We process your personal data in accordance with the applicable data protection regulations on the basis of § 26 Federal Data Protection Act (BDSG), Art. 6 para. 1 lit. b GDPR. We process the data you provide to us as part of your online application for the sole purpose of selecting applicants. Data processing for other purposes does not take place.
You yourself determine the scope of the data that you would like to submit to us as part of your online application. Online applications are electronically transferred to our personnel department and processed there as quickly as possible. The transmission is encrypted. As a rule, applications are forwarded to the heads of the responsible specialist departments in our company. In addition, there is no disclosure of your data. Your information will be treated confidentially in our house. In case of an unsuccessful application, your documents will be deleted after expiration of 6 months.
In the event that we may also consider your application in other or future job advertisements, we ask for a note on the application. We then process your data on the basis of Art. 6 para. 1 lit. a DSGVO.
Information according to Art. 13 General Data Protection Ordinance for Applicants
The compliance with data protection regulations has a high priority for our company. We would like to inform you about the collection of your personal data with us below:
Data collection and processing is the responsibility of the company you applied to.
Data we need:
When applying, we process data from you that we need in the context of the application. This can be contact details, all data related to the application (CV, certificates, qualifications, answers to questions, etc.) as well as bank account details (to reimburse travel costs). The legal basis for this arises from § 26 Federal Data Protection Act (BDGS), Art. 6 para. 1 lit. b GDPR. .
Data transfers to third countries:
Our company is part of an international agency network that has personnel responsibilities across departmental, corporate and national boundaries. That's why competent supervisors in the UK and US can access your applicant data. This data processing is required by § 26 BDSG to decide on the creation of an employment relationship.
The level of protection for data transfers to the USA is to be regarded as equivalent on the basis of an adequacy decision of the EU ("EU-US DPF") pursuant to Article 45 (3) of the GDPR. If service providers are not subject to the adequacy decision, the data transfers to the USA are secured by concluding European standard contractual clauses (SCCs) and further technical and organisational measures.
If no statutory retention period exists, the data will be deleted as soon as storage is no longer required or the legitimate interest in storage has expired. If not hired, this will be the case at least six months after completing the application process.
In individual cases, it may lead to a longer storage of individual data (e.g. travel expenses). The duration of storage then depends on the statutory storage obligations, for example, from the Tax Code (6 years) or the Commercial Code (10 years).
If there has not been a recruitment, but your application continues to be interesting for us, we ask you, if we may keep your application for future appointments.
Confidential treatment of your data:
Of course, we treat your data confidentially and do not transmit it to third parties.
If necessary, we use strictly instruction-bound service providers, who provide us with e.g., in the areas of IT or the archiving and destruction of documents and with which separate contracts for order processing have been concluded.
Your privacy rights:
As the data subject, you have the right to obtain information about personal data concerning you, as well as the correction of incorrect data or cancellation, provided that one of the reasons stated in Art. 17 GDPR exists, e.g. if the data is no longer needed for the purposes pursued. There is also the right to restrict processing if one of the conditions set out in Art. 18 GDPR exists and, in the case of Art. 20 GDPR, the right to data portability.
Each data subject has the right to complain to a supervisory authority if it considers that the processing of the data concerning them is contrary to data protection provisions. In particular, the right of appeal may be invoked by a supervisory authority in the Member State of the residence or the workplace of the person concerned or the place of the alleged infringement.
Our data protection officer:
You also have the right to contact our data protection officer at any time, who is obliged to maintain secrecy regarding your request. You will find the contact details of our data protection officer in section 5 above.