, a legitimate interest under Art. 6(1)(f) GDPR. If we have requested your consent, processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TTDSG if consent includes storing cookies or accessing device information. Consent can be withdrawn at any time.

For more information on handling user data, please see YouTube’s privacy policy: YouTube Privacy Policy.

Google is certified under the EU-US Data Privacy Framework (DPF), ensuring compliance with EU data protection standards for data processing in the U.S. For more information, visit Data Privacy Framework.

​

Google Maps / Drive

 

We use Google Maps on this website, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, allowing us to display maps on our website.

To utilize Google Maps, your IP address must be stored. This information is usually transmitted to a Google server in the U.S. and stored there. Our company has no control over this data transfer. Google Maps may also use Google Fonts for consistent font display, which your browser retrieves from Google’s cache.

Using Google Maps aligns with our interest in an appealing online presence and easy accessibility of locations listed on our website, constituting a legitimate interest under Art. 6(1)(f) GDPR. If consent is required, processing is based on Art. 6(1)(a) GDPR and § 25(1) TTDSG for storing cookies or device information, with consent revocable at any time.

Data transfer to the U.S. relies on EU Commission Standard Contractual Clauses. See more at Google Privacy.

Google is certified under the EU-US Data Privacy Framework (DPF). For more details, visit Data Privacy Framework.​​