Privacy Policy at a Glance

Controller

General Information

Personal data means any information that can be used to personally identify you. This privacy policy explains which data we collect, for what purposes we use it and what rights you have.

We process personal data only where there is a legal basis for doing so or where you have given your consent.

Data Collection on This Website

Server Log Files

When you visit our website, information transmitted by your browser is automatically collected:

• Browser type and browser version
• Operating system used
• Referrer URL
• Time of the server request
• IP address

This data is not combined with other data sources.

Legal basis: Art. 6(1)(f) GDPR. Our legitimate interest lies in the stable, secure and error-free operation of the website.

Contact Forms and Inquiries

If you send us inquiries via a contact form or by email, the information you provide, including your contact details, will be stored for the purpose of processing your inquiry.

Legal basis: Art. 6(1)(b) GDPR where your inquiry is related to a contract or pre-contractual measures. In other cases, processing is based on our legitimate interest pursuant to Art. 6(1)(f) GDPR.

Retention period: The data will remain with us until the purpose of storage no longer applies, you request deletion or statutory retention obligations apply.

Cookies & Consent Management

Our website uses cookies. Cookies are small text files stored on your device. They may be technically necessary or used to analyze and optimize our website.

Technically necessary cookies are used on the basis of Art. 6(1)(f) GDPR. For non-essential cookies, we obtain your consent pursuant to Art. 6(1)(a) GDPR.

CookieYes

Our website uses the CookieYes consent management platform to obtain, manage and document your consent to the storage of cookies.

The following data may be processed:

• Consent status
• Timestamp of consent
• Browser and device information
• IP address in shortened or technical form, where required

Legal basis: Art. 6(1)(c) GDPR where documentation is legally required, and Art. 6(1)(f) GDPR.

You may withdraw your consent at any time via the cookie banner or cookie settings.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. Google Analytics uses cookies that enable an analysis of how our website is used.

The information generated by cookies about your use of this website may be transferred to and processed on Google servers in the USA.

We have implemented the following measures:

• IP anonymization enabled
• Data processing agreement concluded
• Use only after consent
• Analytics data retention period: 14 months

Google LLC is certified under the EU-U.S. Data Privacy Framework. Where data is transferred to the USA, the transfer may also be based on Standard Contractual Clauses.

Legal basis: Art. 6(1)(a) GDPR. You may withdraw your consent at any time with effect for the future.

Hosting via Webflow

Our website is operated via Webflow. The provider is Webflow, Inc., USA. When you visit the website, technical data may be processed, including IP address, browser information and server access data.

Processing is carried out in order to provide the website securely, reliably and efficiently.

A transfer of personal data to the USA cannot be ruled out. Safeguards may include Standard Contractual Clauses and, where applicable, the EU-U.S. Data Privacy Framework.

Legal basis: Art. 6(1)(f) GDPR. A data processing agreement is in place.

Use of Teamhero

We use the Teamhero software to manage applicants, employees and staff assignments.

The following data may be processed in particular:

• Contact details
• Application documents
• Contract and assignment data
• Communication and availability data

Processing is carried out for the purpose of managing application processes, contractual relationships and staff assignments.

Legal basis: Art. 6(1)(b) GDPR, Art. 88 GDPR and, where employee data is concerned, the applicable German employment data protection rules.

A data processing agreement is in place with the provider.

Your Rights

Subject to the legal requirements, you have the right to:

• Access your stored personal data
• Have inaccurate data corrected
• Request deletion of your data
• Request restriction of processing
• Data portability
• Withdraw consent you have given
• Object to processing pursuant to Art. 21 GDPR

If processing is based on your consent, you may withdraw this consent at any time with effect for the future.

Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates the GDPR.

The competent authority may be the Bavarian State Office for Data Protection Supervision (BayLDA).

Data Security

We use SSL/TLS encryption. You can recognize an encrypted connection by “https://” in your browser’s address bar.

Please note that data transmission over the Internet may have security vulnerabilities. Complete protection of data against access by third parties is not possible.