Privacy Policy

1. An overview of data protection

General information

The fol­lowing infor­ma­ti­on will pro­vi­de you with an easy to navi­ga­te over­view of what will hap­pen with your per­so­nal data when you visit this web­site. The term “per­so­nal data” com­pri­ses all data that can be used to per­so­nal­ly iden­ti­fy you. For detail­ed infor­ma­ti­on about the sub­ject mat­ter of data pro­tec­tion, plea­se con­sult our Data Pro­tec­tion Decla­ra­ti­on, which we have inclu­ded bene­ath this copy.

Data recording on this website

Who is the responsible party for the recording of data on this website (i.e., the “controller”)?

The data on this web­site is pro­ces­sed by the ope­ra­tor of the web­site, who­se con­ta­ct infor­ma­ti­on is avail­ab­le under sec­tion “Infor­ma­ti­on about the respon­si­ble par­ty (refer­red to as the “con­trol­ler” in the GDPR)” in this Pri­va­cy Policy.

How do we record your data?

We collect your data as a result of your sharing of your data with us. This may, for instance be infor­ma­ti­on you enter into our con­ta­ct form.

Other data shall be recor­ded by our IT sys­tems auto­ma­ti­cal­ly or after you con­sent to its record­ing during your web­site visit. This data com­pri­ses pri­ma­ri­ly tech­ni­cal infor­ma­ti­on (e.g., web brow­ser, ope­ra­ting sys­tem, or time the site was acces­sed). This infor­ma­ti­on is recor­ded auto­ma­ti­cal­ly when you access this website.

What are the purposes we use your data for?

A por­ti­on of the infor­ma­ti­on is gene­ra­ted to gua­ran­tee the error free pro­vi­si­on of the web­site. Other data may be used to ana­ly­ze your user patterns.

What rights do you have as far as your information is concerned?

You have the right to recei­ve infor­ma­ti­on about the source, reci­pi­ents, and pur­po­ses of your archi­ved per­so­nal data at any time without having to pay a fee for such dis­clo­sures. You also have the right to demand that your data are rec­ti­fied or era­di­ca­ted. If you have con­sen­ted to data pro­ces­sing, you have the opti­on to revo­ke this con­sent at any time, which shall affect all future data pro­ces­sing. Moreo­ver, you have the right to demand that the pro­ces­sing of your data be restric­ted under cer­tain cir­cum­s­tan­ces. Fur­ther­mo­re, you have the right to log a com­p­laint with the com­pe­tent super­vi­sing agency.

Plea­se do not hesi­ta­te to con­ta­ct us at any time if you have ques­ti­ons about this or any other data pro­tec­tion rela­ted issues.

2. Hosting

Hetzner

We host our web­site with Hetz­ner. The pro­vi­der is the Hetz­ner Online GmbH, Indus­trie­str. 25, 91710 Gun­zen­hau­sen, Ger­ma­ny (her­ein­af­ter refer­red to as Hetzner).

For details, plea­se view the data pri­va­cy poli­cy of Hetz­ner: https://www.hetzner.com/de/rechtliches/datenschutz.

We use Hetz­ner on the basis of Art. 6(1)(f) GDPR. We have a legi­ti­ma­te inte­rest in the most reli­able depic­tion of our web­site pos­si­ble. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, inso­far the con­sent inclu­des the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) wit­hin the mea­ning of the TTDSG. This con­sent can be revo­ked at any time.

Data processing

We have con­clu­ded a data pro­ces­sing agree­ment (DPA) with the abo­ve-men­tio­ned pro­vi­der. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our inst­ruc­tions and in com­pli­an­ce with the GDPR.

3. General information and mandatory information

Data protection

The ope­ra­tors of this web­site and its pages take the pro­tec­tion of your per­so­nal data very serious­ly. Hence, we hand­le your per­so­nal data as con­fi­den­ti­al infor­ma­ti­on and in com­pli­an­ce with the sta­tu­to­ry data pro­tec­tion regu­la­ti­ons and this Data Pro­tec­tion Declaration.

Whenever you use this web­site, a varie­ty of per­so­nal infor­ma­ti­on will be collec­ted. Per­so­nal data com­pri­ses data that can be used to per­so­nal­ly iden­ti­fy you. This Data Pro­tec­tion Decla­ra­ti­on exp­lains which data we collect as well as the pur­po­ses we use this data for. It also exp­lains how, and for which pur­po­se the infor­ma­ti­on is collected.

We here­with advi­se you that the trans­mis­si­on of data via the Inter­net (i.e., through e‑mail com­mu­ni­ca­ti­ons) may be pro­ne to secu­ri­ty gaps. It is not pos­si­ble to com­ple­te­ly pro­tect data against third-par­ty access.

Information about the responsible party (referred to as the “controller” in the GDPR)

The data pro­ces­sing con­trol­ler on this web­site is:

LUMILOOP GmbH
Gos­trit­zer Str. 63
01217 Dres­den

Pho­ne: +49 351 850 978–70
E‑mail: info@lumiloop.de

The con­trol­ler is the natu­ral per­son or legal enti­ty that sin­gle-han­ded­ly or joint­ly with others makes decisi­ons as to the pur­po­ses of and resour­ces for the pro­ces­sing of per­so­nal data (e.g., names, e‑mail addres­ses, etc.).

Storage duration

Unless a more spe­ci­fic sto­rage peri­od has been spe­ci­fied in this pri­va­cy poli­cy, your per­so­nal data will remain with us until the pur­po­se for which it was collec­ted no lon­ger app­lies. If you assert a jus­ti­fied request for dele­ti­on or revo­ke your con­sent to data pro­ces­sing, your data will be dele­ted, unless we have other legal­ly per­mis­si­ble rea­sons for sto­ring your per­so­nal data (e.g., tax or com­mer­cial law reten­ti­on peri­ods); in the lat­ter case, the dele­ti­on will take place after the­se rea­sons cea­se to apply.

General information on the legal basis for the data processing on this website

If you have con­sen­ted to data pro­ces­sing, we pro­cess your per­so­nal data on the basis of Art. 6(1)(a) GDPR or Art. 9 (2)(a) GDPR, if spe­cial cate­go­ries of data are pro­ces­sed accord­ing to Art. 9 (1) DSGVO. In the case of expli­cit con­sent to the trans­fer of per­so­nal data to third coun­tries, the data pro­ces­sing is also based on Art. 49 (1)(a) GDPR. If you have con­sen­ted to the sto­rage of coo­kies or to the access to infor­ma­ti­on in your end device (e.g., via device fin­ger­prin­ting), the data pro­ces­sing is addi­tio­nal­ly based on § 25 (1) TTDSG. The con­sent can be revo­ked at any time. If your data is requi­red for the ful­fill­ment of a con­tract or for the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res, we pro­cess your data on the basis of Art. 6(1)(b) GDPR. Fur­ther­mo­re, if your data is requi­red for the ful­fill­ment of a legal obli­ga­ti­on, we pro­cess it on the basis of Art. 6(1)© GDPR. Fur­ther­mo­re, the data pro­ces­sing may be car­ri­ed out on the basis of our legi­ti­ma­te inte­rest accord­ing to Art. 6(1)(f) GDPR. Infor­ma­ti­on on the rele­vant legal basis in each indi­vi­du­al case is pro­vi­ded in the fol­lowing para­graphs of this pri­va­cy policy.

Revocation of your consent to the processing of data

A wide ran­ge of data pro­ces­sing tran­sac­tions are pos­si­ble only sub­ject to your express con­sent. You can also revo­ke at any time any con­sent you have alrea­dy given us. This shall be without pre­ju­di­ce to the law­ful­ness of any data collec­tion that occur­red pri­or to your revocation.

Right to object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)

IN THE EVENT THAT DATA ARE PROCESSED ON THE BASIS OF ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA BASED ON GROUNDS ARISING FROM YOUR UNIQUE SITUATION. THIS ALSO APPLIES TO ANY PROFILING BASED ON THESE PROVISIONS. TO DETERMINE THE LEGAL BASIS, ON WHICH ANY PROCESSING OF DATA IS BASED, PLEASE CONSULT THIS DATA PROTECTION DECLARATION. IF YOU LOG AN OBJECTION, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA, UNLESS WE ARE IN A POSITION TO PRESENT COMPELLING PROTECTION WORTHY GROUNDS FOR THE PROCESSING OF YOUR DATA, THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR IF THE PURPOSE OF THE PROCESSING IS THE CLAIMING, EXERCISING OR DEFENCE OF LEGAL ENTITLEMENTS (OBJECTION PURSUANT TO ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS BEING PROCESSED IN ORDER TO ENGAGE IN DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR AFFECTED PERSONAL DATA FOR THE PURPOSES OF SUCH ADVERTISING AT ANY TIME. THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS AFFILIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).

Right to log a complaint with the competent supervisory agency

In the event of vio­la­ti­ons of the GDPR, data sub­jects are enti­t­led to log a com­p­laint with a super­vi­so­ry agen­cy, in par­ti­cu­lar in the mem­ber sta­te whe­re they usual­ly main­tain their domic­i­le, place of work or at the place whe­re the alle­ged vio­la­ti­on occur­red. The right to log a com­p­laint is in effect regard­less of any other admi­nis­tra­ti­ve or court pro­cee­dings avail­ab­le as legal recourses.

Right to data portability

You have the right to demand that we hand over any data we auto­ma­ti­cal­ly pro­cess on the basis of your con­sent or in order to ful­fil a con­tract be han­ded over to you or a third par­ty in a com­mon­ly used, machi­ne read­a­ble for­mat. If you should demand the direct trans­fer of the data to ano­t­her con­trol­ler, this will be done only if it is tech­ni­cal­ly feasible.

Information about, rectification and eradication of data

Wit­hin the scope of the app­li­ca­ble sta­tu­to­ry pro­vi­si­ons, you have the right to at any time demand infor­ma­ti­on about your archi­ved per­so­nal data, their source and reci­pi­ents as well as the pur­po­se of the pro­ces­sing of your data. You may also have a right to have your data rec­ti­fied or era­di­ca­ted. If you have ques­ti­ons about this sub­ject mat­ter or any other ques­ti­ons about per­so­nal data, plea­se do not hesi­ta­te to con­ta­ct us at any time.

Right to demand processing restrictions

You have the right to demand the impo­si­ti­on of restric­tions as far as the pro­ces­sing of your per­so­nal data is con­cer­ned. To do so, you may con­ta­ct us at any time. The right to demand restric­tion of pro­ces­sing app­lies in the fol­lowing cases:

  • In the event that you should dis­pu­te the cor­rect­ness of your data archi­ved by us, we will usual­ly need some time to veri­fy this claim. During the time that this inves­ti­ga­ti­on is ongo­ing, you have the right to demand that we restrict the pro­ces­sing of your per­so­nal data.
  • If the pro­ces­sing of your per­so­nal data was/is con­duc­ted in an unlaw­ful man­ner, you have the opti­on to demand the restric­tion of the pro­ces­sing of your data in lieu of deman­ding the era­di­ca­ti­on of this data.
  • If we do not need your per­so­nal data any lon­ger and you need it to exer­cise, defend or claim legal enti­t­le­ments, you have the right to demand the restric­tion of the pro­ces­sing of your per­so­nal data ins­tead of its eradication.
  • If you have rai­sed an objec­tion pur­suant to Art. 21(1) GDPR, your rights and our rights will have to be weig­hed against each other. As long as it has not been deter­mi­ned who­se inte­rests pre­vail, you have the right to demand a restric­tion of the pro­ces­sing of your per­so­nal data.

If you have restric­ted the pro­ces­sing of your per­so­nal data, the­se data – with the excep­ti­on of their archi­ving – may be pro­ces­sed only sub­ject to your con­sent or to claim, exer­cise or defend legal enti­t­le­ments or to pro­tect the rights of other natu­ral per­sons or legal enti­ties or for important public inte­rest rea­sons cited by the Euro­pean Uni­on or a mem­ber sta­te of the EU.

SSL and/or TLS encryption

For secu­ri­ty rea­sons and to pro­tect the trans­mis­si­on of con­fi­den­ti­al con­tent, such as purcha­se orders or inqui­ries you sub­mit to us as the web­site ope­ra­tor, this web­site uses eit­her an SSL or a TLS encryp­ti­on pro­gram. You can reco­gni­ze an encryp­ted con­nec­tion by che­cking whe­ther the address line of the brow­ser swit­ches from “http://” to “https://” and also by the appearan­ce of the lock icon in the brow­ser line.

If the SSL or TLS encryp­ti­on is acti­va­ted, data you trans­mit to us can­not be read by third parties.

Rejection of unsolicited e‑mails

We here­with object to the use of con­ta­ct infor­ma­ti­on publis­hed in con­junc­tion with the man­da­to­ry infor­ma­ti­on to be pro­vi­ded in our Site Noti­ce to send us pro­mo­tio­nal and infor­ma­ti­on mate­ri­al that we have not express­ly reques­ted. The ope­ra­tors of this web­site and its pages reser­ve the express right to take legal action in the event of the unso­li­ci­ted sen­ding of pro­mo­tio­nal infor­ma­ti­on, for instance via SPAM messages.

4. Recording of data on this website

Cookies

Our web­sites and pages use what the indus­try refers to as “coo­kies.” Coo­kies are small text files that do not cau­se any dama­ge to your device. They are eit­her stored tem­pora­ri­ly for the dura­ti­on of a ses­si­on (ses­si­on coo­kies) or they are per­ma­nent­ly archi­ved on your device (per­ma­nent coo­kies). Ses­si­on coo­kies are auto­ma­ti­cal­ly dele­ted once you ter­mi­na­te your visit. Per­ma­nent coo­kies remain archi­ved on your device until you actively dele­te them, or they are auto­ma­ti­cal­ly era­di­ca­ted by your web browser.

In some cases, it is pos­si­ble that third-par­ty coo­kies are stored on your device once you enter our site (third-par­ty coo­kies). The­se coo­kies enab­le you or us to take advan­ta­ge of cer­tain ser­vices offe­red by the third par­ty (e.g., coo­kies for the pro­ces­sing of pay­ment services).

Coo­kies have a varie­ty of func­tions. Many coo­kies are tech­ni­cal­ly essen­ti­al sin­ce cer­tain web­site func­tions would not work in the absence of the coo­kies (e.g., the shop­ping cart func­tion or the dis­play of vide­os). The pur­po­se of other coo­kies may be the ana­ly­sis of user pat­terns or the dis­play of pro­mo­tio­nal messages.

Coo­kies, which are requi­red for the per­for­mance of elec­tro­nic com­mu­ni­ca­ti­on tran­sac­tions, or for the pro­vi­si­on of cer­tain func­tions you want to use (e.g., for the shop­ping cart func­tion) or tho­se that are necessa­ry for the opti­miz­a­ti­on (requi­red coo­kies) of the web­site (e.g., coo­kies that pro­vi­de mea­sura­ble insights into the web audi­ence), shall be stored on the basis of Art. 6(1)(f) GDPR, unless a dif­fe­rent legal basis is cited. The ope­ra­tor of the web­site has a legi­ti­ma­te inte­rest in the sto­rage of requi­red coo­kies to ensu­re the tech­ni­cal­ly error free and opti­mi­zed pro­vi­si­on of the operator’s ser­vices. If your con­sent to the sto­rage of the coo­kies and simi­lar reco­gni­ti­on tech­no­lo­gies has been reques­ted, pro­ces­sing occurs exclu­si­ve­ly on the basis of the con­sent obtai­ned (Art. 6(1)(a) GDPR and § 25 (1) TTDSG); this con­sent may be revo­ked at any time.

You have the opti­on to set up your brow­ser in such a man­ner that you will be noti­fied any time coo­kies are pla­ced and to per­mit the accep­t­ance of coo­kies only in spe­ci­fic cases. You may also exclu­de the accep­t­ance of coo­kies in cer­tain cases or in gene­ral or acti­va­te the dele­te func­tion for the auto­ma­tic era­di­ca­ti­on of coo­kies when the brow­ser clo­ses. If coo­kies are deac­ti­va­ted, the func­tions of this web­site may be limited.

In the event that third-par­ty coo­kies are used or if coo­kies are used for ana­ly­ti­cal pur­po­ses, we will sepa­r­ate­ly noti­fy you in con­junc­tion with this Data Pro­tec­tion Poli­cy and, if app­li­ca­ble, ask for your consent.

Consent with Borlabs Cookie

Our web­site uses the Borlabs con­sent tech­no­lo­gy to obtain your con­sent to the sto­rage of cer­tain coo­kies in your brow­ser or for the use of cer­tain tech­no­lo­gies and for their data pri­va­cy pro­tec­tion com­pli­ant docu­men­ta­ti­on. The pro­vi­der of this tech­no­lo­gy is Borlabs GmbH, Rüben­kamp 32, 22305 Ham­burg, Ger­ma­ny (her­ein­af­ter refer­red to as Borlabs).

Whenever you visit our web­site, a Borlabs coo­kie will be stored in your brow­ser, which archi­ves any decla­ra­ti­ons or revo­ca­ti­ons of con­sent you have ent­e­red. The­se data are not shared with the pro­vi­der of the Borlabs technology.

The recor­ded data shall remain archi­ved until you ask us to era­di­ca­te them, dele­te the Borlabs coo­kie on your own or the pur­po­se of sto­ring the data no lon­ger exists. This shall be without pre­ju­di­ce to any reten­ti­on obli­ga­ti­ons man­da­ted by law. To review the details of Borlabs’ data pro­ces­sing poli­ci­es, plea­se visit https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/

We use the Borlabs coo­kie con­sent tech­no­lo­gy to obtain the decla­ra­ti­ons of con­sent man­da­ted by law for the use of coo­kies. The legal basis for the use of such coo­kies is Art. 6(1)© GDPR.

Server log files

The pro­vi­der of this web­site and its pages auto­ma­ti­cal­ly collects and stores infor­ma­ti­on in so-cal­led ser­ver log files, which your brow­ser com­mu­ni­ca­tes to us auto­ma­ti­cal­ly. The infor­ma­ti­on comprises:

  • The type and ver­si­on of brow­ser used
  • The used ope­ra­ting system
  • Refer­rer URL
  • The host­na­me of the acces­sing computer
  • The time of the ser­ver inquiry
  • The IP address

This data is not mer­ged with other data sources.

This data is recor­ded on the basis of Art. 6(1)(f) GDPR. The ope­ra­tor of the web­site has a legi­ti­ma­te inte­rest in the tech­ni­cal­ly error free depic­tion and the opti­miz­a­ti­on of the operator’s web­site. In order to achie­ve this, ser­ver log files must be recorded.

Contact form

If you sub­mit inqui­ries to us via our con­ta­ct form, the infor­ma­ti­on pro­vi­ded in the con­ta­ct form as well as any con­ta­ct infor­ma­ti­on pro­vi­ded the­r­ein will be stored by us in order to hand­le your inqui­ry and in the event that we have fur­ther ques­ti­ons. We will not share this infor­ma­ti­on without your consent.

The pro­ces­sing of the­se data is based on Art. 6(1)(b) GDPR, if your request is rela­ted to the exe­cu­ti­on of a con­tract or if it is necessa­ry to car­ry out pre-con­trac­tu­al mea­su­res. In all other cases the pro­ces­sing is based on our legi­ti­ma­te inte­rest in the effec­ti­ve pro­ces­sing of the requests addres­sed to us (Art. 6(1)(f) GDPR) or on your agree­ment (Art. 6(1)(a) GDPR) if this has been reques­ted; the con­sent can be revo­ked at any time.

The infor­ma­ti­on you have ent­e­red into the con­ta­ct form shall remain with us until you ask us to era­di­ca­te the data, revo­ke your con­sent to the archi­ving of data or if the pur­po­se for which the infor­ma­ti­on is being archi­ved no lon­ger exists (e.g., after we have con­clu­ded our respon­se to your inqui­ry). This shall be without pre­ju­di­ce to any man­da­to­ry legal pro­vi­si­ons, in par­ti­cu­lar reten­ti­on periods.

Request by e‑mail, telephone, or fax

If you con­ta­ct us by e‑mail, tele­pho­ne or fax, your request, inclu­ding all resul­ting per­so­nal data (name, request) will be stored and pro­ces­sed by us for the pur­po­se of pro­ces­sing your request. We do not pass the­se data on without your consent.

The­se data are pro­ces­sed on the basis of Art. 6(1)(b) GDPR if your inqui­ry is rela­ted to the ful­fill­ment of a con­tract or is requi­red for the per­for­mance of pre-con­trac­tu­al mea­su­res. In all other cases, the data are pro­ces­sed on the basis of our legi­ti­ma­te inte­rest in the effec­ti­ve hand­ling of inqui­ries sub­mit­ted to us (Art. 6(1)(f) GDPR) or on the basis of your con­sent (Art. 6(1)(a) GDPR) if it has been obtai­ned; the con­sent can be revo­ked at any time.

The data sent by you to us via con­ta­ct requests remain with us until you request us to dele­te, revo­ke your con­sent to the sto­rage or the pur­po­se for the data sto­rage lap­ses (e.g. after com­ple­ti­on of your request). Man­da­to­ry sta­tu­to­ry pro­vi­si­ons – in par­ti­cu­lar sta­tu­to­ry reten­ti­on peri­ods – remain unaffected.

5. eCommerce and payment service providers

Processing of Customer and Contract Data

We collect, pro­cess, and use per­so­nal cus­to­mer and con­tract data for the estab­lish­ment, con­tent arran­ge­ment and modi­fi­ca­ti­on of our con­trac­tu­al rela­ti­ons­hips. Data with per­so­nal refe­ren­ces to the use of this web­site (usa­ge data) will be collec­ted, pro­ces­sed, and used only if this is necessa­ry to enab­le the user to use our ser­vices or requi­red for bil­ling pur­po­ses. The legal basis for the­se pro­ces­ses is Art. 6(1)(b) GDPR.

The collec­ted cus­to­mer data shall be dele­ted upon com­ple­ti­on of the order or ter­mi­na­ti­on of the busi­ness rela­ti­ons­hip and upon expi­ra­ti­on of any exis­ting sta­tu­to­ry archi­ving peri­ods. This shall be without pre­ju­di­ce to any sta­tu­to­ry archi­ving periods.

6. Custom Services

Handling applicant data

We offer web­site visi­tors the oppor­tu­ni­ty to sub­mit job app­li­ca­ti­ons to us (e.g., via e‑mail, via pos­tal ser­vices on by sub­mit­ting the online job app­li­ca­ti­on form). Below, we will brief you on the scope, pur­po­se and use of the per­so­nal data collec­ted from you in con­junc­tion with the app­li­ca­ti­on pro­cess. We assu­re you that the collec­tion, pro­ces­sing, and use of your data will occur in com­pli­an­ce with the app­li­ca­ble data pri­va­cy rights and all other sta­tu­to­ry pro­vi­si­ons and that your data will always be trea­ted as strict­ly confidential.

Scope and purpose of the collection of data

If you sub­mit a job app­li­ca­ti­on to us, we will pro­cess any affi­lia­ted per­so­nal data (e.g., con­ta­ct and com­mu­ni­ca­ti­ons data, app­li­ca­ti­on docu­ments, notes taken during job inter­views, etc.), if they are requi­red to make a decisi­on con­cer­ning the estab­lish­ment or an employ­ment rela­ti­ons­hip. The legal grounds for the afo­re­men­tio­ned are § 26 BDSG accord­ing to Ger­man Law (Nego­tia­ti­on of an Employ­ment Rela­ti­ons­hip), Art. 6(1)(b) GDPR (Gene­ral Con­tract Nego­tia­ti­ons) and – pro­vi­ded you have given us your con­sent – Art. 6(1)(a) GDPR. You may revo­ke any con­sent given at any time. Wit­hin our com­pa­ny, your per­so­nal data will only be shared with indi­vi­du­als who are invol­ved in the pro­ces­sing of your job application.

If your job app­li­ca­ti­on should result in your recruit­ment, the data you have sub­mit­ted will be archi­ved on the grounds of § 26 GDPR and Art. 6(1)(b) GDPR for the pur­po­se of imple­men­ting the employ­ment rela­ti­ons­hip in our data pro­ces­sing system.

Data Archiving Period

If we are unab­le to make you a job offer or you reject a job offer or with­draw your app­li­ca­ti­on, we reser­ve the right to retain the data you have sub­mit­ted on the basis of our legi­ti­ma­te inte­rests (Art. 6(1)(f) GDPR) for up to 6 mon­ths from the end of the app­li­ca­ti­on pro­ce­du­re (rejec­tion or with­dra­wal of the app­li­ca­ti­on). After­wards the data will be dele­ted, and the phy­si­cal app­li­ca­ti­on docu­ments will be des­troy­ed. The sto­rage ser­ves in par­ti­cu­lar as evi­dence in the event of a legal dis­pu­te. If it is evi­dent that the data will be requi­red after the expi­ry of the 6‑month peri­od (e.g., due to an impen­ding or pen­ding legal dis­pu­te), dele­ti­on will only take place when the pur­po­se for fur­ther sto­rage no lon­ger applies.

Lon­ger sto­rage may also take place if you have given your agree­ment (Arti­cle 6(1)(a) GDPR) or if sta­tu­to­ry data reten­ti­on requi­re­ments pre­clu­de the deletion.