Data protection
(As of May 23, 2018)
1 Introduction
In the following, you will have the opportunity to gain an insight into which personal data we collect from you and in what form we process it. You will also receive an overview of your rights under the applicable data protection law. We will also give you our contact person if you have any questions about data protection.
1.1. your questions
Upon written request, we will inform you about the personal data stored about you. Please send your request to
GEBA mbH
Society for professional development and training mbH
Von-Steuben-Strasse 18
48143 Munster
Our company data protection officer will answer your questions on the subject of data protection. Please send inquiries to datenschutz [at] geba-muenster.de
1.2. Scope of the data protection declaration
The legislature understands the processing of personal data as activities such as collecting, recording, organizing, arranging, storing, adapting or changing, reading out, querying, using, disclosing through transmission, dissemination or any other form of Provision, comparison or linking, restriction, deletion or destruction of personal data.
Personal data is all information that relates to an identified or identifiable natural person.
This data protection declaration is about the personal data of customers, participants, interested parties and applicants.
1.3. Which personal data do we process?
Your personal data is collected by us when you contact us, e.g. as a prospective customer or customer. This can happen, for example, if you contact us via our communication channels, or if you use our services as part of an existing business relationship, or if you are in contact with us as a participant and applicant.
We process the following personal data:
Information on personal identification (e.g. first and last name, address data, email address, telephone number, fax number)
Order data (e.g. customer number, order number, invoice data, bank details)
Company-related data (e.g. company name, department, activity)
Information about your interests and wishes, which you communicate to us (e.g. via our contact form or other communication channels)
Information about your professional career (e.g. vocational training, previous employer, other qualifications)
as well as other information comparable with this data.
1.4. Use of cookies
1.4.1. What are cookies?
Cookies are files that are stored on your computer by a website or customer portals while you are visiting the site. These files store information that will make your use of this site more efficient.
The GEBA mbH website does not use cookies.
1.5.1. Data protection declaration for Youtube
Our website contains the link to YouTube, belonging to Google Inc., based in San Bruno / California, USA. When you call up this link, a connection to the YouTube servers is established. Data is already being transmitted to YouTube. If you are also logged into your YouTube account, you would enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this possibility of assignment if you log out of your account beforehand. Further information on the collection and use of your data by YouTube can be found in the information on data protection there at www.youtube.com.
1.5.2 TidioChat (Tidio Ltd.)
Our website optionally offers the use of TidioChat (a live chat software from Tidio Ltd. 220C Blythe Road, W14 0HH, London, Great Britain). The chat is integrated into the source text via a script. By using this website you automatically use the services of TidioChat. The data collected includes: chat history, IP address at the time of the chat and country of origin. If the information collected in this way is related to a person, it is processed in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interest in effective customer service and the statistical analysis of user behavior for optimization purposes.
To avoid the storage of TidioChat cookies, you can set your Internet browser so that cookies can no longer be stored on your computer in the future or cookies that have already been stored are deleted. Switching off all cookies can, however, mean that some functions on our website can no longer be carried out. You can object to the collection and storage of data for the purpose of creating a user profile at any time with effect for the future by sending us your objection informally by email to the email address given in the legal notice.
The purpose and scope of the data collection and the further processing and use of the data by TidioChat as well as your related rights and setting options for the protection of your privacy can be found in the data protection information of Tidio Ltd .: https://www.tidiochat.com/en/privacy-policy .
1.6. What do we process your personal data for and what is the legal basis for this?
1.6.1. Contract performance
We process your data in order to fulfill our contracts / orders. This also applies to information that you give us in the context of possible correspondence. The specific purposes of data processing depend on the respective status of the cooperation.
1.6.2. Execution of the contractual relationship
To carry out the contractual relationship with you, we need z. B. Your name, your address, your telephone number or your e-mail address so that we can contact you.
1.6.3. Implementation of the application process
We process the data you sent us as part of your application in order to check whether your professional qualifications are suitable for the advertised position. We only use your information for the application process and transfer it to your personnel file when you conclude a contract. If there is no contractual relationship, your information will be deleted or destroyed. We will not use your applicant information for any other purpose than to carry out the application process.
1.6.4. Based on your consent
If you have consented to the processing of your personal data for one or more specific purposes, the processing of your data by us is permitted. You can revoke this consent for the future at any time. The revocation of the consent does not affect the legality of the processing of your data up to the time of revocation.
1.6.5. Due to legal requirements or in the public interest
As a company, we are subject to a wide variety of legal requirements (e.g. from tax law). We process your personal data in order to be able to meet our legal obligations.
1.7. Where do we transfer data to and why
1.7.1. Use of data within GEBA mbH
Within GEBA mbH, only those departments have access to your personal data that need it to fulfill our contractual, contractual or legal obligations or to protect our legitimate interests.
1.7.2. Use of data outside of GEBA mbH
We respect the protection of your personal data and only pass on information about you if this is required by law, if you have given your consent, or to fulfill contractual obligations.
For the following recipients, there is a legal obligation to pass on your personal data, for example:
Public bodies or supervisory authorities, e.g. tax authorities,
Judicial and law enforcement authorities, e.g. police, courts, public prosecutor's office;
Lawyers or notaries, e.g. in litigation;
For the following recipients, a contractual obligation to pass on your personal data comes into consideration, for example:
Federal agency for work,
Job center of the employment agency and the optional municipalities,
State and federal ministries,
BAMF
1.8. Are you obliged to provide us with personal data?
As part of the cooperation between you and GEBA mbH, we need the following categories of personal data from you:
all data that are necessary for the establishment and implementation of a business relationship or the use of our services;
Data that are required to fulfill contractual obligations,
Data that we are legally obliged to collect.
Without this data it is not possible for us to enter into or carry out contracts / orders.
1.9. Deletion periods
In accordance with the applicable data protection regulations, we do not store your personal data longer than we need it for the purposes of the respective processing. If the data are no longer required to fulfill contractual or legal obligations, they will be deleted by us on a regular basis, unless their temporary storage is still necessary. The following reasons may exist for further storage:
Legal and tax retention obligations must be complied with: The retention periods are up to 10 years. If EU law has to be used, the period can be up to 15 years.
To obtain evidence in the event of legal disputes within the framework of the statutory statute of limitations: Limitation periods in civil law can be up to 30 years, whereby the regular limitation period occurs after three years.
2. Your rights
You also have certain rights when processing your personal data. More details can be found in the relevant provisions of the General Data Protection Regulation (GDPR) in Articles 15 to 21.
2.1. Right to information and rectification
You have the right to receive information from us about which of your personal data we are processing. If this information is incorrect or no longer correct, you can request us to correct the data, and if the information is incomplete, add it. If we have passed on your data to third parties, we will inform them in the appropriate legal situation.
2.2. Right to cancellation
You can request the immediate deletion of your personal data under the following circumstances:
When your personal data is no longer required for the purposes for which it was collected;
If you have withdrawn your consent and there is no other legal basis for data processing;
If you object to the processing and there are no overriding legitimate reasons for data processing;
If your data is processed unlawfully;
If your personal data have to be deleted to comply with legal obligations.
2.3. Right from restriction of processing
You can request that we restrict the processing of your personal data for one of the following reasons:
If you dispute the accuracy of the data until we have had the opportunity to convince ourselves of the accuracy of the data;
If the data is processed unlawfully, but instead of deleting it, you only request that the use of personal data be restricted;
If we no longer need the personal data for processing purposes, but you still need them to assert, exercise or defend legal claims;
If you have objected to the processing and it has not yet been determined whether your legitimate interests outweigh ours.
2.4. Right to object - right to object on a case-by-case basis
If the processing is carried out in the public interest or on the basis of a balancing of interests, you have the right to object to the processing for reasons that arise from your particular situation. In the event of an objection, we will no longer process your personal data unless we can prove compelling legitimate reasons for processing your data that outweigh your interests, rights and freedoms, or because your personal data is required to assert, exercise or defend legal claims serve. The objection does not conflict with the legality of the processing carried out before the objection.
2.5. Right to data portability
You have the right to receive personal data that you have given us for processing in a machine-readable format on request.
2.6. Right to complain to the supervisory authority (Art. 77 GDPR)
We will always process your inquiries and claims as quickly as possible in order to protect your rights accordingly. In some cases we may or may not be able to provide you with any information. If legally permissible, we will inform you of the reason for the refusal to provide information.
If you are still not satisfied with our answers and reactions or if you are of the opinion that we are violating applicable data protection law, you are free to lodge a complaint with our data protection officer as well as with the responsible supervisory authority. The supervisory authority responsible for us is:
State Commissioner for Data Protection and Freedom of Information
North Rhine-Westphalia
P.O. Box 20 04 44
40102 Düsseldorf
Tel .: 0211 / 38424-0
Fax: 0211 / 38424-10
Email: poststelle [at] ldi.nrw.de