Skip to content
Close
SEARCH
en
de
Contact
en
de
Contact

Privacy Policy

DATAGROUP takes the protection of personal data very seriously. We ensure that your personal data is treated confidentially and according to the relevant data protection regulations and this Privacy Policy

The use of our website is generally possible without providing any personal data. If personal data (e.g. name, address or email address) is collected on our pages, this is always done on a voluntary basis. This data will not be disclosed to any third parties unless we have your express consent to do so.

We would like to point out that the transfer of data on the internet (e.g. during communication by email) may have security gaps. We cannot guarantee complete protection of your data against access by any third parties.

 

1. Data Controller in the Sense of Art. 4 (7) GDPR

The data controller in the sense of Article 4 (7) of the General Data Protection Regulation (GDPR) is:

DATAGROUP SE
Wilhelm-Schickard-Straße 7
72124 Pliezhausen

T +49 711 49005 00
E-Mail: kontakt@datagroup.de

The DATAGROUP Group currently comprises the following additional companies:

DATAGROUP SE
Wilhelm-Schickard-Straße 7
72124 Pliezhausen

DATAGROUP IT Solutions GmbH
Wilhelm-Schickard-Straße 7
72124 Pliezhausen

DATAGROUP Stuttgart GmbH
Wilhelm-Schickard-Straße 7
72124 Pliezhausen

DATAGROUP Ludwigsburg GmbH
Steiermärker Straße 3-5
70469 Stuttgart

DATAGROUP Köln GmbH
Gebäude Wickelei 2.12
Schanzenstraße 6-20
51063 Köln

DATAGROUP Bremen GmbH
Mary-Somerville-Straße 8
28359 Bremen

DATAGROUP Hamburg GmbH
Brandshofer Deich 68
20539 Hamburg

DATAGROUP Consulting Services GmbH
Genfer Allee 2
55129 Mainz

DATAGROUP Business Solutions GmbH
Auf den Tongruben 3
53721 Siegburg

DATAGROUP Operations GmbH
Hanauer Landstrasse 310
60314 Frankfurt am Main

DATAGROUP Enterprise Services GmbH
Auf den Tongruben 3
53721 Siegburg

DATAGROUP BIT GmbH
Wendenstraße 21B
20097 Hamburg

DATAGROUP Operate IT GmbH
Brandshofer Deich 68
20539 Hamburg

Almato AG
Theodor-Heuss-Straße 9
70174 Stuttgart

Almato AI GmbH
Theodor-Heuss-Straße 9
70174 Stuttgart

DATAGROUP Service Hub GmbH
Lange Straße 1a
18055 Rostock

DATAGROUP Frankfurt GmbH
Siemensstraße 10a
63263 Neu-Isenburg

DATAGROUP Ulm GmbH
Magirus-Deutz-Straße 17
89077 Ulm

DATAGROUP Berlin
a division of DATAGROUP Business Solutions GmbH
SHED
Sonnenallee 221 F
12059 Berlin

DATAGROUP München
a division of DATAGROUP Business Solutions GmbH
Lise-Meitner-Straße 9
85737 Ismaning

DATAGROUP Defense IT Services
a division of DATAGROUP Business Solutions GmbH
Auf den Tongruben 3
53721 Siegburg

Mercoline GmbH
Wittestr. 30 L
13509 Berlin

DATAGROUP BIT Oldenburg GmbH
Stau 123
26122 Oldenburg

DATAGROUP Cyber Security GmbH
Wilhelm-Schickard-Str. 7
72124 Pliezhausen

CLOUDETEER GmbH
Brandshofer Deich 68
20539 Hamburg

CONSYS ERP GmbH Co. KG
Konrad-Zuse-Ring 16a
41179 Mönchengladbach

Inn2 GmbH
Sonnenstraße 3
83022 Rosenheim

DATAGROUP GO GmbH
Wilhelmstraße 80
49477 Ibbenbüren

DATAGROUP Rottweil GmbH
Saline 29
78628 Rottweil

systemzwo GmbH
Pfarrer-Weiß-Weg 10
89077 Ulm

DATAGROUP Rhein-Main GmbH
Konrad-Adenauer-Straße 3
55218 Ingelheim

Inn2 GmbH
Sonnenstraße 3
83022 Rosenheim

DATAGROUP Enterprise Consulting GmbH
Sonnenstraße 3
83022 Rosenheim

Almato Iberia S.L.U
Edificio @mar
C/ Pallars 193-205,6ª izq..
08005 Barcelona

Almato Logistics Software S.L
Edificio @mar
C/ Pallars 193-205,6ª izq..
08005 Barcelona

DATAGROUP Enterprise Service Kft
1095 Budapest, Soroksári út 44. II.
emelet

DATAGROUP Banking Operations Center
Moldavska Cesta 10/B,
04011, Košice / Slovakia

DATAGROUP Polska Sp. z o.o.
Straszewskiego 10/2
31-101 Kraków

DATAGROUP Operations Lithuania UAB
Europos Pr. 23A,
46329 Kaunas,
Republik Lithuania

 

2. Communication by email / telephone / mail / contact form

Purpose of data processing/ lawful basis:

ersonal information that you provide to us via email, telephone, post, contact forms, or the Service Portal will, of course, be treated confidentially. We use your data to process your enquiry. Your data will also be stored by us for future contact. The legal basis for data processing is Article 6(1)(f) GDPR. DATAGROUP’s legitimate interest in this regard arises from the need to respond to enquiries from our customers, business partners, and prospects, thereby maintaining and promoting customer satisfaction.

The company to which you address your inquiry is responsible for processing your inquiry in accordance with data protection laws.

We use telephony functions of Microsoft Teams. The information on Teams in this privacy policy applies accordingly to the telephony function.

It cannot be ruled out that, for example, email addresses of external parties are processed in DATAGROUP systems for IT security purposes.

Recipient/ categories of recipients:

As a basic principle, we do not disclose data to any third parties. Data may be processed on our behalf by data processors in exceptional cases. These data processors have been carefully selected, are audited by us and are bound by contract in accordance with Article 28 of the GDPR.

We may also be required to pass on enquiries to other companies within DATAGROUP where this is necessary for processing.

Within the service portal, superiors at DATAGROUP customers may be able to view tickets created by other users at the company.

Storage period/ criteria to determine the storage period:

All personal data that you provide to us in connection with enquiries outside of customer support will be stored by us for a period of 90 days.
 

Voicemail messages remain stored on answering machines until the called party deletes them.

Service tickets in support, reports and log files of the service portal are stored for as long as is necessary for DATAGROUP. Closed tickets are deleted from the service portal after six months.

 

3. Data Processing of Contact Persons

Purpose of data processing/ lawful basis:

The companies of DATAGROUP process the contact details of customers, stakeholders, suppliers and other business partners for communication by email, telephone, fax or mail. The lawful basis for the data processing is Article 6 (1f) of the GDPR. The legitimate interest of DATAGROUP arises from the interest to establish or conduct business relationships with customers, stakeholders, suppliers and other business partners by maintaining personal contact with contact persons. Insofar as there is a legitimate interest, the DATAGROUP companies can compare business partners with so-called sanction lists on the basis of Article 6 (1f) GDPR.

Recipient/ categories of recipients:

As a basic principle, we do not disclose personal data to any third parties outside of DATAGROUP. Within DATAGROUP, data is shared, amongst others, to establish or conduct business relationships. Data may be processed on our behalf by data processors in exceptional cases. These processors have been carefully selected, are audited by us and are bound by contract in accordance with Article 28 of the GDPR.

Storage period/ criteria to determine the storage period:

Personal data for the purpose of conducting business relationships is stored as long as there is a legitimate interest.

 

4. Newsletter

Purpose of data processing/ lawful basis:

You have the possibility to order our newsletter through different channels (this website, at fairs). The lawful basis for data processing in order to send out newsletters is your consent under Article 6 (1a) of the GDPR as well as § 7 (2) of the Unfair Competition Law. The purpose of data processing within the context of an order of the DATAGROUP newsletter is to inform newsletter subscribers about offers, initiatives, products, events and services of the companies of DATAGROUP.

Provided that you register for the free DATAGROUP newsletter, we would need your email address as compulsory information. Provided that you voluntarily provide any further personal details (name, surname, company, job title and selection of themes) we will use this data exclusively for the purpose of analysing the target group and for an internal analysis.

You will receive an email with a confirmation link after sending the registration form. Provided that you click on this link you are subscribed to the newsletter. You will be informed accordingly by another email. By confirming the registration, you give your consent to process your email address and your optional data for the purposes stated herein. We will store the time and the IP address used for ordering the newsletter for evidence purposes.

Your consent to order the DATAGROUP newsletter can be revoked at any time with effect for the future by confirming the relevant unsubscribe link in a newsletter or by sending an email to widerruf@datagroup.de

Recipient/ categories of recipients:

As a basic principle, we do not disclose data to any third parties outside of DATAGROUP. We have commissioned service provider HubSpot, Inc. to send out newsletters. This service provider has been carefully selected and audited by us and is bound by contract in accordance with Article 28 of the GDPR. Within the DATAGROUP group of companies, data is passed on by DATAGROUP SE to other companies to ensure that they can provide you with information as well.

Storage period/ criteria to determine the storage period

Provided you revoke your consent to receive the DATAGROUP newsletter, the data collected for this purpose will be deleted immediately unless they are also needed for another purpose.

 

5. Data Processing for Marketing Purposes

Purpose of data processing/ lawful basis:

The companies of DATAGROUP use personal data for marketing purposes, especially for advertising sent by email, telephone and mail. The purpose of the data processing for marketing campaigns is to inform the data subjects about products and services of the DATAGROUP companies. The lawful basis for sending advertising by mail is Article 6 (1f) of the GDPR. The legitimate interest of DATAGROUP arises from the interest to provide customers and stakeholders with information on products and services. The lawful basis for marketing campaigns by email or telephone generally is the declaration of consent given by you, while § 7 of the Unfair Competition Law can apply for marketing campaigns as well.

You can object to the receipt of advertising at any time with effect for the future, without incurring any costs other than the transmission costs according to the basic tariffs, by sending a message to widerruf@datagroup.de

If you declare an objection to the receipt of advertising, we store your data in an advertising blocking file on the basis of Art. 6 para. 1 f) GDPR. The legitimate interest of DATAGROUP arises in this case from the interest in ensuring compliance with the asserted opposition.

Recipient/ categories of recipients:

As a basic principle, we do not disclose your data to any external third parties. Provided that external data processors will be used to send advertising, they are contractually obligated under Article 28 of the GDPR and have been controlled to verify that appropriate organisational and technical security measures are in place. Within DATAGROUP, your data may be passed on to other companies for marketing purposes.

Storage period/ criteria to determine the storage period:

Provided that you object to the receipt of advertising, your data will be blocked immediately and subsequently deleted unless they have been stored for other purposes as well.

 

6. Receipt of Applications

Purpose of data processing/legal basis:

When applications are received, data is collected that is required to carry out the application process and to initiate an employment relationship. In addition, data associated with the use of the applicant management system is also collected, so-called usage data. Usage data is data that is required to operate our websites, such as information about the start, end and scope of use of our website, including login data. This processing complies with the provisions of data protection and telemedia law.

As part of the application process and/or the use of the system, processing activities may also take place that are carried out either on the basis of legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR or on the basis of your consent pursuant to Art. 6 para. 1 lit. a) GDPR. Processing activities for which there is a legal obligation to process or a public interest, Art. 6 para. 1 lit. c) and e) GDPR, such as in the context of criminal prosecution or investigation by state authorities, also come into consideration. You can determine and control the scope of processing yourself through individual settings in your web browser, the configuration of the corresponding cookie settings and your user behaviour.

Visiting the website

For operational and maintenance purposes and in accordance with the provisions of telemedia law, interaction is recorded (“system logs”), which are necessary for the operation of the career portal or are processed for system security purposes, for example to analyse attack patterns or illegal usage behaviour (“evidence function”). Your internet browser automatically transmits the following data when you access the career portal:

– Date and time of access,

– Browser type and version,

– Operating system used,

– Amount of data sent.

– IP address of the access

This data is not used for direct allocation in the context of applicant management and is deleted again after 52 days in accordance with the legitimate retention periods, unless longer retention is required for legal or factual reasons, such as for evidence purposes. In individual cases, storage for the aforementioned purposes may be considered. The legal basis is Art. 6 para. 1 lit. f) GDPR and telemedia law.

Session cookies

We store so-called “cookies” in order to offer you a comprehensive range of functions and to make the use of our websites more convenient. “Cookies” are small files that are stored on your computer with the help of your internet browser. If you do not wish cookies to be used, you can prevent them from being stored on your computer by making the appropriate settings in your Internet browser. Please note that the functionality and range of functions of our website may be restricted as a result.

We set the JSESSIONID cookie on the careers page as a technically necessary session cookie. This stores a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognised when you return to our website. This session cookie is deleted when you log out or close the browser. The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR and § 25 para. 2 no. 2 TTDSG.

Application process

As part of the application process, you can set up and manage an account in the career portal after configuring your user name and password. In addition to the individual application, you can use further options in the softgarden applicant management system and make your individual settings (e.g. inclusion in a talent pool).

For an efficient and promising application, you can provide the following information as part of your application to us:

– Contact details (address, telephone number)

– CV data e.g. school education, vocational training, work experience, language skills

– Profiles in social networks (e.g. XING, LinkedIn, Facebook)

– Documents in connection with applications (application photos, cover letters, certificates, references, work samples, etc.)

The legal basis for processing for the purposes of carrying out the application process and initiating an employment relationship is Section 26 (1) sentence 1 BDSG and Art. 6 (1) (b) GDPR. In addition, the use of the applicant management system by the controller is in the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. If consent within the meaning of Art. 6 para. 1 lit. a) is required for a specific processing activity, this will be obtained separately and transparently from you by the controller, unless it results from conclusive and voluntary behaviour on your part in accordance with the transparency requirement, such as voluntary participation in a video interview.

Joint recruiting process

If two or more companies carry out a joint recruiting process, the companies involved are joint controllers under data protection law. In these cases, the data protection rights of the applicants can be asserted at both companies involved. The legal basis for the transfer of applicant data between the participating companies is Art. 6 para. 1 lit. b) GDPR.

Feedback module

In addition to your application, we may ask you to submit your feedback after an interview and 3 months after your recruitment. We will send you an invitation link that will take you to the rating system to submit your feedback. The purpose of the processing is to further develop and optimise our recruiting and application processes as well as the company image. The following data is processed automatically for this purpose

– Contact details (name, e-mail)

– Position title of the job for which you have applied

– Location of the position

– Job category

– Applicant identifier

The feedback itself is anonymised and stored in the database. No personal reference is made. In addition to a star rating for individual questions, you have the opportunity to leave comments here. We expressly ask you not to leave any personal data in the comments. The information collected in this way can be displayed together with your feedback on our review page or transmitted to external partners such as kununu. Participation is purely voluntary and only takes place with your consent, without which the submission of feedback is not possible. The legal basis is Art. 6 para. 1 lit. a) GDPR.

Subscription to job adverts “Job subscription”

To be informed about new job vacancies, you can subscribe to the job newsletter or have suitable vacancies displayed on our career board (RSS feed). You can define your subscription in more detail by specifying the desired job and location. Your e-mail address is also required for the subscription. The legal basis for this is your consent to receive the newsletter in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent to receive the newsletter at any time via the unsubscribe link in the newsletter (opt-out). No personal data is processed via the RSS feed itself to inform you about new job advertisements.

Talent pool

As part of your application or via the “Get in touch” button, you have the opportunity to recommend yourself for our talent pool. This processing is necessary in order to be automatically considered for further job advertisements, i.e. for similar or other suitable positions. If you register for the talent pool using the “Get in touch” button, the following information will be requested:

– Salutation, academic title (optional)

– First name, surname, email address

– Job fields of interest

– Current career level

– Preferred location(s)

– XING profile or CV

Inclusion in the talent pool is completely voluntary with your consent and by using an opt-in link. The legal basis is Art. 6 para. 1 lit. a) GDPR. Your data will remain in the talent pool for 24 months. After this period has expired, we will ask you whether you wish to consent to your data being stored for a further 24 months. If you do not give your consent, your data will be deleted from the talent pool after 2 weeks.

Employee recruitment campaign

If you have been recruited as an applicant by an active employee of the DATAGROUP Group and you are hired, the employee who recruited you will be informed about the hiring and will receive a bonus. The recruiting employee may also be employed by another company. If necessary, this other company will also be informed of your recruitment. The legal basis for this data processing is § 26 para. 1 sentence 1 BDSG or Art. 6 para. 1 lit. b) GDPR, as the information is required in the context of the performance of the employment relationship of the recruiter.

Recipients/categories of recipients:

Your data will not be passed on to unauthorised third parties as part of applicant management and will only be processed for the purposes stated in this privacy policy. Inspection by internal departments and specialist managers of the controller is in the legitimate interest, insofar as knowledge of the information from the application process is required and permitted for the selection of applicants or internal administrative purposes of the company. For this purpose, your data may be forwarded by e-mail or within the management system to third parties in the company (including works councils) and group companies. The legal basis may be § 26 para. 1 BDSG, Art. 6 para. 1 lit. b), Art. 6 para. 1 lit. f) and a) GDPR.

softgarden e-Recruiting GmbH

We use an applicant management system from softgarden e-Recruiting GmbH, Tauentzienstr. 14, 10789 Berlin (contact: datenschutz@softgarden.de), which operates the applicant management system as a processor within the meaning of Art. 4 No. 8 GDPR. A contract for order processing in accordance with Art. 28 GDPR has been concluded with the provider, which ensures compliance with data protection regulations. We remain your first point of contact for exercising your data subject rights and handling the application process.

Cloudflare:

We use the service of the ISO 27001-certified provider Cloudflare Inc, 101 Townsend St, San Francisco, USA or its subsidiary Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich Germany (“Cloudflare”) to increase the security of our recruiting platform, in particular to protect against DDoS attacks, and to improve the speed of delivery. Cloudflare provides a network of servers capable of delivering optimised content to the end user and intercepting virus-laden traffic.

The services provided by Cloudflare include the product “Data Localisation Suite” with the components “Regional Services” and “Metadata Boundary for Customers”. Both components ensure that the transfer of personal data when using our platform takes place exclusively within the EU.

The “Regional Services” ensure that the customer content traffic, in this case the end customer traffic, is securely transferred to Cloudflare PoPs within the region we have selected and is checked within a Point of Presence (PoP) in this defined region.

We have chosen Germany as the selected region, so all traffic is checked exclusively on servers in Germany. Metadata Boundary ensures that Cloudflare does not transmit any customer logs originating from the services used outside the European Union.

The personal data processed by Cloudflare includes all content transmitted by our applicants, i.e. beyond the IP address, all files (application documents) and multimedia images, graphics, audio or video, as well as any interaction of their browser with our system.

Cloudflare sets technically necessary cookies, which are necessary for security purposes and for the secure provision of the service, § 25 para. 2 no. 2 TDDDG.

Your personal data will be stored by Cloudflare for as long as is necessary for the purposes described, usually 124 calendar days.

Storage period/criteria for determining the storage period:

Your data will be stored for the duration of the application process and in accordance with the legitimate probationary periods after completion of the application process. In the event of a rejection, the data will be kept for 4 months. After the retention period has expired, the data will be completely anonymised. The processing of anonymised data records is not subject to the material scope of the data protection regulations, so that for statistical and anonymised data may be processed for statistical and analytical purposes, for the creation of market studies or for product development.

 

7. Seminar Registration and Registration for Events

Purpose of data processing/ lawful basis:

If you wish to book seminars on our website or registrate for events, we would need the information marked as required fields in the booking screen. The input fields that are not specifically marked are optional for you to fill in. As part of the booking you will receive an email from us to confirm your registration. The booking process will not be completed before you activate the link in this email. Your data submitted in the context of the booking will be processed by us for the purpose of carrying out the booking and the seminar or for the registration for an event. The lawful basis for this data processing is Article 6 (1b) of the GDPR.

Provided that you have given us your consent to do so, we will also use your data to provide you with marketing information on the seminar/event in question by email, mail or telephone as a follow-up to the seminar/event. Your consent can be revoked at any time with effect for the future by confirming the relevant unsubscribe link in one of our emails or by sending an email to widerruf@datagroup.de. The lawful basis for data processing for the purpose of providing information is your consent under Article 6 (1a) of the GDPR as well as §7 (2) of the Unfair Competition Law.

Recipient/ categories of recipients:

We may disclose the names of the persons who register for a seminar on our website to our training partner who conducts the training. This partner needs the data for the organisational handling of his training and will also report the data to the relevant testing institute. The forwarded data will be stored in a database which will generate the examination papers and finally the eventual certificate. Data provided by applicants for events will not be disclosed.

Storage period/ criteria to determine the storage period:

Where required, we will store the data of participants in seminars and events for the duration of the legal retention periods. Subsequently, and apart from that, the data will generally be deleted. Provided that you have given your consent to receive information, we will store your data for this purpose until you revoke your consent.

 

8. Cookies

Essential cookies:

Some of the webpages use so-called cookies. Cookies do not cause damages to your computer and do not contain viruses. Cookies are used to make our offer more user-friendly, more efficient and more secure. Cookies are small text files that are stored by your browser on your computer.

Most of the cookies used by us are so-called “session cookies”. They will be deleted automatically after the end of your visit. Other cookies remain on your terminal device until they are deleted by you. These cookies enable us to recognise your browser on your next visit.

You can adjust your browser to be informed when cookies are placed, to individually allow cookies, accept cookies in certain cases or to generally exclude them as well as to activate an automatic deletion of cookies when the browser is closed. The deactivation of cookies may restrict the functionality of this website.

Cookie settings can be edited here: Activate/deactivate cookies

The legal basis for data processing by so-called “necessary cookies” is Art. 6 Para. 1 lit. f GDPR and § 25 Para. 2 no. 2 TDDDG. Necessary cookies enable basic functions and are necessary for the proper functioning of the website. We have a legitimate interest in making the website as user-friendly as possible.

The following cookies, which are set by this website, are necessary for the operation of the website:

Name of the cookie

cookieconsent_status
Storage period of the cookie 

354 days

Marketing cookies:
Google Ads Conversion:

We use Google Ads to draw attention to our attractive offers with the help of advertising material (so-called Google Ads) on external websites. We can determine how successful the individual advertising measures are in relation to the advertising campaign data. We are interested in showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs.

These advertising materials are delivered by Google via so-called “ad servers”. For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as the display of ads or clicks by users, can be measured. If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies generally lose their validity after 90 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.

These cookies enable Google to recognize your internet browser. If a user visits certain pages of an Ads customer’s website and the cookie stored on their computer has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. Based on these evaluations, we can recognize which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material; in particular, we cannot identify users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our level of knowledge: Through the integration of Ads Conversion, Google receives the information that you have accessed the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider will find out your IP address and store it.

The legal basis for the processing of your data is the consent you have given in accordance with Art. 6 para. 1 lit. a GDPR and §25 para. 1 sentence 1 TDDDG. The transfer of personal data to bodies outside the EU is based on your consent in accordance with Art. 49 para. 1 lit. a) GDPR. You can revoke this consent at any time. In addition, the EU-US Data Privacy Framework applies to Google in the USA. Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.

The following cookies set by this website are related to Google Ads Conversion:

Name of the cookie

AW-724711044
Storage period of the cookie

Max. 90 days

 

9. Server Log Files

The provider of these websites collects and automatically stores information in so-called server log files that your browser automatically transmits to us. This includes:

  • Browser type/ browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Name and URL of the retrieved file
  • Date, Time and Timezone of the server query
  • IP adress of the requesting internet-enabled device

This data cannot readily be assigned to specific persons. A combination of this data with other data sources does not take place. We reserve the right to review this data at a later time if we become aware of specific grounds for suspicion of illegal use.

The legal basis for processing this data is Article 6(1)(f) GDPR. Our legitimate interest lies in the purposes of data processing listed above. Recipients of this data may include processors engaged by us for hosting the website. No other transfer of this data to external parties takes place. The data will be stored for a period of 7 days.

 

10. Analytics

Purpose of data processing/ lawful basis:

This website uses functions of the web analysis service Google Analytics. Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of the website. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is linked to other data about you, such as your search history, personal accounts, usage data from other devices and all other data Google has about you. The data processing is essentially done by Google.

The information generated by cookies about your use of this website is usually transferred to a Google server in the United States and stored there. Both Google and potentially the US government have access to this data. However, the settings of Google Analytics on this website mean that your IP address is shortened or masked as soon as the data is received by Google Analytics and before it is stored or processed.

The legal basis for the use of Google Analytics is the consent you have given in accordance with Art. 6 (1) point a GDPR and §25 (1) sentence 1 TDDDG. You can revoke this consent at any time with effect for the future.

The following cookies, which are set by this website, are associated with Google Analytics:

Name of cookie Duration of cookie storage
_ga 2 years
_ga_F56S6H339D 2 years

 

Recipient/ categories of recipients:

As part of the Google Analytics service, Google Ireland Limited supports us as a processor in accordance with Art. 28 GDPR. The data processing can also take place through Google outside the EU or the EEA (in particular in the USA). With regard to Google in the USA, an adequate level of data protection is guaranteed by the adequacy decision (EU-U.S. Data Privacy Framework). Google is also obliged to conclude standard contractual clauses with other subcontractors. You consent to the transfer of your data to these entities in accordance with Art. 49 (1) a) GDPR. Entities outside the EU may not provide an adequate level of data protection.

 

Storage period/ criteria to determine the storage period:

We store user and event data for a period of 2 months.

You can prevent cookies from being stored by selecting the appropriate settings on your browser. However, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by clicking on the following link: Activate/deactivate cookies. For more information about Terms of Use and Privacy, please visit http://www.google.com/analytics/terms/de.html or https://www.google.de/intl/de/policies/. On this website, Google Analytics has been extended by the code “gat.anonymizeIp();” to ensure an anonymized collection of IP addresses (so-called IP-Masking).

 

11. YouTube Videos

On some of our websites we embed YouTube videos. Opening these websites results in YouTube content being downloaded. In this context, YouTube also receives your IP address, which is technically necessary for retrieving the contents. In principle, we have no influence on further data processing by YouTube, which is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. However, when embedding the videos, we activated the extended data protection mode offered by YouTube. The use of YouTube and the resulting transmission of your IP address happens on the basis of the consent given by you in accordance with Art. 6 (1) a) GDPR. The transfer of personal data to entities outside the EU is based on Art. 49 (1) a) GDPR. You can revoke these consents at any time. Further information on the handling of user data can be found in YouTube’s privacy
policy: https://policies.google.com/privacy?hl=de&gl=de

Please note: When you play a YouTube video on our site, this is considered consent in the sense described above, even if you have not previously given consent in the Consent Management Tool.

The following cookies that are set by this website are related to YouTube:

Name of the cookie:

APISID

CONSENT

HSID

IDE

LOGIN_INFO

PREF

SAPISID

SID

SIDCC

SSID

VISITOR_INFO1_LIVE

__Secure-3PAPISID

__Secure-3PSID

__Secure-APISID

__Secure-HSID

__Secure-SSID
Storage period of the cookie:

704 days

6480 days

704 days

269 days

687 days

624 days

704 days

704 days

322 days

704 days

74 days

704 days

704 days

109 days

109 days

109 days

 

12. Google reCaptcha

For the protection of our website we also use the reCAPTCHA service of the company Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”). This service involves the transmission of your IP address and possibly other data to Google, which is required for the reCAPTCHA service. Google’s privacy policy applies to this data. You can find more information about Google Captcha’s privacy policy here: https://www.google.com/intl/de/policies/privacy/.

The legal basis for data processing in connection with Google reCAPTCHA is Art. 6 para. 1 f) GDPR. Our legitimate interest is the protection of our website and the interest of protection against spam and misuse.

 

13. Stock Information

On some subpages of our website we embed a stock chart. Calling up these sub-pages may result in content being loaded from the external provider EQS Group AG, Karlstraße 47,80333 Munich. In this context, EQS also receives your IP address, which is technically required to retrieve the content. We have no influence on the further data processing by EQS. The transmission of your IP address is based on Art. 6 para. 1 f) GDPR. Our legitimate interest lies in the appealing design of our website.

 

14. Microsoft Teams

If you participate in an online meeting as an external attendee, you will receive an access link from the meeting host via email. When registering for the online meeting, you must provide your name and, if applicable, your email address.
If you do not wish to share data of the type referred to in Art. 9 GDPR with us via Microsoft Teams, please ensure that such data is redacted or otherwise made unrecognizable beforehand.
The company within DATAGROUP whose employee sent you the invitation link is responsible for collecting and processing your personal data in connection with the use of Microsoft Teams. Please refer to this privacy policy or the email signature in the invitation for contact details.

Purpose of data processing / Legal basis:
We use Microsoft Teams to conduct online meetings, video conferences, and/or webinars and, where applicable, to exchange documents with participants.
For processing data related to contacts at external organizations, the legal basis is Art. 6(1)(f) GDPR. Our legitimate interest lies in improved organization and communication with our contacts. If our contact person is a direct contractual partner and a natural person, the legal basis is Art. 6(1)(b) GDPR.
By clicking “Accept / Tentative” and accepting the appointment, you expressly consent under Art. 9(2)(a) GDPR that, by activating your camera/microphone or through your profile picture, information indicating your ethnic origin, religion, or health (e.g., skin color, glasses, or head coverings) or other special categories of personal data may be processed.
You also expressly consent under Art. 49(1)(a) GDPR that data may be transferred to recipients outside the EU/EEA where no adequate level of data protection exists under the GDPR. You are aware of the associated risks, such as the lack of enforcement of data subject rights and possible access by government authorities.
You may withdraw these consents at any time with effect for the future. In the event of withdrawal, any stored documents in Microsoft Teams will be deleted.

Microsoft Teams transcription feature:
The spoken word during a Microsoft Teams meeting can be converted into text in real time and displayed during the meeting. Transcriptions can be started and stopped at any time by the meeting organizer or an authorized moderator. The transcribed text is visible to all participants during the meeting. Participants are notified when transcription starts and ends.
The legal basis for data processing when using transcription is Art. 6(1)(f) GDPR. DATAGROUP has a legitimate interest in using this feature as it facilitates work by automating minute-taking during digital meetings.

Recipients / Data sharing:
Microsoft Teams is a service provided by Microsoft Ireland. Further information on data processing when using Microsoft Teams can be found at:
https://news.microsoft.com/de-de/datenschutz-und-sicherheit-in-microsoft-teams-nutzer/
Personal data processed in connection with storing documents in Microsoft Teams is generally not shared with third parties unless intended for sharing. Please note that content from stored documents, as with in-person meetings, often serves to communicate information to customers, prospects, or third parties and is therefore intended for sharing.
Other recipients: The provider of “Microsoft Teams” necessarily gains knowledge of the aforementioned data to the extent provided for in our data processing agreement with Microsoft Teams.

Data processing outside the European Union:
Data processing outside the EU generally does not occur, as we restrict our storage location to data centers within the EU. However, we cannot rule out that data routing occurs via internet servers outside the EU/EEA. In some countries, there is a risk that authorities may access data for security and surveillance purposes without informing you or allowing you to seek legal remedies. We have concluded a data processing agreement with the provider of Microsoft Teams. Additionally, Microsoft in the USA is subject to the EU-US Data Privacy Framework.
You are not obliged to communicate with us via Microsoft Teams. If you prefer, communication can take place via other means (e.g., email or telephone).
Within DATAGROUP, Microsoft Teams is provided to other companies of DATAGROUP SE. Transcripts may be shared within DATAGROUP.

Retention period / Criteria for determining retention:
We generally delete personal data when there is no need for further storage. A need may exist if the data is still required to fulfill contractual obligations, review and grant or defend warranty and guarantee claims. In the case of statutory retention obligations, deletion will only occur after the retention period expires.

Special information regarding recordings in Microsoft Teams:
For use within our DATAGROUP Academy, in webinars for external parties/customers, or for other purposes communicated in individual cases, we may create digital audio and video recordings of the meeting (“recordings”). The subject matter is indicated in the invitation. The recording will be digitally stored by the meeting host and may include audio recordings, video recordings, and public chat content of meeting participants (“information”).
The digital recordings will be made available to meeting participants and published in DATAPEDIA, our intranet, for informational and training purposes. All DATAGROUP companies have access to DATAPEDIA (recipients).
The legal basis for data processing is your consent under Art. 6(1)(a) and Art. 9(2)(a) GDPR. You may withdraw your consent at any time with effect for the future. Providing your data is neither contractually nor legally required. Failure to provide or withdrawal of consent does not affect your contractual relationship with us. Withdrawal should be sent to Corporate Communications at widerruf@datagroup.de. The recordings will be deleted immediately after the stated purpose ceases and the time period mentioned in the invitation expires, unless you withdraw your consent earlier. Personal data may be transferred to third countries based on standard contractual clauses.

Transcripts are stored for 60 days.

15. Booking appointments

Purpose of data processing/ lawful basis:

To simplify and optimize online appointment scheduling, we offer the option of making appointments online via the “Microsoft Bookings” service. When you book an appointment, we process your email address, appointment request (date, time), your name, and your message. The legal basis for data processing is Art. 6 (1) b) GDPR and, where applicable, Art. 6 (1) f) GDPR. DATAGROUP's legitimate interest in this regard arises from its interest in arranging and carrying out the appointment you have requested.

The company with which you book an appointment is controller of the data.

Recipient/ categories of recipients:

Microsoft Ireland Operations Ltd. One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland supports us in the use of this tool. Microsoft Ireland acts as a processor in accordance with Art. 28 GDPR. A contract for order processing has been concluded with Microsoft.

Storage period/ criteria to determine the storage period:

We store personal data for the purpose of appointment management for a period of 10 years. Your data will then be deleted.

 

16. Rights of the Data Subjects

According to Article 15 (1) of the GDPR you have the right to have access to your personal data that has been collected and stored by DATAGROUP free of charge upon request.

If the statutory requirements are given, you also have the right to be informed (Article 16 GDPR) about your personal data, to have your personal data erased (Article 17 GDPR) or to restrict the processing of your personal data (Article 18 GDPR).

Provided that the data processing is based on Article 6 (1e or f) of the GDPR you have the right to object under Article 21 of the GDPR. Provided that you object to the data processing, it will be stopped in the future unless the responsible person can provide compelling legitimate grounds for a further processing that override the data subject’s interest in the conflict.

Provided that you have given us the processed data yourself, you have the right to data portability under Article 20 of the GDPR.

Provided that the data processing is based on a consent in accordance with Article 6 (1a) or Article 9 (2a) of the GDPR you can revoke the consent at any time with effect for the future without affecting the lawfulness of the previous processing.

In any of the cases above, for further questions or in the event of a complaint, please contact our data protection officer in writing or by email.

Additionally, you have the right to complain to the data protection supervisory authority. The competent data protection supervisory authority is determined by the federal state in which you reside or in which the data controller has its head office.

In the case of joint controllers, you will receive the relevant information from the controller with whom you are initiating or conducting a business relationship.

 

17. No Obligation to Make Personal Data Available

Unless otherwise specified in the previous chapters, the provision of personal data is not required by law or by contract or necessary for signing a contract. You are not obligated to provide any personal data, if no contrary information has been given before. If you do not provide your personal data, this may possibly mean that we cannot answer your contact request or that a participation in the application procedure or a participation in an event is not possible.

 

18. Contact Details of the Data Protection Officer

For further information or any suggestions on the topic of data protection please contact our internal data protection officer:
Dr. iur. Christian Borchers
Datenschutz Süd GmbH
Wörthstrasse 15
97082 Würzburg
office@datenschutz-sued.de

 

19. Privacy Policy for Social Media Pages

Privacy Policy for Social Media Pages

DATAGROUP SE takes compliance with data protection regulations very seriously. We would like to inform about how we process your personal data when you interact with us on our social media pages.

Data Controller

We, DATAGROUP SE, operate the following social media sites:

Please see our imprint for our contact details and further information on our company.

In addition to us, there is also the operator of the social media platform itself. This operator is also a further controller that carries out data processing over which we have only limited influence. In those areas where we can exert influence and parameterize data processing, we work within the scope of the options available to us to ensure that the social media platform operator handles data in a manner that is compliant with data protection. However, there are many areas where we cannot influence the data processing by the social media platform operator and we also do not know exactly which data the operator processes. However, the operator will inform you about this in its respective data protection declaration.

Our Data Processing

The data you enter on our social media pages, such as comments, videos, pictures, likes, public messages, etc., are published by the social media platform and are never used or processed by us for any other purpose. We merely reserve the right to delete content should this become necessary. We may share your content on our page if this is a function of the social media platform and communicate with you via the social media platform. The legal basis is Art. 6 (1f) GDPR. The data processing is carried out in the interest of our public relations and communication.

On our Facebook page, we use the Insights feature. Insights is aggregated information that can help us understand how people interact with our Facebook Page. Insights may be based on personal information collected in connection with a visit to or interaction of people on or with our Facebook Page and its contents. The legal basis is Art. 6 (1) (f) GDPR. Data processing is carried out in the interest of our public relations work and communication.

If you wish to object to a specific data processing activity over which we have influence, please contact us using the contact details provided in the imprint. We will then check your objection or, if necessary, forward it to the social media platform.

If you send us a request on a social media platform, we may, depending on the required response, also refer you to other secure communication channels that guarantee confidentiality. You can always send us confidential requests at the address given in the imprint.

As already mentioned, we take care to design our social media pages in a manner that is as privacy-compliant as possible in the places where the social media platform provider gives us the option to do so. In particular, we do not use the demographic, interest-based, behavior-based or location-based target group definitions for advertising that the social media platform operator may provide us with. Overall, we do not use the social media platform for advertising purposes. With regard to statistics that the social media platform provider makes available to us, we can only influence them to a limited extent and cannot switch them off. However, we take care not to make any additional optional statistics available to us.

Data processing by the provider of the social media platform

The provider of the social media platform uses web tracking methods. Web tracking may also take place independently of whether or not you are logged in or registered on the social media platform. Unfortunately, we cannot influence or restrict the web tracking methods of the social media platform.

Please be aware that the platform provider may use your profile and behavioral data to evaluate, among other things, your habits, personal relationships and preferences. We have no influence on the processing of your data by the platform provider.

Further information on the data processing conducted by the platform provider, including information concerning your rights as a user, can be found in the provider’s data protection policy:

In the cases in which we are jointly responsible with the Social Media Platform for the processing, you will find the essential contents of the joint processing of your data here:

Your rights as a user

In light of the processing of your personal data, the GDPR grants you as a user of social media pages the following rights:

1.) Right of access to your data (Art. 15 GDPR):

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, obtain access to the personal data and the information as specified in Art. 15 GDPR.

2.) Right to rectification and erasure (Articles 16 and 17 GDPR):

You have the right to obtain, without undue delay, the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data completed.

You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.

3.) Right to restriction of processing (Art. 18 GDPR)

You have the right to request restriction of the processing of your data if one of the conditions set out in Article 18 GDPR is met, for instance if you have objected to the processing of your data, for the duration of a possible evaluation.

4.) Right to data portability (Art. 20 GDPR):

In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.

5.) Right to object (Art. 21 GDPR):

If the data is processed pursuant to Art. 6 para. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process your personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.

Right to lodge a complaint with a supervisory authority

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data infringes applicable data protection regulations. Your right to lodge a complaint may be enforced in the Member State of your habitual residence, place of work or the place of the alleged infringement.