glueckkanja-gab takes the protection of your personal data very seriously. We treat your personal data confidentially and according to the legal data protection regulations.
Responsible and overview of data processing
Kaiserstrasse 39, 63065 Offenbach am Main, Germany
Board: Christian Kanja
Phone: +49 69 4005520
Full imprint: https://glueckkanja-gab.com/en/privacy/
External data protection officer: Stefan Eisert Datenschutz und Consulting, +49 8123 928639, firstname.lastname@example.org
Types of data processed
- Master data (company name, contact person, address, e-mail address)
- Contact details (name, e-mail address)
- Content data entered by the customer / user himself (message to glueckkanja-gab)
- Usage data / metadata (URL information, cookie data, your IP address, the types of devices you use, to access or connect to the glueckkanja-gab website, unique device IDs, device properties, type of network connection (e.g. WiFi, 3G, LTE, Bluetooth) and provider, network and device performance, browser type, language and operating system)
Processing of special categories of data (Art. 9 para. 1 DSGVO)
In principle, no special categories of data are processed, unless these are processed by the users of the processing. e.g. entered in online forms.
Categories of data subjects involved in the processing
- Customers, test users, business partners
- Visitors and users of the website
In the following, we will refer to those affected as users in summary.
Purpose of processing
- Deployment of the website, its content and functions
- Security measures
- Response to contact requests and communicate with users
- Marketing, advertising and market research
Automated decision in individual cases (Art. 22 DSGVO)
No automated decisions are made.
Related rights, legal bases and general information
Rights of the persons concerned
You have the right to request confirmation as to whether the data in question will be processed and to be informed of this data and to receive further information and a copy of the data in accordance with Art. 15 DSGVO.
In accordance with Art. 16 DSGVO, you have the right to request the completion of data concerning you or the correction of incorrect data concerning you.
In accordance with Art. 17 DSGVO, you have the right to demand that the relevant data be deleted immediately, or, alternatively, in accordance with Art. 18 DSGVO, to request a restriction on the processing of data.
You have the right to demand that the data concerning you which you have provided to us be processed in accordance with the provisions of the Art. 20 DSGVO and to demand their transmission to other responsible parties.
You also have the right pursuant to Art. 77 DSGVO to file a complaint with the competent supervisory authority.
Right of withdrawal
You have the right to revoke consent according to Art. 7 para. 3 DSGVO with effect for the future.
Right of objection
You may object at any time to the future processing of the data concerning you in accordance with Art. 21 DSGVO. The objection can be made in particular against the processing for purposes of direct marketing.
Cookies and right of objection in direct marketing
If you do not want cookies to be stored on your computer, please deactivate the corresponding option in the system settings of your browser. Stored cookies can be deleted in the system settings of your browser. The exclusion of cookies can lead to functional limitations of this website.
Deletion of data and archiving obligations
The data processed by us will be deleted in accordance with Art. 17 and 18 DSGVO or their processing will be restricted. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them. If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons.
In accordance with legal requirements in Germany, the storage takes place in particular for 10 years according to §§ 147 Abs. 1 AO, 257 para. 1 nos. 1 and 4, para. 4 HGB (German Commercial Code) (books, records, management reports, accounting records, trading books, for taxation purposes) relevant documents, etc.) and 6 years according to § 257 Para. 1 Nos. 2 and 3, Para. 4 HGB (Commercial Letters).
Privacy notices in the application process
We process the applicant data only for the purpose and within the framework of the application procedure in accordance with the statutory provisions. The processing of the applicant data takes place in order to fulfil our (pre)contractual obligations in the Framework of the application procedure within the meaning of Art. 6 para. 1 lit. b. DSGVO Art. 6 para. 1 lit. f. DSGVO insofar as the data processing e.g. in the context of legal proceedings for us is necessary (in Germany applies additionally § 26 BDSG).
The application procedure requires that applicants provide us with the applicant data. If we offer an online form, the necessary applicant data is marked, otherwise it results from the job descriptions and basically includes personal details, postal and contact addresses and the documents belonging to the application, such as cover letter, curriculum vitae and certificates. In addition, applicants may voluntarily provide us with additional information.
Insofar as special categories of personal data within the meaning of Art. 9 para. 1 DSGVO are voluntarily disclosed in the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b DSGVO (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 para. 1 DSGVO are requested from applicants as part of the application procedure, their processing is additionally carried out in accordance with Art. 9 para. 2 lit. a DSGVO (e.g. health data, if these are necessary for the exercise of the profession).
If provided, applicants can submit their applications via an online form on our website. The data will be transmitted to us encrypted according to the state of the art.
Applicants can also send us their applications by e-mail. Please note, however, that e-mails are generally not sent in encrypted form and that applicants themselves must ensure that they are encrypted. We therefore cannot assume any responsibility for the transmission path of the application between the sender and receipt on our server and therefore recommend using an online form or the postal service. Instead of applying using the online form and e-mail, applicants still have the option of sending their application by post.
In case of a successful application, the data provided by the applicants can be processed further by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is not successful, the applicant's data will be deleted. Applicant data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time.
Subject to justified revocation by the applicant, deletion will take place after a period of six months so that we can answer any follow-up questions regarding the application and meet our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses will be archived in accordance with the provisions of tax law.
When establishing contact with glueckkanja-gab (e.g. via contact form, e-mail, telephone or via social networks), the user's details are processed for processing the contact enquiry and its processing in accordance with Art. 6 Para. 1 lit. b) DSGVO. The user's details are stored in a customer relationship management system (CRM system for short).
We delete the requests if they are no longer necessary. We check the necessity every two years. Furthermore, the statutory archiving obligations apply.
CRM system from Microsoft
We use the Dynamics 365 CRM system from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA in order to be able to process user enquiries more quickly and efficiently (legitimate interest pursuant to Art. 6 Para. 1 lit. f. DSGVO ).
Microsoft Corporation is certified under the Privacy Shield Agreement, providing an additional guarantee, comply with European data protection law if data is processed in the USA (https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAK&status=Active).
Dynamics 365 uses user data only for the technical processing of enquiries and does not pass them on to third parties. In order to use Dynamics 365 it is necessary to provide at least a correct e-mail address. A pseudonym Use is possible. In the course of processing service requests, it may be necessary to collect further data. (name, address). The use of Zendesk is optional and serves the improvement and acceleration of our Customer and user service.
If users do not agree with data collection via and data storage in the external system of Dynamics 365 we offer you alternative contact options for submitting service requests by e-mail, telephone, Fax or Post.
With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures and your rights of objection. By subscribing to our newsletter, you declare your agreement with the receipt and the described procedures.
Content of the newsletter: We send out newsletters, e-mails and other electronic notifications with advertising Information (hereinafter "Newsletter") only with the consent of the recipient or a legal permission. If in the context of a registration to the newsletter its contents are described concretely, they are responsible for the consent the user is authoritative. In addition, our newsletters contain information about our services and about our Company.
Subscriptions to the newsletter are logged in order to facilitate the registration process in accordance with legal requirements. to be able to prove. This includes the storage of the registration and confirmation time, as well as the IP address. Likewise the changes of your data stored with the dispatch service provider are logged.
Registration data: To subscribe to the newsletter, it is sufficient to enter your e-mail address. Optional request we will give you a name for the purpose of personal address in the newsletter.
The dispatch of the newsletter and the performance measurement associated with it is based on the recipient's consent. pursuant to Art. 6 Para. 1 lit. a, Art. 7 DSGVO in conjunction with § 7 Para. 2 No. 3 UWG or on the basis of the statutory permit according to § 7 Abs. 3 UWG.
The registration procedure is recorded on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f DSGVO. Our interest is directed towards the use of a user-friendly and secure newsletter system, which serves our business interests as well as the expectations of our users, and which further the proof of consents is permitted.
Cancellation / revocation: You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to cancel the newsletter at the end of each newsletter. We can cancel the unsubscribed Store email addresses for up to three years based on our legitimate interests before we delete them, in order to be able to prove a previously given consent. The processing of these data is limited to the purpose of a possible defence against claims. An individual request for cancellation is possible at any time, provided that at the same time the former existence of a consent is confirmed.
Newsletter: Amazon Web Services, Inc.
The shipping service provider can use the recipient's data in pseudonymous form, i.e. without assignment to a user, for optimization purposes. or to improve their own services, e.g. for the technical optimisation of dispatch and presentation. the newsletter or for statistical purposes. The shipping service provider uses the data of our newsletter recipients for statistical purposes. but not in order to write to them or to pass on the data to third parties.
Newsletter: Performance measurement
The newsletter contains a so called "web-beacon", i.e. a pixel-sized file, which will be deleted when opening the newsletter. Server, or if we use a shipping service provider, from whose server is retrieved. In the context of this technical information, such as information about the browser and your system, as well as your IP address. and time of the retrieval.
This information is used for the technical improvement of the services based on the technical data or the target groups. and their reading behaviour on the basis of their retrieval locations (which can be determined with the aid of the IP address) or access times is also used for statistical purposes. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be accessed via the to individual newsletter recipients. It is, however, neither our endeavour nor, if used, the of the shipping service provider to observe individual users. The evaluations serve us much more to determine the reading habits of the users. our users and to adapt our contents to them or to adapt different contents according to the interests of our users. of our users.
The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services, and technical services. Maintenance services that we use for the purpose of operating this online service.
We or our hosting provider process inventory data, contact data, content data, contract data, usage data, Meta- and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of this online service pursuant to Art. 6 para. 1 lit. f DSGVO in conjunction with Art. 28 DSGVO (conclusion of contract processing agreement).
Google is certified under the Privacy Shield Agreement and thus provides a guarantee of compliance with European data protection law. ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf to monitor the use of our online services by the users of our website. to compile reports on the activities within this online service and to generate further reports on the activities with the use of this online offer and the use of the Internet related services to provide us. Pseudonymous user profiles of the users can be created from the processed data.
We use Google Analytics only with IP anonymization enabled. This means that the IP address of the user is not used by Google within member states of the European Union or other signatory states to the Agreement on the European Economic Area (EEA). European Economic Area. Only in exceptional cases is the full IP address sent to a Google server. in the USA and shortened there.
The personal data of the user will be deleted or anonymized after 14 months.
Definitions of terms
Personal data means any information relating to an identified or identifiable natural person (hereinafter referred to as 'data subject'); an identifiable natural person shall be one who directly or indirectly, in particular by means of assignment to an identifier such as a name, to an identifier number, to location data, to an online identifier (e.g. cookie) or to one or more special features, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person are.
processing means any operation carried out with or without the aid of automated processes or any such sequence of operations in connection with personal data. The term reaches far and encompasses practically every handling of data.
Pseudonymization the processing of personal data in such a way that the personal data can be accessed without recourse to additional information can no longer be attributed to a specific data subject, provided that that data subject additional information and are subject to technical and organizational measures, which ensure that the personal data does not belong to an identified or identifiable natural or legal entity. Person to be assigned.
Cookies are small files that are stored on the user's computer. Within the cookies different data are stored. A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after the user's visit to an online service. device on which the cookie is stored) during or also after his visit within an online offer. are stored as temporary cookies or session cookies. Temporary cookies or session cookies or transient cookies are cookies that are deleted. after a user leaves an online offer and closes his browser. In such a cookie, for example, a login status can be stored. a login status can be stored. Cookies are described as permanent or persistent, which can also be deleted after closing the cookie. of the browser remain stored. For example, the login status can be saved, if the users have saved this status after several days.