The following notes provide a simple overview of what happens to your personal information when you visit this website. Personal data is considered any data by which you can be personally identified. Detailed information on the subject of data protection can be found in our data protection declaration listed under this text.
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find his contact details in the imprint of this website.
How do we collect your data?
On the one hand, your data is collected when you send it to us. For example, this may involve data that you enter into a contact form. Other data is automatically collected by our IT systems when you visit the website. In particular, this is all technical data (e.g. Internet browser, operating system or time the website was accessed). This data is collected automatically as soon as you access this website.
For what purposes do we use your data?
Some of the data is collected to ensure that the website runs error-free. Other data may be used to analyse your user behaviour.
What rights do you have with regard to your data?
You have the right, at any time and free of charge, to receive information about the origin, recipient and purpose of your stored personal data. You also have the right to request the rectification or cancellation of this data. For this and other questions on the subject of data protection, you can contact us any time at the address listed in the imprint. Furthermore, you have the right to appeal to the competent supervisory authority. You also have the right, under certain circumstances, to request that your personal data be restricted. Details about this can be found in the data protection declaration under "Right to limitation of processing".
Analysis tools and third-party tools
When you visit this website, your browsing behaviour may be statistically evaluated. This is done primarily with cookies and other types of analysis programs. The analysis of your browsing behaviour is usually anonymous and therefore it cannot be traced back to you. You may object to this analysis at any time, or prevent it altogether by not using certain tools. For detailed information about these tools and your opt-out choices, please read the following data privacy statement.
This website is hosted by an external service provider (hosting company). The personal data collected on this website is stored on the hosting company's servers. This data may include IP addresses, contact requests, meta and communication data, contract data, contact data, names, web page accesses, and other data generated via a website. The hosting company is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6, Sec. 1b DSGVO (GDPR)) and in the interest of providing a secure, fast and efficient online offer through a professional service provider (Art. 6, Sec. 1f GDPR). Our hosting company will only process your data to the extent necessary to fulfil its obligations and to follow our instructions with regard to this data.
Conclusion of an order processing contract
In order to guarantee processing in compliance with data protection regulations, we have concluded an order processing contract with our hosting company.
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations as well as this data protection declaration. When you use this website, various personal data is collected. Personal data is data with which you can be personally identified. This data protection declaration explains which data we collect and for what purpose we use it. It also explains how and for what purpose this is done. We would like to point out that data transmission through the Internet (e.g. communication by e-mail) can be subject to security gaps. Completely protecting the data from third-party access is not possible.
Note on the responsible body
The responsible body for data processing on this website is:
Hering Management GmbH
Neuländer 1 | Holzhausen
Phone: +49 2736 27-0
Responsible body is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g. names, e-mail addresses).
Legally mandated data protection officer
We have appointed a data protection officer for our company.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. For this purpose, providing us with an informal notification by e-mail is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)
IF THE DATA PROCESSING IS BASED ON ART. 6, SEC. 1E or 1F GDPR, THEN AT ALL TIMES YOU HAVE THE RIGHT, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO RAISE OBJECTION TO THE PROCESSING OF YOUR PERSONAL DATA ; THIS ALSO APPLIES TO A PROFILING THAT IS PERFORMED BASED ON – OR USING – THIS DATA. THE RESPECTIVE LEGAL BASIS UPON WHICH THE PROCESSING IS BASED CAN BE FOUND IN THIS DATA PROTECTION STATEMENT. IF YOU OBJECT TO THE COLLECTION OF YOUR PERSONAL DATA, WE WILL NO LONGER PROCESS YOUR PERSONALISED DATA, UNLESS WE CAN PROVE THAT THERE ARE COMPELLING REASONS FOR PROCESSING THIS DATA – SUCH AS GROUNDS THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR THE PROCESSING OF THE DATA SERVES THE ASSERTION, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION ACCORDING TO ART. 21, SEC. 1 GDPR). IF YOUR PERSONAL DATA IS PROCESSED FOR PURPOSES OF CONDUCTING DIRECT MARKETING CAMPAIGNS, THEN YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THIS KIND OF ADVERTISING OR MARKETING ACTIVITY; THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS IN CONNECTION WITH THIS TYPE OF DIRECT MARKETING ACTIVITY. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION PURSUANT TO ART. 21, SEC. 2 GDPR).
Right of appeal to the competent supervisory authority
In cases of infringement against the GDPR, the affected parties have a right of appeal to a supervisory authority, in particular in the member state of their ordinary residence, place of work or place of presumed infringement. The right of appeal shall be without prejudice to other administrative or judicial remedies.
Right to data transferability
You have the right to have data, which we process automatically on the basis of your consent or in fulfilment of a contract, handed over to you or to a third party in a standard, machine-readable format. If you request the direct transfer of the data to another responsible person, this will only be done insofar as it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content (such as orders or queries), this site uses an SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, deletion and rectification
Within the framework of the applicable statutory provisions, you have the right at any time to receive free Information regarding your stored personal data, its origin and its recipient(s) as well as the purpose of the data processing. If necessary, you also have the right to demand the correction or deletion of this data. You can contact us at any time at the address provided in the imprint for this and other questions on the subject of personal data.
Right to limitation of processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time at the address provided in the imprint. The right to limit the processing exists in the following cases:
Objection to advertising e-mails
We hereby object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information material. The operators of these pages expressly reserve the right to take legal action against unsolicited mailing or e-mailing of spam and other similar advertising information.
The provider of these pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
This data will not be merged with other data sources.
This data is collected on the basis of Art. 6 Sec. 1f GDPR. The website operator has a justified interest in the technically error-free presentation and optimisation of its website – for this purpose, the server log files must be recorded.
If you send us enquiries via the contact form, your information from the contact form will be stored on our server for purposes of processing your query as well as for processing follow-up questions. We do not forward this data without your consent. This data is processed on the basis of Art. 6 Sec. 1b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of enquiries addressed to us (Art. 6, Sec. 1f GDPR) or on your consent (Art. 6, Sec. 1a GDPR) if this has been requested. The data entered by you in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular retention periods – remain unaffected.
If you contact us by e-mail, telephone or fax, your request – including all personal data (name, request) – will be stored and processed by us for the purpose of processing your request. We do not forward this data without your consent.
This data is processed on the basis of Art. 6 Sec. 1b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 Sec. 1a GDPR) and/or on our legitimate interests (Art. 6 Sec. 1f GDPR), as we have a legitimate interest in the effective processing of the enquiries addressed to us.
The data you send us via contact requests will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g. after the processing of your request has been completed).. Mandatory statutory provisions – in particular statutory retention periods – shall remain unaffected.
You can register on this website to use additional features on the site. We use the data entered for this purpose only for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise we will refuse the registration.
In the case of important changes, for example, within the scope of our services or in the case of technically necessary changes, we will use the e-mail address provided during registration to inform you in this way.
The processing of the data entered during registration is carried out for the purpose of implementing the user relationship established by the registration and, if necessary, for initiating further contracts (Art. 6, Sec. 1b GDPR). The data collected during registration will be stored by us as long as you are registered on this website and will subsequently be deleted. Legal retention periods remain unaffected.
This website uses the open source web analysis service Matomo.
The use of this analysis tool is based on Art. 6 Sec. 1f GDPR. The website operator has a justified interest in the anonymous analysis of user behaviour in order to optimise both his website and their advertising. If you do not agree with the storage and use of your data, you can deactivate the storage and use here. In this case, an opt-out cookie will be stored in your browser to prevent Matomo from storing usage data. If you delete your cookies, the Matomo Opt-Out cookie will also be deleted. The opt-out must be reactivated when you visit this website again.
If you wish to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data will not be collected or will only be collected on a voluntary basis. We use this data exclusively for providing the requested information. We do not forward this data to third parties. The processing of the data entered into the newsletter contact form is made exclusively on the basis of your consent. You can revoke your consent to the storage of data, e-mail address and their use to send the newsletter at any time, for example via the "Unsubscribe" link in the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
The data that you provide to us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider and deleted from the newsletter distribution list upon cancellation of your subscription to the newsletter. Data stored by us for other purposes remain unaffected by this. After you have been removed from the newsletter distribution list, your e-mail address will be blacklisted by us or the newsletter service provider to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Sec. 1f GDPR). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.
If you access one of our pages equipped with a YouTube plug-in, a preview image with the note "Load video from YouTube" will first be displayed for each YouTube video embedded there. A connection to the YouTube servers will not be established until you click on one of these thumbnails to load the corresponding video from YouTube. The operator of these YouTube services is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
As soon as you start a YouTube video on this website, a connection to the servers of YouTube is launched. This informs the YouTube server which pages you have visited. If you are logged in to your YouTube account, you can allow YouTube to directly associate your surfing behaviour with your personal profile. You can prevent this by logging out from your YouTube account. In addition, YouTube may store various cookies on your device after you start a video. YouTube can use these cookies to obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve usability and prevent fraud. The cookies remain on your device until you delete them. If necessary, after starting a YouTube video, further data processing operations may be triggered over which we have no control.
Our website uses, in particular, tools from companies based in the USA. When these tools are active, your personal information may be transferred to the US servers of these companies. We must point out that the USA is not a safe third country within the meaning of EU data protection law. US companies are required to release personal data to security authorities without you as the data subject being able to take legal action against this. The possibility cannot therefore be excluded that US authorities (e.g. secret services) may process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence over these processing activities.
Via an API, this website uses the mapping service Google Maps. If you access one of our pages equipped with a Google Maps plug-in (3D-Videos), a preview image with the note "Double-click for more data protection" will first be displayed for each Google video embedded there. A connection to the Google servers will not be established until you click on one of these thumbnails to load the corresponding video from Google. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. To enable the use of the Google Maps features, your IP address must be stored. As a rule, this information is transferred to one of Google’s servers in the United States, where it is archived. The operator of this website has no control over the data transfer.
We use Google Maps to present our online content in an appealing manner. This constitutes a legitimate interest as defined in Art. 6 Sect. 1 lit. f GDPR. If a respective declaration of consent has been obtained, the data shall be processed exclusively on the basis of Art. 6 Sect. 1 lit. a GDPR. This declaration of consent may be revoked at any time. For more information on the handling of user data, please review Google’s Data Privacy Declaration under: https://policies.google.com/privacy?hl=en.
We offer you the opportunity to send us your application (e.g. by e-mail, post or via online application form). In the following, we will inform you about the scope, purpose and use of your personal data stored within the scope of the application process. We assure you that your data will be collected, processed and used in accordance with applicable data protection laws and all other statutory provisions. We also ensure you that your data will be treated strictly confidentially.
Scope and purpose of data collection
When you send us an application, we will process the relevant personal data (e.g. contact and communication data, application documents, notes in the context of job interviews), insofar as this is necessary for the decision on the justification of an employment relationship. In accordance with German law, the legal basis for this is Art. 26 GDPR-new initiation of an employment relationship), Art. 6 Sec. 1b GDPR (general contract initiation) and – insofar you have given your consent – Art. 6, Sec. 1a GDPR. The consent can be revoked at any time. Within our company, your personal data will only be processed by persons who are directly involved in processing your application. If the application is successful, the data submitted by you will be stored in our data processing systems on the basis of Art. 26 GDPR-new and Art. 6 Sec. 1b GDPR for the purpose of carrying out the employment relationship.
Retention period of the data
If we are unable to make you a job offer, reject a job offer or withdraw your application, we reserve the right to retain the data you have submitted on the basis of our legitimate interests (Art. 6 Sec. 1f GDPR) for up to 6 months from the end of the application procedure (rejection or withdrawal of the application). The data is then deleted and the physical application documents are deleted. In particular, the storage serves as evidence in the event of a legal dispute. If it is evident that the data will be required after the 6-month period has expired (e.g. due to a threatening or pending litigation), deletion shall only take place when the purpose for further storage no longer applies. Longer storage can also take place if you have given your consent (Art. 6 Sec. 1a GDPR) or if statutory storage obligations prevent deletion.
Admission to the applicant pool
If we do not make you a job offer, you may be able to join our applicant pool. In case of admission, all documents and information from the application will be transferred to the applicant pool in order to contact you in case of suitable vacancies. The admission to the applicant pool is based exclusively on your explicit consent (Art. 6, Sec. 1a GDPR). The submission of consent is voluntary and has no relation to the ongoing application procedure. The person concerned can revoke his consent at any time. In this case, the data will be irrevocably deleted from the applicant pool unless there are legal reasons for retention.
At the latest, the data from the applicant pool will be irrevocably deleted two years after granting the consent.