Main Content

Impressum Kontakt
+49 (40) 23 80 04 78-82

Privacy policy

1. Data protection at a glance

General information 


We are delighted that you are interested in our company and our products and services, and we want you to be comfortable with how your personal data is protected when you visit our web pages as we take the protection of your personal data very seriously. Complying with the EU’s General Data Protection Regulation (GDPR) is a matter of course for us.
 
We want you to know when we collect which data and how we then use it. We have taken technical and organisational steps to ensure that data protection regulations are observed both by us and by the external service providers contracted by us.
 
Personal data is information regarding your identity. This includes information such as your name, address, telephone number and email address. You do not need to disclose any personal data in order to use our website. In certain cases, however, we do need your name and address together with other details in order to provide the service requested. This is the case, for example, if we are sending you information materials or ordered goods or are answering a specific question you have asked. Whenever this is necessary, we will bring this to your attention accordingly. Additionally, we only record and process data with which we are provided voluntarily and, if applicable, data which we collect automatically when our web pages are visited (e.g. your IP address and details of the pages you view, the browser and the operating system you use, the date and time of access, the search engines used and the names of any files which are downloaded). Insofar as you make use of services, the only data collected is as a rule the data required in order for us to provide the services. If we ask you for additional data, this is information provided voluntarily. Personal data is processed exclusively to deliver the service requested and to protect our own legitimate business interests.
 

Data collection on our website


We use the personal data provided by you generally, to answer your enquiries, to process your orders or to afford you access to specific information or services. For the purposes of customer relations management, it may also be necessary for us or a service company contracted by us to use this personal data to notify you of product offers or to conduct online surveys in order to better meet the needs and requirements of our customers. We naturally respect your wishes if you choose not to surrender your personal data to us to support our customer relations activities (in particular for direct marketing or for market research purposes). We will not sell your personal data to third parties or market it in any other way.
We will collect, process and use the personal data you provide online exclusively for the stated purposes. Your personal data will not be disclosed to third parties without your express consent. Personal data is only collected and disclosed to government institutions and authorities that are entitled to information in line with the relevant laws or if we are obliged to do so by a court order. Our employees and the service providers contracted by us are obliged by us to observe confidentiality and to adhere to the provisions of the EU’s General Data Protection Regulation (GDPR).

 

Analytics tools and third-party tools


Your surfing behaviour when visiting our website can be statistically evaluated. This occurs primarily with cookies and with so-called analytics programs. Your surfing behaviour is generally analysed anonymously and cannot be traced back to you. You may object to this analysis or prevent it by refraining from using certain tools. Detailed information regarding this can be found in the following privacy policy.
 
You may object to this analysis. We will notify you of your objection rights in this privacy policy.
 

2. General and mandatory information

 

Data protection


The operators of these pages take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with the statutory data protection provisions and this privacy policy.
 
Various examples of personal data are collected when you use this website.
Personal data is data with which you can be personally identified. This privacy policy explains which data we collect and what we use it for. It additionally explains how this happens and to what end.
 
Please bear in mind that online data transmission (e.g. email communication) can entail security vulnerabilities and that data cannot be fully protected against third-party access.
 

Information re the controller

 
The data processing controller for this website is:
 
MÜPRO GmbH
Hessenstrasse 11
65719 Hofheim am Taunus
 
Phone: +49 (0)6122 8080
 
The controller is the natural or legal person who, either solely or together with others, makes decisions regarding the purposes and means of processing personal data (e.g. names, email addresses, etc.).

Statutory data protection officer


We have appointed a data protection officer for our company.
 
DEUDAT GmbH
Marcel Wetzel
Zehntenhofstrasse 5b
65201 Wiesbaden
 
Phone: +49 (0)611 9500 0832
Fax: +49 (0)611 95000 85932
 

Revoking your consent to data processing

 
Many data processing procedures are only permissible with your explicit consent. You may revoke the consent you have granted at any time. To do so, you simply need to send us an informal email to this effect.
Your revocation does not affect the lawfulness of the data processing performed prior to the revocation of consent.
 

Right to object to data collection in specific cases and to direct marketing (Art. 21 GDPR)

 
If data is processed pursuant to points (e) or (f) of Art. 6 (1) GDPR, you have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you; this equally applies to profiling founded on these provisions. For the legal basis upon which an instance of data processing is founded, please refer to this privacy policy. If you lodge an objection, we shall cease to process your affected personal data unless we can present compelling and legitimate grounds for the data processing which override your interests, rights and liberties or unless the data processing serves the assertion, execution or defence of legal claims (objection pursuant to Art. 21 [1] GDPR).
 
Where your personal data is processed for direct marketing purposes, you shall have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object, your personal data will subsequently no longer be processed for such direct marketing purposes (objection pursuant to Art. 21 [2] GDPR).
 

Right to lodge a complaint with the competent supervisory authority

 
If the GDPR is infringed, the data subject has the right to lodge a complaint with a
supervisory authority, in particular in the member state of their habitual residence, place of work or place of the alleged infringement. The right to lodge a complaint shall exist without prejudice to any other administrative or judicial remedy.
 
The competent supervisory authority for our company is:

The Hessian Commissioner for Data Protection and Freedom of Information
Prof. Dr Michael Ronellenfitsch
Press and Public Relations
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Phone: +49 (0)611 140 80
Fax: +49 (0)611 1408 611
 

Right to data portability

 
You have the right to have data which we process automatically on the basis of your consent or for the performance of an agreement surrendered to you or to a third party in a commonly used and machine-readable format. Insofar as you demand that data be transmitted to another controller, this shall be effected only where technically feasible.
 

Access, blocking, erasure and rectification

 
In accordance with the applicable statutory provisions, you have the right to access the personal data saved relating to you, its source and recipients, and the purpose of the processing of this data at any time free of charge, and, if applicable, the right to have this data rectified, blocked or erased. In this regard and should you have any other queries, you may contact us at any time at the address listed in our legal notice.
 

Right to restriction of processing

 
You shall have the right to obtain restriction of the processing of your personal data.
 
In this regard, you may contact us at any time at the address listed in our legal notice. A right to the restriction of processing exists in the following cases:
  • If you contest the accuracy of the personal data stored by us, we generally need time to verify its accuracy. You shall have the right to obtain restriction of the processing of your personal data for the duration of this verification process. If the processing of your personal data was/is unlawful, you may demand that its processing be restricted rather than it being erased.
  • If we no longer need your personal data, but it is required by you for the exercise, defence or establishment of legal claims, you have the right to obtain restriction of its processing rather than it being erased.
  • If you have objected to data processing pursuant to Art. 21 (1) GDPR, your interests must be weighed up against ours. Until it is determined whose interests take precedence, you shall have the right to obtain restriction of the processing of your personal data.
 
If you have restricted the processing of your personal data, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a member state. 

Duration of storage 

 
Personal data shall be erased upon expiration of the statutory retention period insofar as it is no longer needed for the performance or initiation of a contract.
 

Legal basis of processing

 
If you have given your consent to your personal data being processed for a specific purpose, this processing shall be in accordance with point (a) of Art. 6 (1) GDPR. If such processing is necessary in order to perform or initiate a contract with you, the processing shall be founded on point (b) of Art. 6 (1) GDPR. In a number of cases such as to comply with tax law obligations, we may be subject to a legal obligation to process personal data; in such cases, the legal basis for this is point (c) of Art. 6 (1) GDPR. In rare cases, data may be processed to protect the vital interests of you or of another natural person. In this exceptional case, data shall be processed pursuant to point (d) of Art. 6 (1) GDPR. Finally, data processing may also be founded on point (f) of Art. 6 (1) GDPR. This is the case if data is processed to protect a legitimate interest of the company or of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms. It can already be assumed that such a legitimate interest exists if you are a customer of ours. If the processing of personal data is based on point (f) of Art. 6 (1) GDPR, our legitimate interest shall be the execution of our business activities.
 

Security

 
As the data processing controller, we have implemented technical and organisational security measures in accordance with Art. 32 GDPR. These include in particular measures to safeguard the confidentiality, integrity and availability of data. Further, we have put processes in place which guarantee the protection of data subjects’ rights, the erasure of personal data and an immediate reaction to such data being jeopardised. We additionally guarantee the protection of personal data already when developing and selecting hard- and software in accordance with the principles of Art. 25 GDPR. All of our employees and those persons who are involved in data processing are obliged to comply with the General Data Protection Regulation and other data protection legislation and to handle personal data confidentially.
In the event that personal data is collected and processed, the information shall be transmitted in encrypted form in order to prevent the misuse of data by third parties. Our security measures are revised on an ongoing basis in line with technological developments.
Online data transmission can nonetheless entail security vulnerabilities, and as such comprehensive protection cannot be guaranteed.
 

Changes to our data privacy rules

 
We reserve the right to amend our security and data protection measures insofar as is necessary due to technical developments. In such cases, we will also amend our data protection information accordingly. Please therefore refer to the latest version of our privacy policy.
 

3. Data collection on our website

 

Cookies

 
These web pages occasionally make use of so-called cookies. Cookies will not damage your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, more efficient and more secure. Cookies are small text files which are stored on your computer by your browser.
 
The majority of the cookies used by us are so-called session cookies. These are automatically deleted at the end of your visit. Other types of cookie remain stored on your terminal until you delete them. These cookies enable us to recognise your browser when you next visit the website.
 
You can alter your browser settings such that you are notified whenever cookies are to be set so that you can accept cookies on a case-by-case basis, such that the acceptance of cookies is excluded in certain cases or in general or such that cookies are automatically deleted upon the browser being closed. Deactivating cookies may limit the functionality of this website.
 
Cookies which are necessary for electronic communication processes or for the provision of specific functions requested by you (e.g. shopping cart function) shall be stored in accordance with point (f) of Art. 6 (1) GDPR. The website operator has a legitimate interest in cookies being stored for the technically flawless and optimised provision of its services.
Insofar as other cookies are stored (e.g. cookies which analyse surfing behaviour), these are addressed separately within this privacy policy.
 

Using of ‘Microsoft Teams’ for online Meetings


Purpose of processing
We use the tool ‘Microsoft Teams’ to conduct teleconferences, online meetings, video conferences and/or webinars (hereinafter referred to as: ‘online meetings’). ‘Microsoft Teams’ is a service of the Microsoft Corporation.

Person responsible

The person responsible for data processing in direct connection with the implementation of ‘online meetings’ is MÜPRO GmbH.

Please note: When you access the ‘Microsoft Teams’ website, the provider of ‘Microsoft Teams’ is responsible for data processing. However, accessing the website is only necessary in order to download the software to use ‘Microsoft Teams’.

If you do not want to or are not able to use the ‘Microsoft Teams’ app, you can also use ‘Microsoft Teams’ via your browser. In this case, the service will then also be provided by the ‘Microsoft Teams’ website.

Which data are processed?

Various types of data are processed when ‘Microsoft Teams’ is used. The scope of the data also depends on the details you provide before or during participation in an ‘online meeting’.

The following personal data are subject to processing:

User details: e.g. display name or email address, profile picture (optional), preferred language
Meeting metadata: e.g. date, time, meeting ID, telephone numbers, location
Text, audio and video data: you may have the option to use the chat function during an ‘online meeting’. The text you submit there will be processed so it can be displayed in the ‘online meeting’. To enable video display and audio playback, the data from the microphone on your end device and any video camera on your end device will be processed for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the ‘Microsoft Teams’ apps.

Scope of processing

We use ‘Microsoft Teams’ to conduct ‘online meetings’. If we want to record ‘online meetings’, we will inform you transparently of this in advance and request consent if necessary.

If it is necessary for the purpose of recording the results of an online meeting, we will log the chat content. However, this will not normally be the case.

Automated decision-making in the sense of Art. 22 GDPR is not used.

Legal basis of the data processing
If personal data is processed by employees of MÜPRO GmbH, section 26 BDSG (German Federal Data Protection Act) is the legal basis for data processing. If personal data are not necessary for the creation, implementation or termination of the employment relationship in connection with the use of ‘Microsoft Teams’ but are nevertheless an elementary component of the use of ‘Microsoft Teams’, Article 6 (1) (f) GDPR is the legal basis for the data processing. In these cases, our interest lies in the effective implementation of ‘online meetings’.

In addition, the legal basis for data processing in connection with ‘online meetings’ is Art. 6, para. 1 (b) GDPR, insofar as the meetings are held within the framework of contractual relationships.

If no contractual relationship exists, the legal basis is Art. 6 para. 1 (f) GDPR. In this regard, our interest again lies in the effective implementation of ‘online meetings’.

Recipient/forwarding of the data
Personal data processed in connection with participation in ‘online meetings’ are generally not forwarded to third parties unless they are specifically intended to be forwarded. Please note that content from ‘online meetings’, as is the case with in-person meetings, often serves to communicate information to customers, interested parties or third parties and is therefore intended to be forwarded.

Additional recipients: the provider of ‘Microsoft Teams’ necessarily obtains knowledge of the above-mentioned data insofar as this is provided for in our contract processing agreement with ‘Microsoft Teams’.

Data processing outside the European Union

Data processing outside the European Union (EU) does not take place as a matter of principle as we have restricted our storage location to computer centres within the European Union. However, we cannot exclude the possibility that data may be routed via Internet servers located outside the EU. This may in particular be the case if participants in an ‘online meeting’ are situated in a third country.

However, the data are encrypted during transmission via the Internet and are therefore secured against unauthorised access by a third party.

Links

 
If you use external links which are incorporated into our website, this privacy policy does not cover those links. Insofar as we provide links, we affirm that no infringements of the law were evident on the target websites when the links were created. However, we have no control over the compliance of other providers with data protection and security regulations. Please therefore also refer to the privacy policies on the websites of the other providers.
 

Children and adolescents

 
Persons under the age of 16 should not submit personal data to us without the authorisation of a parent or legal guardian. We do not request information from children and adolescents, collect information on them or share information on them with third parties.
 

Server log files

 
The provider of these web pages automatically collects and records information in so-called server log files, which your browser automatically sends to us. This information is:
  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address
 
This data shall not be combined with other data sources.
 
This data shall be collected in accordance with point (f) of Art. 6 (1) GDPR. The website operator has a legitimate interest in the technically flawless presentation and optimisation of its website, and server log files must be logged to this end.
 

Contact form

 

If you send us an enquiry using the contact form, your details on the enquiry form including the contact details you provide will be stored by us for the purpose of processing your enquiry and in the event that there are any follow-up questions. We do not share this data without your consent.
 
As such, the data submitted on the contact form is processed solely on the basis of your consent (point [a] of Art. 6 [1] GDPR). You may revoke this consent at any time. To do so, you simply need to send us an informal email to this effect. Your revocation does not affect the lawfulness of the data processing performed prior to the revocation of consent.
 
The data you submit via the contact form remains with us until you request that we erase it, you revoke your consent to its storage or the purpose of storing the data is no longer applicable (e.g. once your enquiry has been fully processed). Compelling legal requirements – in particular retention periods – shall remain unaffected.
 

Enquiries by email, telephone or fax

 
If you contact us by email, telephone or fax, your enquiry and all the personal data obtained (name, enquiry) shall be stored and processed by us for the purposes of handling your enquiry. We do not share this data without your consent.
This data shall be processed in accordance with point (b) of Art. 6 (1) GDPR insofar as your enquiry relates to the performance of a contract or is necessary for the taking of steps prior to entering into a contract. In all other cases, the processing shall be founded on your consent (point [a] of Art. 6 [1] GDPR) and/or on our legitimate interests (point [f] of Art. 6 [1] GDPR), as we have a legitimate interest in the efficient processing of the enquiries addressed to us. The data you submit to us via the contact form remains with us until you request that we erase it, you revoke your consent to its storage or the purpose of storing the data is no longer applicable (e.g. once your enquiry has been fully processed). Compelling legal requirements – in particular statutory retention periods – shall remain unaffected.
 

Processing of data (customer and contractual data)

 
We collect, process and use personal data only insofar as it is needed in order to initiate,
elaborate or modify the legal relationship (inventory data). This occurs on the basis of point (b) of Art. 6 (1) GDPR, which allows for the processing of data for the performance of a contract or to take steps prior to entering into a contract. We collect, process and use personal data regarding the use of our web pages (usage data) only insofar as this is necessary in order to enable the user to use the service or to bill the user for said service.
 
The customer data collected shall be erased upon conclusion of the order or termination
of the business relations. The statutory retention periods shall remain unaffected.
 

Data transmission upon conclusion of a contract for online shops, merchants and goods dispatch

 
We share personal data with third parties only if this is necessary for the purpose of contract processing, for example with the companies commissioned with the delivery of goods or with the bank commissioned with payment processing. Your data shall not be shared otherwise or shall only be shared otherwise if you have explicitly given your consent to this. Your data shall not be shared with third parties for, for example, advertising purposes without your explicit consent.
 
The data processing shall occur on the basis of point (b) of Art. 6 (1) GDPR, which allows for the processing of data for the performance of a contract or to take steps prior to entering into a contract.
 
To dispatch your order, we share your postal address and, if applicable, your email address and telephone number with the logistics company commissioned with delivery for the purposes of delivery coordination.
 
Some products are delivered to you directly by the manufacturer. In this instance, we share your address details with the manufacturer for the delivery of your ordered goods.
 
 

Data transmission upon conclusion of a contract for services and digital content

 
We share personal data with third parties only if this is necessary for the purpose of contract processing, for example with the bank commissioned with payment processing.
Your data shall not be shared otherwise or shall only be shared otherwise if you have explicitly given your consent to this. Your data shall not be shared with third parties for, for example, advertising purposes without your explicit consent.
 
The data processing shall occur on the basis of point (b) of Art. 6 (1) GDPR, which allows for the processing of data for the performance of a contract or to take steps prior to entering into a contract.
 
In order for us to be able to provide services in advance (payment on account, instalments etc.), we have to protect our legitimate interests and ensure that the use of this type of payment method does not lead to misuse and that consumers are not placed under excessive financial pressure. Our company is therefore connected to a credit reference agency’s credit quality warning system in order to protect itself against default due to inability to pay, misuse through unwillingness to pay and the filing of improper claims by third parties. Before and during any contractual relationship in which we provide our consideration in advance, we have a credit reference agency carry out a credit check on every customer in the form of a credit scoring procedure based on mathematical and statistical methods within the meaning of Art. 22 GDPR. In line with Art. 22 GDPR, your address data alone does not form the basis of the calculated probability – your credit quality – but rather also your particulars (first name and surname) and personal data concerning your payment history.
 
The data is collected exclusively in order to determine a statistical risk in terms of your ability and willingness to meet financial obligations in future as well as the likelihood of default. In this way, you enable us to make a sufficiently sound decision as to whether to provide you with the contractual consideration in advance and whether we will be able to sustain it. In order for the credit reference agency to carry out such a credit check, we provide it with your particulars (first name and surname) as well as your address data. You can object to the disclosure of your data to the credit reference agency at any time and in any format. In this case, however, the payment options available to you will be limited to payment in advance. We will no longer be able to perform the contract in advance and will potentially have to discontinue any ongoing performance.
 
We additionally provide the credit reference agency with personal contract data and information on non-contractual payment history and also obtain corresponding information from other contractual relationships that are established during the term of our contractual relationship with you. This data is disclosed within the scope of the law and only in order to protect our legitimate interests or the legitimate interests of another contractual partner of the credit reference agency, and with consideration for your legitimate interests and your interest in the exclusion of the disclosure. The disclosure of data to the credit reference agency due to non-contractual conduct only takes place if you have expressly consented to this in a way that meets the criteria of Art. 6 GDPR. This notwithstanding, insofar as is legally permissible, we reserve the right to disclose your personal data to the aforementioned credit reference agency if you fail to make an outstanding payment in spite of its maturity, you have been sent two written warnings prior to the maturity of the owed payment, four weeks have passed between the first warning and the disclosure and you have not disputed the legality of the owed payment. We shall notify you in good time prior to disclosing your data to the credit reference agency. Please note that, unlike in the past, your specific case will no longer be examined with consideration for your interests before the credit reference agency is notified: the procedure is now automated. Please note that you are entitled to information from both us and the credit reference agency in accordance with Art. 12 ff. GDPR. The information is provided free of charge.

4. Social media

 

Facebook plug-ins (‘Like’ and ‘Share’ buttons)

 
Our web pages feature plug-ins from the Facebook social network, the provider of which is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. You can recognise Facebook plug-ins on our website by the Facebook logo or the ‘Like’ button. An overview of the Facebook plug-ins can be found here:
 
When you visit our web pages, the plug-in establishes a direct connection between your browser and the Facebook server. This provides Facebook with the information that you visited our website with your IP address. If you click on Facebook’s ‘Like’ button while logged in to your Facebook account, you can create a link to our web pages within your Facebook profile. As such, Facebook can attribute our web pages being visited to your user account. Please note that as the provider of the web pages, we have no knowledge of the contents of the data transmitted or how it is used by Facebook. More information on this can be found in the Facebook data policy at:
 
If you do not want Facebook to be able to attribute your visit to our web pages to your Facebook user account, please log out of your Facebook account.
 
Facebook plug-ins are used on the basis of point (f) of Art. 6 (1) GDPR. The website operator has a legitimate interest in as extensive visibility within social media as possible.
 

LinkedIn plug-in

 
Our website uses features of the LinkedIn network. The provider of this service is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
 
Every time one of our pages containing LinkedIn features is accessed, a connection is established with LinkedIn servers. LinkedIn is notified that you have visited our web pages with your IP address. If you click LinkedIn’s ‘Recommend’ button while logged in to your LinkedIn account, LinkedIn is able to assign your visit to our website to you and your user account. Please note that as the provider of the web pages, we have no knowledge of the contents of the data transmitted or how it is used by LinkedIn.
 
The LinkedIn plug-in is used on the basis of point (f) of Art. 6 (1) GDPR. The website operator has a legitimate interest in as extensive visibility within social media as possible.
 
More information on this can be found in the LinkedIn privacy policy at:
 

XING plug-in

 
Our website uses features of the XING network. The provider of this service is XING AG, Dammtorstrasse 29–32, 20354 Hamburg, Germany.
 
Every time one of our pages containing XING features is accessed, a connection is established with XING servers. To our knowledge, no personal data is stored in this instance. In particular, no IP addresses are logged and no user behaviour is analysed.
 
The XING plug-in is used on the basis of point (f) of Art. 6 (1) GDPR. The website operator has a legitimate interest in as extensive visibility within social media as possible.
 
More information on data protection and the XING ‘Share’ button can be found in XING’s privacy policy at:

5. Analytics tools and advertising

 

Google Analytics 

 
This website uses Google Analytics, a web analytics service of Google Inc. (‘Google’). Google Analytics uses so-called cookies. These are text files which are stored on your computer that allow your use of the website to be analysed. The information generated by a cookie regarding your use of this website is generally sent to a Google server in the USA and stored there. However, if IP anonymisation is activated for this website, Google will truncate your IP address within the member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases is a complete IP address sent to a Google server in the USA and then truncated there. IP anonymisation is active on this website. Google shall use this information on behalf of the operator of this website to analyse your usage of the website, to compile reports on the website activities and to provide the website operator with other services related to use of the website and the Internet. The IP address provided by your browser and collected by Google Analytics is not combined with any other data by Google. You can prevent cookies from being stored by adjusting your browser software settings; please note that in this case you may not be able to use all of the website functions in full. You can likewise prevent Google from collecting and using the data generated by cookies relating to your website usage (including your IP address) by downloading and installing the browser plug-in which is available via the following link:
 
 
You can prevent Google Analytics from collecting your data by clicking on the link below. This installs an opt-out cookie that prevents your data from being collected during subsequent visits to this website.
 

6. Newsletter

 

Newsletter data

 
If you wish to receive the newsletter offered on the website, you are required to provide us with an email address and with information that authorises us to verify that you are the owner of the email address provided and consent to being sent the newsletter. No other data is collected or is collected on a voluntary basis only. We shall use this data solely to dispatch the information requested and shall not share it with third parties.
 
The data provided in the newsletter subscription form is processed exclusively on the basis of your consent (point [a] of Art. 6 [1] GDPR). You may revoke your consent to your data and email address being recorded and to your data being used to distribute the newsletter at any time, for example by using the ‘Unsubscribe’ link in the newsletter. Your revocation does not affect the lawfulness of the data processing performed prior to the revocation of consent.
 
The data you submit to us in order to receive the newsletter is stored by us until you are removed from the newsletter mailing list and is deleted following cancellation of your newsletter subscription. This shall not affect data which we store for other purposes.
 

7. Plug-ins and tools

 

YouTube

 
Our website uses YouTube plug-ins operated by Google. The operator is Google Ireland Limited (‘Google’), Gordon House, Barrow Street, Dublin 4, Ireland.
 
If you visit one of our pages featuring a YouTube plug-in, a connection is established with the YouTube servers. The YouTube server is notified which of our pages you have visited.
 
YouTube can additionally store various cookies on your terminal, which it uses to obtain information regarding visitors to our website. This information is used among other things to record video statistics, improve user-friendliness and prevent attempted fraud. The cookies remain on your terminal until you delete them.
 
If you are logged into your YouTube account, you allow YouTube to associate your surfing patterns directly with your personal profile. You can prevent this by logging out of your YouTube account.
 
YouTube is used in the interests of the attractive presentation of our online services.
This is a legitimate interest within the meaning of point (f) of Art. 6 (1) GDPR.
 
More information on how user data is used can be found in the YouTube privacy policy at:
 

8. Own services

 
Applications
 
We offer you the opportunity to apply for a position with us, for example by email, by post or via an online application form. Here, we will outline the scope, purpose and use of the personal data we collect in the course of the application process. We offer our assurance that your data is collected, processed and used in accordance with the applicable data protection laws and all other legal provisions and that your data is handled in the strictest confidence.
 

Scope and purpose of data collection

 
When you submit an application to us, we process the personal data this entails (e.g. contact and communication data, application documents, notes made during job interviews, etc.) insofar as this is necessary to reach a decision regarding justifying the employment relationship. The legal basis for this is Section 26 of Germany’s revised Federal Data Protection Act (BDSG) (initiation of an employment relationship), point (b) of Art. 6 (1) GDPR (general initiation of a contract) and – insofar as you have granted your consent – point (a) of Art. 6 (1) GDPR. You may revoke your consent at any time. You personal data shall be shared only with persons within our company who are involved in processing your application.
 
Insofar as your application is successful, the data submitted by you shall be stored in our data processing system for the purposes of executing the employment relationship on the basis of Section 26 BDSG as revised and point (b) of Art. 6 (1) GDPR.
 

Duration of data retention

 
If we are unable to offer you a position, you reject an offer of employment, withdraw your application, revoke your consent to data processing or request that we erase your data, the data transmitted by you including, if applicable, any remaining physical application documents shall be stored/retained for a maximum of 6 months following conclusion of the recruitment process (retention period) in order that we can track the details of the application process in the event of disagreements (point [f] of Art. 6 [1] GDPR).
 
YOU MAY OBJECT TO THIS DATA STORAGE INSOFAR AS YOU HAVE LEGITIMATE INTERESTS WHICH OVERRIDE OUR LEGITIMATE INTERESTS.
 
 
Correct as at: 25. Mai 2020