6. PROVISION OF THE WEBSITE AND SERVER LOG FILES
6.1 Description of processing
Each time you visit the website, we automatically collect information that your browser transmits to our server. This includes the following data:

• IP address
• Browser software used, as well as its version and language
• The website from which visitors accessed the website (known as the referrer)
• The date and time of the visit to the website

This information is also stored in our system’s log files. The temporary storage of your IP address by the system is necessary in order to deliver our website to the user’s device. For this purpose, the user’s IP address must remain stored for the duration of the session. Your IP address is also recorded in the log files for security reasons to defend against attacks on our website (in particular so-called DDos attacks) and to prevent fraud.

6.2 Purpose
The processing is carried out to enable the website to be accessed and to ensure its stability and security. In addition, the processing serves the statistical evaluation and improvement of our online offering.

6.3 Legal basis
1.1 The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 (1) (f) GDPR). Our legitimate interest lies in the purpose specified in section 6.2.

6.4 Storage period
The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. In the case of data collection for the provision of the website, this is the case when the respective session has ended. The log files are deleted after 30 days.

7. COOKIES
7.1 Description of processing
Our website uses cookies. Cookies are small text files that are stored on the user’s device when they visit a website. Cookies contain information that enables the recognition of a device and, if necessary, certain functions of a website. We distinguish between our own cookies and external, so-called third-party cookies. Our website uses so-called “session cookies” and “persistent cookies.” “Session cookies” are automatically deleted when you end your Internet session and close your browser. Persistent cookies remain stored on your device for a longer period of time. We only use cookies that are technically necessary for the operation of our site. No consent is required for these cookies. If cookies are technically necessary for the operation of our site, your consent is not required. All other cookies that are not technically necessary are only set after you have actively consented to the use of cookies via our consent tool. We use the service to obtain and document consent. The consent tool stores your selection in a cookie on your device. This means that you do not need to make a decision about cookies again when you visit our website again.

The following overview shows which cookies are used on our website, for what purpose, how long they are stored on your device, and what consent you may have already given.

7.2 Purpose
We use cookies to make our website more user-friendly and to offer the functions described in section 7.1.

7.3 Legal basis
The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 (1) (f) GDPR). Our legitimate interest lies in the purpose specified in section 7.2.

7.4 Storage period
Cookies are automatically deleted at the end of a session or when the specified storage period expires. Since cookies are stored on your device, you as the user have full control over the use of cookies. You can deactivate or restrict the transfer of cookies by changing the settings in your internet browser. Cookies that have already been stored can be deleted. This can also be done automatically. If cookies are deactivated, deleted, or restricted for our website, it may be the case that individual functions of our website cannot be used or can only be used to a limited extent.

7.5 Recipients
When cookies are used, data may be transmitted to the respective providers of these third-party services. In some circumstances, this may also involve transmission to third countries outside the European Union or the European Economic Area. We provide information about the recipients of data and third-country transmission in the relevant section on third-party services in these data protection provisions.

8. CONTACT BY E-MAIL
8.1 Description of processing
You can also contact us via the email addresses provided on the website. To contact us, you can write to us at the email address provided on the website. In this case, we will process the personal data transmitted with the email.

8.2 Purpose
The data transmitted with and in your email will be used exclusively for the purpose of processing and responding to your request.

8.3 Legal basis
The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 (1) (f) GDPR). Our legitimate interest lies in the purpose specified in section 8.2. If the email contact is aimed at concluding or fulfilling a contract, the data processing is carried out for the purpose of fulfilling the contract (Art. 6 (1) (b) GDPR).

8.4 Storage period
We delete the data as soon as it is no longer necessary for the purpose for which it was collected. This is usually the case when the respective communication with you has ended. Communication is terminated when it can be inferred from the circumstances that your request has been conclusively clarified. If statutory retention periods prevent deletion, deletion will take place immediately after the statutory retention period has expired.

9. FONT AWESOME
Our website uses “Font Awesome,” a service for displaying and integrating icons developed by Fonticons, Inc. We operate Font Awesome exclusively as an installation on our own server. Therefore, the use and display of icons does not involve any data transfer to Fonticons, Inc..

10. FONT REPLACEMENT
When displaying our website, the standard fonts on your device are replaced by fonts. This is done to make the text on our website more readable and aesthetically appealing. We have opted for a privacy-friendly solution for font replacement. We do not integrate any external services, such as Google Fonts or Adobe Fonts. Instead, we store the fonts to be replaced locally on our server. This has the advantage that when you visit our site, your browser does not send any requests to external font replacement services and therefore no data, in particular your IP address in connection with the address of our website, is transmitted to third parties.

11. EXTERNAL LINKS
Our website contains links to external websites. Clicking on such a link does not result in any data processing on our website. The respective operator is responsible for data processing on the linked websites.

12. PROCESSING OF APPLICATION DATA
12.1. Description of processing
We process the data you provide in connection with your application in order to assess your suitability for the position (or other open positions in our company, if applicable) and to carry out the application process. This includes general data about you (such as your name, address, and contact details), information about your professional qualifications and education, information about professional training, knowledge, and skills, as well as other information that you disclose to us in connection with your application. This is usually done through your application letter, resume, references, correspondence, and information provided by you over the phone or in person.

We want to evaluate all applicants solely on the basis of their qualifications and therefore ask you to refrain from including “special categories of personal data” as defined in Article 9 of the General Data Protection Regulation in your application (e.g., a photo that reveals your ethnic origin, information about severe disability, etc.). If your application contains such information, we ask you to send us a corresponding declaration of consent, as otherwise your application cannot be considered.

If your application is successful, we will transfer your data to your personnel file and use it to carry out and terminate your employment relationship.

If we are unable to offer you employment at this time, we will continue to process your data even after sending you a rejection letter in order to defend ourselves against any legal claims, in particular those relating to alleged discrimination in the application process.
If you are not selected for the vacant position, we will transfer your data to our applicant pool, provided we have your consent to do so.

12.2. Purpose
The processing is carried out for the purpose of conducting the application process, deciding on the establishment of an employment relationship with us, and documenting compliance with legal requirements in the application process.

12.3. Legal basis
The legal basis for data processing in connection with the application process is § 26 (1) sentence 1 BDSG and Art. 6 (1) (b) GDPR. If your application is successful, further data processing will be carried out in accordance with Art. 6 (1) sentence 1 lit. b GDPR in conjunction with Art. 88 (1) GDPR in conjunction with § 26 (1) BDSG for the purpose of establishing, implementing, and terminating the employment relationship. If you have given your consent, e.g. to include your data in our applicant pool, data processing will be carried out on the basis of Art. 6 (1) (1) (a) GDPR. The legal basis for data processing after a rejection is Art. 6 (1) (1) (f) GDPR. Our legitimate interest lies in defending ourselves against legal claims.

12.4. Storage period
If your application is successful, your data will be transferred to your personnel file and deleted in accordance with the regulations applicable to personnel files. If we are currently unable to offer you employment, we will continue to process your data for up to six months after sending the rejection. If we transfer your data to our applicant pool after completion of the application process, we will delete it in the event of a subsequent establishment of an employment relationship or otherwise two years after its inclusion in the applicant pool.

12.5. Recipients of your data, transmission of data to third parties and transfer to third countries
Your application data will be reviewed by the Human Resources department after we receive your application. Suitable applications will then be forwarded internally to the department managers responsible for the respective open position. The next steps will then be coordinated. Within the company, only those persons who need your data for the proper execution of our application process have access to it. Your data will not be transferred to third parties. Nor will your data be transferred to third countries, nor are there any plans to do so