In the following, you can find information about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.
1. Data Controller and Data Protection Officer
The controller within the meaning of the EU General Data Protection Regulation (GDPR), is: Menzell & Döhle GmbH & Co. KG, Alter Wall 55, 20457 Hamburg.
You can reach our data protection officer at: firstname.lastname@example.org
2. Your data subject rights
You have the following rights regarding your personal data :
- Right of access
- Right to rectification or erasure
- Right to restriction of processing
- Right to data portability
In the case of processing of personal data for the performance of tasks in the public interest (Art. 6(1)(e) GDPR) or for the performance of legitimate interests (Art. 6(1)(f) GDPR), you may object to the processing of personal data relating to you at any time with effect for the future if there is no reason for further processing.
If you have given us consent, you can withdraw this at any time with future effect.
You also have the right to lodge a complaint with the responsible supervisory authority. Your responsible supervisory authority depends on the federal state of your residence, your work, or the alleged violation. A list of supervisory authorities (for the non-public sector) can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
We do not intend to use any personal data collected from you for any automated decision making process (including profiling).
3. No obligation to provide personal data
There is no general legal or contractual obligation for you to provide us with your personal data; however, we may only be able to provide certain services to a limited extent or not at all if you do not provide the data required for this.
4. Purposes of data processing by the controller and third parties
- you have given your explicit consent to this,
- the processing is necessary for the performance of a contract with you,
- the processing is necessary for compliance with a legal obligation,
- the processing is necessary to protect legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data.
5. Collection of general information when visiting our website
When you access our website, some information is automatically collected. This information (server log files) includes, for example, the type of web browser, the operating system used and the domain name of your Internet service provider. This is information that does not allow any conclusions to be drawn about your person.
This information is technically necessary in order to correctly deliver the content of web pages requested by you and is mandatory when using the Internet. In particular, they are processed for the following purposes:
- ensuring a smooth connection setup of the website,
- ensuring the smooth use of our website,
- evaluating system security and stability, and
- for other administrative purposes.
The processing of your personal data is based on our legitimate interest (Article 6(1)(f) GDPR) from the aforementioned data collection purposes. We do not use your data to draw conclusions about your person. Recipients of the data are only the controller and, if applicable, our processors.
Anonymous information of this kind is statistically evaluated by us, if necessary, in order to optimize our Internet presence and the technology behind it.
If you contact us by e-mail, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored in order to answer your questions. The legal basis for this processing is our legitimate interest (Article 6(1)(f) GDPR), namely our legitimate interest in responding to your requests.
7. Use of Google Maps
Detailed instructions on how to manage your own data in connection with Google products can be found here.
Cookies can contain data that make it possible to recognize the device used. In some cases, however, cookies only contain information on certain settings that cannot be related to a specific person. However, cookies cannot directly identify a user.
A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session. With regard to their function, a distinction is made between cookies:
(b) Classification and legal basis
This page distinguishes between (i) necessary cookies, which are mandatory for the technical functions of a website, (ii) functional cookies, which allow the analysis of website usage, and (iii) marketing cookies, which are required by advertising companies to display interest-based advertising.
(i) Necessary Cookies
Necessary cookies are needed for the core functions of a website. These cookies are used to ensure that you can log in securely, that the website remembers your login data, that you can place purchases in the shopping cart, that the language settings are selected correctly and that an optimal appearance of the website can be ensured. The legal basis is Article 6(1)(b) GDPR, if the use of the site can already be attributed to a contractual relationship, in other cases Article 6(1)(f) GDPR, where the legitimate interest is the optimal presentation, use and improvement of the site.
Storage of the respective PHP-Session
Storage of the necessary consent to display the map
(ii) Functional Cookies
Functional cookies allow us to analyze the usage patterns of website visitors in order to improve performance. These cookies collect information about how a website is used - for example, which pages are accessed most frequently or whether error messages appear. No information is stored that would allow the user to be identified. The information collected is aggregated and analyzed anonymously only. These cookies are used solely for the purpose of improving the performance of the website. This data is only processed if the user has given his consent in the cookie banner, Article 6(1)(a) GDPR.
No functional cookies are used when visiting this site.
(iii) Marketing Cookies
Marketing cookies are used by advertising companies to display interest-based advertising. By means of such cookies, information can be shared with social networks and advertising providers. They are also used to display interest-based advertising to you. This data is also only processed if the user has given their consent within the cookie banner, Article 6(1)(a) GDPR.
No marketing cookies are used when visiting this site.
c) Management of cookies
The management of cookies depends on the respective legal basis for the processing. As a rule, you cannot turn off the use of technically necessary cookies; in exceptional cases, we ask you to clarify for us reasons from your situation that should prevent such processing. Without the technically necessary cookies, some of the functions of the website will not be available.
You do not have to give your consent for the use of functional and marketing cookies and you can revoke this consent at any time with future effect.
9. Applicant management
You can submit both a speculative application and an application for one of the advertised positions in our group of companies. The data entered there is required for the initiation of an employment relationship, and furthermore, to enable the related communication and to process your request. These processing operations are based on Art. 6(1)(b) in conjunction with § Section 26 (1) BDSG. Data of rejected applicants will be deleted after six months.
10. Duration of data processing
Your data will only be processed for as long as is necessary to achieve the above-mentioned processing purposes; the legal bases stated in the context of the processing purposes apply accordingly. With regard to the use and storage duration of cookies, please refer to clause 8(b)(i) above.
11. Cooperation with processors
As with any larger company, we also use external domestic and international service providers to process our business transactions (e.g. for the areas of IT, logistics, telecommunications, sales and marketing). They will only act on our instructions and have been contractually obligated to comply with data protection regulations in accordance with Art. 28 GDPR.
If personal data is passed on by us to our subsidiaries or is passed on to us by our subsidiaries (e.g. for advertising purposes), this is done on the basis of existing processing relationships.
12. Transfer of personal data to third parties; Legal basis
The following categories of recipients may receive access to your personal data:
- Service providers for the operation of our website and the processing of data stored or transmitted by the systems (e.g. for data center services, payment processing, IT security). The legal basis for the transfer is Article 6(1)(f) GDPR insofar as they are not contracted processors;
- Government agencies / authorities, insofar as this is necessary for the fulfillment of a legal obligation. The legal basis for the transfer is Article 6(1)(c) GDPR;
- Persons employed to carry out our business operations (e.g. auditors, banks, insurance companies, legal advisors, supervisory authorities, parties involved in company acquisitions or the establishment of joint ventures). The legal basis for the disclosure is Article 6(1)(b) or Article 6(1)(f) GDPR.
In additional cases, we will only disclose your personal data to third parties if you have given your express consent to do so, pursuant to Article 6(1)(a).
13. Disclosure to recipients outside the EEA
We do not share personal data with recipients located outside the EEA in third countries, unless this is explicitly stated in connection with our explanations on tracking tools. In this case, we ensure before the transfer that either an adequate level of data protection exists is ensured by the recipient (e.g. based on an adequacy decision of the EU Commission for the respective country or the conclusion of EU standard contractual clauses of the European Union) or your consent to the transfer has been obtained.
Further information on this, in particular on the measures taken, can be obtained from our Data Protection Officer.
14. SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.