Information on data processing for this website in accordance with Art. 13 of the EU General Data Protection Regulation (GDPR = DSGVO) when collecting personal data from the person concerned.
This data protection notice (version: DSGVO 1.0 from 22.05.2020) was created by:
NIC GmbH
Data protection
NIC GmbH is responsible for this website and, as a provider of a teleservice, must inform you at the beginning of your visit about the type, scope and purposes of the collection and use of personal data in a precise, transparent, comprehensible and easily accessible form in clear and simple language. This content must be accessible to you at all times.
We place the greatest value on the security of your data and compliance with data protection regulations. The processing of personal data is subject to the provisions of the currently applicable European and national laws.
With the following data protection information, we would like to show you how we handle your personal data and how you can contact us:
NIC GmbH
An der Stiftsbleiche 11
87439 Kempten
Germany
Commercial register number: HRB 13638
Managing director: Pete Jendras, Mathew Elenjickal, Stephan Elsasser
Telephone: +49 831 6971745-0
Email: info@nic-place.com
In accordance with Art. 37 DSGVO, NIC GmbH is not legally obliged to appoint a data protection officer. Accordingly, please address your questions about data protection or other matters relating to data protection law via email to the following email address: datenschutz@nic-place.com
Matomo (formerly Piwik) without cookies
On this website, certain user information is collected and stored using the web analytics software Matomo (www.matomo.org), a service provided by InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand (“Matomo”). From this information, pseudonymized usage profiles can be created and evaluated. The information collected using Matomo technology (including your pseudonymized IP address) is processed on our servers. This website uses Matomo exclusively without the use of cookies, which means that Matomo does not set cookies on your terminal device at any time. Insofar as personal data is also processed during the operations described, the processing is based on our legitimate interest in the statistical analysis of user behavior for optimization and marketing purposes pursuant to Art. 6 (1) lit. f DSGVO.
A. General
For better comprehensibility, we refrain from gender-specific differentiation. For the sake of equal treatment, corresponding terms apply to all genders.
The meaning of the terms used, such as “personal data” or their “processing”, can be found in Art. 4 of the GDPR.
The personal data processed within the framework of this website include
- Inventory data (e.g. name and addresses of customers),
- Contract data (e.g. services used, names of clerks, payment information),
- Usage data (e.g. pages visited on our website, interest in our products) and
- Content data (e.g. entries in the contact form).
B. Specific
Basics of data processing
We process your personal data only in compliance with the relevant data protection regulations. Legal requirements are:
- Existence of your electronic consent (e.g. registration for the newsletter or in the online application process for extended storage).
- Enforcement of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation and security of our website, in particular with regard to the measurement of reach, the creation of profiles for advertising and marketing purposes as well as the collection of access data and the use of third-party services).
We would like to show you where the above legal requirements are regulated:
- Consent: Art. 6 para. 1 lit. a) and Art. 7 DSGVO
- Processing for the pursuit of our legitimate interests: Art. 6 para. 1 lit. f) DSGVO
Data transmission to third parties
No data is transferred to third parties.
Data transfer to a third country or an international organisation
Third countries are countries in which the GDPR is not directly applicable law. This basically includes all countries outside the EU or the European Economic Area.
No data is transferred to a third country or an international organisation without a legal basis.
Storage duration of your personal data
We adhere to the principles of data economy and data avoidance. This means that we only store your data for as long as necessary to fulfil the aforementioned purposes or as specified by the various storage periods provided for by law. If the respective purpose ceases to apply or after expiry of the corresponding periods, your data will be routinely blocked or deleted in accordance with the statutory provisions.
For this purpose, we have developed an internal concept to ensure this procedure.
Contact
If you contact us by e-mail, you agree to electronic communication. The information you provide will be stored exclusively for the purpose of processing the enquiry and for possible follow-up questions.
You also have the option of contacting us by telephone. Your data will then also be processed for further communication.
We would like to provide you with the legal framework:
- Processing for the fulfilment of our services and implementation of contractual measurements: Art. 6 Abs. 1 lit. b) DSGVO
- Processing for the protection of our legitimate interests: Art. 6 Abs. 1 lit. f) DSGVO
We use a software for the maintenance of customer data (CRM system) or a comparable software on the basis of our legitimate interests (efficient and fast processing of user enquiries).
For this purpose, we have concluded an order processing agreement with the provider, in which the provider undertakes to process the user data only in accordance with our instructions and to comply with the EU data protection level.
We would like to point out that e-mails can be read or changed unauthorised and unnoticed during transmission. Furthermore, we would like to draw your attention to the fact that we use software to filter unwanted e-mails (spam filter). The spam filter can reject e-mails if they have been falsely identified as spam by certain characteristics.
What are your rights?
- right to information
You have the right to obtain information about your stored data free of charge. Upon request, we will inform you in writing which of your personal data we have stored. This also includes the origin and recipients of your data as well as the purpose of the data processing.
- right to rectification
You have the right to have your data stored by us corrected if it is incorrect. You can then request a restriction of processing, e.g. if you dispute the accuracy of your personal data.
- right to blocking
Furthermore, you can have your data blocked. To ensure that a blocking of your data can be taken into account at any time, this data must be kept in a blocking file for control purposes.
- right to erasure
You can request the deletion of your personal data insofar as there is no legal obligation to retain it. If such an obligation exists, we will block your data upon request. If the relevant legal requirements exist, we will also delete your personal data without your request.
- right to data portability
You have the right to request that we provide the personal data you have provided to us in a format that allows it to be transferred to another entity.
- right of complaint to a supervisory authority
You have the option of contacting one of the data protection supervisory authorities with a complaint.
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 27, 91522 Ansbach, Deutschland
Telefon: +49 981 53-1300
Telefax: +49 981 53-981300
You can open the complaint form via the following link: https://www.lda.bayern.de/de/beschwerde.html
- Right to object
You have the option at any time to revoke the processing of your data, to which you have previously consented, with effect for the future. To do so, it is sufficient to send a corresponding e-mail to datenschutz@nic-place.de.
However, such a revocation does not affect the lawfulness of the processing carried out up to that point. This does not affect data processing with regard to all other legal requirements, such as the initiation of a contract (see “Data processing principles”).
Protection of your personal data
We take contractual, technical and organisational security measures in accordance with the state of the technology to ensure that the data protection laws are complied with and thus to protect the processed data against accidental or intentional manipulation, loss, destruction or against access by unauthorised persons.
Your personal data will be protected within the scope of the following points (excerpt):
- safeguarding the confidentiality of your personal data
In order to maintain the confidentiality of your data stored by us, we have taken various measures to control access, entry and access control.
- safeguarding the integrity of your personal data
To maintain the integrity of your data stored by us, we have taken various measures to control disclosure and input.
- maintaining the availability of your personal data
To maintain the availability of your data stored with us, we have taken various order control and availability control measures.
The security measures in place are continuously improved in line with technological developments. Despite these precautions, due to the insecure nature of the Internet, we cannot guarantee the security of your data transmission from you to our website. Therefore, any data transmission by you is at your own risk.
Protection of minors
Personal information may only be provided to us by persons who are under the age of 16 with the express consent of their legal guardians. This data will be processed in accordance with this data protection notice.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and version
- Operating system used
- Referrer URL
- Time of the server request
This data is not merged with other data sources.
The basis for the data processing is Art. 6 para. 1 lit. b) DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
Cookies
Cookies are small text files that are stored locally in the cache of your internet browser. The cookies enable, for example, the recognition of the internet browser. The files are used to help the browser navigate through the website and to make full use of all functions.
We use browser cookies.
User control of cookies
You can set all browsers so that cookies are only accepted on explicit request. Also, only cookies whose pages are currently being visited can be accepted by setting. All browsers offer functions that enable the selective deletion of cookies. The acceptance of cookies can also be deactivated in general, but this may lead to restrictions in the user-friendliness of this website.
Lifetime of the cookies in use
Cookies are managed by our website’s web server. This website uses:
- Session-Cookies (one time only usage process)
- Lifetime: Until closing of the website used.
Disable or remove cookies (Opt-Out)
Every web browser offers options to restrict and delete cookies. For more information, please visit the following websites:
- Internet Explorer: https://windows.microsoft.com/en-GB/windows7/How-to-manage-cookies-in-Internet-Explorer-9
- Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer?redirectlocale=en-US&redirectslug=Cookies
- Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
- Safari: https://support.apple.com/de-de/HT201265
Social networks
In addition to this online offer, we also maintain presences in various social media, which you can reach via corresponding buttons on our website. When you visit such a presence, personal data may be transmitted to the provider of the social network. It is possible that, in addition to the storage of the data specifically entered by you in this social medium, further information will also be processed by the provider of the social network.
Furthermore, the provider of the social network may process the most important data of the computer system from which you visit it – for example, your IP address, the processor type and browser version used, including plug-ins.
If you are logged in with your personal user account of the respective network when visiting such a presence, this network can assign the visit to this account.
The purpose and scope of the data collection by the respective medium and the further processing of your data there as well as your rights in this regard can be found in the respective provisions of the respective responsible party, e.g. under:
- Facebook: https://de-de.facebook.com/about/privacy/
- Xing: https://privacy.xing.com/de/datenschutzerklaerung
- LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=de_DE
Furthermore, we would like to point out that our website contains further links to external third-party websites, whereby we have no influence on the processing of data on these third-party websites.
Modifications of our privacy policy
We reserve the right to adapt our data protection information at short notice so that it always complies with the current legal requirements or in order to implement changes to our services. This may, for example, concern the introduction of new services. The new data protection information will then apply to your next visit.
Trademark protection
Any company or trademark mentioned herein is the property of the respective company. The mention of trademarks and names is for informational purposes only.
- special provisions for Russia
For users who are residents of the Russian Federation, the following applies:
The foregoing services on our website are not intended for citizens of the Russian Federation who are residents of Russia.
If you are a Russian citizen resident in Russia, you are hereby expressly informed that any personal information you provide to us through this website is solely at your own risk and responsibility. You further agree that you will not hold us responsible for any failure to comply with any laws of the Russian Federation.
Obligation to provide information on the processing of applicant data pursuant to Article 13 DSGVO
- Summary
We use your data exclusively for the purpose of the recruitment application.
During the application process, you have distinct rights of access: only the person in charge and the person making the hiring decision will see your application documents.
Your application will only be passed on, e.g. for further job offers in our company, with your prior consent.
We will also only include you in our pool of applicants to fill future vacancies with your prior consent.
If you are not hired by us, we will delete your data after four months.
If you are hired, we will transfer the relevant data to your personnel file.
- Data protection of applicant data
Pursuant to Art. 4 No. 1 DSGVO, your personal data includes all information that relates or can be related to your person, in particular by means of assignment to an identifier such as a name or to an applicant number by which your person can be identified internally within the company.
- Personal information and person-related data
Through your application, we receive information (both in paper format and in digital form).
This is the data that you provide to us in the course of your application. These are all the data you provide us with, for example:
- Name
- Address
- Telephone number(s)
- Mail address(es)
- Date of birth
- Details of school education, professional training, further education and qualifications
- Certificates
- Purposes of the collection and processing
We collect, process and use your personal data exclusively for the purpose of the application (= initiation of an employment relationship).
Your data will only be processed for purposes other than those mentioned above if such processing is permissible pursuant to Art. 6 (4) DSGVO and is compatible with the original purposes. We will inform you about these processing operations prior to any such further processing of your data.
- Your data protection rights
You have a right to information about the personal data stored about you, about the purposes of processing, about any transfers to other bodies and about the duration of storage.
To pursue your right to information, you may also receive extracts or copies. If data is inaccurate or no longer necessary for the purposes for which it was collected, you may request that it be corrected, erased or restricted from processing. Where provided for in the processing procedures, you may also inspect your data yourself and correct it if necessary.
If your particular personal situation gives rise to grounds for objecting to the processing of your personal data, you may object to processing insofar as the processing is based on a legitimate interest of ours. In such a case, we will only process your data if there are special compelling interests for this.
If you have any questions about your rights and how to pursue them, please contact the Human Resources Department or the Data Protection Officer.
- Legal requirements for the processing of your personal data
Your data is required for the implementation of pre-contractual measures (Art. 6 para. 1 lit. b DSGVO). This means that we need your data for the purpose of a possible recruitment and thus process it.
Likewise, your personal data may be processed on the basis of applicable laws (Art. 6 para. 1 lit c DSGVO).
In individual cases, we may obtain your consent to the processing or transfer of your data. This may be the case, for example, if your application is to be kept for a longer period of time or if your application is to be considered for another position within our company. In these cases, your consent is voluntary and can be revoked by you at any time for the future.
- Transfer of your personal information
Your data will not be transferred to external bodies.
- Responsible person for the processing of your personal data
The responsible party for the collection, processing and use of your personal data is, unless otherwise contractually agreed,
NIC GmbH
An der Stiftsbleiche 11
87439 Kempten
Germany
The applicant data is stored and processed in personnel data processing systems. The technical installation is designed in such a way that only a narrowly defined group of specially authorised persons is authorised to access the data and any other access or other knowledge of the data is excluded according to the technical state of the art.
- Complaints about the processing of your personal data
If you have any concerns or a question about the processing of your personal data and information, you can contact the Human Resources Department. You can also contact the Data Protection Officer or a data protection supervisory authority using the contact details below.
NIC GmbH
An der Stiftsbleiche 11
87439 Kempen
Germany
Commercial register number: HRB 13638
Managing director: Pete Jendras, Mathew Elenjickal, Stephan Elsasser
Telephone: +49 831 6971745-0
Email: info@nic-place.com
- Duration of storage
Your personal data will only be stored as long as knowledge of the data is necessary for the purposes of the employment relationship or the purposes for which it was collected, or as long as legal or contractual retention requirements exist.
If a contractual relationship does not result, we keep your application data for 4 months for the purposes of AGG verifiability.
If a contractual relationship is established (= employment), we will transfer the necessary information to your personnel file.
Information according to Art. 13 GDPR to new contacts (suppliers or new customers)
Responsibility for data processing
NIC GmbH
An der Stiftsbleiche 11
87439 Kempten
Germany
Purpose of data processing
We process your personal data only in compliance with the relevant data protection regulations. Your data will only be processed if the following legal permissions exist:
– for the fulfilment of our contractual services
– the processing is required by law
– due to our legitimate interests
We use your data to respond to enquiries or to contact you and communicate with you about the relevant matter and to process contracts.
We only store and process your necessary data for the fulfilment of the contract (name, address, contact person) in our CRM/internal administration programmes, e-mail programme, office programmes.
Access to your data is defined according to a rights and roles concept and is only permitted to the group of persons necessary for the respective purpose.
Legal basis of processing
The legal basis for the processing of your personal data is primarily Art. 6 para. 1 lit. b) GDPR. The processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures.
Where applicable, we also base the processing on Art. 6 para. 1 lit f) GDPR. The processing takes place on the basis of legitimate interest. We assume that the processing, for example for communication purposes, is in the best interests of the person concerned.
For certain other processing operations, we also base the processing on your consent (Art. 6 para. 1 lit a) GDPR). In the cases concerned, we obtain your consent separately.
Duration of storage, or criteria for determining the duration
We only retain the data you provide to us for as long as is necessary to fulfil the aforementioned purposes or as stipulated by the various storage periods provided for by law. For example, the retention period for your data can be derived from § 257 of the German Commercial Code (HGB) and § 147 of the German Fiscal Code (AO). Here, every merchant is required to keep commercial books for a period of 10 years and commercial letters (including contract-relevant e-mails) for a period of 6 years. The retention period begins at the end of the calendar year in which the last entry was made in the commercial ledger or the commercial letter was received or sent.
If the respective purpose ceases to apply or after expiry of the relevant periods, your data will be routinely blocked or deleted in accordance with the statutory provisions.
For this purpose, we have created a company-internal deletion and blocking concept to ensure this procedure.
Disclosure of your data to third parties
We only transfer your personal data to third parties if this is permitted by law or if you have given your consent.
Data transfer to a third country or an international organisation
Third countries are countries in which the GDPR is not directly applicable law. This basically includes all countries outside the EU or the European Economic Area.
No data is transferred to a third country or an international organisation without a legal basis.
Revocation
If the processing is carried out on the basis of consent, you have the option of revoking the use of your data for internal purposes at any time with effect for the future. For this purpose, it is sufficient to send an appropriate e-mail to datenschutz@nic-place.com. Of course, you have the option of sending your revocation in writing by post to the following address: NIC GmbH, An der Stiftsbleiche 11, 87439 Kempten, Germany, or contacting us by telephone on +49 831 69 71 745 0.
Reference to the respective data subject rights
You have the right to obtain information about the personal data concerning you. You can also request the correction of incorrect data. Furthermore, under certain conditions, you have the right to have data deleted, the right to restrict data processing and the right to data portability.
Contact details of the data protection officer
E-Mail: datenschutz@nic-place.com
Reference to the right to complain to the supervisory authority
You have the right to complain to the competent data protection supervisory authority if you consider that the processing of your personal data is not lawful.
The address of the supervisory authority responsible for us is:
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 18
91522 Ansbach
Germany
PO Box 1349
91504 Ansbach
Germany
Phone: 0981/180093-0
Fax: 0981/180093-800
poststelle@lda.bayern.de,
https://www.lda.bayern.de
Privacy Policy LinkedIn
Information on data protection
Information about the collection of personal data and contact details of the responsible person
In the following, we inform you about the handling of your personal data. Personal data means any data by which you can be personally identified. Please check carefully which personal data you share with us via the social medium LinkedIn. We expressly point out that LinkedIn stores the data of its users (e.g. personal information, IP address, etc.) and may also use this data for business purposes. You can find more information on LinkedIn’s data processing in LinkedIn’s privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.
We have no influence on the data collection and further processing by LinkedIn. Furthermore, it is not apparent to us to what extent, where and for how long the data is stored, to what extent LinkedIn complies with existing deletion obligations, what evaluations and links are made with the data and to whom the data is passed on. If you would like to avoid LinkedIn processing personal data that you have transmitted to us, please contact us by other means. You can find our full contact details in our imprint on LinkedIn.
The company responsible for data processing within the meaning of the General Data Protection Regulation (DSGVO) is NIC GmbH, An der Stiftsbleiche 11, 87439 Kempten (Allgäu), Germany, Tel.: +49 (0) 831 512 34 33 0, datenschutz@nic-place.de, insofar as we exclusively process the data transmitted to us by you via LinkedIn ourselves.
Insofar as the data you provide to us via LinkedIn is also or exclusively processed by LinkedIn, LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland is also the data controller within the meaning of the General Data Protection Regulation (DSGVO), provided you are a resident of a country of the European Union, Iceland, Liechtenstein, Norway or Switzerland. If you are resident in another country, LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA is also the data controller within the terms of the GDPR in addition to us.
The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
Contact Data Protection
E-Mail: datenschutz@nic-place.de
Contact Data Protection Officer LinkedIn Ireland Unlimited Company
LinkedIn Ireland Unlimited Company or the LinkedIn Corporation can be contacted via the contact form available at the following link:
https://www.linkedin.com/help/linkedin/ask/TSO-DPO
Data processing upon contact
We collect personal data when you contact us, for example, via the contact form or Messenger. Which data we collect when you contact us via the contact form from you can see in the relevant contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal requirements for processing the data are our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f DSGVO. If your contact aims at the conclusion of a contract, additional legal requirements for the processing are Art. 6 para. 1 lit. b DSGVO. Your data will be deleted after we have completed processing your enquiry, provided there are no legal obligations to retain data. We assume that processing is complete when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
Rights of the person concerned
The applicable data protection law grants you broad data subject rights (rights of access and intervention) towards the controller with regard to the processing of your personal data, which we inform you about below:
- Right to access information pursuant to Art. 15 DSGVO;
- Right to rectification pursuant to Art. 16 DSGVO;
- Right to erasure pursuant to Art. 17 DSGVO;
- Right to restriction of processing pursuant to Art. 18 DSGVO;
- Right to be informed pursuant to Art. 19 DSGVO;
- Right to data portability pursuant to Art. 20 DSGVO;
- Right to withdraw consent granted pursuant to Art. 7(3) DSGVO;
- Right to lodge a complaint pursuant to Article 77 DSGVO.
Right to object in general
If we process your personal data within the framework of a balance of interests on the basis of our predominant legitimate interest, you have the right to object to this processing with effect for the future at any time for reasons arising from your particular situation. If you exercise your right to object, we will stop processing the data concerned. However, we reserve the right to continue processing if we can demonstrate compelling legitimate grounds for the processing which override your interests, fundamental rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.
Objection to direct marketing
If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing. You can exercise your right of objection as described above under “Objection in general”. If you exercise your right to object, we will stop processing the data concerned for direct marketing purposes.
Duration of the storage of personal data
The duration of the storage of personal data is determined on the basis of the respective legal requirements, the purpose of processing and – if relevant – additionally on the basis of the respective statutory retention period (e.g. retention periods under commercial and tax law). When processing personal data on the basis of explicit consent pursuant to Art. 6 para. 1 lit. a DSGVO, this data is stored until the person concerned revokes his/her consent. If there are legal retention periods for data that is processed within the scope of legal business or similar obligations on the basis of Art. 6 (1) (b) DSGVO, this data will be routinely deleted after the retention periods have expired, insofar as it is no longer required for the fulfilment of a contract or the initiation of a contract and/or there is no justified interest on our part in continuing to store it.
When processing personal data on the basis of Article 6 (1) (f) of the GDPR, this data is stored until the person concerned exercises his or her right to object pursuant to Article 21 (1) of the DSGVO, unless we can demonstrate predominant legitimate grounds for the processing which override the interests, rights and freedoms of the person concerned, or the processing serves to assert, exercise or defend legal claims. When processing personal data for the purpose of direct marketing on the basis of Art. 6 (1) f DSGVO, this data will be stored until the data subject exercises his or her right to object pursuant to Art. 21 (2) DSGVO. Unless otherwise stated in the miscellaneous information in this declaration on specific processing situations, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.
Privacy policy Xing
Information on data protection
Information about the collection of personal data and contact details of the responsible person
In the following, we inform you about the handling of your personal data. Personal data is all data with which you can be personally identified. Please check carefully what personal data you share with us via the social medium XING, which is operated by XING SE, Dammtorstraße 30, 20354 Hamburg. We expressly point out that XING stores the data of its users (e.g. personal information, IP address, etc.) and may also use this data for business purposes. You can find more information about XING’s data processing in XING’s privacy policy at https://privacy.xing.com/de/datenschutzerklaerung.
We have no influence on the data collection and further processing by XING. Furthermore, it is not apparent to us to what extent, where and for how long the data is stored, to what extent XING complies with existing deletion obligations, what evaluations and links are made with the data and to whom the data is passed on. If you would like to avoid XING processing personal data that you have transmitted to us, please contact us by other means. You can find our full contact details in our imprint on XING.
The company responsible for data processing within the meaning of the General Data Protection Regulation (DSGVO) is NICGmbH, An der Stiftsbleiche 11, 87439 Kempten (Allgäu), Germany, Tel.: +49 (0) 831 512 34 33 0, datenschutz@nic-place.de, insofar as we exclusively process the data transmitted to us by you via XING ourselves.
Insofar as the data you provide to us via XING is also or exclusively processed by XING, XING SE, Dammtorstraße 30, 20354 Hamburg, Germany is also the data controller within the sense of the German Data Protection Regulation (DSGVO) in addition to us.
The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
Contact Data Protection
E-Mail: datenschutz@nic-place.de
Contact Data Protection Officer of XING SE
Dammtorstraße 30, 20354 Hamburg, Germany
E-Mail: Datenschutzbeauftragter@xing.com
Data processing upon contact
We collect personal data when you contact us, for example, via the contact form or Messenger. Which data we collect when you contact us via the contact form from you can see in the relevant contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal requirements for processing the data are our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f DSGVO. If your contact aims at the conclusion of a contract, additional legal requirements for the processing are Art. 6 para. 1 lit. b DSGVO. Your data will be deleted after we have completed processing your enquiry, provided there are no legal obligations to retain data. We assume that processing is complete when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
Rights of the person concerned
The applicable data protection law grants you broad data subject rights (rights of access and intervention) towards the controller with regard to the processing of your personal data, which we inform you about below:
- Right to access information pursuant to Art. 15 DSGVO;
- Right to rectification pursuant to Art. 16 DSGVO;
- Right to erasure pursuant to Art. 17 DSGVO;
- Right to restriction of processing pursuant to Art. 18 DSGVO;
- Right to be informed pursuant to Art. 19 DSGVO;
- Right to data portability pursuant to Art. 20 DSGVO;
- Right to withdraw consent granted pursuant to Art. 7(3) DSGVO;
- Right to lodge a complaint pursuant to Article 77 DSGVO.
Right to object in general
If we process your personal data within the framework of a balance of interests on the basis of our predominant legitimate interest, you have the right to object to this processing with effect for the future at any time for reasons arising from your particular situation. If you exercise your right to object, we will stop processing the data concerned. However, we reserve the right to continue processing if we can demonstrate compelling legitimate grounds for the processing which override your interests, fundamental rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.
Objection to direct marketing
If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing. You can exercise your right of objection as described above under “Objection in general”. If you exercise your right to object, we will stop processing the data concerned for direct marketing purposes.
Duration of the storage of personal data
The duration of the storage of personal data is determined on the basis of the respective legal requirements, the purpose of processing and – if relevant – additionally on the basis of the respective statutory retention period (e.g. retention periods under commercial and tax law). When processing personal data on the basis of explicit consent pursuant to Art. 6 para. 1 lit. a DSGVO, this data is stored until the person concerned revokes his/her consent. If there are legal retention periods for data that is processed within the scope of legal business or similar obligations on the basis of Art. 6 (1) (b) DSGVO, this data will be routinely deleted after the retention periods have expired, insofar as it is no longer required for the fulfilment of a contract or the initiation of a contract and/or there is no justified interest on our part in continuing to store it.
When processing personal data on the basis of Article 6 (1) (f) of the GDPR, this data is stored until the person concerned exercises his or her right to object pursuant to Article 21 (1) of the DSGVO, unless we can demonstrate predominant legitimate grounds for the processing which override the interests, rights and freedoms of the person concerned, or the processing serves to assert, exercise or defend legal claims. When processing personal data for the purpose of direct marketing on the basis of Art. 6 (1) f DSGVO, this data will be stored until the data subject exercises his or her right to object pursuant to Art. 21 (2) DSGVO. Unless otherwise stated in the miscellaneous information in this declaration on specific processing situations, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.
1. Privacy policy Facebook
Information on data protection
Information about the collection of personal data and contact details of the responsible person
In the following, we inform you about the handling of your personal data. Personal data means any data that can be used to identify you personally. Please check carefully what personal data you share with us via Facebook. As long as you are logged into your Facebook account and visit our Facebook profile, Facebook can attribute this to your Facebook profile. We expressly point out that Facebook stores the data of its users (e.g. personal information, IP address, etc.) and may also use this data for business purposes. For more information on Facebook’s data processing, please refer to Facebook’s privacy policy at https://de-de.facebook.com/policy.php.
We have no influence on the data collection and further processing by Facebook. Furthermore, it is not apparent to us to what extent, where and for how long the data is stored by Facebook, to what extent Facebook complies with its deletion obligations, what evaluations and links are undertaken with the data by Facebook and to whom the data is passed on by Facebook. If you would like to avoid Facebook processing personal data that you have transmitted to us, please contact us by other means.
The company responsible for data processing within the meaning of the General Data Protection Regulation (DSGVO) is NIC GmbH, An der Stiftsbleiche 11, 87439 Kempten (Allgäu), Germany, Tel.: +49 (0) 831 512 34 33 0, datenschutz@nic-place.com, insofar as we exclusively process the data transmitted to us by you via Facebook ourselves.
Insofar as the data you provide to us via Facebook is also or exclusively processed by Facebook (Insights data), Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, is also the data controller in terms of the General Data Protection Regulation (GDPR) in addition to us. In this respect, the data processing takes place on the basis of an agreement between jointly responsible parties pursuant to Art. 26 DSGVO, which you can find here: https://www.facebook.com/legal/terms/page_controller_addendum.
Furthermore, a supplementary agreement between us and Facebook Ireland Ltd. as joint controller pursuant to Art. 26 DSGVO applies to the use of certain Facebook products, such as the so-called “Facebook Business Tools”, and to data processing carried out as a result thereof, which can be found here: https://www.facebook.com/legal/controller_addendum
The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
Contact Data Protection
E-Mail: datenschutz@nic-place.de
The Facebook data protection officer
can be contacted via the online contact form provided by Facebook at https://www.facebook.com/help/contact/540977946302970.
Data processing upon contact
We collect personal data when you contact us, for example, via the contact form or Messenger. Which data we collect when you contact us via the contact form from you can see in the relevant contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal requirements for processing the data are our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f DSGVO. If your contact aims at the conclusion of a contract, additional legal requirements for the processing are Art. 6 para. 1 lit. b DSGVO. Your data will be deleted after we have completed processing your enquiry, provided there are no legal obligations to retain data. We assume that processing is complete when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
Data processing for statistical and marketing purposes
Page Insights
Facebook provides us with so-called “page insights” for our Facebook page: https://www.facebook.com Facebook user account at https://www.facebook.com/settings?tab=ads correspond/business/a/page/page-insights. These are aggregated data that allow us to understand how people interact with our site. Page-insights may be based on personal data collected in connection with a visit to or interaction with our site and its content. Pursuant to Art. 6 para. 1 lit. f DSGVO, this serves to protect our predominant legitimate interests in an optimised presentation of our offer and effective communication with customers and interested parties . You can object to the processing of your data for the aforementioned purposes at any time by changing your settings for advertisements in your Facebook user account at: https:\www.facebook.com/settings?tab=ads.
Rights of the person concerned
The applicable data protection law grants you broad data subject rights (rights of access and intervention) towards the controller with regard to the processing of your personal data, which we inform you about below:
- Right to access information pursuant to Art. 15 DSGVO;
- Right to rectification pursuant to Art. 16 DSGVO;
- Right to erasure pursuant to Art. 17 DSGVO;
- Right to restriction of processing pursuant to Art. 18 DSGVO;
- Right to be informed pursuant to Art. 19 DSGVO;
- Right to data portability pursuant to Art. 20 DSGVO;
- Right to withdraw consent granted pursuant to Art. 7(3) DSGVO;
- Right to lodge a complaint pursuant to Article 77 DSGVO.
Right to object in general
If we process your personal data within the framework of a balance of interests on the basis of our predominant legitimate interest, you have the right to object to this processing with effect for the future at any time for reasons arising from your particular situation. If you exercise your right to object, we will stop processing the data concerned. However, we reserve the right to continue processing if we can demonstrate compelling legitimate grounds for the processing which override your interests, fundamental rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.
Duration of the storage of personal data
The duration of the storage of personal data is determined on the basis of the respective legal requirements, the purpose of processing and – if relevant – additionally on the basis of the respective statutory retention period (e.g. retention periods under commercial and tax law). When processing personal data on the basis of explicit consent pursuant to Art. 6 para. 1 lit. a DSGVO, this data is stored until the person concerned revokes his/her consent. If there are legal retention periods for data that is processed within the scope of legal business or similar obligations on the basis of Art. 6 (1) (b) DSGVO, this data will be routinely deleted after the retention periods have expired, insofar as it is no longer required for the fulfilment of a contract or the initiation of a contract and/or there is no justified interest on our part in continuing to store it.
When processing personal data on the basis of Article 6 (1) (f) of the GDPR, this data is stored until the person concerned exercises his or her right to object pursuant to Article 21 (1) of the DSGVO, unless we can demonstrate predominant legitimate grounds for the processing which override the interests, rights and freedoms of the person concerned, or the processing serves to assert, exercise or defend legal claims. When processing personal data for the purpose of direct marketing on the basis of Art. 6 (1) f DSGVO, this data will be stored until the data subject exercises his or her right to object pursuant to Art. 21 (2) DSGVO. Unless otherwise stated in the miscellaneous information in this declaration on specific processing situations, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.
2. Other social media providers
Responsible body
If your personal data is processed by a provider listed below, this provider is responsible for data processing in accordance with the GDPR. For the assertion of your data subject rights, we point out that they can be asserted most effectively with the respective providers. Only they have access to the data collected from you. Should you require any assistance, however, please feel free to contact us at any time.
We have online presences on the social media platforms of the following providers:
Instagram Inc., Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland
Data protection officer
Information on how to contact the data protection officers of the other social media providers can be found here:
Instagram Inc.: https://www.facebook.com/help/contact/540977946302970
Data transfer and recipient
Please note that through the usage of the social media platforms, data might be processed outside the EU and the European Economic Area which means that the European data protection level cannot necessarily be guaranteed.
We have no influence on the processing and handling of your personal data by the respective providers. Nor do we have any information on this matter. For further information please see the privacy policy of the respective provider:
Instagram Data Policy/Opt-out: https://instagram.com/about/legal/privacy/