Data Privacy Guidlines

We appreciate your visit to our webite. First of all, we would like to introduce ourselves to you as the responsible authority in terms of data protection laws:

AUFGEPASST e.V.
Represented by the board: Judith Bethlehem, Yvonne Rösel-Bamberger, Carsten Awe

Paretzer Str. 2
10713 Berlin-Wilmersdorf

Phone office of the board 030/851 37 23

Fax 030/85962483
E-mail info(at)aufgepasst.de

Data protection officer:
Matthias Beyer
RA Kanzlei Dr. Petereit und Armbrüster
Invalidenstraße 15
10115 Berlin
Phone 030 / 308 77 6-6
beyer@kpa.biz

We would like to inform you about the collection and use of your personal data in accordance with our legal obligation.

When using our website, personal data is collected. This can occur if you enter the data yourself – for example your e-mail address. Our system also automatically collects data, such as your visit to our website, regardless of which device or software you are using to access our website.

Any data you input on our website is voluntarily. There are no disadvantages for you if you do not disclose personal data. Without certain data it is not possible for us to provide services or to conclude contracts. We will notify you if mandatory information is necessary in this context.

Within this website the user’s personal data is only collected in accordance with the applicable data protection laws, in particular the General Data Protection Regulation (GDPR). The technical terms used in this text are explained in more detail in Art. 4 of the GDPR.

In compliance with the GDPR, processing data is permitted in three cases in particular:

• According to art. 6, par. 1, lit. a and 7 GDPR if you gave us your consent to data processing; in each case we will inform you in advance in these data privacy guidelines and on the occasion of your consent in accordance with Art. 4 No. 11 GDPR, for what and under what circumstances we process your data;
• According to art. 6, par. 1, lit. b GDPR, if processing your personal data is necessary for the initiation, conclusion or execution of a contractual relationship;
• According to art. 6, par. 1, lit. f GDPR if, after assessment of interests, processing is necessary to protect our legitimate interests; in particular this includes our interests in analyzing, optimizing and securing what we offer on our website – this especially includes analysis of user behavior, creating profiles for advertising purposes and storage of access data as well as using services of third-party providers.

We collect inventory data (e.g. name, address and e-mail address, used services if applicable) to the extent to which it is necessary to justify, draft or modify the contractual relationship between us and the user.

We also collect usage data (e.g. website visits, interest in products) in order to enable users to utilize the services provided on the website and for us to account for those services.

We only combine usage data if and as far as it is necessary for billing purposes. Otherwise we will only create usage data pseudonymously and only if you have not objected. You can object at any time using the address given in the legal details or by contacting the responsible authority named in these data privacy guidelines.

Legal basis for processing data is our legitimate interest in accordance with Art. 6, par. 1, lit. f GDPR in the analysis of the website and its use on the one hand, on the other hand also the legal permission to store data in the course of initiating a contractual relationship in accordance with Art. 6, par. 1, lit. b GDPR.

Each time our website is accessed our provider also stores information, the so-called server log files, which are automatically transmitted by your browser. These are:

• Your ip-address
• Type and version of your browser
• Hostname
• Moment of access
• The page from which you visited our site
• Name of the accessed page
• Exact time of access and
• The amount of data transferred.

This data is only used for statistical purposes and does not allow us to identify the user.

Before sending advertisement, we will specifically ask you for your consent in accordance with art. 4, no. 11 GDPR, unless advertising for similar products that you have already purchased. This will be necessary particularly if you give us your consent to send you our newsletter or fill out a contact form.

If we ask for your consent to process your data, we will inform you in clear language and easily accessible about the cases for which you give your approval. Every consent we ask for is voluntary, any benefit that you would obtain by approving can also be obtained without giving consent, just ask us.

For every consent you have the right to revoke your approval of processing your personal data at any time. This can be done by sending an informal message, e.g. via our contact form, an e-mail to the e-mail address given in the legal details or clicking an unsubscribe-link (if applicable). Your revocation does not affect the legality of already processed data up to the point of disapproval.

Your data will only be stored for as long as the purpose of the respective data processing requires. Further storage is particularly considered if it is necessary for legal prosecution by us or for our other legitimate interests or if we are legally required to keep your data (e.g. retention periods for tax purposes, which are generally 6 or even 10 years).

You can request information from us free of charge at any time about stored personal data. To prevent misuse, personal identification is required.

At any time, you can ask us to correct or supplement incorrect data, restrict processing or delete personal data. This applies in particular if the processing purpose has expired, a necessary consent has been revoked and there is no other legal basis, or our data processing is not in accordance with the applicable laws. We will then immediately correct, block, or even delete your personal data within the legal requirements.

Concerning the right of objection associated with the receipt of advertisement, our consent text applies:

You have the right to revoke your approval of processing your personal data at any time. This can be done by sending an informal message, e.g. via our contact form, an e-mail to the e-mail address given in the legal details or clicking an unsubscribe-link (if applicable). Your revocation does not affect the legality of already processed data up to the point of disapproval.

You can claim the transfer of data stored about you in machine-readable form.

If you feel that your rights have been violated by our way of processing data, it is possible to file a complaint with the responsible supervisory authority (click here for a list of the authorities)

If alteration of the data privacy guidelines becomes necessary for legal or factual reasons, we will update this page accordingly. No changes are made relating to the consent given by the user.

When entering data on our website, be it on a contact form, during registration, while logging in or for payment purposes, the website on which you enter the data is encrypted. This prevents third parties from seeing the data you enter. The encryption can be identified by the lock symbol in your browser and by the fact that the address line begins with “https” instead of just “http”.

Data processing as part of the application process

We process personal data of applicants (see supplement to the data protection declaration for applicants) in order to carry out the application process and to ensure optimal staffing of positions within our entire company. We do this on the legal basis of our overriding legitimate interest in conducting an efficient application process (Art. 6(1)(f) DSGVO), as well as on the basis of the need to carry out pre-contractual measures (Art. 6(1)(b) DSGVO). We collect this data as part of the application process either by applicants providing it to us (e.g., by sending the resume by email or via our application form) or by collecting it ourselves (e.g., by recording notes during the interview).
We take all necessary organizational and technical measures to ensure the confidentiality of applications within the framework of the applicable national and European legal situation. Data processing is carried out in accordance with state-of-the-art data security standards. All employees involved in the application process are obliged to maintain confidentiality regarding the personal data of applicants.
Applicants' personal data is only accessible to employees of the Human Resources department and the persons responsible for selecting applicants in the specialist departments.
Applicants are not obliged to provide us with their personal data. However, if they do not do so, it will not be possible for us to carry out the application process with them.
Storage period
We generally retain applicants' data for six months from the time the application is rejected (completion of the unsuccessful application process).
In the case of pending official or judicial proceedings, personal data may also be retained beyond the above-mentioned period for the respective duration of the proceedings, provided that the retention is necessary in connection with the respective proceedings.
It is also possible to retain the data for up to 24 months if applicants have consented to this longer retention period.
If the application is successful, we will retain data collected in connection with the application process for as long as there are legal retention obligations or as long as any legal claims have not expired. In the event that an employment relationship is concluded, application documents will be retained as part of the personnel act.

Categories of personal data of applicants processed

• Name

• Date of birth

• Citizenship

• Mother tongue

• Sex and gender

• Address and telephone number

• Telephone number

• E-mail address

• Photograph

• Curriculum Vitae

• Letter of motivation/application

• Testimonials

• work experience

• Vocational training

• Further education

• Language skills

• Driving license

• Desired activity including hours, start and place of employment

• Salary expectation

• Interview notes

• Applicant source

• Information about references

• Type of application (channel: e-mail, mail, etc.)

• Status of the application

• Application history (date, time, comments)

• Correspondence with the applicant

• Assessment of the extent to which the applicant fulfills the requirements