Privacy Policy for the Use of Website

Thank you for visiting our website. The protection of your personal data (hereinafter: Data) is very important to us. This Privacy Policy is designed to give you an overview of what data we collect and process when you visit our website and contact us and what rights you have in relation to the processing of your Data.



Who are we and how can you contact us?


We,

CPU 24/7 GmbH
August-Bebel-Straße 26-53
DE 14482 Potsdam

as the controller are responsible for protecting your Data. If you have any questions regarding data protection or your rights or regarding this data protection information please do not hesitate to contact our group data protection officer. He can be reached

by mail:

Data Protection Officer
CPU 24/7 GmbH
August-Bebel-Straße 26-53
14482 Potsdam

by email:





What data is processed when you visit our website?

A - Log-Files


Description and scope of the data processing:

When you visit our website your browser automatically transmits the following Data:

  • Your IP address, which is anonymised
  • Date and time of access
  • Website from which the site is being accessed (referrer URL)
  • Browser used and version of this (if transmitted by the browser).


Purposes of the data processing:

The temporary storage of this Data is necessary to enable the delivery of the website to your computer and to ensure the functionality of the website. In addition, we collect the Data to track and prevent unlawful access to the web server and the improper use of the website, as well as to secure our IT systems.


Legal basis:

We store this Data temporarily on the basis of legitimate interests (Article 6(1)(f) GDPR). Our legitimate interest lies in achieving the purposes described above.


Term of storage and control options:

The Data will be erased as soon as it is no longer required to achieve the purposes. Log files are generally erased after 28 days.


B. Social-Media (Twitter, XING, LinkedIn, Google)


Description and scope of the data processing:

This website uses links leading to social networks.

You can find further information on data processing on social media platforms, purposes and legal bases for the data processing as well as your rights vis-á-vis the social media platforms under the following links:


Operator Address Privacy Statement
Twitter Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA Link
Xing XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland) Link
LinkedIn LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland Link
YouTube Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA Link


Term of storage and control options:

You can also prevent the collection and processing of the Data by the social media platforms by downloading and installing on your devices the browser add-on available under the following link.



What Data is processed when you contact us?


Contacting us

Description and scope of the data processing:

We collect and process the Data you have provided, such as your contact data, your name and your address, if you contact us via a contact form or by email. All Data that you provide to us is transferred between your browser and our servers in encrypted form.


Purposes of the data processing:

The data processing is performed exclusively on the basis of and for the processing of your query.


Legal basis:

We process your Data to conduct pre-contractual and contractual measures which are taken in response to your query (Article 6(1)(b) GDPR).


Term of storage and control options:

We store your Data for as long as we need it for the specific processing purpose. In addition, we store certain Data for the duration of the statutory limitation periods (usually three years, in individual cases up to 30 years) and for as long as is prescribed by statutory retention periods (e.g. as defined in the Commercial Code (HGB), the Fiscal Code [AO]) (usually ten years).



What Data is processed when you apply for a job with us?


Description and scope of the data processing:

You can send us your application documents by email to or by post to


CPU 24/7 GmbH
August-Bebel-Straße 26-53
DE 14482 Potsdam

zukommen lassen.


To participate in an application process we require, depending on the type of application, your contact details, your email address, information on your professional qualifications in the form of education and graduation certificates and/or employer references as well as your CV. If you give us additional Data voluntarily, we use this exclusively for the purpose of processing your application and conducting the application process.


As a general rule, only those persons involved internally with the filling of the vacancy have access to your Data.


With your consent we store your application documents in our applicant pool so that your application can be considered again for future job vacancies.


Purposes of the data processing:

The purpose of processing the Data provided by you is to select an applicant for employment. Applicants are required to provide the Data. Without providing the Data, participation in the application process is not possible.


Legal basis:

The legal basis for the data processing is Sec. 26 BDSG (Federal Data Protection Act) in conjunction with Article 6(1)(b) GDPR. We process voluntary information on the basis of Sec. 26 para. 1 BDSG in conjunction with Article 6(1)(f) GDPR. Participation in the applicant pool is on the basis of your consent according to Article 26. para. 2 BDSG in conjunction with Article 6(1)(a) GDPR.


Term of storage and control options:

If we decline your application, we will store your application documents for a maximum of six months from the time of notification of the unsuccessful application. The Data in the applicant pool is stored for 24 months.


f you wish to revoke any consents to process your Data granted as part of the application process, please contact us at the above-mentioned address by post or send us an email to .



Who receives your data?


Positions within CPU24/7 GmbH

Within CPU24/7 GmbH, access to your data shall only be provided to those persons who require this for the purposes described.


What rights do you have and how can you exercise these?



You can withdraw any consents you have granted to us to process your personal data at any time with effect for the future. Please note that the withdrawal will have no impact on the legality of the data processing performed up to this point and that it does not extend to such data processing for which statutory authorisation exists and which can therefore be performed without your consent.


B. Other rights of data subjects


In addition, you have the following data subject rights according to Articles 15 to 21 and 77 of the General Data Protection Regulation (GDPR) where the legal preconditions are fulfilled:


Access:

You can at any time demand that we provide you with information on the Data of yours that we process and demand a copy of the data we have stored on you, Article 15 GDPR. Please note that further copies of the data stored on you may be subject to a charge.


Correction:

You can demand the correction of incorrect Data and the completion of incomplete Data, Article 16 GDPR.


Erasure:

To erase your Data: Please note that the erasure does not include Data required for the execution and processing of contracts and to assert, exercise and defend against legal claims as well as Data for which statutory, supervisory or contractual retention obligations exist, Article 17 GDPR.


Restriction of processing:

You can under certain circumstances demand the restriction of the processing, e.g. if you believe that your Data is incorrect, if the processing is illegal or you have raised a complaint about the data processing. This will mean that without your consent your Data may only be processed in a very restricted way, e.g. to assert, exercise or defend against legal claims or to protect the rights of other natural or legal entities, Article 18 GDPR.


Objection to the processing:

You have the option to object to the data processing for direct advertising purposes at any time. In addition, you can object at any time to data processing performed on the basis of a legitimate interest if there is particular reason for doing so, Article 21 GDPR.


Data portability:

You have the right to receive the Data you have provided to us and which we process on the basis of your consent or in order to fulfil the contract in a structured, commonly used and machine-readable format and the right to demand a direct transfer of this Data to third parties within the realms of what is technically possible, Article 20 GDPR.


C. Contact routes


You can exercise your rights via the following contact routes:

by mail:

Data Protection Officer
CPU 24/7 GmbH
August-Bebel-Straße 26-53
14482 Potsdam

by email:



D. Right to lodge a complaint with a supervisory authority


If, for example, you believe that our data processing is illegal or that we have not granted the above-mentioned rights to the required extent, you have the right to lodge a complaint with the competent supervisory authority.





– Last updated: March 2019