Information on data protection

With this data protection notice, we inform you about how we handle your personal data and about your rights under the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). The data controller is Zenjob SE (hereinafter referred to as “we” or “us”).

Content

  1. General information
    1. Contact
    2. Legal bases
    3. Duration of storage
    4. Categories of recipients of the data
    5. Data transfer to third countries
    6. Processing when exercising your rights
    7. Your rights
    8. Right to object
    9. Data protection supervisor
  2. Data processing on our website
    1. Processing of server log files
    2. Contact options and enquiries
    3. Cookies
    4. Consent Management Tool
    5. Analysis of our website
      1. Google Analytics
      2. Segment
      3. mParticle Analytics
      4. WP Statistics
      5. A/B Smartly
      6. Matomo Analytics
    6. Tracking & Retargeting
      1. Google Tag Manager
      2. Google Ads
      3. Meta Pixel
      4. Tiktok Pixel
      5. LinkedIn Insight Day
      6. Google Ads Customer Match
      7. Awin
      8. ClickCease
      9. Adjust
    7. External media and third-party services
      1. Cloudflare
      2. Amazon Cloudfront
  3. Data processing on our social media pages
    1. Visiting a social media page
      1. Facebook and Instagram
      2. LinkedIn
    2. Comments & Direct Messages
  4. Other data processing
    1. Contact by e-mail
    2. Customer and prospect data
    3. Use of email address for marketing purposes
    4. Candidacies

General information

Contact

If you have any questions or suggestions about this information, or if you would like to contact us to exercise your rights, please send your request to

Zenjob SE
Saarbrücker Straße 21
10405 Berlin
Tel. 030 229 574 95
E-Mail: [email protected]

Legal bases

The term “personal data” under data protection law refers to all information relating to an identified or identifiable person. We process personal data in compliance with the relevant data protection regulations, in particular the GDPR and the BDSG. Data processing by us only takes place on the basis of a legal permission. We process personal data only with your consent (§ 25 (1) TDDDG or Art. 6 (1) (a) GDPR), for the performance of a contract to which you are a party or at your request to take steps before entering into a contract (Art. 6 (1) (b) GDPR), to comply with a legal obligation (Art. 6 (1) (c) GDPR) or if the processing is necessary for the purposes of our legitimate interests or the legitimate interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data prevail (Art. 6(1)(f) GDPR).

If you apply for a vacancy in our company, we will also process your personal data to decide on the establishment of an employment relationship (§ 26 para. 1 sentence 1 BDSG).

Duration of storage

Unless otherwise stated in the following instructions, we will only store the data for as long as is necessary to achieve the purpose of processing or for the fulfilment of our contractual or legal obligations. Such statutory retention obligations may arise in particular from commercial or tax regulations. From the end of the calendar year in which the data was collected, we will retain such personal data contained in our accounting data for ten years and personal data present in commercial letters and contracts for six years. In addition, we will store data in connection with consents that require proof as well as with claims and claims for complaints and claims for the duration of the statutory limitation periods. We will delete data stored for advertising purposes if you object to the processing for this purpose.

Categories of recipients of the data

We use processors to process your data. The processing operations carried out by such processors include, for example, hosting, e-mailing, maintenance and support of IT systems, customer and order management, order processing, accounting and billing, marketing measures or destruction of files and data carriers. A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the data controller. Processors do not use the data for their own purposes, but carry out data processing exclusively for the controller and are contractually obliged to ensure suitable technical and organisational measures for data protection. In addition, we may transmit your personal data to bodies such as postal and delivery services, house bank, tax consulting/auditing company or the tax authorities. Other recipients may result from the following information.

Data transfer to third countries

Our data processing may involve the transfer of certain personal data to third countries, i.e. countries where the GDPR does not apply. Such a transfer shall be carried out in a permissible manner if the European Commission has determined that an adequate level of data protection is required in such a third country. In the absence of such an adequacy decision by the European Commission, a transfer of personal data to a third country will only take place if appropriate safeguards pursuant to Art. 46 GDPR are in place or if one of the requirements of Art. 49 GDPR is met.

Unless otherwise stated below, we use the EU Standard Data Protection Clauses as appropriate safeguards for the transfer of personal data to third countries. You have the option to obtain or view copies of these EU Standard Data Protection Clauses. To do so, please contact us at the address given under Contact.

If you consent to the transfer of personal data to third countries, the transfer takes place on the legal basis of Art. 49 (1) (a) GDPR.

Processing when exercising your rights

If you exercise your rights pursuant to Articles 15 to 22 of the GDPR, we process the personal data transmitted for the purpose of us implementing these rights and in order to be able to provide proof of this. We will only process data stored for the purpose of providing information and its preparation for this purpose as well as for the purposes of data protection control and will otherwise restrict the processing in accordance with Art. 18 GDPR.

This processing is based on the legal basis of Art. 6 (1) (c) GDPR in conjunction with Art. 15 to 22 GDPR and § 34 (2) BDSG.

Your rights

As a data subject, you have the right to assert your rights as a data subject vis-à-vis us. In particular, you have the following rights:

  • In accordance with Art. 15 GDPR and § 34 BDSG, you have the right to request information about whether and, if so, to what extent we process personal data about you or not.
  • You have the right to demand that we correct your data in accordance with Art. 16 GDPR.
  • You have the right to request the deletion of your personal data from us in accordance with Art. 17 GDPR and § 35 BDSG.
  • You have the right to have the processing of your personal data restricted in accordance with Art. 18 GDPR.
  • In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format and to transmit this data to another controller.
  • If you have given us separate consent to data processing, you can revoke this consent at any time in accordance with Art. 7 (3) GDPR. Such a withdrawal shall not affect the lawfulness of the processing carried out on the basis of consent prior to the withdrawal.
  • If you believe that the processing of your personal data violates the provisions of the GDPR, you have the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR.

Right to object

In accordance with Art. 21 (1) GDPR, you have the right to object to processing based on the legal basis of Art. 6 (1) (e) or (f) GDPR on grounds relating to your particular situation. If we process personal data about you for the purpose of direct marketing, you can object to this processing in accordance with Art. 21 (2) and (3) GDPR.

Data protection supervisor

You can reach our internal data protection officer at the following contact details:

E-mail: [email protected]

Data processing on our website

When you use the website, we collect information that you provide yourself. In addition, during your visit to the Site, certain information about your use of the Site is automatically collected by us. In data protection law, the IP address is also considered to be personal data. An IP address is assigned to each Internet-connected device by the ISP so that it can send and receive data.

Processing of server log files

When using our website for purely informational purposes, general information is first stored automatically (i.e. not via registration), which your browser transmits to our server. By default, this includes: browser type/version, operating system used, page accessed, the previously visited page (referrer URL), IP address, date and time of the server request and HTTP status code.

The processing is carried out for the purposes of our legitimate interests and is based on the legal basis of Art. 6 (1) (f) GDPR. This processing is for the technical management and security of the website. The stored data will be deleted after 10 days, unless there is a justified suspicion of unlawful use on the basis of concrete indications and further examination and processing of the information is necessary for this reason. We are not able to identify you as a data subject based on the information we hold. Articles 15 to 22 of the GDPR therefore do not apply in accordance with Article 11 (2) of the GDPR, unless you provide additional information that allows you to be identified in order to exercise your rights set out in these articles.

Our website is hosted on servers operated by Amazon Web Services EMEA SARL (AWS) (Luxembourg, EU). When using AWS, a transfer of your personal data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. For more information about data protection at AWS, please refer to the AWS Privacy Notice.

Some of our landing pages are also hosted on servers operated by Unbounce Marketing Solutions Inc. (Canada). When using Unbounce Marketing Solutions, a transfer of your personal data to Canada cannot be ruled out. We base the transfer of data to Canada on the adequacy decision of the European Commission pursuant to Art. 45 GDPR. For more information on data protection at Unbounce, please refer to Unbounce’s privacy policy.

Contact options and enquiries

Our website contains a contact form that companies can use to request personnel from us. The transfer of your data is encrypted (recognizable by the “https” in the address bar of the browser). All data fields marked as mandatory are required to process your request. Failure to provide this will mean that we will not be able to process your request. The provision of further data is voluntary. Alternatively, you can send us a message via the contact email. We process the data for the purpose of answering your request.

If your enquiry is directed towards the conclusion or performance of a contract with us, Art. 6 (1) (b) GDPR is the legal basis for data processing. Otherwise, we process the data on the basis of our legitimate interest in getting in touch with enquiring persons. The legal basis for data processing is then Art. 6 (1) (f) GDPR.

Cookies

We use cookies and similar technologies (“cookies”) on our website. Cookies are small pieces of data that are stored by your browser when you visit a website. This identifies the browser used and can be recognized by web servers. You have full control over the use of cookies through your browser. You can delete cookies at any time in the security settings of your browser. You can object to the use of cookies through your browser settings in general or in certain cases.

The use of cookies is partly technically necessary for the operation of our website and is therefore permissible without the user’s consent. We may also use cookies to provide special features and content, as well as for analytics and marketing purposes. This may include third-party cookies. We only use such technically unnecessary cookies with your consent in accordance with § 25 (1) TDDDG and, if applicable, Art. 6 (1) (a) GDPR. Information on the purposes, providers, technologies used, stored data and the storage period of individual cookies can be found in the cookie settings of our Consent Management Tool.

Consent Management Tool

This website uses the consent management tool cookiebot of Usercentrics A/S (Denmark, EU) to control cookies and process personal data.

The consent banner enables users of our website to give their consent to certain data processing processes or to revoke their consent. By confirming the “Allow cookies” button or by saving individual cookie settings, you agree to the use of the associated cookies.

The legal basis under data protection law is your consent within the meaning of Art. 6 (1) (a) GDPR.

In addition, the banner supports us in being able to provide proof of the declaration of consent. For this purpose, we process information about the declaration of consent and other log data relating to this declaration. Cookies are also used to collect this data. The processing of this data is necessary in order to be able to prove that consent has been given. The legal basis results from our legal obligation to document your consent (Art. 6 (1) (c) in conjunction with Art. 7 (1) GDPR).

You can withdraw your consent for cookies here: https://manage.cookiebot.com/en/cookies

Analysis of our website

Google Analytics

On our website, we use the Google Analytics service provided by Google Ireland Limited (Ireland, EU).

Google Analytics is a web analytics service that allows us to collect and analyze data about user behavior on our website. For this purpose, Google Analytics uses cookies that enable an analysis of the use of our website. This involves processing personal data in the form of online identifiers (including cookie identifiers), IP addresses, device identifiers and information about interaction with our website.

Some of this data is information that is stored in the device you are using. In addition, the cookies used also store further information on the device you are using. Such storage of information by Google Analytics or access to information that is already stored in your device will only take place with your consent.

Google Ireland will process the data collected in this way on our behalf in order to evaluate the use of our website by users, to compile reports on activities within our website and to provide us with other services related to the use of our website and internet usage. The processed data can be used to create pseudonymous user profiles.

The setting of cookies and the other processing of personal data described here takes place with your consent. The legal basis for data processing in connection with the Google Analytics service is therefore Article 6(1)(a) of the GDPR. You can revoke this consent at any time via our consent management tool with effect for the future.

The personal data processed on our behalf to provide Google Analytics may be transferred to any country in which Google Ireland or Google Ireland’s sub-processors maintain facilities. Please note the information in the section “Data transfer to third countries”.

We only use Google Analytics with IP anonymization activated. This means that the IP address of Google Ireland users will be shortened within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The IP address transmitted by the user’s browser is not merged with other data. Further information on the use of data for advertising purposes can be found in Google’s privacy policy at: www.google.com/policies/technologies/ads/.

We use the Google Analytics 4 variant. This allows us to track interaction data from different devices and from different sessions. This allows us to contextualize individual user actions and analyze long-term relationships.

The data on user actions will be stored for a period of 14 months and then automatically deleted. All other event data is stored for 2 months and then automatically deleted. The deletion of data whose storage period has expired automatically takes place once a month.

We also use the Google Analytics advertising features (remarketing). This feature, in conjunction with Google’s cross-device features, allows us to better target ads and show ads to users that are relevant to their interests.

Segment

We use the Segment service on our website, which is offered by Twilio Ireland Limited (Ireland

, EU). Segment allows us to collect data collected by various services and tools and to create user profiles. This helps us to evaluate user behavior and improve our offering. Segment uses cookies for this purpose.

Your data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

In addition, the Segment supports us in being able to provide proof of the declaration of consent. For this purpose, we process information about the declaration of consent and other log data relating to this declaration. Cookies are also used to collect this data. The processing of this data is necessary in order to be able to prove that consent has been given. The legal basis results from our legal obligation to document your consent (Art. 6 para. 1 lit. c in conjunction with Art. 7 para. 1 GDPR).

When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. For more information about Twilio’s privacy practices, please see Twilio’s Privacy Notice at https://www.twilio.com/legal/privacy.

mParticle Analytics

We use the mParticle Analytics service on our website, which is offered by mParticle Inc. (New York, USA). MParticle Analytics allows us to gain insights into user behavior and thereby improve our website and services.

When using the service, your IP address and device information such as browser type and version, operating system and device identification and e-mail address are collected.

The processing of your data is carried out on the basis of Art. 6 (1) (f) GDPR and is based on our legitimate interest in the optimisation and economic operation of our website.

You can find more information about data protection when using indicatives here: https://www.mparticle.com/privacypolicy/.

WP Statistics

We use the WP Statistics service on our website, a WordPress plugin from VeronaLabs OÜ (Estonia, EU). WP Statistics provides us with various statistics about the use of our website, e.g. the number of website users and their origin. These statistics allow us to improve our website and tailor it to the needs of users.

When using the service, your IP address is collected and then anonymized.

The processing of your data is carried out on the basis of Art. 6 (1) (f) GDPR and is based on our legitimate interest in the optimisation and economic operation of our website.

For more information on data protection when using WP Statistics, please see https://wp-statistics.com/2018/08/16/wp-statistics-gdpr/?utm_source=WordPress&utm_medium=link&utm_campaign=ProductIntroduction.

A/B Smartly

We use the A/B Smartly service on our website, which is offered by A/B Smartly (Netherlands, EU). Using A/B Smartly, we can test various designs and settings of our website and, based on the results, adapt our website to the needs and wishes of website visitors.

Your data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

For more information on data protection at A/B Smartly, please refer to A/B Smartly’s privacy policy under https://www.absmartly.com/privacy-policy.

Matomo Analytics

We use the Matomo service on our website. Matomo is an open-source tool for web analytics. Matomo allows us to record aggregate statistics on website usage in order to detect data quality issues and improve our service. The recorded data includes page views, UTM parameters, web referrers, and a limited number of events (interactions such as clicks). No personal data is recorded and your IP address is anonymized. The data will be stored for a maximum of 7 days.

You can find more information about Matomo here: https://matomo.org/privacy/.

Tracking & Retargeting

Google Tag Manager

We use the Google Tag Manager of the provider Google Ireland Limited (Ireland, EU) on our website. The Google Tag Manager is used to manage our website tags through an interface. The Google Tag Manager is a cookieless domain to which the IP address is transmitted for technical reasons. Google Tag Manager only triggers other tags, which in turn may collect data without accessing that data themselves. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags implemented with Google Tag Manager.

The legal basis for the transmission of the IP address is Art. 6 (1) (f) GDPR. Our legitimate interest is to administer our website services and to trigger other tags.

When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. For more information on data processing, please visit: https://support.google.com/tagmanager/answer/7157428.

Google Ads

On our website, we use the online advertising program Google Ads of Google Ireland Limited (Ireland, EU), through which we place advertisements on the Google search engine. If you access our website via a Google ad, Google will place a cookie on your device (“conversion cookie”). Each Google Ads customer has a different conversion cookie associated with it, so the cookies are not tracked across the websites of different Ads customers. The information collected with the help of the cookie is used to compile conversion statistics. This tells us the total number of people who clicked on one of our Google ads. However, we do not receive any information that can be used to personally identify users.

Your data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

Cookies are set with your consent, which you can revoke at any time via the Consent Management Tool with effect for the future. When using the service, a transfer of your data to the USA cannot be ruled out. Please note the information in the section “Data transfer to third countries”. You can find more information about data protection at Google in Google’s privacy policy under https://policies.google.com/privacy#infocollect.

Meta Pixel

We use the Meta pixel on our website, a Meta Business tool provided by Meta Platforms Ireland Limited (Ireland, EU). Information on the contact details of Meta Platforms Ireland Ltd. and the contact details of the Data Protection Officer of Meta Platforms Ireland Ltd. can be found in the Meta Platforms Ireland Ltd. Data Policy at https://www.facebook.com/about/privacy.

The meta pixel is a snippet of JavaScript code that allows us to track users’ activities on our website. This tracking is called conversion tracking. For this purpose, the Meta-Pixel collects and processes the following information (so-called event data):

  • Information about the actions and activities of users of our website, such as searching for and viewing a product or purchasing a product;
  • Specific pixel information, such as the pixel ID and Facebook cookie;
  • Information about buttons clicked by users of the website;
  • Information present in the HTTP headers, such as IP addresses, information about the web browser, the location of the page, and the referrer;
  • Information about the status of ad tracking opt-out/restriction.

Some of this event data is information that is stored in the device you are using. In addition, the Meta pixel also uses cookies to store information on the device you are using. Such storage of information by the Facebook pixel or access to information that is already stored in your device will only take place with your consent in accordance with § 25 (1) TDDDG.

The event data collected through the Meta pixel is used to target our ads and to improve ad delivery on Meta products such as the social media platforms Facebook and Instagram, to personalize features and content, and to improve and secure Meta products. For this purpose, the event data collected on our website by means of the Meta pixel is transmitted to Meta Platforms Ireland Ltd. This collection and transmission of event data is carried out by us and Meta Platforms Ireland Ltd. as joint controllers. We have entered into a joint controller processing agreement with Meta Platforms Ireland Ltd., which sets out the distribution of data protection obligations between us and Meta Platforms Ireland Ltd. In this agreement, we and Meta Platforms Ireland Ltd. have agreed, among other things, to:

  • that we are responsible for providing you with all information pursuant to Art. 13, 14 GDPR regarding the joint processing of personal data;
  • that Meta Platforms Ireland Ltd. is responsible for enabling the rights of data subjects pursuant to Art. 15 to 20 GDPR with regard to personal data stored by Meta Platforms Ireland Ltd. after joint processing.

You can access the agreement between us and Meta Platforms Ireland Ltd. at https://www.facebook.com/legal/controller_addendum.

Meta Platforms Ireland Ltd. is solely responsible for the subsequent processing of the transmitted event data. For more information on how Meta Platforms Ireland Ltd. processes personal data, including the legal basis on which Meta Platforms Ireland Ltd. relies and how you can exercise your rights against Meta Platforms Ireland Ltd., please refer to Meta Platforms Ireland Ltd.’s Data Policy at https://www.facebook.com/about/privacy.

We have also engaged Meta Platforms Ireland Ltd. to compile reports on the impact of our advertising campaigns and other online content based on the event data collected via the Meta pixel (Campaign Reports) and to provide analysis and insights about users and their use of our website, products and services (Analytics). For this purpose, we transmit personal data contained in the event data to Meta Platforms Ireland Ltd. The personal data submitted will be processed by Meta Platforms Ireland Ltd. as our processor in order to provide us with the campaign reports and analytics.

The collection and transmission of personal data by us to Meta Platforms Ireland Ltd. and the commissioned processing of personal data by Meta Platforms Ireland Ltd. for the preparation of analyses and campaign reports will only take place if you have given your prior consent to this. The legal basis for the processing of personal data is therefore Article 6(1)(a) of the GDPR.

The data processed on our behalf will be transmitted by Meta Platforms Ireland Ltd. to Meta Platforms, Inc. in the USA. Meta Platforms Ireland Ltd. transfers the data to Meta Platforms, Inc. on the basis of processor-to-processor standard contractual clauses, but reserves the right to use an alternative means of transfer recognised by the GDPR and other applicable data protection laws in the European Economic Area, the United Kingdom and Switzerland.

Tiktok Pixel

We use the “TikTok pixel” of TikTok Technology Limited (Ireland, EU) on our website. The TikTok pixel is a snippet of JavaScript code that allows us to track users’ activities on our website. This tracking is called conversion tracking. For this purpose, the TikTok pixel collects and processes the following information (so-called event data):

  • Information about the actions and activities of users of our website, such as searching for and viewing a service or purchasing a service;
  • Specific pixel information such as the pixel ID and TikTok cookie;
  • Information about buttons clicked by users of the website;
  • Information present in the HTTP headers, such as IP addresses, information about the web browser, the location of the page, and the referrer;
  • Information about the status of ad tracking opt-out/restriction.

Some of this event data is information that is stored in the device you are using. In addition, cookies are also used via the TikTok pixel, which are used to store information on the device you are using. Such storage of information by the TikTok pixel or access to information that is already stored in your device will only take place with your consent in accordance with § 25 (1) TDDDG.

The event data collected via the TikTok pixel is used to target our ads and to improve ad delivery on TikTok to personalize features and content. For this purpose, the event data collected on our website by means of the TikTok pixel is transmitted to TikTok. This collection and transmission of event data is carried out by us and TikTok. as joint controllers. We have entered into a processing agreement with TikTok as joint controllers, which specifies the distribution of data protection obligations between us and TikTok. In this agreement, we and TikTok have agreed, among other things, to:

  • that we are responsible for providing you with all information pursuant to Art. 13, 14 GDPR regarding the joint processing of personal data;
  • that TikTok is responsible for enabling the rights of data subjects pursuant to Articles 15 to 20 of the GDPR with regard to personal data stored by TikTok after joint processing.

You can access the agreement between us and TikTok at https://ads.tiktok.com/i18n/official/policy/jurisdiction-specific-terms.

TikTok is solely responsible for the subsequent processing of the transmitted event data. For more information on how TikTok processes personal data, please see TikTok’s data policy under https://www.tiktok.com/legal/page/eea/privacy-policy/de.

We have also commissioned TikTok to compile reports on the impact of our advertising campaigns and other online content (campaign reports) based on the event data collected via the TikTok pixel and to provide analysis and insights about users and their use of our website, products and services (analytics). For this purpose, we transmit personal data contained in the event data to TikTok The personal data transmitted is processed by TikTok as our processor in order to provide us with the campaign reports and analyses.

The collection and transmission of personal data by us to TikTok and the commissioned processing of personal data by TikTok for the preparation of analyses and campaign reports will only take place if you have given your prior consent to this. The legal basis for the processing of personal data is therefore Article 6(1)(a) of the GDPR.

LinkedIn Insight Day

We use the LinkedIn Insight tag on our website, a marketing product of LinkedIn Ireland Unlimited Company (Ireland, EU). Information on LinkedIn Ireland’s contact details and the contact details of LinkedIn Ireland’s data protection officer can be found in LinkedIn’s data policy at https://www.linkedin.com/legal/privacy-policy.

The LinkedIn Insight tag is a JavaScript code snippet that is triggered when LinkedIn accesses our website and stores a cookie on the device you are using. Such storage of information by the LinkedIn Insight tag or access to information that is already stored in your device and also further processing of personal data in connection with the LinkedIn Insight tag will only take place with your consent. The legal basis for the collection and transmission of personal data by us to LinkedIn Ireland is therefore Art. 6 (1) (a) GDPR.

The LinkedIn Insight tag allows us to perform various functions, which we describe in detail below.

LinkedIn Conversion Tracking is an analytics feature powered by the LinkedIn Insight tag. The LinkedIn Insight tag allows us to collect data about visits to our website, including URL, referrer URL, IP address, device and browser characteristics (user agent), and timestamps. The IP addresses are truncated or (if used to reach members across devices) hashed. LinkedIn does not provide us with any personal data, but only provides reports (in which you are not identified) about the website audience and ad performance. This allows us to measure the effectiveness of LinkedIn ads for statistical and market research purposes.

The direct identifiers of the members will be removed by LinkedIn within seven days in order to pseudonymize the data. LinkedIn then deletes this remaining pseudonymised data within 180 days.

This processing is carried out for the purpose of obtaining information about our website audience and a report on the effectiveness of LinkedIn campaigns.

We also use the “Matched Audiences” service to target our advertising campaigns to specific audiences. Through LinkedIn Matched Audiences and related data integrations, we can target advertising to specific audiences based on data we provide to LinkedIn (e.g., company listings, hashed contact information, device identifiers, or event data such as websites visited).

This processing is carried out for the purpose of marketing our offers by displaying advertising tailored to the target group.

We have entered into a processing agreement with LinkedIn as joint controllers, which specifies the distribution of data protection obligations between us and LinkedIn. The agreement is available at: https://legal.linkedin.com/pages-joint-controller-addendum. Thereafter, the following applies:

  • LinkedIn and we have agreed that LinkedIn is responsible for enabling you to exercise your rights under the GDPR. You can contact LinkedIn online via the following link (https://www.linkedin.com/help/linkedin/ask/PPQ?lang=de) or contact LinkedIn via the contact details in the privacy policy. You can contact the Data Protection Officer at LinkedIn Ireland via the following link: https://www.linkedin.com/help/linkedin/ask/TSO-DPO. You can also contact us at our contact details to exercise your rights in connection with the processing of personal data in the context of Page Insights. In such a case, we will forward your request to LinkedIn.
  • LinkedIn and we have agreed that the Irish Data Protection Commission will be the lead supervisory authority overseeing processing for Page Insights. You always have the right to lodge a complaint with the Irish Data Protection Commission (see www.dataprotection.ie) or any other supervisory authority.

Please note that according to LinkedIn’s privacy policy, personal data is also processed by LinkedIn in the United States or other third countries. LinkedIn only transfers personal data to countries for which there is an adequacy decision by the European Commission in accordance with Art. 45 GDPR or on the basis of appropriate safeguards in accordance with Art. 46 GDPR.

Comments & Direct Messages

We also process information that you have provided to us via our company page on the respective social media platform. Such information may include the username used, contact details or a message to us. This processing by us is carried out as the sole controller. We process this data on the basis of our legitimate interest in getting in touch with enquiring persons. The legal basis for data processing is Art. 6 (1) (f) GDPR. Further data processing may take place if you have given your consent (Art. 6 (1) (a) GDPR) or if this is necessary to comply with a legal obligation (Art. 6 (1) (c) GDPR).

Other data processing

Contact by e-mail

If you send us a message via the contact e-mail provided, we will process the transmitted data for the purpose of answering your request. We process this data on the basis of our legitimate interest in getting in touch with enquiring persons.

The legal basis for data processing is Art. 6 (1) (f) GDPR.

Customer and prospect data

If you contact our company as a customer or interested party, e.g. to make use of our personnel services, we process your data in order to be able to answer your inquiry to the extent necessary for this. This regularly includes the processing of the personal master, contract and payment data provided to us, as well as contact and communication data of our contact persons at commercial customers and business partners. The legal basis for this processing is Article 6(1)(f) of the GDPR.

In addition, we process customer and interested party data for evaluation and marketing purposes. This processing is carried out on the legal basis of Art. 6 (1) (f) GDPR and serves our interest in further developing our offer and providing you with targeted information about our offers.

Further data processing may take place if you have given your consent (Art. 6 (1) (a) GDPR) or if this is necessary to comply with a legal obligation (Art. 6 (1) (c) GDPR).

Use of email address for marketing purposes

We may use the email address provided by the customer to inform you about our own similar products and services we offer and to ask you to participate in surveys.

The legal basis is Art. 6 (1) (f) GDPR in conjunction with Section 7 (3) UWG. You can object to this at any time without incurring any costs other than the transmission costs according to the basic tariffs.

To conduct surveys, we use the SatisMeter service of SatisMeter s.r.o. (Czech Republic, EU). You can find more information about data protection when using SatisMeter under https://www.satismeter.com/privacy-policy/.

Candidacies

If you apply for a job with our company, we will process your application data exclusively for purposes related to your interest in current or future employment with us and the processing of your application. Your application will only be processed and acknowledged by the relevant contact persons at our company. All employees entrusted with data processing are obliged to maintain the confidentiality of your data. If we are unable to offer you employment, we will keep the data you provide for up to six months after any rejection for the purpose of answering questions related to your application and rejection. This does not apply if legal provisions preclude deletion, if further storage is necessary for the purpose of providing evidence or if you have expressly consented to longer storage. The legal basis for data processing is Section 26 (1) sentence 1 of the Federal Data Protection Act (BDSG). If we store your applicant data beyond a period of six months and you have expressly consented to this, we would like to point out that this consent can be freely revoked at any time in accordance with Art. 7 (3) GDPR. Such a withdrawal shall not affect the lawfulness of the processing carried out on the basis of consent prior to the withdrawal.

Last update: 26-07-2024