Data protection

A. General Privacy Information
B. Data Processing within the Scope of the Website https://www.rwth-campus.com
C. Data Processing by Social Networks
D. Online Meetings
E. Proprietary Services

 

A. General Privacy Information

 

RWTH Aachen Campus GmbH and its employees take the protection of your personal information very serious. We will keep your personal data confidential and will comply with regulatory data protection regulation, as well as this privacy policy.  Personal data is all information that can be used to identify you.

In compliance with the requirements of the General Data Protection Regulation (GDPR) of the European Union, in the following we offer information about which type of data we collect and for which purposes.

 

1. Responsible Body

The responsible entity pursuant to the General Data Protection Regulation (GDPR) and national data protection legislation is the

RWTH Aachen Campus GmbH
Campus-Boulevard 57
52074 Aachen, Germany

Represented by:
Prof. Dr. Günther Schuh, Dr. Klaus Feuerborn

Phone: +49 241 80-27374
E-mail: info-campus@rwth-aachen.de

 

2. Data Protection Officer Appointed for Our Company

Dr. Mareike Neumann
RWTH Aachen Campus GmbH
Campus-Boulevard 57
52074 Aachen, Germany
Phone: +49 241 80-27374
E-mail: dsb@rwth-campus.com

 

3. Purpose and Legal Basis for Data Processing

The commissioned or agreed services determine the type of your personal information processed by us. We use personal data exclusively for the purpose, for which they have been provided to us.

 

Purpose and Legal Basis for Contract Fulfillment or Pre-contractual Measures

The processing of personal data is based on necessity for the purpose of contract fulfillment or a pre-contractual measure in which you are or will be a contract party. The legal basis is Art. 6 sect. 1 lit. b GDPR. This applies specifically for the following purposes:

–       Implementation of contractually agreed activities,
–       Provision of services in line with your orders,
–       Communication with you,
–       Implementation of the RWTH Aachen Campus project,
–       Billing and collection of payments, remunerations or fees, as well as the traceability of these transactions,
–       Deployment, management and control of the service providers we commission for you,
–       Network inclusion for members of RWTH Aachen Campus,
–       content-related, organizational and marketing-related support of campus actors.

 

Purpose and Legal Basis within the Scope of Our Legitimate Interests and Those of Third Parties

We will furthermore process your personal data as required to protect our or third-party legitimate interests. The legal basis here will be Art. 6 sect. 1 lit. f GDPR. Third-party requests shall only be answered to the extent that none of your interests meriting protection shall be harmed. That includes purposes like: The further development of our services and processes, expansion of the RWTH Aachen Campus network and the forwarding to a contractually bound debt collection agency or an external lawyer in case of fruitless dunning procedures.

 

Purpose and Legal Basis for Compliance with Legal Requirements

Your personal data will furthermore be processes to satisfy legal requirements. The legal basis here will be Art. 6 sect. 1 lit. c GDPR. These may include: Commercial and tax laws, criminal laws, collection of evidence, criminal prosecution or enforcement of civil claims (e.g. by order of public authorities or courts).

 

Purpose and Legal Basis within the Scope of Your Permission

We process your personal data if you have provided us with a permission to do so (e.g. for marketing purposes). The legal basis here will be Art. 6 sect. 1 lit. a GDPR. The lawfulness of this processing is then based on your consent. Consents can be withdrawn at any time. The legality of the data processing carried out until your revocation of consent shall remain unaffected by the withdrawal.

 

4. Data Sources

The categories of data processed by us have been collected directly from you (for example, in the context of contracts, personal communication, contact by e-mail and exchange of business cards) or taken from publicly available sources.

 

5. Data Recipients

Your personal data is made available to relevant employees or organizational units within our company (e.g. via a shared address database). Your data will be forwarded to external third parties exclusively for the following purposes in particular

–       in connection with the implementation of contracts,
–       based on lawful interests of us or a third party,[LK1]
–       in fulfillment of statutory requirements,
–       within the scope of your permission,
–       to external service providers, who act as our order processors.

 

6. Duration of Personal Data Retention

We process and store your personal data as long as is necessary for the fulfillment of our contractual and legal obligations or based on a legitimate interest. Once the information is no longer needed for these purposes, the data will be regularly deleted, unless their – temporary – further processing is required for the following purposes: Fulfillment of retention periods under commercial and tax law and preservation of evidence within the scope of the statutory limitation provisions; in these cases, deletion shall only take place after expiry of the respective compliance period.

 

7. Forwarding of Personal Data to a Third Country

The processing of your personal information will generally occur in the member states of the European Economic Area (EEA). Data transfers to third countries will occur only with your agreement as part of a contract or a pre-contractual measure, or if such transmission is necessary or you have given permission for a transmission of your data.

 

8. Rights of the Individual

Information, Blocking, Deletion

Within the scope of applicable statutory regulations, you have the right to request information about your stored personal data, its origin and recipients and the purpose of data processing and the right to correction, blocking or deletion of this data at any time.

 

Revocation of Your Consent to Data Processing

Many data processing procedures are possible only based on your explicit consent. You can revoke your consent at any time. The legality of the data processing carried out until your revocation of consent shall remain unaffected by the withdrawal.

 

Right of Appeal to the Competent Supervisory Body

You have the right of appeal to a competent supervisory body. Our competent supervisory body is: State Commissioner for Data Protection and Freedom of Information North Rhine Westphalia, Kavallierstr. 2-4, 40213 Düsseldorf, Germany, Web: www.ldi.nrw.de[MK2] , E-mail: poststelle@ldi.nrw.de.

 

Right to Data Portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

In order for us to comply with your rights as the data subject, we ask that you address your concerns to our data protection officer in the written form.

 

B. Data Processing within the Scope of the Website https://www.rwth-campus.com

 

We will collect various personal data when you use this website.

Please note that data transmission over the Internet (e.g. communication by e-mail) may be subject to security vulnerabilities. A complete protection of data against access by third parties is not possible.

This site uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as a site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

 

1. Provisioning of the Website and Generation of Log Files

Description and Scope of Data Processing

Our system will automatically collect data and information from the computer system of the accessing computer at every visit to the website.

The following data will be collected:

–       Browser type and browser version
–       Operating system used
–       Referrer URL
–       Host name of the accessing computer
–       Time of the server request
–       IP address (anonymized)

The data will additionally be written to the log files of our system. This will not include

your IP address or other data that will allow an association of the data to you as a user. There will be no storage of this data with other identifying personal information. These data are not combined with other data sources.

 

Legal Basis for Data Processing

The legal basis for the temporary storage of the data is Art. 6 para. 1 lit. f GDPR.

 

Purpose of Data Processing

A temporary storage of the IP address by the system is required to deliver the website to your computer. Your IP address must be stored for the duration of your visit for that purpose. These purposes represent our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

 

Storage Duration

Data is deleted as soon as it is no longer required for the original purpose of its capture. In the case of capturing your data for the provisioning of the website, this is the case when the session is ended.

 

Objection and Deletion Options

The capture of data for the purposes of provisioning of the website and the storage of the data in log files is mandatory for the operation of the website. Consequently, there is no possibility for you to object.

 

2. Use of Cookies

Description and Scope of Data Processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on your computer system. A cookie may be stored on your operating system when you access a website. This cookie contains a unique character string, which allows a definitive identification of your browser when you access the website the next time.

We use cookies in an effort to make our website more user-friendly. Some elements of our Internet page require that the accessing browser can be identified also after changing to a different website. The following data is stored and transmitted in the cookies: cookie settings.

We furthermore use cookies on our website that permit an analysis of the surfing behavior of users. The following data can therefore be transmitted: Frequency of page calls and use of website functions.

Your data collected by these means is pseudonymized using technical means. An assignment of this data to you personally is therefore no longer possible. This data is not stored in conjunction with any other of your personal information. You will be informed about the use of cookies for analysis purposes when you access our website and your consent to the processing of personal data used in this context will be obtained. In this context, you will furthermore be prompted to reference this privacy policy. You can influence data capture by way of the settings in your browser and on our website in the cookie settings.

 

Legal Basis for Data Processing

The legal basis for the processing of personal data using technically required cookies is Art. 6, para. 1 lit f GDPR. Provided that you have given your consent, the legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 lit. a. GDPR.

 

Purpose of Data Processing

The purpose for using essential cookies is to facilitate your use of our website. Some of the functions of our Internet pages cannot be made available without the use of cookies. These functions require that the browser is recognized after a switch between pages. The user data captures by essential cookies will not be used for the creation of user profiles.

 

Duration of Storage, Objection and Elimination Option

Cookies are stored on your computer, which transmits their information to our page. As the user, you therefore have full control over the use of cookies. A change in the settings of your Internet browser will allow you to deactivate or limit the transmission of cookies. Previously stored cookies can be deleted at any time. This process can optionally be automated. Not all website functions may be fully available when cookies for our website are deactivated.

 

3. Contact Form and E-mail Contact

Description and Scope of Data Processing

A contact form is provided on our website, which can be used for contacting us electronically. The data you enter into the input mask provided will be transmitted to us and stored if you utilize this option. This data comprises: Your name, e-mail address, the subject you have added and the content of your message. The following information is additionally stored at the time of your sending the message: Your IP address, as well as the date and time of your input. Your consent for the processing of this information is prompted as part of the submission process and this privacy policy will be referenced. Alternatively, you can choose to contact us via the e-mail address provided. In that case, the personal data transmitted alongside your e-mail will be stored. There will be no forwarding of the information to third parties in this context. The data will be used exclusively for the processing of the conversation.

 

Legal Basis for Data Processing

If the user has given his or her consent, the legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR. The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR. If the e-mail contact aims at the conclusion of a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.

 

Purpose of Data Processing

The processing of the personal data from the input mask will be used by us exclusively for processing the contact. In case of contact via e-mail, this also constitutes the necessary legitimate interest in processing the data. All other personal data processed during the e-mail submission process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.

 

Storage Duration

Data is deleted as soon as it is no longer required for the original purpose of its capture. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with you has ended and the matter has been conclusively clarified. Unless further processing of the data is required for the following purposes: Fulfillment of retention periods under commercial and tax law and preservation of evidence within the scope of the statutory limitation provisions; in these cases, deletion shall only take place after the end of the respective periods to be complied with. The additionally collected personal data from the e-mail submission process will be deleted latest after seven days.

 

Objection and Deletion Options

You have the option of revoking your permission for the processing of your personal data at any time. You can object to the storage of your personal data at any time via e-mail. Our conversation with you can in that case not be continued.

 

4. Web Analysis with Matomo (Formerly Piwik)

Scope of Processing of Your Personal Data

We utilize the Open Source software tool Matomo (formerly PIWIK) on our website to analyze the surfing behavior of our website users. The software deposits a cookie on your computer. The following data is stored when accessing individual pages of our website:

– Two bytes of the IP address of your accessing system
– The accessed website
– The website from which you have reached the accessed website (referrer)
– The subpages accessed from the previously accessed website
– The time spent on the website
– The frequency of website access

The software runs solely on the servers of our website. Your personal data is stored only there. There will be no forwarding of the data to third parties. The software is configured to not store IP addresses in their entirety. Instead, only 2 bytes of the IP address are pseudonymized (e.g.  192.168.xxx.xxx). An assignment of the shortened IP address to the accessing computer is therefore no longer possible.

 

Legal Basis for the Processing of Personal Data

The legal basis for the processing of your personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR. Your consent can be revoked at any time. The legality of the data processing carried out until your revocation of consent shall remain unaffected by the withdrawal.

 

Purpose of Data Processing

The processing of your personal information allows us to analyze the surfing behavior of our users. The analysis of the collected data allows us to collate information about the utilization of individual website components. These findings allow us to continuously improve the user-friendliness of our website. The data is deleted, once it is no longer required for our recording purposes.

 

Objection and Deletion Options

Cookies are stored on your computer, and then transmitted to us by your computer. As the user, you therefore have full control over the use of cookies. A change in the settings of your Internet browser will allow you to deactivate or limit the transmission of cookies. Previously stored cookies can be deleted at any time. This process can optionally be automated. Not all website functions may be fully available when cookies for our website are deactivated. Deactivating Matomo: On our website, we offer our users the option of revoking consent by opting out of the analysis process. To do this, you must follow the corresponding link. This action will put another cookie on your system, which will signal our system not to store your data. You will have to place the opt-out cookie again if you delete the relevant cookie from your system between visits to our website. For more information about privacy settings of the Matomo software, please see the following link: https://matomo.org/docs/privacy/.

 

5. YouTube

Our website uses plugins for the Google-operated page YouTube. The operators of the pages are Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

 

Scope of Processing of Your Personal Data

A connection to YouTube’s servers is established when you visit one of the pages equipped with a YouTube plugin. The YouTube server will be informed about which of the pages you have visited. We use YouTube with enhanced data protection, in which, according to the provider, user information is only stored once video playback commences. A cookie for data collection will be activated, once you initiate the playback of the YouTube video. According to the provider, the cookies are used for collecting video statistics, improving user experience and preventing abusive behavior. Independently of a video playback, a connection to the Google network “Double-Click” is established each time this website is accessed, which may trigger further data processing operations outside of our scope of influence. Please read the Google Privacy Policy https://policies.google.com/technologies/ads and check the settings for the display of Google advertising https://adssettings.google.com/authenticated for more information about how the provider additionally processes your private information.

Further information on the handling of user data can be found in YouTube’s Privacy Policy here: https://www.google.de/intl/de/policies/privacy.

Furthermore, you have the option of requesting additional information that might be of interest to you via the Google Privacy Form here: https://support.google.com/policies/troubleshooter/7575787?visit_id=637054532384299914-2421490167&hl=de&rd=2

 

Purpose of Data Processing

We utilize YouTube to enhance the visual presentation of our online presence and for PR reasons.

 

Legal Basis for the Processing of Personal Data

This constitutes a legitimate interest in the sense of Art. 6 para. 1 lit. f GDPR. Processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR, provided a relevant consent was requested. Your consent can be revoked at any time. The legality of the data processing carried out until your revocation of consent shall remain unaffected by the withdrawal.

 

Objection and Deletion Options

This information will be associated with your YouTube user account if you are logged in on YouTube at the same time. You must log out from your user account before visiting our website to prevent this association. You have options for limiting the processing of your personal information via the general settings of your YouTube account in the section “Privacy Settings”. In mobile devices (smartphones, tablet PCs) you can furthermore limit Google access to your contact and calendar data, photos, location data, etc. These settings may, however, be dependent on the operating system used. Please see the following YouTube Support pages for more information on these issues: https://myaccount.google.com/intro/privacycheckup

Here you can find out about your options to view your personal data on YouTube: https://takeout.google.com/?utm_source=pp&hl=en.

Information on available personalization and privacy settings are provided here: https://myaccount.google.com/?hl=en.

You can optionally view your own data on YouTube or download a copy of your YouTube data: https://takeout.google.com/?utm_source=pp&hl=en

Google offers answers about data deletion when using services here: https://support.google.com/accounts/answer/465.

 

6. Google Maps

This page utilizes the Google Maps cartography service via an API. Provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

 

Scope of Processing of Your Personal Data

It is necessary to store your IP address to utilize the Google Maps functions. The app may also store location data, which you can influence via your device settings, where you can refuse consent. The information is usually transferred to a Google server in the USA and stored there. As the provider of this page, we have no influence over this data transmission.

 

Purpose of Data Processing

We utilize Google Maps for a more attractive visualization of our online presence and to allow users to easier find the locations mentioned on our website.

 

Legal Basis for the Processing of Personal Data

This constitutes a legitimate interest in the sense of Art. 6 para. 1 lit. f GDPR. Further information on the handling of user data can be found in Google’s Privacy Policy here: https://www.google.de/intl/de/policies/privacy/.

 

Objection and Deletion Options

Opt-out plugin: https://tools.google.com/dlpage/gaoptout?hl=de. Google offers answers about data deletion when using services here: https://support.google.com/accounts/answer/465.

Information about our general privacy policy

 

C. Data Processing by Social Networks

1. LinkedIn

We maintain a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. Please read the LinkedIn Privacy Policy for more information about data capture and further data processing by LinkedIn https://www.linkedin.com/legal/privacy-policy. We do not have full access to the data collected by LinkedIn or to your profile data. We can only see the information on your profile you choose to make public. You decide which information you choose to make public via your LinkedIn settings. We receive anonymous statistics on the use and usage of the company page from LinkedIn due to our legitimate interest. From these statistics (e.g. Number of individual followers, number of individuals reacting to a post), we are unable to draw conclusions about you as an individual user or link information to your profile data as a follower.

 

2. XING

We maintain a profile on XING. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany.  Please read the XING Privacy Policy for more information about data capture and further data processing by XING https://privacy.xing.com/en. We are unable to track what type of user data XING will capture. We similarly do not have full access to the data collected or to your profile data. We can only see the information on your profile you choose to make public. You decide which information you choose to make public via your XING settings. We receive anonymous statistics on the use and usage of the company page from XING due to our legitimate interest. From these statistics (e.g. Number of individual followers, number of individuals reacting to a post), we are unable to draw conclusions about you as an individual user or link information to your profile data as a follower.

 

3. Facebook

We use the technical platform and services of Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland for the information service offered via our Facebook presence.

Please note that the use of this Facebook page and its functions is your own responsibility. That applies specifically to the use of interactive functions (e.g. Comments, sharing, reviewing). Alternatively, you can learn about us from our online offering at https://www.rwth-campus.com/en/.

Facebook will capture data including your IP address and other information available on your computer in stored cookies when you visit our Facebook page. This data is used to provide us, as the operator of the Facebook page, with statistical information about the utilization of the Facebook page. Facebook offers detailed information regarding that data via the following link: https://www.facebook.com/policies/cookies/

The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook offers a general description of the type of information Facebook receives and how it is used in its Data Use Policy. There you will also find options for contacting Facebook directly and about their setting options for advertisements.

The Data Policy is made available via the following link: https://www.facebook.com/about/privacy.

In what way Facebook uses the data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties, is not conclusively and clearly stated by Facebook and is not known to us. The IP address assigned to your end device is transmitted to Facebook whenever you access a Facebook page. According to information provided by Facebook, this IP address is anonymized (in the case of IP addresses originating in the EEC[MK3] ). Facebook furthermore stores information about the end devices of its users (e.g. as part of the function “Login Notification”); Facebook may therefore be able to associate IP addresses to individual users.

Should you, as a Facebook user, be currently logged in on Facebook, a cookie with your Facebook ID will be stored on your end device. Facebook is therefore able to track your visit to this page and how you have used it. The same applies for other Facebook pages. Facebook can capture your visits to these pages and assign them to your Facebook profile via the Facebook buttons embedded in websites. Content or advertisement can then be tailored to your profile and offered to you based on that information.

Log out of Facebook or disable the “stay logged in” feature, delete the cookies stored on your device, and exit and restart your browser if you want to prevent this use of your data. This will result in Facebook data being deleted that can be used to identify you personally. It will allow you to use our Facebook page without revealing your Facebook ID. A Facebook login mask will appear if you access interactive functions on our pages (Like, Comment, Share, Message, etc.). You will be recognizable to Facebook once again if you do log in via this mask.

The following Facebook Support pages offer information about how you can manage or delete your existing information: https://facebook.com/about/privacy#

We, as the provider of that information service, will not capture and process any further data from your use of our service via Facebook.

Information about our general privacy policy

 

D. Online Meetings

 

1. MS Teams

We use the Microsoft Teams service for online meetings.

Microsoft Teams is a service by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Various types of data are processed when using Teams. The scope of that data also depends on what data the meeting participants choose to make available before or during an online meeting. The following data will usually be processed:

–       Information about you as the user: First name, last name, phone (optional), e-mail address, profile picture (optional)

–       Meeting metadata: Topic, description (optional)

–       When dialing in with the telephone: Information about the incoming and outgoing phone number, country name, start and end time. Other connection data, including the IP address of the device may be stored.

–       Text, audio and video data: Where the chat functions are used in an online meeting, the text input will be processed to display them to other users in the online meeting and to log them (where required). The data from the microphone and/or camera on your end device will be processed to allow audio and video rendering for the duration of the meeting. You can disable the camera or mute the microphone at any time via the Teams app.

In cases, where we wish to record online meetings, we will request permission from all participants beforehand. The fact that a recording is taking place will also be displayed in the Teams app. The chat content will be logged where required for the purposes of logging of the results of an online meeting. This will usually not be the case. Teams is a service provided by a provider in the US. The processing of personal data will occur on servers within the EU.

These functions are also available via a browser version, which can also be found on the Microsoft website, should you not wish or be able to use the Teams app.

Insofar as the online meetings are conducted within the framework of contractual relationships, the legal basis for data processing is Art. 6 para. 1 lit. b GDPR. Where no contractual relationship exists, the legal basis is Art. 6 para. 1 lit. f shall apply. Our legitimate interest is in conducting effective online meetings. Your personal data processed in connection with your participation in online meetings will as a rule not be shared with third parties unless they are specifically designated for forwarding. Please note that the content of online meetings and personal meetings are usually specifically intended for communicating information to customers, prospective customers or third parties, which designates said content for forwarding. Other recipients: The provider of MS Teams necessarily obtains knowledge of above mentioned data. If we use Teams as part of the establishment, implementation or termination of the employment relationship, the legal basis for the data processing is Art. 26 of the German Federal Data Protection Act (BDSG).

Information about our general privacy policy

 

2. Zoom

We also use the ZOOM service for online meetings.

ZOOM is a service of Zoom Video Communications, Inc. based in the USA. Here you can get more information about Zoom: https://zoom.us/en-us/trust/privacy.html

Various types of data are processed when using Zoom. The scope of that data also depends on what data the meeting participants choose to make available before or during an online meeting. The following data will usually be processed:

  •      Information about you as the user: First name, last name, phone (optional), e-mail address, profile picture (optional)
  •      Meeting metadata: Topic, description (optional)
  •      When dialing in with the telephone: Information about the incoming and outgoing phone number, country name, start and end time. Other connection data, including the IP address of the device may be stored.
  •      Text, audio and video data: Where the chat functions are used in an online meeting, the text input will be processed to display them to other users in the online meeting and to log them (where required). The data from the microphone and/or camera on your end device will be processed to allow audio and video rendering for the duration of the meeting. You can disable the camera or mute the microphone at any time via ZOOM.

In cases, where we wish to record online meetings, we will request permission from all participants beforehand. The fact that a recording is taking place will also be displayed in ZOOM. The chat content will be logged where required for the purposes of logging of the results of an online meeting. This will usually not be the case. ZOOM is a service provided by a provider in the US. The processing of personal data will also occur on servers within the USA. No automated decision-making takes place.

Basic functions are also available via a browser version, which can also be found on the ZOOM website, should you not wish or be able to use ZOOM.

Insofar as the online meetings are conducted within the framework of contractual relationships, the legal basis for data processing is Art. 6 para. 1 lit. b GDPR. Where no contractual relationship exists, the legal basis is Art. 6 para. 1 lit. f shall apply. Our legitimate interest is in conducting effective online meetings. If we use ZOOM as part of the establishment, implementation or termination of the employment relationship, the legal basis for the data processing is Art. 26 of the German Federal Data Protection Act (BDSG). Your personal data processed in connection with your participation in online meetings will as a rule not be shared with third parties unless they are specifically designated for forwarding. Please note that the content of online meetings and personal meetings are usually specifically intended for communicating information to customers, prospective customers or third parties, which designates said content for forwarding. Other recipients: The provider of ZOOM necessarily obtains knowledge of above mentioned data. We have concluded an order processing contract with the provider of ZOOM. Read the data privacy information of ZOOM here: https://zoom.us/privacy

Information about our general privacy policy

 

E. Proprietary Services

 

Job Applications

We offer you the opportunity – for vacant positions – to apply to us by e-mail, for example. In the following you will find information regarding the scope, purpose and use of the personal data captured as part of the application process. We assure all applicants that the capture, processing and use of your data will be in compliance with applicable data protection law and all other legal provisions and that your personal data will be treated in strict confidence.

 

Scope and purpose of data capture

We process your submitted application and associated personal data (e.g. contact and communication information, application documents, notes taken during interviews, etc.) to the extent necessary to decide on whether or not we will enter into an employment relationship with you.

 

Legal Basis

The legal basis here is Art. 6 para. 1 lit. b GDPR (general contract initiation). Within our organization, your personal data will be forwarded exclusively to individuals involved directly with the processing of your application. Should your application be successful, the information submitted by you will be stored in our data processing systems on the basis of Art. 6 para. 1 lit. b GDPR for the purpose of implementing the employment relationship.

 

Data Retention Period

Should we be unable to make you a job offer or you reject a job offer, withdraw your application or request us to delete your personal information, all data you have submitted, including any remaining physical application documents, will be stored or retained (retention period) for a maximum of 6 months after completion of the application process to allow the tracing of the application process details in case of dispute (Art. 6 para. 1 lit. f GDPR). Once the retention period has elapsed, all data will be deleted unless another statutory retention period or other legal reason for continued storage remains. Where it is apparent that a further storage of your personal data will be required beyond the end of the retention period (e.g. based on an imminent or related legal dispute), the data will only be deleted, once the information has become irrelevant. Other statutory data retention requirements remain unaffected.

Information about our general privacy policy