You are here at the privacy policy for the use of our website www.vertragswerk.de.

If you would like to read the data privacy information of our product app.vertragswerk.de, please click here.

The responsible party in terms of data protection laws, in particular the EU General Data Protection Regulation (DSGVO), is:

v10k GmbH
Managing Director André Engelhorn
Kreyerner Street 4a
01662 Meißen
E-mail: datenschutz@vertragswerk.de

If you have any further questions regarding our handling of your data, please do not hesitate to contact us.

Privacy Policy for the use of the website www.vertragswerk.de

Data protection law is part of our personal rights. Especially in our constantly developing and networked world, the importance of these rights should not be underestimated. For v10k GmbH, data protection law in all its forms and requirements is very important, which is why we take the protection of your data very seriously and always strive to provide an appropriate level of protection on our website www.vertragswerk.de.

You are free to use our website without disclosing your personal data. However, it may be necessary to collect and process your data if you wish to use one of our services, e.g. to create a customer account, via our website. If this is the case and there is no legal basis for this processing, we will always obtain your consent for the respective process.

As the controller, we have implemented numerous technical and organisational measures to ensure the most complete protection of personal data processed through this website. Since, despite all technical precautions, absolute protection cannot be fully guaranteed during data transmission, you are free to transmit your personal data by other means, for example by telephone.

Data protection details

Our data protection declaration should be easy to read and understand for the public as well as for you as our customers and business partners. To ensure this, we would like to explain some of the terms we use that you will come across in this data protection declaration. Terms that require further explanation in terms of their meaning and use have been given their own paragraph (e.g. cookies).

Personal data

Personal data means any information relating to an identified or identifiable natural person (hereinafter „data subject“). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Data subject

A data subject is any identified or identifiable natural person whose personal data is processed by the controller. So, in case of doubt, you are a data subject.

Processing

Processing is any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term processing includes any handling of data, whether collecting, analysing, storing, transmitting or erasing.

Profiling

Profiling is any form of automated processing of personal data which consists of using such personal data to evaluate, analyse or predict certain personal aspects relating to a natural person.

On our website, we do not use profiling to protect your personal data.

Pseudonymisation

Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person.

 

Controller or person responsible for processing

A controller or data processor is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

Processor

Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.

Recipient

Recipient means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party.

Third Party

Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.

Consent

Consent means any freely given specific and informed indication of the data subject’s wishes in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.

Tracking (Engl.: „tracing“)

In the field of online marketing, tracking refers to the recording of the user behaviour of a website visitor. With the help of tracking, it can be traced via which websites a visitor has reached one’s own website, how long the visitor has stayed on the website, which pages have been called up and which IP address the visitor has. In order to obtain this data, cookies are used and evaluated with tools such as Google Analytics. From this, the success of marketing campaigns can be read and measures for their optimisation and adjustments can be derived. With these measures, the website can be made more user-friendly and better tailored to customers.

Reach measurement

The main purpose of reach measurement is to determine the intensity of use, the number of visitors or users of a website and their surfing behaviour statistically – on the basis of a uniform standard procedure. With the help of various tools, website operators can see exactly how many people are reached with a post. It is also possible to determine exactly how often a person clicks on an advertisement, for example, or from which websites, advertisements or articles people reach their own website.

The data required for this is collected and processed in accordance with the DSGVO and German data protection law. Technical and organisational measures ensure that individual users cannot be identified at any time. Data that may have a reference to a specific, identifiable person is anonymised as soon as possible.

Deletion and blocking of personal data

We process and store your personal data only for the period of time required to achieve the purpose of storage or if this has been provided for by the European Directive and Regulation Maker or another legislator in laws or regulations to which we are subject. The criterion for the duration of the storage of personal data is therefore the respective statutory retention period.

If the purpose for which the data is stored no longer applies or if a storage period prescribed by the European Directive and Regulation Maker or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions, provided that they are no longer required for the performance of the contract or the initiation of the contract.

Protection of minors

Consent to the processing of personal data can only be given by a person of legal age. For information society services, the consent of a child is permissible from the age of sixteen in accordance with Art. 8 DSGVO.

Our handling of cookies

Our website is operated using, among other things, cookies. Cookies are text files that are placed and stored on your computer system via your internet browser.

Many websites and servers use cookies. Simply put, cookies serve to give the website a „memory“. They are an essential means for many website operators to provide you, the website visitor, with a smooth and technically flawless experience.

Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited Internet pages and servers to distinguish your individual browser from other Internet browsers that contain other cookies. A specific internet browser can be recognised and identified via the unique cookie ID.

Through the use of cookies, our website can provide you with more user-friendly services that would not be possible without the cookie setting. The following cookie types and functions are distinguished:

Cookies, which are differentiated according to their storage period

Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after you have left an online offer and you have closed the browser.
Permanent cookies: Permanent cookies remain stored even after you close the browser. These are used, for example, to save your login status or to display frequently viewed or popular content.

Cookies that differ according to their origin

First-party cookies: First-party cookies are set by us.
Third-party cookies (also: third-party cookies): Third-party cookies are mainly placed by advertisers (so-called third parties) to process user information.

Cookies that differ according to their purpose

Necessary (required) cookies: On the one hand, cookies may be necessary for the operation of a website (e.g. to store logins or other user input or for security reasons).
Statistical, marketing and personalisation cookies: Cookies may be used in the context of range measurement (web analysis), namely when your interests or behaviour (e.g. viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles are used, for example, to show users content that matches their potential interests. This procedure is also referred to as „tracking“, i.e. tracking the potential interests of users. Insofar as we use such cookies or other „tracking“ technologies, we will inform you separately in our data protection declaration or in the context of obtaining consent directly when you open our website (cookie banner).

Storage period: If we do not specify the storage period for permanent cookies, please allow for a storage period of up to 2 years.

Who we are

The person responsible for this website within the meaning of the General Data Protection Regulation is:

v10k GmbH
Managing Director André Engelhorn
Kreyerner Str. 4a
01662 Meissen

Phone: 0176 / 23 70 27 40

Email: hallo@vertragswerk.de
Website: www.vertragswerk.de

What data and information we collect

Our website collects a series of general data and information from you each time you access the website. This general data and information is stored in the server’s log files. The following can be recorded

(1) browser types and versions used,

(2) the operating system used by the accessing system,

(3) the website from which an accessing system arrives at our website (so-called referrer),

(4) the sub-websites which are accessed via an accessing system on our website,

(5) the date and time of an access to the internet page,

(6) an Internet protocol address (IP address),

(7) the Internet service provider of the accessing system, and

(8) other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

When using these general data and information, our company does not draw any conclusions about you. Rather, this information is required in order to display the contents of our website correctly and also to optimise those contents as well as the advertising for the contents.

Furthermore, we need the above-mentioned information for the permanent functionality of our IT infrastructure and technology of the website. Last but not least, we may need the information to provide necessary data to law enforcement agencies in the event of criminal prosecution.

Therefore, we evaluate this anonymously collected data and information for statistical purposes, on the one hand, and for the optimization of data protection and data security within our enterprise, on the other hand, in order to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from any personal data you provide.

Our website processes data for the following purposes, for example

Provision of our online offer with associated user-friendliness
office and organisational procedures
the performance of contractual services and benefits
administration and answering of enquiries
direct marketing
security measures

The groups of persons concerned, the types of data processed, the specific purpose and the legal basis will be explicitly described to you again in the course of this data protection declaration for the respective processing operation.

What rights do you have?

Within the framework of the General Data Protection Regulation, the European legislator has given you a number of possibilities to assert your rights – also against us. In order to comply with our duty to inform you in this respect, those rights are set out below:

a) Right to confirmation

You have the right to request confirmation from us as to whether your personal data is being processed.

b) Right to information

You have the right to obtain from us, at any time and free of charge, information about the personal data we hold about you (e.g. the purpose of processing or the categories of data processed) and a copy of that information.

c) Right to rectification

You have the right to request that we correct any inaccurate personal data relating to you without undue delay. Taking into account the purposes of the processing, you also have the right to request that incomplete personal data be completed, including by means of a supplementary declaration.

d) Right to erasure (right to be forgotten)

You have the right to demand that we delete your personal data without delay. We are also obliged to delete personal data immediately if there is a reason that does not justify the processing of the data.

e) Right to restriction of processing

You have the right to request us to restrict the processing of your data,

f) Right to data portability

You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transfer this data to another controller without hindrance from us to whom the personal data has been provided.

g) Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO.

We will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or defending legal claims.

h) Right to information and complaint to a supervisory authority

You have the right to contact a supervisory authority with queries about data protection at any time.

If you are of the opinion that the processing of personal data concerning you violates data protection law, you still have the right to file a complaint with a competent supervisory authority.

However, to prevent this from happening in the first place, we would be grateful if we could find a solution together in the event of any disagreements.

i) Right to revoke data protection consent

You have the right to revoke your consent to the processing of personal data at any time.

If you wish to assert the revocation of consent, you can contact the following office at any time:

v10k GmbH
Managing Director André Engelhorn
Kreyerner Str. 4a
01662 Meissen

Telephone: 0176 / 23 70 27 40

Email: datenschutz@vertragswerk.de
Website: www.vertragswerk.de

Provision of the online offer and web hosting

In order to provide our website securely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online offer can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services as well as security services and technical maintenance services.

The data processed on our website may include those details that arise in the course of use and communication. This regularly includes the IP address, which is necessary to display the contents of our online offer, and all entries made within our online offer or from websites.

E-mail dispatch and hosting: We use web hosting services, which include the dispatch, receipt and storage of e-mails. For this purpose, the addresses of the recipients and senders as well as further information regarding the e-mail dispatch (e.g. the providers involved) and the contents of the respective e-mails are processed.

Please note that e-mails are generally not sent encrypted on the Internet. In most cases, e-mails are encrypted on the transport route, but (unless a so-called end-to-end encryption procedure is used) not on the servers from which they are sent and received. We can therefore not assume any responsibility for the transmission path of the e-mails between the sender and the reception on our server.

Collection of access data and log files: We collect data on every access to the server (so-called server log files). The server log files may include the address and name of the web pages and files accessed, the date and time of the access, the amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. In short, server log files record all processes that happen on a website.

Among other things, server log files are used for security purposes by detecting and warding off attacks or to ensure the utilisation of the servers and their stability.

Types of data processed: Content data (e.g. text input, photographs, videos), usage data (e.g. web pages visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Data subjects: Users (e.g. website visitors, users of online services).
Legal grounds: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

You can prevent the setting of cookies by our website at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via your internet browser or other software programmes. This is possible in all common Internet browsers. If you deactivate the setting of cookies in the Internet browser used, it may not be possible to use all the functions, e.g. the display of maps, of the Internet pages you visit to their full extent.

What you can expect on our website

We offer a wide variety of content on our website in order to provide you, the user, with an interesting surfing experience so that you receive a lasting and, above all, positive impression of us and our company. For this purpose, we use various programmes, tools and much more content. In the following, we would like to explain to you what these are in detail.

Contact option via the website

Due to legal regulations, our website contains information that enables a quick electronic contact to our company as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address).

If you contact us by e-mail or via our contact form, the personal data you provide will be stored automatically. Such personal data transmitted by you to us on a voluntary basis will be stored for the purpose of processing or contacting you. This personal data will not be passed on to third parties.

Concrete data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text entries, photographs, videos).

Data subjects: Communication partners.

Purposes of processing: contact requests and communication.

Legal basis: Contract performance and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

We offer a newsletter

On our website you have the possibility to subscribe to our company’s newsletter. Which personal data is transmitted to the controller when you order the newsletter is indicated in the input mask we use. Accordingly, our website only sends newsletters, e-mails and other electronic notifications with your consent or legal permission. In addition, our newsletters contain information about our services and us. To subscribe to our newsletters, it is sufficient to enter your e-mail address. However, we may ask you for a name for the purpose of addressing you personally in the newsletter, or for further details if these are required for the purposes of the newsletter. The collection of this data is necessary in order to be able to trace the (possible) misuse of your e-mail address at a later date and therefore serves as our legal safeguard. The logging of the registration process is therefore carried out on the basis of our legitimate interests for the purpose of proving that the registration process was lawful. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure sending system. Registration for our newsletter is carried out by means of a double opt-in procedure. After sending the newsletter order, you will receive an e-mail in which you must confirm your newsletter registration. Subscriptions to the newsletter are logged in order to be able to prove the subscription process in accordance with legal requirements. The logging includes the storage of the registration and confirmation time and also the IP address.

Contents of our newsletters: Information about v10k GmbH, our services, promotions and offers.

Analysis and performance measurement: The newsletters contain a so-called „tracking pixel“, i.e. a pixel-sized file that is retrieved from our server or the server of our dispatch service provider when the newsletter is opened. Within the scope of this retrieval, technical information such as information on the browser and your system, as well as your IP address and the time of the retrieval, are initially collected. We use this information to continuously improve our newsletter and thus to ensure a satisfactory reading experience for our newsletter subscribers. Among other things, this includes information on, for example, the time at which the newsletter is opened and which links are clicked on. This procedure is in no way used to monitor newsletter subscribers, but rather to evaluate and improve our newsletter.

Concrete data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. email, phone numbers), meta/communication data (e.g. device information, IP addresses).

Data subjects: Communication partners.

Purposes of processing: direct marketing (e.g. by email or post).

Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

Option to object (opt-out): You are entitled at any time to revoke the separate declaration of consent submitted in this regard via the double opt-in procedure. After a revocation, this personal data will be deleted by us. You will find a link to cancel the newsletter either at the end of each newsletter or you can use one of the contact options given above, preferably e-mail, for this purpose.

We automatically interpret a cancellation of the receipt of the newsletter as a revocation. A separate revocation of the performance measurement is unfortunately not possible; in this case, the entire newsletter subscription must be cancelled or must be contradicted.

Our newsletter dispatch service provider:

Sendinblue: Newsletter dispatch service provider, SendinBlue GmbH, Köpenicker Straße 126, 10179 Berlin, subsidiary of the French parent company SendinBlue SAS, 55 rue d’Amsterdam, 75008 Paris, France.

Website: https://de.sendinblue.com/

Privacy policy: https://de.sendinblue.com/legal/privacypolicy/

Cookie policy: https://de.sendinblue.com/legal/cookies/

We use tracking tools

We use web analytics tools on our website, also known as reach measurement, which is used by us to analyse the flow of visitors to our website and which may include your behaviour, interests or demographic information , such as age or gender, as pseudonymous values. With the help of this analysis programme, we can recognise, for example, at what time our online offer or its functions or content are most frequently used or invite re-use. At the same time, we can filter out which areas on our website need revision.

In addition to web analytics, we may also use testing procedures, e.g. to test and optimise different versions of our online offer or its components.

For these purposes, user profiles may be created and stored in a file (so-called „cookie“) or similar procedures may be used with the same purpose. This information may include, for example, content viewed, websites visited and elements used there and technical information such as the browser used, the computer system used and information on usage times. If you have consented to the collection of your location data, this may also be processed, depending on the provider.

Your IP address is also part of the data that is collected and processed by the analysis tool. For your protection, however, we use an IP masking procedure (i.e. pseudonymisation by shortening the IP address). In general, we do not store any clear user data (such as e-mail addresses or names) in the context of web analysis, A/B testing and optimisation, but rather pseudonyms. Accordingly, we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.

Notes on legal basis: If we ask for your consent to use the third-party providers, the legal basis for processing data is consent. Otherwise, your data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and recipient-friendly services). In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.

Matomo: We use the web analysis tool „Matomo“ on our website. The information generated by the cookie about your use of this website is only stored on our server and is not passed on to third parties;

Service provider: Self-hosted web analytics/reach measurement;

Website: https://matomo.org/

Deletion of data: Cookies have a maximum storage period of 13 months.

Specific data processing:

Types of data processed: Usage data (e.g. web pages visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).

Data subjects: Users (e.g. website visitors, users of online services).

Purposes of processing: reach measurement (e.g. access statistics, recognition of returning visitors), tracking (e.g. interest/behaviour-based profiling, use of cookies), visit action evaluation, profiling (creation of user profiles).

Security measures: IP masking (pseudonymisation of the IP address).

Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a DSGVO), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

You can find us on social platforms

You can find us and our company within social networks. For this purpose, we have integrated links to the presences on our website. If you click on the link, you will be forwarded directly to our company page on the respective network. In this way, we process your data in order to communicate with you, provided you are active on the respective platform, or to offer information about us.

It is possible that your data may be processed outside the European Union. This may result in risks for you because, for example, it could make it more difficult to enforce the rights of users. With regard to US providers, we must inform you that at the present time your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of intervention.

Furthermore, your data is usually processed within social networks for market research and advertising purposes. For example, usage profiles can be created based on the usage behaviour and resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements within and outside the networks that presumably correspond to your interests. As a rule, cookies are stored on the user’s computer in which the user’s behaviour and interests are saved. Furthermore, data independent of the devices used by the users may also be stored in the usage profiles (especially if the users are members of the respective platforms and are logged in to them).

For a detailed presentation of the respective forms of processing and the options to object (opt-out), please refer to the data protection declarations and information provided by the operators of the respective networks.

Should you wish to assert information requests or other data subject rights to which you are entitled in this regard, we would like to refer you to the respective providers, as the providers have access to the users‘ data in each case and can take appropriate measures and provide information directly.

If you still need help, then you can contact us.

Facebook: Social network; service provider: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA;

Website: https://www.facebook.com

Privacy policy: https://www.facebook.com/about/privacy

Option to object (opt-out): Settings for advertisements: https://www.facebook.com/settings?tab=ads

Additional information on data protection: Agreement on joint processing of personal data on Facebook pages: https://www.facebook.com/legal/terms/page_controller_addendum

Data protection information for Facebook pages: https://www.facebook.com/legal/terms/information_about_page_insights_data .

Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com

Twitter: social network; service provider: Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA;

Privacy policy: https://twitter.com/de/privacy,

(settings) https://twitter.com/personalization;

LinkedIn: Social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com;

Privacy policy: https://www.linkedin.com/legal/privacy-policy;

Opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Specific data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text entries, photographs, videos), usage data (e.g. websites visited, interest in content, access times),

Meta/communication data (e.g. device information, IP addresses).

Data subjects: Users (e.g. website visitors, users of online services).

Purposes of processing: contact requests and communication, tracking (e.g. interest/behavioural profiling, use of cookies), remarketing, reach measurement (e.g. access statistics, recognition of returning visitors).

Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

You can apply for a job with us

You have the option of applying for vacancies on our website. The application is made by your e-mail including your application documents. We process the applicant data only for the purpose of and within the scope of the application procedure in accordance with the legal requirements. The applicant data is processed to fulfil our (pre)contractual obligations within the scope of the application procedure in accordance with Art. 6 Para. 1 lit. b. DSGVO Art. 6 para. 1 lit. f. DSGVO insofar as the data processing becomes necessary for us, e.g. within the scope of legal procedures (in Germany, § 26 BDSG also applies).

Applicant data usually includes your personal details, postal and contact addresses and the application documents such as cover letter, CV and certificates. In addition, applicants may voluntarily provide us with additional information.

By submitting your application to us, you consent to the processing of your data for the purposes of the application procedure in the manner and to the extent set out in this data protection declaration.

Insofar as special categories of personal data within the meaning of Art. 9 (1) DSGVO are voluntarily disclosed within the scope of the application procedure, their processing is additionally carried out in accordance with Art. 9 (2) lit. b DSGVO (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 (1) DSGVO are requested from applicants as part of the application process, their processing is additionally carried out in accordance with Art. 9 (2) a DSGVO (e.g. health data if this is necessary for the exercise of the profession).

In the event of a successful application, the data provided by you may be further processed by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is unsuccessful, the applicants‘ data will be deleted. Applicants‘ data will also be deleted if an application is withdrawn, which of course you have the option to do at any time.

Subject to a justified withdrawal by the applicants, the deletion will take place after the expiry of a period of six months so that we can answer any follow-up questions about the application and meet our obligations to provide evidence under the Equal Treatment Act.

Application management services from third parties: We use the Empfehlungsbund job advertisement widget of pludoni GmbH (https://www.pludoni.de/impressum) to display job advertisements of our company on certain areas of our web presence (career website). When you visit our careers website, a one-time secure connection is established via HTTPS to https://bms.empfehlungsbund.de. This connection is necessary so that our job advertisements can be displayed. Log files are created that contain access data (name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider). Log files are processed for the purpose of troubleshooting and for security reasons (e.g. to clarify acts of abuse or fraud) and are stored for a maximum period of 3 months and then deleted. Data whose further storage is required for evidentiary purposes is exempt from deletion until the respective incident has been finally clarified. The legal basis according to DSGVO is Art. 6, Para. 1b, or Art. 28 (order processing).

As a contractor, pludoni GmbH processes all data on our behalf. Accordingly, the data processing of your personal data is contractually secured in accordance with data protection.

Website: https://bms.empfehlungsbund.de

Data protection declaration: https://bms.empfehlungsbund.de/datenschutz.

The general data protection declaration of pludoni GmbH can be found at https://bms.empfehlungsbund.de/datenschutz.

Concrete data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), applicant data (e.g. cover letter, curriculum vitae, certificates as well as other information about the person or qualification provided voluntarily by applicants or with regard to a specific position).

Special categories of personal data: Health data (Article 9 (1) GDPR), Data concerning sex life or sexual orientation (Article 9 (1) GDPR), Religious or philosophical beliefs (Article 9 (1) GDPR), Data revealing racial or ethnic origin, Biometric data (Article 9 (1) GDPR), Genetic data (Article 9 (1) GDPR).

Data subjects: Interested parties, applicants, customers, users

Purposes of processing: Recruitment management, in particular for the initiation and implementation of the application procedure, establishment and possible implementation as well as possible subsequent termination of the employment relationship, administration and response to enquiries.

Legal basis: Consent within the meaning of Art. 6 para. 1 p. 1 lit. a DSGVO

We offer a blog

We offer a blog on our website. Your data will be processed for the purposes of the blog only insofar as it is necessary for its presentation and communication between authors and readers or for security reasons. For the rest, we refer to the information on the processing of visitors to our blog in the context of this privacy notice.

You can create a user account

You can create a user account on our website. During the registration process, you will be provided with the required mandatory information and this information will be processed on the basis of Art. 6 (1) lit. b DSGVO for the purpose of providing the user account. The processed data includes in particular the login information (name, password as well as an e-mail address). The data entered during registration is used for the purposes of using the user account and its purpose.

You may be informed of information relevant to their user account, such as technical changes, by e-mail. If you have terminated your user account, your data relating to the user account will be deleted, subject to any legal obligation to retain it. It is your responsibility to back up your data in the event of termination before the end of the contract. We are entitled to irretrievably delete all data stored during the term of the contract.

Within the scope of the use of our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as in your interest to protect against misuse and other unauthorised use. As a matter of principle, this data is not passed on to third parties unless it is necessary for the pursuit of our claims or there is a legal obligation to do so pursuant to Art. 6 Para. 1 lit. c. DSGVO. The IP addresses are anonymised or deleted after 7 days at the latest.

You can use our app.vertragswerk.de application via any (mobile) device. Please note that data processing from a mobile phone, for example, entails a different collection of data than from a PC. It is therefore possible that, due to the software we use, data such as device information, IP addresses or location data of your mobile end device will be collected and processed. This is done on the legal basis of our legitimate interest or your prior consent.

Specific data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. email, phone numbers), content data (e.g. text input, photographs, videos), meta/communication data (e.g. device information, IP addresses).

Data subjects: Users (e.g. website visitors, users of online services).

Purposes of processing: Contractual performance and service, security measures, administration and response to requests.

Legal grounds: Consent (Art. 6 para. 1 p. 1 lit. a DSGVO), Contractual performance and pre-contractual enquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

We offer a chat for communication

A chat is an online conversation conducted with a certain degree of timeliness. A chatbot is software that answers users‘ questions or informs them of messages. When you use our chat features, we may process your personal data.

If you use our chat services within an online platform, your identification number will also be stored within the relevant platform. We may also collect information about which users interact with our chat services and when. Furthermore, we store the content of your conversations via the chat services and log registration and consent processes in order to be able to prove these in accordance with legal requirements.

We draw users‘ attention to the fact that the respective platform provider can find out that and when users communicate with our chat services as well as collect technical information on the device used by the users and, depending on the settings of their device, also location information (so-called metadata) for the purpose of optimising the respective services and for security purposes. Likewise, the metadata of the communication via chat services (i.e. e.g. information on who communicated with whom) may be used by the respective platform providers in accordance with their provisions, to which we refer for further information, for marketing purposes or to display advertising tailored to users.

If users agree with a chatbot to activate information with regular messages, they have the option to unsubscribe from the information at any time in the future. The chatbot informs users how and with which terms they can unsubscribe from the messages. When users unsubscribe from chatbot messages, their data is deleted from the list of message recipients.

We use the aforementioned information to operate our chat services, e.g. to address users personally, to answer their queries, to transmit any requested content and also to improve our chat services (e.g. to „teach“ chatbots answers to frequently asked questions or to identify unanswered queries).

Notes on legal basis: We use chat services on the basis of consent where we have obtained prior permission from users to process their data as part of our chat services (this applies to cases where users are asked for consent, e.g. for a chatbot to send them messages on a regular basis). If we use chat services to answer users‘ enquiries about our services or our company, this is done for contractual and pre-contractual communication. Otherwise, we use chat services on the basis of our legitimate interests in optimising the chat services, their operational efficiency and increasing the positive user experience.

Revocation, objection and deletion: You can revoke any consent given or object to the processing of your data within the scope of our chat services at any time.

Our chat provider:

Sendinblue: chat service provider, SendinBlue GmbH, Köpenicker Straße 126, 10179 Berlin, subsidiary of the French parent company SendinBlue SAS, 55 rue d’Amsterdam, 75008 Paris, France.

Website: https://de.sendinblue.com/

Privacy policy: https://de.sendinblue.com/legal/privacypolicy/

Cookie policy: https://de.sendinblue.com/legal/cookies/

Legal permission for data processing

The following standards may serve v10k GmbH as the legal basis for the processing operations mentioned above:

6 I lit. a DS-GVO, where we obtain your consent for a specific processing purpose.
If the processing of personal data is necessary, for example, due to the performance of a contract between you and us, this processing is justified by Art. 6 I lit. b DS-GVO.
The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of enquiries about our products or services.
If our company is subject to a legal obligation by which the processing of personal data becomes necessary, such as for the fulfilment of tax obligations, the processing is based on Art. 6 I lit. c DS-GVO.
It may happen that the processing of personal data becomes necessary in order to protect your vital interests or the interests of another natural person, Art. 6 I lit. d DS-GVO.
Finally, processing operations could be based on Art. 6 I lit. f DS-GVO. Processing operations are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that your interests, fundamental rights and freedoms are not overridden. Our legitimate interest within the meaning of Article 6 I lit. f DS-GVO is in particular the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.

Obligation to provide personal data

We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). Furthermore, in order to conclude a contract, it may be necessary for you to provide us with personal data that subsequently has to be processed by us. For example, you are obliged to provide us with personal data if our company concludes a contract with you. Failure to provide the personal data would mean that the contract could not be concluded.

Before providing us with your personal data, you should contact one of our employees. Our employee will explain to you on a case-by-case basis whether the provision of your personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

Your contact person in our company

If you have any questions about data protection and the handling of your data on our website and in our company, please feel free to contact us at any time:

v10k GmbH
Managing Director André Engelhorn
Kreyerner Str. 4a
01662 Meissen

Telephone: 0176 / 23 70 27 40

E-mail: datenschutz@vertragswerk.de
Website: www.vertragswerk.de

 

Translated with www.DeepL.com/Translator (free version)