In the following, we provide information about the collection of personal data via the BESTMINDS GmbH website.
We, as the operator* of these pages, take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
(1) Personenbezogene Daten sind alle Daten, die auf Sie persönlich bezogen oder beziehbar sind, also z.B. Name, Adresse, E-Mail-Adressen, Nutzungsverhalten.
(2) Verantwortliche Stelle für die Datenverarbeitung ist die BESTMINDS GmbH. Diese wird vertreten durch den Geschäftsführer Christian Männlin.
Sie erreichen die verantwortliche Stelle und ihre Vertreter unter
Address: Maximilianstr. 2, 79100 Freiburg
Phone: +49 761 888 51 23 0
E-mail: info@bestminds.de
Internet: https://www.bestminds.de/de/
(3) The data protection officer of BESTMINDS GmbH is the lawyer Marc E. Evers. You can reach our data protection officer at
Lawyer Marc E. Evers
DataSEKure Rechtsanwaltsgesellschaft mbH
Weilerstrasse 9
D 79252 Stegen
Phone: +49 7661 97 29 10
E-mail: datenschutz@datasekure.de
When using the website for information purposes only, i.e. when you visit our website, we do not process any personal data, with the exception of the data that your browser transmits to enable you to visit the website. This means that we only store access data in so-called server log files, which are stored until they are automatically deleted. These are
We process the aforementioned data for the following purposes:
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f) GDPR. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this under § 6 and § 11 of this privacy policy.
In addition to the purely informational use of our website, we also offer the option on our website of contacting us directly and informing us of your enquiry. To do this, you must generally provide additional personal data, which we use exclusively to provide the respective service. This is the following data:
If additional voluntary details are possible, these are labelled accordingly.
Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily granted consent.
The personal data collected by us for the use of the contact form will be automatically deleted after your enquiry has been dealt with.
If you contact us by e-mail or telephone, we will process your enquiry and your data resulting from the enquiry for the purpose of processing your enquiry.
The legal basis for this is Art. 6 para. 1 sentence 1 lit. b) GDPR, provided that your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. If this is not the case, the processing is based on our legitimate interest in processing the enquiries made to us in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR.
We delete the personal data required for the enquiry once storage is no longer necessary or restrict processing if there are statutory retention obligations.
(1) Your data will not be passed on to third parties without your express consent. In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly monitored. Your personal data will therefore not be transferred to third parties for purposes other than those listed below.
The transfer of personal data only takes place by way of the legally prescribed transfer, i.e. on the basis of the authorisation pursuant to Art. 6 para. 1 GDPR]. We only pass on your personal data to third parties if:
(2) Furthermore, we may pass on your personal data to third parties if we offer participation in promotions, competitions, contract conclusions or similar services together with partners. You will receive more detailed information on this when you provide your personal data or in the description of the offer below.
(3) If our service providers or partners are based in a country outside the European Economic Area (EEA), we will inform you of the consequences of this circumstance in the description of the offer.
(4) Note on data transfer to the USA
We have integrated tools from companies based in the USA on our website. Your personal data may be transmitted to the US servers of the respective companies if these tools are active.
The respective companies participate in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and have thus officially committed to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU. In addition, we have agreed so-called standard contractual clauses with the relevant companies, the purpose of which is to maintain an adequate level of data protection in the third country.
(1) When you contact us by e-mail, the data you provide (your e-mail address, your name and telephone number if applicable) will be stored by us in order to answer your questions. We delete the data arising in this context after storage is no longer necessary, or restrict processing if there are statutory retention obligations.
(2) The data stored by you will also be stored for the duration of the ongoing business relationship with you or for as long as is necessary.
If this contractual relationship expires or you make use of your rights mentioned under § 5, your data will be treated in accordance with your exercise of rights within the meaning of § 5 and, if necessary, deleted, unless statutory provisions provide for longer retention periods (in particular under tax and commercial law).
If statutory retention periods apply, the storage period for certain data may be up to 10 years, irrespective of the processing purposes.
Please send all requests for information, requests for information or objections to data processing by e-mail to our data protection officer, lawyer Marc E. Evers: datenschutz@datasekure.de
In accordance with Art. 15 GDPR, you have the right to request information from us at any time about the data we have stored about you, as well as its origin, recipients or categories of recipients to whom this data is passed on and the purpose of storage.
In accordance with Art. 16 GDPR, you have the right to demand the immediate correction of incorrect or incomplete personal data stored by us.
In accordance with Art. 17 GDPR, you have the right to have the data we have stored about you deleted at any time, provided that there are no legal retention periods to the contrary or the processing is necessary for the reasons stated in Art. 17 GDPR.
In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of personal data under the conditions specified therein.
In accordance with Art. 20 GDPR, you have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller.
(a) If you have given your consent to the processing of your data, you can revoke this at any time in accordance with Art. 7 para. 3 GDPR. Such a revocation affects the permissibility of the processing of your personal data after you have given it to us. From the time of revocation, data processing may no longer be continued in the future.
(b) Insofar as we base the processing of your personal data on the balancing of interests, you can object to the processing. This is the case if, in particular, the processing is not necessary for the fulfilment of a contract with you, which is described by us in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either discontinue or adapt the data processing or show you our compelling reasons worthy of protection on the basis of which we will continue the processing.
(c) Of course, you can object to the processing of your personal data for advertising and data analysis purposes at any time.
(d) There is no automated decision-making or profiling. In the event that such procedures are used, you will be informed separately.
(1) We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.
(2) Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity.
(3) Session cookies are deleted immediately after you leave the website. Temporary cookies remain stored on your device for a specified period of time. Permanent cookies remain stored on your end device until you or the web browser deletes them.
(4) Cookies have various functions: many cookies are technically necessary for the website to function properly. The data processed by cookies are necessary for the purposes mentioned to safeguard our legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR.
We also use cookies that are not absolutely necessary. These enable us to optimise user-friendliness and anonymously evaluate the use of our website. The legal basis for this is your consent in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR.
(5) If we obtain your consent to the storage of cookies, your data will be processed exclusively on the basis of this consent in accordance with Art. 6 para. 1 lit. a) GDPR. You can revoke or change your consent here at any time: Cookie declaration
(6) You can configure your browser so that no cookies are stored or a message always appears before a new cookie is created. You can also exclude the acceptance of cookies in certain cases. You can also specify that cookies are automatically deleted when the browser is closed. However, completely deactivating cookies may mean that you cannot use all the functions of our website.
We use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties (e.g. TSL encryption for our website), taking into account the state of the art, the implementation costs and the nature, scope, context and purpose of the processing as well as the existing risks of a data breach (including its probability and effects) for the data subject. Our security measures are continuously improved in line with technological developments.
We will be happy to provide you with more detailed information on request. Please contact our data protection officer (see § 1 (3)).
Our website is hosted by an external service provider. The personal data collected on the website (see § 2 para. 1) is stored on the hoster's servers.
The data processing in connection with the use of the hoster is based on our legitimate interest in a secure, fast and efficient provision of our website by a professional provider in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR. The hoster will only process your personal data in accordance with our instructions. We have concluded an order processing contract with our service provider.
We link to the following third-party websites on our website:
https://www.linkedin.com
https://www.xing.com
https://www.facebook.com
https://www.instagram.com
https://x.com/
https://www.google.de/
https://www.cookiebot.com
We have no influence on the content and data processing on these websites. The purpose and scope of the data collection and the further processing and use of the data as well as your rights in this regard and setting options to protect your privacy can be found in the data protection information on the corresponding website.
(a) With your consent, you can subscribe to our newsletter, which we use to send you information about BESTMINDS Executive Search and the medical technology, healthcare, life sciences/pharma and IT/media sectors. By subscribing to the newsletter, you confirm that you wish to receive it in future at the e-mail address you have provided and that you are the same person as the person signing or returning the form. Registration for the newsletter is only possible as part of the application process via the online application form on our website.
(b) We use the so-called double opt-in procedure to subscribe to our newsletter. This means that after you have registered, we will send you an email to the email address you have provided in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration, you will not receive the newsletter and your information will be blocked and automatically deleted after one month. In addition, we store the IP addresses you use and the times of registration and confirmation. The purpose of this procedure is to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data.
(c) The only mandatory information for sending the newsletter is your e-mail address. The provision of further, separately marked data is voluntary and is used to address you personally. After your confirmation, we will save your e-mail address for the purpose of sending you the newsletter. The legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR.
Your data will be stored for as long as you wish to receive the newsletter.
(d) You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can declare your cancellation by clicking on the link provided in every newsletter email (at the end of the email) or by sending a message to the contact details provided in the legal notice.
(e) You also have the right to information, rectification, erasure ("being forgotten"), restriction of processing, a right to data portability and a right to object to the processing of your data. If you are of the opinion that we are not processing your personal data properly, you have the right to lodge a complaint with a supervisory authority.
You can contact our data protection officer at datenschutz@datasekure.de.
You can apply to us using the online application form on our website. Fields with mandatory information are labelled accordingly.
If you send us an application, we will process the data that you have disclosed to us for the purpose of deciding whether to establish an employment relationship. The legal basis for this is Art. 6 para. 1 lit. b) GDPR. Your personal data will only be passed on within our company to persons who are responsible for processing your application.
If we are unable to make you a job offer, you withdraw your application, reject our job offer or ask us to delete your data, your application documents will be kept for a maximum of 6 months after completion of the application process.
After the retention period has expired, the data will be deleted unless there is a statutory retention obligation or other legal reason for further storage. Other statutory retention obligations remain unaffected. If you have given your consent in accordance with Art. 6 Para. 1 lit. a) GDPR to the further storage of your applicant data in order to be informed about suitable job offers in the future, we will store your data until revoked. Consent can be revoked at any time.
We use the consent management service Cookiebot from Usercentrics A/S, Havnegade 39, 1058 Copenhagen, Denmark (Usercentrics). This enables us to obtain and manage the consent of website users for data processing. The processing is necessary to fulfil a legal obligation (Art. 7 para. 1 GDPR) to which we are subject (Art. 6 para. 1 sentence 1 lit. c GDPR). The following data is processed with the help of cookies:
The key and consent status are stored in the browser for 12 months using the "CookieConsent" cookie. This means that your cookie preference is retained for subsequent page requests. The key can be used to prove and track your consent.
If you activate the "collective consent" service function to activate consent for multiple websites through a single end user consent, the service also stores a separate, random, unique ID with your consent. If all of the following criteria are met, this key is stored in the third-party cookie "CookieConsentBulkTicket" in your browser in encrypted form: You activate the collective consent function in the service configuration. You allow third-party cookies via browser settings. You have deactivated "Do not track" via the browser settings. You accept all or at least certain types of cookies when you give your consent.
The functionality of the website is not guaranteed without the processing.
Usercentrics is the recipient of your personal data and acts as a processor for us.
The processing takes place in the European Union. Further information on objection and removal options vis-à-vis Usercentrics can be found at: https://www.cookiebot.com/de/privacy-policy/
Your personal data will be deleted continuously after 12 months or immediately after cancellation of the contract between us and Usercentrics.
Please note our general information on the deletion and deactivation of cookies above under § 6.
Advertising measures of Meta Platforms, Inc. (formerly Facebook, Inc.) ("Facebook") are used on our website. By integrating the so-called "Meta Pixel" on our website, we can display our advertising measures ("Facebook Ads") to users of our website and the social network Facebook and measure and evaluate their success ("Conversion Tracking"). This connection between Facebook and our website takes place technically via the "Facebook Pixel". The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. a) GDPR, i.e. the integration only takes place with your consent.
Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server when you visit our website. We have no influence on the scope and further use of the data collected by Facebook through the use of this tool and therefore present you with the processes known to us: By integrating the Facebook pixel, Facebook receives the information that you have accessed the corresponding website of our Internet presence or have clicked on an advert from us. If you are registered with a Facebook service, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, it is possible that the provider will find out your IP address and other identifying features and use them to create a profile.
The information collected is stored on Meta (formerly Facebook) servers, also in the USA. Meta participates in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and has thus officially committed to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. Meta's EU-US Data Privacy Framework registration is available at www.dataprivacyframework.gov/list In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU. In addition, we have agreed so-called standard contractual clauses with Meta, the purpose of which is to maintain an adequate level of data protection in the third country.
You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. The easiest way to withdraw your consent is via our Consent Manager or by clicking [here]. In addition, (only logged-in users) can object via the provider's function under the following link: www.facebook.com/settings/?tab=ads#_ possible.
Further information on data processing by Facebook can be found at Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA; Privacy Policy: www.facebook.com/about/privacy.
We also use the remarketing function "Custom Audiences", which also uses the Facebook pixel and displays interest-based adverts when you visit our website or other websites that have also integrated the Facebook pixel. This allows us to show you adverts that are of interest to you in order to make our website more interesting for you and to market our offer.
If you have given your consent, we use the web analysis service "Google Analytics" in the version "Google Analytics 4" of Google Inc. on our website.
Google Analytics uses so-called cookies, text files that are stored on your computer and enable your use of the website to be analysed.
We only use Google Analytics with activated IP anonymisation. This means that your IP address will be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.
Google will use the information collected on our behalf to analyse your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator. This is done using pseudonymised user profiles - i.e. these do not contain any unique data such as name or email address.
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
In particular, the following data is collected during your website visit:
The data and the associated cookies are deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
You can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de
Data processing in connection with Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a) GDPR, which was requested, for example, when you consented to the storage of cookies. You can withdraw your consent at any time. The easiest way to revoke your consent is via our Consent Manager or by installing the Google browser add-on, which can be accessed via the following link: https://tools.google.com/dlpage/gaoptout?hl=de/.
Google acts as a processor and we have concluded a corresponding contract with Google. The information generated by the cookie and the (usually shortened) IP addresses about your use of this website are usually transferred to a Google server in the USA and processed there. Google participates in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and has thus officially committed itself to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. Google's EU-US Data Privacy Framework registration is available at https://www.dataprivacyframework.gov/list In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU.
For more information about Google Analytics or information from the third-party provider: Google Dublin, Google Ireland Ldt, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001, please visit
at marketingplatform.google.com/about/analytics/terms/de/ (terms of use),
at support.google.com/analytics/answer/6004245 (Information on data processing when using Google Analytics),
at policies.google.com/privacy (privacy policy - general information on data processing which, according to Google, should also apply to Google Analytics).
We use Google Ads to draw attention to our offers with the help of adverts. If you access our website via a Google advert, Google Ads will store a cookie on your end device. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. a) GDPR, i.e. the integration only takes place with your consent.
The advertising material is delivered by Google via so-called "ad servers". For this purpose, we and other websites use so-called ad server cookies, through which certain parameters for measuring success, such as the display of adverts or clicks by users, can be measured. We can obtain information about the success of our advertising campaigns via the Google Ads cookies stored on our website. These cookies are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that a user no longer wishes to be addressed) are usually stored as analysis values for this cookie.
The cookies set by Google enable Google to recognise your internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Ads customer so that the cookies cannot be tracked via the websites of other Ads customers. By integrating Google Ads, Google receives the information that you have called up the corresponding part of our website or clicked on an advert from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider will find out your IP address and save it.
Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We ourselves do not independently collect personal data in the aforementioned advertising measures, but only provide Google with the opportunity to collect the data. We only receive statistical analyses from Google that provide information on which advertisements were clicked on how often and at what prices. We do not receive any further data from the use of the advertising media; in particular, we cannot identify users on the basis of this information.
You can withdraw your consent at any time without this affecting the permissibility of processing up to the point of withdrawal. The easiest way to withdraw your consent is via our Consent Manager or via the following functions:
(a) by setting your browser software accordingly; in particular, the suppression of third-party cookies means that you will not receive any adverts from third-party providers;
(b) by setting your browser to block cookies from the domain "www.googleadservices.com", www.google.de/settings/ads, whereby this setting will be deleted when you delete your cookies;
(c) by deactivating the interest-based ads of the providers that are part of the "About Ads" self-regulation campaign via the link www.aboutads.info/choices, whereby this setting is deleted when you delete your cookies;
(d) by permanently deactivating them in your Firefox, Internet Explorer or Google Chrome browsers via the link www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of this website to their full extent.
The information collected is stored on Google servers, including in the USA. Google participates in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and has thus officially committed to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. Google's EU-US Data Privacy Framework registration is available at https://www.dataprivacyframework.gov/list In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU. In addition, we have agreed so-called standard contractual clauses with Google, the purpose of which is to maintain an adequate level of data protection in the third country.
Further information on data protection at Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland, can be found here:
https://policies.google.com/privacy?hl=de and http://services.google.com/sitestats/de.html
We use Google Ads with the additional application "Google Conversion Tracking". This is a procedure with which we can check the success of our advertising campaigns. For this purpose, the adverts are provided with a technical precaution, e.g. an ID, with which we and Google can determine how a user interacts after clicking on the adverts, i.e. which buttons they clicked on and which products were frequently viewed or purchased.
Conversion statistics are created using this data. This provides us with statistical information about the total number of readers of our adverts, which adverts are particularly popular and, if applicable, further information about the consequences of the advert. We do not receive any data with which we can identify you personally. Google itself uses cookies or comparable recognition technologies for identification purposes.
Google acts as a processor and we have concluded a corresponding contract with Google. The information generated by the cookie and the (usually shortened) IP addresses about your use of this website are usually transferred to a Google server in the USA and processed there. Google participates in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and has thus officially committed itself to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. Google's EU-US Data Privacy Framework registration is available at www.dataprivacyframework.gov/list In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU. In addition, we have agreed so-called standard contractual clauses with Google, the purpose of which is to maintain an adequate level of data protection in the third country.
Further information can be found in Google's privacy policy: https://policies.google.com/privacy?hl=de.
Data processing in connection with Google Conversion Tracking is based on your consent in accordance with Art. 6 (1) (a) GDPR, which was requested, for example, when you consented to the storage of cookies. You can withdraw your consent at any time.
Social media plug-ins ("plug-ins") from social networks are used on our website. These allow you to interact with the social networks and other users.
The plug-in provider stores the data collected about you as usage profiles and uses these for the purposes of advertising, market research and/or customising its website. Such an evaluation is carried out in particular (even for users who are not logged in) to display customised advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Data is passed on regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected by us will be assigned directly to your existing account with the plug-in provider. If you press the activated button and, for example, link the page, the plug-in provider also saves this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, but especially before activating the button, as this will prevent you from being assigned to your profile with the plug-in provider. In order to increase the protection of your data when you visit our website, plug-ins are not integrated into the page without restrictions, but only using an HTML link (so-called "Shariff solution" from c't). This integration ensures that no connection is established with the servers of the provider of the respective social network when a page of our website containing such plug-ins is accessed.
If you click on one of the buttons, a new browser window opens and calls up the page of the respective service provider where you can confirm the Like or Share button, for example (if necessary after entering your login data).
The purpose and scope of the data collection and the further processing and use of the data by the providers on their pages as well as your rights in this regard and setting options to protect your privacy can be found in the providers' data protection notices.
The information collected is stored on servers of the providers, in the case of international providers also outside Europe. In these cases, the providers participate in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and/or have agreed so-called standard contractual clauses with us, the purpose of which is to ensure compliance with an adequate level of data protection in the third country. By participating in the EU-US Data Privacy Framework, providers officially commit to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. The list of companies certified under the EU-US Data Privacy Framework can be viewed at www.dataprivacyframework.gov/list. In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU.The legal basis for the use of corresponding social media plug-ins is our legitimate interest within the meaning of Art. 6 para. 1 lit. f) GDPR in an appealing presentation of our website and the linking of our social media content with it.
We use the "Google Tag Manager" service of Google Inc. on this website.
Google Tag Manager is an auxiliary service that processes personal data (IP address) itself only for technically necessary purposes.
Google Tag Manager is a website tool that enables other tools to be loaded, which in turn may collect data (and are listed in this privacy policy). The Google Tag Manager itself has no access to the data collected by the tools loaded with the help of the Google Tag Manager.
The information collected by Google Tag Manager for technically necessary purposes (IP address) is stored on Google servers, including in the USA. Google participates in the EU-US Data Privacy Framework, which came into force on 10 July 2023, and has thus officially committed itself to the US Department of Commerce to comply with the principles of the EU-US Data Privacy Framework. Google's EU-US Data Privacy Framework registration is available at www.dataprivacyframework.gov/list In accordance with the European Commission's adequacy decision of 10 July 2023, the EU-US Data Privacy Framework guarantees an adequate level of data protection, i.e. a level of data protection equivalent to that in the EU. In addition, we have agreed so-called standard contractual clauses with Google, the purpose of which is to maintain an adequate level of data protection in the third country. In addition, we have agreed so-called standard contractual clauses with Google, the purpose of which is to maintain an adequate level of data protection in the third country.
We are also active on social media and have publicly accessible profiles there for the purpose of presenting ourselves comprehensively online and to be able to interact with the users of these social media in a timely manner.
We are jointly responsible for this with the operators of the social media platforms (Meta (formerly Facebook) and Instagram: Meta Platforms Ireland Limited, Serpentine Avenue, Block J, Dublin 4, Ireland Ltd (hereinafter "Meta"); LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; XING: New Work SE, Am Strandkai 1, 20457 Hamburg, Germany; X (formerly Twitter): Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland).
We have concluded corresponding agreements with Meta on joint data protection responsibility with regard to the so-called "Page Insights" (Art. 26 GDPR), which you can find at https://de-de.facebook.com/legal/terms/page_controller_addendum and at https://www.facebook.com/legal/terms/information_about_page_insights_data.
With regard to the "Page Insights data", essential data protection obligations are assumed by Meta, e.g. the information pursuant to Art. 12, 13 GDPR (so-called information obligations) including the information on the protection of data subjects' rights.
We process personal data from the aforementioned social networks for the purpose of communication, e.g. if you interact with us by sending us a "Like" or writing to us directly via the respective social media platform.
Personal data collected in these contexts will be deleted by us as soon as the purpose of the processing no longer applies, or we will restrict the processing if there are statutory retention obligations, insofar as deletion or restriction of processing is possible.
Meta also provides us with anonymised statistical data about the use of and visitors to our respective social media presences as part of the so-called "Page Insights". We process this data on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR to optimise our social media presences and for the purpose of the effectiveness of our social media presences as well as for the purpose of a contemporary online presence in social media. In this respect, Meta provides us with anonymised information on visitor profiles, information on the geographical origin of visitors and demographic data.
Data processing in the context of "Page Insights" is carried out by Meta on the basis of the above-mentioned agreement in accordance with Art. 26 GDPR. Meta only provides us with anonymised data, which we cannot use to establish a reference to individual persons.
-Further information on data processing by Meta in the context of "Page Insights" can be found at: https://www.facebook.com/legal/terms/information_about_page_insights_data.
General information on data processing by Meta can be found for "Facebook" at: https://de-de.facebook.com/about/privacy/ and for Instagram at: https://help.instagram.com/519522125107875.