Data privacy
To the Data Privacy Declaration for business partners To the Data Privacy Declaration for applicants & applicant data To the Data Privacy Declaration for events
§ 1 COLLECTION OF PERSONAL DATA AND PROVIDER NAME
- Protecting your personal data is highly important to us. That is why we operate the website www.infomotion.de (hereinafter referred to as the “website”) in accordance with applicable regulations on data protection and data security. The following document describes the personal data we collect, how we protect your data, and how we use it.
- The service provider in accordance with § 13 of the German Telemedia Act (TMG) and controller in the sense of data privacy law is INFOMOTION GmbH, Westhafenplatz 1, 60327 Frankfurt am Main, Germany (hereinafter referred to as “INFOMOTION”). These data privacy provisions apply to use of the website.
§ 2 DATA COLLECTION
- Personal data
- We do not collect personal data through the website, unless you provide such data to us voluntarily (for instance by using our contact form), or unless you have consented to the data collection, or if applicable statutory data protection regulations permit such collection.
- Personal data is all data that can be used to identify you personally or identify other individuals to whom the data may refer (such as your name, address, telephone numbers, email addresses).
- Communication or usage-related information
- When you access the website, communication-related data (such as your IP address, the date and time of the request, data transmitted by your browser, server log files) and usage-related data (such as information on the start and duration of use and the telecommunications services you use) are generated automatically via technical means, stored, and processed in order to analyze use of the website. It may be possible to use this data to draw conclusions about a natural person. If further collection, processing or use of your communication- or usage-related data is absolutely necessary, then this collection, processing or use is subject to statutory data protection regulations.
- Cookies
- When you visit or log into the website, we may store information on your computer or mobile device in the form of a cookie. We use this information to recognize you automatically the next time you visit the site. Cookies are small text files that are assigned to the browser you use and stored on your hard drive.
- Cookies allow us, for example, to adapt our website to your interests or to recognize your computer. If you do not want us to recognize your computer during your next visit, please change your browser settings so that it deletes cookies from your computer’s hard drive or mobile device, blocks all cookies, or warns you before a cookie is saved.
- For cookies related to the use of web tracking tools or social media plug-ins and Pixel, please see the following § 6 and § 7.
§ 3 INTENDED PURPOSE
- In general, we use the personal data you provide in order to answer or process your inquiries or to provide you access to certain information or offers as necessary.
- In order to do so, it may be necessary
- that we store and process the personal data you provide, as well as transmit such data to third parties (service providers) in accordance with § 4; or
- that we (or a third party working on our behalf) use this personal data to inform you about offers from INFOMOTION that would be useful for your business activities.
§ 4 TRANSMISSION TO THIRD PARTIES
We only transmit the data that you provide to us to third parties within the scope described in the following section:
- Service providers: We reserve the right to commission other companies and individuals to complete tasks for us. Examples of this include, for instance, sending letters or emails, updating our customer lists, analyzing our databases, advertising measures, and customer service. These service providers have access to personal data as necessary to complete their tasks. They may not, however, use this data for other purposes. In addition, they are obligated to handle the information in accordance with this Data Privacy Declaration and German data protection laws.
- With your consent: In all other cases, we will inform you when we intend to transmit personal information to third parties, and give you the opportunity to grant your consent for us to do so.
- Personal data will only be transmitted to government agencies and authorities in accordance with mandatory national law, or if the data must be transmitted for the purposes of legal or criminal prosecution due to attacks against our network infrastructure.
- Data is not transmitted to third parties for any other purpose.
§ 5 USE AND STORAGE OF DATA
- We will only collect, process, and use the personal data you provide for the purposes indicated, unless the collection, processing or use are carried out
- for some other purpose directly related to the original purpose for which the personal data was collected,
- for the purpose of preparing for, negotiating or fulfilling a contract with you,
- for the purpose of fulfilling a legal obligation or an official or court order,
- in order to legitimate or protect against legal claims or to defend against complaints,
- in order to prevent fraud or other illegal activities, such as due to intentional attacks against INFOMOTION’s IT systems or to ensure data security.
- Data we collect in accordance with the provisions of this Data Privacy Declaration will only be stored until the purpose for which it was provided to us is fulfilled.
§ 6 WEB TRACKING
Google Analytics and Google Signals
- This website uses Google Analytics, a website analysis service of Google Inc. (“Google”). Google Analytics uses cookies, which are stored on your computer and which make it possible for us to analyze your use of the website. In general, the information generated by the cookie regarding your use of the website is transmitted to a Google server in the USA and stored there. If IP anonymization is activated on the website, however, Google will truncate your IP address within an EU member state or within another contracting state to The Agreement on the European Economic Area before transmitting it to Google in the USA. The complete IP address will only be transmitted to Google's servers in the USA and truncated there in exceptional cases. Google will use this information on behalf of the operator of this website in order to analyze your use of the website, compile reports regarding website activities and perform other services for the website operator associated with use of the website and use of the internet.
- Google will not combine the IP address transmitted by your browser in conjunction with Google Analytics with other data.
- This website uses Google Signals as an extension of Google Analytics, in order to create cross-device reports. If you have activated personalized ads and linked your devices to your Google account, then conditional on your consent to the use of Google Analytics in accordance with Art. 6 para. 1 lit. a GDPR, Google can analyze your usage behavior across multiple devices and create database models, including for cross-device conversions. We do not receive personal data from Google, but rather only statistics. If you would like to stop cross-device analytics, you can deactivate the “personalized advertisement” function in the settings of your Google account. You can find instructions to do so on this website: https://support.google.com/ads/answer/2662922?hl=de Further information on Google Signals is available at the following link: https://support.google.com/analytics/answer/7532985?hl=de
- You can prevent cookies from being saved by changing the settings of your browser software accordingly; however, if you do so it is possible that you may not be able to use all of the website functions in full. Furthermore, you can prevent data about you (including your IP address) generated by the cookie regarding your use of the website from being saved, transmitted to Google, and processed by Google by downloading and installing the browser plug-in available at the following link. In this case, an opt-out cookie will be saved that will prevent your data from being saved in the future when you visit the website. https://tools.google.com/dlpage/gaoptout/eula.html?hl=de.
- Further information from Google regarding the terms of use and data privacy are available at https://www.google.de/intl/de/policies/privacy/?fg=1.
- Please note that the code “gat._anonymizeIp();” has been added to Google Analytics on the website in order to ensure that IP addresses are collected in anonymous form (called IP masking).
§ 7 SOCIAL MEDIA
- Plug-ins
- Buttons, called plug-ins, from XING, LinkedIn, Twitter, Facebook, and YouTube are integrated into the website. These make it possible for you to share content with your friends on these social networks.
- The respective social networks can collect personal data (this may, in particular, include your IP address) through these plug-ins – such as the Facebook “Like” button.
- Each time you access the page, a connection is formed between your browser and the corresponding social network, regardless of whether you are logged into the social network at this time or registered on it. If you are logged in, the page access and use of the plug-in are associated with your profile. To avoid this association, please log out of the social network. Since data is transmitted directly between your browser and a social network, we have no knowledge of the exact content of the data. Therefore, for further details we recommend consulting the current Data Privacy Declarations of the following social network operators:
- Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland – the Facebook data privacy guidelines are available at: https://www.facebook.com/policy.php,
- LinkedIn Corp., 2029 Stielin Court, Mountain View, CA 94043, USA or LinkedIn Ireland, Attn: Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland – the LinkedIn data privacy guidelines are available at: https://de.linkedin.com/legal/privacy-policy?
- Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA – the twitter data privacy guidelines are available at: https://twitter.com/privacy?lang=de,
- XING AG, Dammtorstr. 30, 20354 Hamburg, Germany – the data privacy information for the XING Share-Button is available at: https://privacy.xing.com/en/privacy-policy
- YouTube: Google, Amphitheatre Parkway, Mountain View, CA 94043, USA https://www.google.de/intl/de/policies/privacy/.
- LinkedIn Insight Tag
- Our website uses the “LinkedIn Insight Tag” conversion tool from the LinkedIn Ireland Unlimited Company. This tool creates a cookie in your web browser that makes it possible to collect the following data, as well as other data: IP address, device and browser properties and page events (such as page visits). This data is encrypted, then anonymized within seven days, and the anonymized data is deleted within 90 days. LinkedIn does not share personal data with INFOMOTION, but rather offers anonymized reports regarding the website’s target audiences and ad performance. In addition, the LinkedIn Insight Tag offers the option of retargeting. INFOMOTION can use this data to display targeted advertisements outside of its website, without identifying you as a website visitor. For further information regarding data privacy at LinkedIn, please see the LinkedIn Data Privacy Declaration.
- LinkedIn members can manage the use of their personal data for advertising purposes in their account settings. Click here to deactivate the Insight tag on our website (“opt out”)..
§ 8 NEWSLETTER
- We use a double opt-in process for registration to our newsletter. This means that, after you provide your first name, last name, email address and desired salutation, we will send a confirmation email to the address provided asking you to confirm that you would like to receive the newsletter. If you do not confirm this, your registration will be automatically deleted. If you do confirm your request to receive the newsletter, we will only store your email address until you unsubscribe from the newsletter. We store your address solely for the purpose of sending you the newsletter. In addition, upon registration and confirmation we store the time and your IP address, in order to prevent misuse of your personal data.
- You are only required to provide your email address in order to receive the newsletter. Providing other, specially marked information is voluntary. This information is only used to personalize the newsletter. This data will also be deleted in full if you revoke your consent.
- You can revoke your consent to receive the newsletter at any time. You can do so by clicking on the link provided in every newsletter email, by sending an email to marketing@infomotion.de or by sending a letter to the address indicated in § 1 paragraph 2.
- We use the service CleverReach from CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany to send out the newsletter. We transmit email addresses and voluntarily provided information to CleverReach for the purpose of sending out the newsletter. Further information regarding data protection at CleverReach is available at: https://www.cleverreach.de/datenschutz/.
§ 9 CHILDREN
We will not knowingly collect the personal data of children without expressly stating that such data should be transmitted only with the approval of their parents if required under applicable law. In general, we will only use or transmit the personal data of children if this is permitted by law, in order to obtain legally required parental consent, or in order to protect children. Applicable national statutory regulations and cultural customs must be taken into consideration when defining the term “child / children.”
§ 10 DATA SECURITY
- INFOMOTION implements technical and organizational measures to ensure the security of your personal data against unintentional or illegal deletion, change, or loss, as well as against unauthorized transmission or access.
- The state-of-the-art technical and organizational measures implemented by INFOMOTION include, in particular:
- Entry control and entry authorization measures that secure physical access by personnel to buildings and facilities where IT systems are operated, including documenting and logging such entrances and monitoring buildings and facilities;
- ID control measures that ensure the identification and authentication of authorized persons and that include appropriate minimum requirements for passwords and handling passwords; managing, documenting and logging personnel authentication media and access authorizations; measures to block access;
- Access control measures based on an access authorization concept for users and administrators; assigning the minimal authorizations necessary to fulfill a specific function or task; implementing access authorizations in customer relationship management; managing, documenting and logging personal access authorizations;
- Transmission controlling by way of encrypted data transmission between the client and server or to external IT systems, using virtual private networks; limiting logical access to IT systems; hardening back end systems; network segmentation; implementing security gateways, in particular firewalls; documenting interfaces; encrypted storage of personal data and backups of such data; data storage media management and storage; processes to delete and destroy data storage media in accordance with data protection law; deletion logs;
- Entry controls and documentation of entries in data processing systems;
- Order controlling by documenting the persons entitled to issue and receive instructions, regulations on carrying out orders;
- Availability controlling through regular data backups, creating a backup concept and emergency measures, in particular in the area of disaster recovery
- Ensuring the separate processing of data collected for different purposes; economy in data collection.
- We hold both TISAX® and ISO27001 certification; which demonstrate that the highest and most rigorous standards of information security are maintained. These certifications define the requirements for an Information Security Management System ("ISMS") and confirm that INFOMOTION's procedures and security controls provide an effective framework for the protection of our customers' and our own information.
§ 11 LINKS TO WEBSITES OF OTHER PROVIDERS, FRAMING
The website may contain links to the websites of other providers or integrate content from other websites. Please note that this Data Privacy Declaration is only applicable to this website. We have no influence over whether, and do not check to ensure that other providers observe applicable data protection laws.
§ 12 RIGHTS TO INFORMATION AND REVOCATION, AND CONTACT INFORMATION
- Upon request, we would be happy to inform you free of charge whether we have stored any of your personal data or pseudonymized personal data. We will rectify incorrect data once we become aware of the issue.
- You can revoke the consent you have granted to the use of your data at any time.
- Please direct all requests for information, correction or deletion, objections, or other requests regarding data processing via email to datenschutz@infomotion.de or to the address provided in § 1 paragraph 2.
§ 13 INTEGRATION OF THE DATA PRIVACY DECLARATION, VALID AND CURRENT DECLARATION
- By using the website, you consent to the data usage described above. The Data Privacy Declaration is currently valid, and is dated 07/06/2023.
- It may be necessary to make changes to this Data Privacy Declaration due to further development of the website, implementing new technologies, or changes to mandatory statutory regulations.
Accordingly, INFOMOTION reserves the right to amend the Data Privacy Declaration at any time with future effect.
Contact for the Data Protection Officer
Kerstin Neu (kerstin.neu(at)infomotion.de)
Data Privacy Declaration for business partners
When you contact us otherwise outside of the website in the course of current or potential future business relationships, we will process the following personal data of the customer’s, supplier’s or partner's (each referred to as a “business partner”) contact person:
Categories of personal data that are processed, and the sources from which they originate:
- Contact information (first and last name of the contact person, company name, business address, business phone number, business cell number and business email address)
- Professional data (such as position in the company, department)
- Payment data, such as information necessary to process payments or prevent fraud
- Further information which must be processed within the framework of a project or to carry out a contractual relationship, or which the business partner provides voluntarily, for instance in the framework of submitting an order or inquiry, or project details
- Personal data collected from publicly available sources (including company or profession-specific social networks and websites), informational databases or credit bureaus, and
- Information legally necessary for the purpose of compliance screenings, such as the date of birth, contact information (e.g. first/last names of current and previous contact persons, as well as suffixes, company name and address of the business partner)
In general, we receive your personal data from you when we begin the contractual relationship, or in the course of the relationship itself.
In order to combat terrorism, we also compare your data to the sanctions lists under current binding EU Directives, in order to meet the prohibitory standards set forth in the EU Directives. We use the credit bureau Creditsafe for this purpose, which collects your personal data. Information regarding data protection at Creditsafe is available at: https://www.creditsafe.com/de/de/rechtliches/datenschutzhinweise/datenschutzhinweise-fuer-auskunfteidaten.html.
Purposes and legal bases of data processing
We always comply with the provisions of the EU-GDPR and other relevant legal regulations, even when processing your personal data outside of the website.
Your personal data is processed only for the following purposes:
- to initiate a transaction, to carry out measures before a contract (such as to prepare offers for products or services) and to fulfill contractual obligations (such as to carry out our service or to handle orders/contracts/payment) (Art. 6 para. 1 b GDPR)
- in the framework of a balancing of interests (Art. 6 para. 1 f GDPR) to safeguard the legitimate interests of our company or third parties, for instance to resolve legal disputes, enforce existing agreements, assert, exercise or defend against legal claims, in order to fulfill the prohibitory standards on fighting terrorism in the EU Directives (sanctions list screening), to prevent fraud or other illegal activities, for instance due to intentional attacks against INFOMOTION IT systems or to ensure data security.
- if there is a legal obligation to carry out the processing (such as under tax or commercial laws) (Art. 6 para. 1 c GDPR).
recipients of data / categories of recipients
Within our company, we ensure that only persons who need data to fulfill their contractual and legal obligations receive the data.
In some cases, service providers support our departments in carrying out their work. The necessary data protection contracts are concluded with all service providers.
Transmission and disclosure of personal data to a third country
Data is only transmitted to third countries (countries outside of the European Union or European Economic Area) if this is required by law, or if you have granted us your consent to do so, or if this is necessary to carry out a contractual obligation.
If we transmit your personal data to a third country, we do so only if the EU Commission has confirmed that the third country offers an appropriate level of data protection, or if there are other suitable data protection guarantees (such as binding internal data protection regulations or EU standard contractual clauses) in place.
Duration of storage
We store your personal data for as long as necessary for the respective purpose of processing. Commercial and tax law retention periods, for instance under the German Commercial Code (HGB) or Tax Code (AO), must be observed. When there are no further applicable retention obligations, data is routinely deleted after it has served its purpose.
Rights of data subjects
You have the right to receive information regarding your personal data which we process.
Furthermore, you have the right to have the data rectified or deleted, or to restrict the processing of such data if you are entitled to do so by law.
You also have the right to object to processing within the framework of the law. The same applies to the right to data portability.
In addition, you have the right to submit complaints to a responsible data protection supervisory authority.
Controller and Data Protection Officer
The controller in accordance with data protection law is
INFOMOTION GmbH
Westhafenplatz 1
60327 Frankfurt
You can find further information about our company, details for authorized persons and further contact information in the legal notice on our website:
https://www.infomotion.de/impressum
Our Data Protection Officer
We have appointed a Data Protection Officer for our company. You can get in touch with the Data Protection Officer at:
INFOMOTION GmbH
– Datenschutzbeauftragte –
Westhafenplatz 1
60327 Frankfurt
E-mail: datenschutz@infomotion.de
Data protection for applications & applicant data
We are glad you are interested in our company and are planning to apply or have already applied for a position to work with us. In the following section, we provide you with information on how your personal data is processed in conjunction with your application.
Who is responsible for data processing?
The controller in accordance with data protection law is
INFOMOTION GmbH
Westhafenplatz 1
60327 Frankfurt
https://www.infomotion.de/impressum
You can find further information about our company, details for authorized persons and further contact information in the legal notice on our website: https://www.infomotion.de/impressum
What data do we process? And for what purposes?
We process the data that you submit to us in conjunction with your application, in order to review your suitability for the position (or potentially for other open positions at our company) and to carry out the application process.
In order to combat terrorism, we also compare your data to the sanctions lists under current binding EU Directives, in order to meet the prohibitory standards set forth in the EU Directives.
What is the legal basis for this processing?
The legal basis for processing your personal data in this application process is § 26 BDSG (German Data Protection Act). According to the BDSG, processing data necessary to make a decision on or to initiate an employment relationship is permitted.
The legal basis for comparing your data to current binding EU Directives is Art. 6 para. 1 lit. f) GDPR (safeguarding legitimate interests). We have a legitimate interest in fulfilling the prohibitory standards set forth in EU Directives and in avoiding sanctions by the responsible authorities.
If data is necessary for the purposes of legal prosecution after the application process, then data may be processed on the basis of the requirements of Art. 6 GDPR, in particular to safeguard our legitimate interests in accordance with Art. 6 para. 1 lit. f) GDPR. In this case, we have an interest in asserting or defending against claims.
For how long is data stored?
Applicant data is deleted after 6 months if the applicant is rejected.
If you have consented to further storage of your personal data, we will include your data in our applicant pool. In this case, the data will be deleted after two years.
If you are accepted to a position during the application process, the data will be transferred from the applicant data system to our employee information system.
To which recipients is the data transmitted?
Your applicant data will be reviewed by the HR department after your application is received. Suitable applications will then be forwarded internally to the department head responsible for the individual open position. Then, the parties involved will agree on the next steps. In general, within the company only personnel who need your data to properly carry out our application process will receive access to it.
Where is data processed?
Data is processed only in computing centers within Europe.
Your rights as a “data subject”
You have the right to receive information regarding your personal data which we process. If you submit a request for information that is not in writing, please note that we may request verification from you proving that you are who you purport to be.
Furthermore, you have the right to have the data rectified or deleted, or to restrict the processing of such data if you are entitled to do so by law.
You also have the right to object to processing within the framework of the law. The same applies to the right to data portability.
Our Data Protection Officer
We have appointed a Data Protection Officer for our company. You can get in touch with the Data Protection Officer at:
INFOMOTION GmbH
– Datenschutzbeauftragte –
Westhafenplatz 1
60327 Frankfurt
E-mail: datenschutz@infomotion.de
Right to submit complaints
You have the right to submit complaints regarding our processing of your personal data to a data protection supervisory authority.
Data protection at events
When you register for an event on this page, we will ask you for your name and other personal information.
We will store your information on specially protected servers. Only specially authorized personnel involved in technical, commercial, or editorial management of these servers are granted access to them.
INFOMOTION GmbH will store your data for further processing in accordance with the regulations of data protection law. INFOMOTION uses some of the data (business address) to contact you in conjunction with your registration for the event indicated here.
Furthermore, INFOMOTION GmbH and the partners involved in the event would like to use the data to send you further information, for instance in the form of newsletters or via email regarding other topics and events.
If you do not agree to the storage and/or use of the data for the aforementioned purposes, please inform us of this via an email to datenschutz@infomotion.de.
You can also object to receiving further marketing information at any time using the link provided there.
INFOMOTION GmbH | Westhafenplatz 1 | 60327 Frankfurt
Managing Directors: Mark Zimmermann, Andreas Naunin, Philipp Hess, Oliver Blüher