DATA PRIVACY

Thank you for your interest in using our website. The protection of personal data is our top priority. Below you will find information about the processing of your personal data and about your rights in connection with the use of our website.

Personal data protection for online services

1. Person responsible

Responsible for data processing is:

TROESTER GmbH & Co KG
Am Brabrinke
30519 Hanover
Phone: + 49 511 8704 0
E-mail: datenschutz@troester.de

To exercise your rights as a data subject, please contact us directly at datenschutz@troester.de or by posting to the address given in the imprint.

However, we ask you to contact our data protection officer beforehand. An external data protection officer has been appointed for our company. Please refer to https://www.dtnschtz.de/kontakt/ for the current contact details of our appointed data protection officer.

2. Your data subject rights

As a data subject, you have the following rights under the General Data Protection Regulation (GDPR), provided that their respective legal requirements are met:

Right of objection

  • Individual right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data which is carried out on the basis of Article 6 (1) sentence 1 e) DSGVO or Article 6 (1) sentence 1 f) DSGVO; this also applies to profiling based on these provisions. We will then no longer process this personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

  • Right to object to processing of data for direct marketing purposes.

In individual cases, we process your data in order to conduct direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising.  This also applies to profiling, insofar as it is related to such direct advertising. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

Information:

You have the right to obtain information about the data we have processed about you.

Correction:

You can request the correction of incorrect data concerning your person. In addition, you can request the completion of incomplete data.

Deletion:

In certain cases, you may request the deletion of your personal data.

Restriction of processing:

In certain cases, you can request that we restrict the processing of your data.

Data portability:

If you have provided us with data on the basis of a contract or consent, you may request that you receive the data you have provided in a structured, common and machine-readable format or that we transfer it to another controller.

Withdrawal of consent:

If you have given us consent to process your data, you can revoke this consent at any time with effect for the future. The lawfulness of the processing of your data until the revocation remains unaffected. You can also declare a revocation in addition to the ways mentioned under “Assertion of your rights” in accordance with the respective instructions on “Exercising the revocation” in the section “Services & Cookies”.

Exercising your rights:

To exercise all of your aforementioned rights, please contact us at datenschutz@troester.de or by mail at the address provided in section 1 above. In doing so, please ensure that we are able to clearly identify you.

Right to complain to the supervisory authority:

You have the right to lodge a complaint with a data protection supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data concerning you is unlawful.

You can contact us free of charge if you have any questions about the processing of your personal data, your data subject rights and any consent you may have given. To exercise all of your aforementioned rights, please contact us at datenschutz@troester.de or at the offices indicated above in section 1. In doing so, please ensure that we are able to clearly identify you.

3. details about services, cookies & co.

3.1 Own services

3.1.1 Log files

Data categories:
URL accessed, IP address of the user, time and date of access, amount of data transferred, Internet page from which the user came to the requested page (so-called “referrer”), Internet page accessed by the user’s system via our website, http status, information about the browser type and version used, user’s operating system, user’s Internet service provider.

Purpose(s):
Statistical analysis, improvement of the website, system security (e.g. prevention of misuse), error diagnosis.

Legal basis(s):
Article 6(1)(f) DSGVO.

Pursued legitimate interests, if applicable:
See purposes

Recipients or categories of recipients:
Hosting provider, internal departments, external service provider for technical support, government agencies upon request.

Storage periods or criteria for determining them:
7 days after creation

3.1.2 Contact form

Data categories:
Name, e-mail address, telephone number, your question

Purpose(s):
Receiving and processing inquiries, complaints or other feedback.

Legal basis(s):
Article 6(1)(b)or (f) DSGVO.

Possible legitimate interests pursued:
See purposes

Recipients or categories of recipients:
Hosting provider, internal departments, external service provider for technical support, government agencies upon request.

Storage periods or criteria for determining them:
We store your personal data only for as long as is necessary to achieve the above-mentioned purposes, or as required by the storage periods specified by law.  After the purpose has ceased to exist or the periods have expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.

3.1.3 Application

Data categories:
Name, e-mail address, telephone number, resume, cover letter, your question or comment.

Purpose(s):
Receiving and processing applications

Legal basis(s):
Article 6(1)(f) DSGVO.

Possible legitimate interests pursued:
See purposes

Recipients or categories of recipients:
HR department, specialist departments

Storage periods or criteria for determining them:
We store your personal data only for as long as is necessary to achieve the above-mentioned purposes. After 4 months, the records of unsuccessful applicants:inside are deleted; if hired, the data are transferred to the personnel file. or as required by the storage periods stipulated by law. After the purpose has ceased to exist or the time limits have expired, the relevant data will be routinely blocked or deleted in accordance with the statutory provisions.

3.1.4 Press mailing list

Data categories:
User name/ e-mail address, password

Purpose(s):
Sending press releases and press material

Legal basis(s):
Article 6(1)(a) DSGVO

Recipients or categories of recipients:
Marketing department, press officer

Storage periods or criteria for determining them:
Until revoked by unsubscribing

If applicable, exercise of revocation:
Unsubscribe link in each newsletter

3.2 Integration of third-party services

In some cases, we are a joint controller with a third-party service provider. This may be the case both with the integration of their services on our website, as well as with our presences in the offer of the third party. For detailed information on the nature, scope, purposes, and legal basis in connection with these services, please refer to the following explanations. Information on the data processing of the respective third-party provider can be found in their data protection notices. You can assert your rights as a data subject both against us and directly against the respective service provider. The service provider will be able to react more quickly regarding the processes for which it is responsible, which is why we recommend direct contact with it.

3.2.1 Google Analytics

Provider/Receiver:
Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA

Purpose(s):
Analysis of website usage, improvement of the platform and the content offered.

Legal basis(s):
Article 6(1)(a) DSGVO

Privacy policy of the provider

  • Google Privacy Policy (https://www.google.com/analytics/terms/de.html)
  • Protection and security of your data (https://support.google.com/analytics/answer/6004245?hl=de)
  • Browser add-on to disable Google Analytics (https://tools.google.com/dlpage/gaoptout?hl=de)

3.2.2 Vimeo videos

Provider/Receiver:
Vimeo Inc, Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA

Purpose(s):
Display of Vimeo videos

Legal basis(s):
Article 6 (1) (f) DSGVO

Legitimate interests pursued, if any:
Enabling the viewing of Vimeo videos.

Privacy policy of the provider:
https://vimeo.com/privacy

Further notes:
The integration is carried out by the “extended data protection mode” of Vimeo.

3.2.3 OpenStreetMap

This website uses Leaflet API, a map service that allows OpenStreetMap – the open source alternative of Google Maps – to be integrated into the website. For the correct display, it is necessary from a technical point of view to make requests to other servers. Through these requests, it would be possible in principle that information about your use of this website (including your IP address) is transmitted to other servers and stored there. The other servers are limited to maps.wikimedia.org (map layers) and unpkg.com (leaflet files) after analysis by the developer tools.

You have the option to disable OpenStreetMap’s service and thus prevent data transfer to third parties by disabling JavaScript in your browser. However, we would like to point out that in this case you will not be able to use the map display on our pages, or only to a limited extent.

Openstreetmap is used in the interest of enhancing our online offering. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO.

More information about OpenStreetMap can be found at https://www.openstreetmap.de. More information about the API Leaflet used can be found at https://www.leafletjs.com.

3.3 Cookies

On troester.de we use cookies in order to offer a comprehensive range of functions, to make use more comfortable and to be able to optimize our offers. Cookies are small text files that are generated by a web server and stored on your computer by means of the web browser used during your online visit.

On the one hand, we use so-called “session cookies”. These are automatically deleted after the end of your browser session.

We also use long-term cookies, which are primarily used to provide you, as a visitor to our website, with permanently recurring settings.  This enables us to adapt our website individually to your wishes. Long-term cookies also allow us to analyze the usage behavior of visitors, but only within the scope of the cookie’s validity period.

Furthermore, in connection with the integration of certain third-party services (see above), additional cookies may be set by their providers (so-called “third-party cookies”).

If you do not wish cookies to be used, you can prevent cookies from being stored on your device by making the appropriate settings in your Internet browser. Please note that the functionality and scope of functions of our offer may be limited as a result. In addition, we will only set certain cookies if you have previously consented to this. You can also make use of separate objection options for certain cookies.

The legal basis for the processing of personal data using cookies is Art. 6 (1) lit. f DSGVO.

3.4 Services jointly responsible with third-party providers.

In some cases, we are jointly responsible with a third-party provider. This may be the case when integrating their services on our website, as well as with our presences in the third party’s offer. You can find information on the data processing of the respective third-party provider in their data protection notices. You can assert your rights as a data subject both against us and directly against the respective service provider. The service provider will be able to react more quickly with regard to the processes for which it is responsible, which is why we recommend direct contact with it.

4 Recipients of personal data

4.1 Internal recipients

Only those persons who need access to the data for the purposes mentioned under point 4. will have access to it.

4.2 Joint responsibility

In the case of data processing carried out under joint responsibility pursuant to Article 26 DSGVO, TROESTER GmbH & Co. KG recipient.

4.3 External recipients

We only share your personal data with external recipients if this is necessary to process or handle your request, if there is another legal permission or if we have your consent for this.

5.3.1 External recipients may be:

a) Order processors

External service providers that we use to provide services, for example in the areas of technical infrastructure and maintenance or the provision of content relevant to agreements and contracts. These processors are carefully selected and regularly reviewed by us to ensure that the protection of your personal data is maintained. The service providers may only use the data for the purposes specified by us.

b) Public authorities

Authorities and government institutions, such as public prosecutors, courts or tax authorities, to which we must transfer personal data for legally compelling reasons.

c) Other bodies

Cooperation partners to whom data is transferred on the basis of consent or a legal basis.

5. data processing in third countries

If data is transferred to entities whose registered office or place of data processing is not located in a member state of the European Union or in another state party to the Agreement on the European Economic Area, we will ensure prior to the transfer that, outside of exceptional cases permitted by law, either an adequate level of data protection exists at the recipient (e.g., through an adequacy decision of the European Commission, through appropriate safeguards or the agreement of so-called EU standard contractual clauses of the European Union with the recipient) or your sufficient consent has been obtained.

You can obtain from us an overview of the recipients in third countries and a copy of the specifically agreed arrangements to ensure the appropriate level of data protection. Please use the information in section 1 for this purpose.

6. status 

The current version of this data protection declaration applies, version 1.1. as of 17.05.2022.