DATA PROTECTION
PRIVACY POLICY
We only process personal data (hereinafter mostly referred to as "data") to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there. The processing of our users' personal data usually only takes place with the user's consent. An exception applies in cases where prior consent cannot be obtained for actual reasons and the processing of the data is permitted by law.
According to Article 4(1) of Regulation (EU) 2016/679, the General Data Protection Regulation (hereinafter referred to as “GDPR”), “processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, comparison or linking, restriction, erasure or destruction.
With the following data protection declaration, we inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, insofar as we decide on the purposes and means of processing either alone or jointly with others. In addition, we inform you below about the third-party components we use for optimization purposes and to improve the quality of use, insofar as third parties process data under their own responsibility.
Our privacy policy is structured as follows:
I. Information about us as responsible parties
II. Rights of users and data subjects
III. Information on data processing
I. INFORMATION ABOUT US AS RESPONSIBLE
The responsible provider of this website in terms of data protection law is:
MG works GmbH
Gutenbergstraße 2
71549 Auenwald
Phone: +49 (0) 7191 / 90 601 49
Email: info@mgworks.de
LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
If we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
If personal data is necessary to fulfill a contract to which the data subject is a party, Art. 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 (1) (c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) (d) GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for processing.
II. RIGHTS OF USERS AND DATA SUBJECTS
With regard to the data processing described in more detail below, users and data subjects have the right to
-
confirmation as to whether data concerning them is being processed, to information about the data being processed, to further information about the data processing and to copies of the data (see also Art. 15 GDPR);
-
rectification or completion of incorrect or incomplete data (see also Art. 16 GDPR);
-
the immediate erasure of data concerning them (see also Art. 17 GDPR), or, alternatively, if further processing is necessary pursuant to Art. 17 Para. 3 GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
-
receive the data concerning them and provided by them and to transmit this data to other providers/controllers (see also Art. 20 GDPR);
-
lodge a complaint with the supervisory authority if they are of the opinion that the data concerning them is being processed by the provider in violation of data protection regulations (see also Art. 77 GDPR).
Furthermore, the provider is obliged to inform all recipients to whom data has been disclosed by the provider of any rectification or erasure of data or restriction of processing carried out pursuant to Articles 16, 17 (1) and 18 of the GDPR. However, this obligation does not apply if this notification is impossible or involves disproportionate expenditure. Notwithstanding this, the user has a right to information about these recipients.
In order to ensure that data can be blocked at any time, this data must be kept in a blocking file for control purposes. You can also request that the data be deleted, provided there is no legal obligation to archive it. If such an obligation exists, we will block your data on request.
Likewise, according to Art. 21 GDPR, users and data subjects have the right to object to the future processing of data concerning them, provided that the data is processed by the provider in accordance with Art. 6 (1) (f) GDPR. In particular, an objection to data processing for the purposes of direct advertising is permissible.
III. INFORMATION ON DATA PROCESSING
Your data processed when you use our website will be deleted or blocked as soon as the purpose of storage no longer applies, there are no statutory retention periods that prevent the deletion of the data and no other information is provided below regarding individual processing procedures. Storage may also take place if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject.
SERVER DATA
For technical reasons, in particular to ensure a secure and stable Internet presence, data is transmitted to us or to our web space provider through your Internet browser. These so-called server log files collect, among other things, the type and version of your Internet browser, the operating system, the website from which you accessed our Internet presence (referrer URL), the website(s) of our Internet presence that you visit, the date and time of each access, and the IP address of the Internet connection from which you access our Internet presence.
The data collected in this way will be stored temporarily, but not together with other data about you.
This storage is carried out on the legal basis of Art. 6 Paragraph 1 Letter f) GDPR. Our legitimate interest lies in the improvement, stability, functionality and security of our website.
The data will be deleted after seven days at the latest, unless further storage is required for evidentiary purposes. Otherwise, the data will be wholly or partially exempt from deletion until the incident has been finally resolved.
COOKIES
A) SESSION COOKIES
We use so-called cookies on our website. Cookies are small text files or other storage technologies that are stored on your device by the Internet browser you use. These cookies process certain information about you on an individual basis, such as your browser or location data or your IP address.
This processing makes our website more user-friendly, effective and secure, as the processing enables, for example, the reproduction of our website in different languages or the offer of a shopping cart function.
The legal basis for this processing is Art. 6 Para. 1 lit b.) GDPR, provided that these cookies process data for the purpose of initiating or executing a contract.
If the processing does not serve to initiate or execute a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR.
When you close your Internet browser, these session cookies are deleted.
B) THIRD-PARTY COOKIES
Our website may also use cookies from partner companies with whom we work for the purposes of advertising, analysis or the functionality of our website.
For details, in particular the purposes and legal basis for processing such third-party cookies, please see the information below.
C) POSSIBILITY OF REMOVAL
You can prevent or restrict the installation of cookies by adjusting the settings on your Internet browser. You can also delete cookies that have already been saved at any time. The steps and measures required to do this depend on the specific Internet browser you are using. If you have any questions, please use the help function or documentation for your Internet browser, or contact the manufacturer or support. However, in the case of so-called Flash cookies, processing cannot be prevented via the browser settings. Instead, you must change the settings on your Flash player. The steps and measures required to do this also depend on the specific Flash player you are using. If you have any questions, please use the help function or documentation for your Flash player, or contact the manufacturer or user support.
However, if you prevent or restrict the installation of cookies, this may mean that not all functions of our website are fully usable.
CONTACT ENQUIRIES / CONTACT OPTIONS
If you contact us via the contact form or email, the data you provide will be used to process your request. Providing the data is necessary to process and answer your request - without providing it, we cannot answer your request or can only answer it to a limited extent.
The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.
Your data will be deleted if your request has been conclusively answered and there are no statutory retention periods that prevent deletion, such as in the case of any subsequent contract processing.
ONLINE JOB APPLICATIONS / PUBLICATION OF JOB ADVERTISEMENTS
We offer you the opportunity to apply to us via our website. With these digital applications, your applicant and application data will be collected and processed electronically by us to handle the application process.
The legal basis for this processing is Section 26 Paragraph 1 Sentence 1 BDSG in conjunction with Article 88 Paragraph 1 GDPR.
If an employment contract is concluded after the application process, we will store the data you submitted during the application process in your personnel file for the purposes of the usual organizational and administrative process – of course in compliance with any further legal obligations.
The legal basis for this processing is also Section 26 Paragraph 1 Sentence 1 BDSG in conjunction with Article 88 Paragraph 1 GDPR.
If an application is rejected, we automatically delete the data sent to us two months after notification of the rejection. However, the data will not be deleted if the data requires longer storage of up to four months or until the conclusion of legal proceedings due to legal provisions, e.g. due to the burden of proof under the General Equal Treatment Act (AGG).
The legal basis in this case is Art. 6 Para. 1 lit. f) GDPR and Section 24 Para. 1 No. 2 BDSG. Our legitimate interest lies in legal defense and enforcement.
If you expressly consent to your data being stored for a longer period, e.g. for your inclusion in an applicant or prospective customer database, the data will be further processed based on your consent. The legal basis is then Art. 6 Para. 1 lit. a) GDPR. However, you can of course revoke your consent at any time in accordance with Art. 7 Para. 3 GDPR by notifying us with effect for the future.
We maintain an online presence on LinkedIn to present our company and our services and to communicate with customers/prospects. LinkedIn is a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA.
In this respect, we would like to point out that it is possible that user data may be processed outside the European Union, particularly in the USA. This may result in increased risks for users, as it may, for example, make it more difficult to access user data at a later date. We also have no access to this user data. Access is only possible through LinkedIn.
LinkedIn’s privacy policy can be found at
https://www.linkedin.com/legal/privacy-policy
LINKING SOCIAL MEDIA VIA GRAPHICS OR TEXT LINK
We also advertise presences on the social networks listed below on our website. The integration is done via a linked graphic of the respective network. Using this linked graphic prevents a connection to the respective server of the social network from being automatically established when a website that has a social media advertisement is accessed in order to display a graphic of the respective network itself. Only by clicking on the corresponding graphic is the user redirected to the service of the respective social network.
After the user has been redirected, information about the user is collected by the respective network. It cannot be ruled out that the data collected in this way will be processed in the USA.
This is initially data such as IP address, date, time and page visited. If the user is logged into their user account on the respective network, the network operator may be able to assign the information collected from the user's specific visit to the user's personal account. If the user interacts via a "Share" button on the respective network, this information may be saved in the user's personal user account and may be published. If the user wants to prevent the information collected from being directly assigned to their user account, they must log out before clicking on the graphic. It is also possible to configure the respective user account accordingly.
The following social networks are integrated into our site by links:
LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085 USA.
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
New Work SE, Dammtorstraße 30, 20354 Hamburg
Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung
Sample data protection declaration the law firm Weiß & Partner
CHANGES TO OUR PRIVACY POLICY
We reserve the right to occasionally adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.
QUESTIONS ABOUT OUR PRIVACY POLICY
According to Section 4f Paragraph 1 of the Federal Data Protection Act (BDSG), we are not obliged to appoint a data protection officer. If you have any questions about data protection, please send us an email to info@mgworks.de or contact us directly:
Tilla Klinke, Michael Grubbert
MG works GmbH
Gutenbergstr. 2
71549 Auenwald
Phone: +49 (0) 7191 / 90 601 49
Fax: +49 (0) 7191 / 90 739 66