Data protection

Data protection

Privacy Policy – General

Hager Unternehmensberatung takes the protection of your personal data very seriously and would like to inform you here about the purposes for which we process your personal data, which categories are affected, who the recipients of this data are, the planned duration of storage and your rights regarding information, correction or deletion or restriction of processing your data.

The subject of data protection is personal data. According to Art. 4 No. 1 GDPR (General Data Protection Regulation), this includes all information relating to an identified or identifiable natural person (data subject).

Please note that we have created a separate data protection declaration for candidates (personnel consulting, training, coaching) for the sake of clarity. You can find this on our website at https://www.hager-ub.de/datenschutzerklaerung-fuer-kandidaten/

If you have any questions, please feel free to contact us at datenschutz@hager-ub.de or our external data protection officer:

Martin Bastian – Data Protection Officer (TÜV)
DADIVO UG (limited liability)
Schäfergasse 25 - 63477 Maintal
Phone +49 (0) 6109 7688 938
E-mail: bastian@dadivo.com

Purpose of storage and type of data
We collect and store personal data on the basis of Art. 6 GDPR para.1:

  • to fulfil our contractual obligations to you;
  • to identify you as a customer;
  • to advise you appropriately;
  • to comply with our legal obligations;
  • to correspond with you;
  • to issue invoices or, as the case may be, as part of the dunning process;
  • for the purposes of permissible direct advertising;
  • to assert any claims against you.


For this purpose, we require data such as your last name, first name, address, e-mail address, telephone number, date of birth or account data, as well as all information necessary for the fulfilment of the contract with you.
We assure you that we will process your data with the highest possible confidentiality in accordance with the existing legal regulations.
We use technical and organizational security measures in order to protect the data administered by us against manipulation, loss, destruction and against access by unauthorized persons. Our security measures are improved on an ongoing basis in line with technological developments. We would also like to point out that gaps in security can exist in relation to online data transfer (e.g. during e-mail communications). It is therefore not possible to fully protect data against third-party access.
Our web pages may contain links to websites belonging to other providers which are not covered by this data protection declaration.

Duration of data storage
We only store your data for as long as is necessary to fulfil the purpose of processing your data:
• for the purpose of processing the contract and for the enforcement and defence of civil claims arising from the contractual and statutory obligations existing with you until the end of the year following the commencement of the limitation period for all reciprocal claims;
• for the purpose of direct advertising by e-mail or post until the termination of our business relationship;
• as long as and to the extent that storage is necessary by law or to comply with any advertising objection.

Passing on to third parties
Your personal data will never be passed on to third parties. Exceptions to this apply insofar as this is necessary for the processing of contractual relationships with you. To support our activities, we make use of sub-areas such as technical support, mail and data storage, hosting provided by external service providers who have been obligated to maintain confidentiality or with whom a contract for order processing exists according to Art. 28 GDPR and who have extensive security measures at their disposal. The data disclosed may only be used by third parties for the purposes stated. In addition, your personal data may be disclosed or transmitted to third parties if we are obliged to do so by law or a legally binding judgement.

Rights of the data subject:
Information, correction, deletion and blocking, right of objection, data portability

In accordance with Art. 15 GDPR, you are entitled to comprehensive information on the data stored about you at any time.
In accordance with Arts. 16–18 GDPR, you can request that we correct, delete or block individual personal data at any time.
In accordance with Art. 20 GDPR, you have the right to data portability.
You can also exercise your right of objection at any time without stating reasons and amend or completely revoke a declaration of a given consent with effect for the future. You can send us your revocation either by post, e-mail or fax:

E-mail: datenpflege@hager-ub.de or 
Hager Unternehmensberatung GmbH, Zur Charlottenburg 3, 60437 Frankfurt, Fax +49 (0)69 95092-111

Pursuant to Art. 77 GDPR, you also have the right to complain to the competent supervisory authority if you are of the opinion that the processing of your personal data is not lawful. The supervisory authority responsible for us is:

Der Hessische Datenschutzbeauftragte (Hessian Data Protection Commissioner), Postfach 3163, 65021 Wiesbaden.

Website
The use of this website is also possible without the provision of personal data.
We store server log files to ensure the operation of the website and to track any possible misuse of the website. In this particular case, the complete IP address is stored for a very limited period of time. This personal data is not used or evaluated for any other purpose.
Our website may contain links to websites belonging to other providers which are not covered by this data protection declaration.

Cookies
Cookies are used to store information associated with a website locally on the computer for a short period of time and transmit it to the server again on request. This allows the user to customize the website, e.g. select the language and font size or design of the website in general. We use cookies for the operation and comfort of our website, as well as for a usage analysis to allow us to optimize our website.
We also use third-party analysis tools based on our legitimate interests (i.e. in the analysis, optimization and economic operation of our online service in the sense of Art. 6 Para. 1 (f) GDPR)

Contact form
A contact form is available on our website which can be used for electronic contact. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.
The processing of the personal data from the input mask is solely for the establishment of contact and such data are used purely for this purpose

Newsletter

The following information explains about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures and your rights of objection. By subscribing to our newsletter, you agree to the receipt of the newsletter and the procedures described.

Content of the newsletter

We send newsletters, e-mails and other electronic notifications containing advertising information (hereinafter referred to as “newsletters”) only with the consent of the recipient.

Double opt-in and logging

Registration to our newsletter takes place via a so-called double opt-in procedure. This means that you will receive an e-mail after registration asking you to confirm your registration. This confirmation is necessary so that no one can register with third-party e-mail addresses.

The registrations for the newsletter are logged in order to be able to prove the registration process took place according to the legal requirements. This includes storing the login and confirmation times as well as the IP address. Likewise, changes to your data stored with MailChimp are logged.

Use of the “MailChimp” dispatch service provider

The newsletter is sent via “MailChimp”, a newsletter distribution platform belonging to the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.

The e-mail addresses of our newsletter recipients, as well as their other data described in the context of this notice, are stored on the MailChimp servers in the USA. MailChimp uses this information to send and evaluate the newsletter on our behalf. Furthermore, MailChimp can use this data according to its own information for the optimization or improvement of its own services, e.g. for the technical optimization of the dispatch and display of the newsletter or for economic purposes, to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients to write to them, neither do they pass it on to third parties.

MailChimp is certified under the US-EU data protection agreement “Privacy Shield” and is thus committed to complying with EU data protection regulations. In addition, we have concluded a data processing agreement with MailChimp. This is a contract in which MailChimp undertakes to protect the data of our users, to process it on our behalf in accordance with their data protection regulations and, in particular, not to pass it on to third parties. The data protection policy of MailChimp can be viewed here: http://mailchimp.com/legal/privacy/

Statistical surveying and analysis

The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved by the MailChimp server when the newsletter is opened. Within the scope of this retrieval, technical information such as information about the browser and your system, as well as your IP address and time of retrieval are first collected. This information is used for the technical improvement of the services on the basis of technical data or target groups and their reading behaviour on the basis of their retrieval points (which can be determined with the help of the IP address) or access times.

Statistical surveys also include determining whether newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. It is, however, neither our aim nor that of MailChimp to observe individual users. Rather, the evaluations help us to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Online access and data management

There are cases in which we direct the newsletter recipients to MailChimp websites. For example, our newsletters contain a link via which newsletter recipients can call up the newsletters online (e.g. in the event of problems with the presentation of the e-mail program). Furthermore, newsletter recipients can subsequently correct their data, such as the e-mail address. Likewise, the MailChimp privacy policy is only available on their site.

In this context, we would like to point out that cookies are used on the MailChimp websites and therefore personal data are processed by MailChimp, its partners and service providers (e.g. Google Analytics). We have no influence on this data collection. Further information can be found in MailChimp’s privacy policy. In addition, we draw your attention to the possibility of objecting to the collection of data for advertising purposes on the websites www.aboutads.info/choices/ and www.youronlinechoices.com (for the European area).

Termination/revocation

You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. At the same time, your consent to its dispatch via MailChimp and the statistical analyses expires. A separate revocation of the dispatch via MailChimp or the statistical evaluation is unfortunately not possible.

You will find a link to cancel the newsletter at the end of each newsletter.

Legal basis: General Data Protection Regulation

In accordance with the provisions of the General Data Protection Regulation (GDPR), which came into force on 25 May 2018, we would like to inform you that your consent to the sending of e-mail addresses is based on Art. 6 Para. 1 letter a, 7 GDPR and § 7 Para. 2 No. 3 or Para. 3 UWG (Gesetz gegen den unlauteren Wettbewerb (Law on Unfair Competition)). The use of the MailChimp dispatch service provider, the performance of statistical surveys and analyses as well as the logging of the registration procedure are carried out on the basis of our legitimate interests pursuant to Art. 6 Para. 1 letter f GDPR. Our efforts are centred on providing a user-friendly and secure newsletter system that serves both our business interests and users’ expectations.

We would also like to point out that you may object at any time to the future processing of your personal data in accordance with the statutory provisions pursuant to Art. 21 GDPR. The objection may be lodged against processing for the purposes of direct marketing.

Google Analytics
On the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online services as defined in Art. 6 Para. 1 letter f. GDPR), we use Google Analytics, a web analysis service operated by Google LLC (“Google”). Google uses cookies. The information generated by the cookie about your use of this online offering will generally be transmitted to and stored by Google on servers in the United States.
Google is certified under the Privacy Shield Agreement and thereby offers a guarantee of compliance with European privacy laws (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf to evaluate the use of our online services by users, to compile reports on the activities within this online service and to provide us with other services associated with the use of this online service and the Internet. Anonymous user profiles of the users can be created from the processed data.
We only use Google Analytics with IP anonymization enabled. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement within the European Economic Area. In exceptional cases, the full IP address will be transmitted to the USA and shortened there.
The IP address collected by your browser will not be combined with any other data held by Google. Users can prevent the storage of cookies by setting their browser software accordingly.

Users can also prevent the collection of the data generated by the cookie and other data related to your usage of the website by Google as well as the processing of this data by Google by downloading and installing the browser plugin available at following address:

http://tools.google.com/dlpage/gaoptout?hl=de.
Further information on the use of data by Google, setting and opposition options can be found on the Google website: https://www.google.com/intl/en/policies/privacy/partners (“How Google uses information from sites or apps that use our services”), http://www.google.com/policies/technologies/ads (“Advertising”), http://www.google.de/settings/ads (“Ad personalization”).

Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – / Opt-Out: http://instagram.com/about/legal/privacy/.
 

Facebook
Facebook, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). The plugins can display interaction elements or content (e.g. videos, graphics or text contributions) and are recognizable by one of the Facebook logos (white “f” on a blue tile, the term “Like” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of the Facebook Social Plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
Facebook is certified under the Privacy Shield Agreement and thereby provides a guarantee of compliance with European data protection law https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
When a user accesses a feature of this online service that includes such a plugin, their device establishes a direct connection to Facebook’s servers. The content of the plugin is transmitted directly from Facebook to the user’s device and integrated into the online offering by the user. User profiles of the users can be created from the processed data. We therefore have no influence on the extent of the data that Facebook collects using this plugin and thus inform users according to our state of knowledge.
Due to the integration of the plugins, Facebook receives the information that a user has called up the corresponding page of the online offering. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. When users interact with the plugins, for example by clicking the Like button or commenting, the corresponding information is transferred from their device directly to Facebook and stored there. If a user is not a member of Facebook, it is still possible for Facebook to know and store their IP address. According to Facebook, only an anonymous IP address is stored in Germany.
The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the related rights and setting options to protect the privacy of users, can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/.
If a user is a Facebook member and does not want Facebook to collect information about him or her via this online service and link it to his or her Facebook member data, he or she must log out of Facebook and delete cookies before using our online service. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are adopted for all devices, such as desktop computers or mobile devices.

Twitter
The functions and content of the Twitter service, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated into our online service. These may include, for example, content such as images, videos or text and buttons with which users can express their approval of the content, the authors of the content or subscribe to our contributions. If the users are members of the Twitter platform, Twitter can assign the access of the above-mentioned content and functions to the profiles of the users. Twitter is certified under the Privacy Shield Agreement and thereby offers a guarantee of compliance with European privacy laws (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). Privacy policy: https://twitter.com/de/privacy, opt out: https://twitter.com/personalization.

Xing
The functions and content of the Xing service offered by XING AG, Dammtorstraße 29–32, 20354 Hamburg, Germany, can be integrated into our online offering. These may include, for example, content such as images, videos or text and buttons with which users can express their approval of the content, the authors of the content or subscribe to our contributions. If the users are members of the XING platform, XING can assign the access of the above-mentioned content and functions to the profiles of the users. Privacy policy of Xing: https://www.xing.com/app/share?op=data_protection.

LinkedIn
The functions and content of the service LinkedIn, offered by LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland, can be integrated into our online offering. These may include, for example, content such as images, videos or text and buttons with which users can express their approval of the content, the authors of the content or subscribe to our contributions. If the users are members of the LinkedIn platform, LinkedIn can assign the access of the above-mentioned content and functions to the profiles of the users. Privacy policy of LinkedIn: https://www.linkedin.com/legal/privacy-policy. LinkedIn is certified under the Privacy Shield Agreement and thereby offers a guarantee of compliance with European privacy laws ( https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active ). Privacy policy: https://www.linkedin.com/legal/privacy-policy, opt out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Tumblr
This offering uses the buttons of the service Tumblr. These buttons are offered by Tumblr, Inc., 35 East 21st St, 10th Floor, New York, NY 10010, USA, hilfe@tumblr.com. They are recognizable by the term “Tumblr”. The buttons can be used to share a contribution or page of this offering on Tumblr or to follow the author on Tumblr.
When a user accesses a page on this website that contains such a button, their browser establishes a direct connection with Tumblr’s servers. The content of the Tumblr button is transmitted by Tumblr directly to the user’s browser. The provider therefore has no influence on the amount of data Tumblr collects with the help of this plugin. Further information on this can be found in Tumblr’s privacy policy on: www.tumblr.com/policy/de/privacy.
Data protection regulations and handling of data protection can change continuously. We reserve the right to amend this privacy policy at any time.

DISQUS commentary function

On the basis of our legitimate interests in efficient, secure and user-friendly comment management in accordance with Art. 6 Para. 1 lit. f. DSGVO, we use the commentary service DISQUS, offered by DISQUS, Inc. 301 Howard St, Floor 3 San Francisco, California- 94105, USA. DISQUS is certified under the Privacy-Shield-Agreement and thus offers a guarantee to comply with European data protection law: www.privacyshield.gov/participant .

To use the DISQUS comment function, users can log in using their own DISQUS user account or an existing social media account (e.g. OpenID, Facebook, Twitter or Google). DISQUS obtains the user's login data from the platforms. It is also possible to use the DISQUS comment function as a guest without creating or using user accounts at DISQUS or one of the specified social media providers.

We merely embed DISQUS and its functions in our website, whereby we can influence user comments. However, the users enter into a direct contractual relationship with DISQUS, within the framework of which DISQUS processes the comments of the users and is a contact partner for any deletion of the users' data. In this regard, we refer to the DISQUS data protection declaration: help.disqus.com/terms-and-policies/disqus-privacy-policy and also point out to the users that they can assume that DISQUS will store their IP address and the time of the comment as well as the comment content, and that it will also store cookies on the users' computers and may use them to display advertising. However, users may object to the processing of their data for the purpose of displaying advertisements: https://disqus.com/data-sharing-settings .

Chat Livezilla

LiveZilla is a live support helpdesk software that allows you to establish a direct communication in real time (so called live chat) with visitors of your own website.

The developer of the LiveZilla component is LiveZilla GmbH, Byk-Gulden-Straße 18, 78224 Singen, Germany.

Every single visit to our website, which is equipped with a LiveZilla component, will be used to collect data for the purpose of operating the live chat system and analyzing the operation of the system. Further information about LiveZilla can be found at www.livezilla.net/home/de/.

The LiveZilla Component sets a cookie on the information technology system of the person concerned. The LiveZilla-Cookie can be used to create pseudonymous user profiles. Such pseudonymized user profiles may be used by the data controller to analyze visitor behavior and to analyze and maintain the proper operation of the LiveChat system. The analysis also serves to improve our services. The data collected via the LiveZilla component will not be used to identify the data subject without prior obtaining a separate explicit consent of the data subject. This data will not be merged with personal data or with other data containing the same pseudonym.

The applicable data protection regulations of LiveZilla GmbH can be found at https://www.livezilla.net/disclaimer/de/.

Data protection regulations and data protection practices may change on an ongoing basis. We reserve the right to adapt this privacy policy accordingly at any time.

Translated with www.DeepL.com/Translator (free version)

Version 11.02.19