Privacy Policy
This website is provided by:
TSCNET Services GmbH
Weihenstephaner Str. 9,
81673 München (Munich)
D/Germany
Phone: +49 89 45554-101
E-mail: info@tscnet.eu
Managing Directors (Geschäftsführer): Dieter Weiß, Uwe Zimmermann
Chairman Supervisory Board (Aufsichtsratsvorsitzender): Dr. Rainer Pflaum
Commercial Register Munich (Handelsregister München): HRB 214951
Court of jurisdiction: Munich, Germany
Value-added tax identification no. (VAT/USt-IdNr.): DE297454557
Responsible party pursuant to data protection laws, in particular the EU General Data Protection Regulation (GDPR), is
TSCNET Services GmbH
Weihenstephaner Str. 9,
81673 München (Munich)
D/Germany
Phone: +49 89 45554-101
E-mail: info@tscnet.eu
For technical and content-related questions please contact:
info@tscnet.eu
Your rights as the data subject
You can exercise the following rights at any time using the contact details of our data protection officer:
- Information on your data stored by us and the processing thereof (Art. 15 GDPR),
- Rectification of inaccurate personal data (Art. 16 GDPR),
- Deletion of your data stored by us (Art. 17 GDPR),
- Restriction of the data processing, provided that we may not delete your data due to legal obligations (Art. 18 GDPR),
- Objection to the processing of your data with us (Art. 21 GDPR) and
- Data portability, provide that you have consented to the data processing or have entered into a contract with us (Art. 20 GDPR).
If you have given us consent, you may withdraw it at any time, which will remain in effect in the future.
You can contact a supervisory authority with a complaint at any time, e.g. the supervisory authority of the state of your residence or the authority that oversees us as the responsible party.
You’ll find a list of supervisory authorities (for the non-public area) with their respective addresses at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Information on your right to object according to Art. 21 GDPR
Case-specific right to object
You have the right at any time, for reasons that arise from your particular situation, to object to the processing of personal data pertaining to you, which occurs pursuant to 6(1)(f) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision in accordance with Art. 4(4) GDPR.
If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing is for the purpose of enforcing, carrying out or defending legal claims.
Recipient of an objection
The objection can be made in any form. Simply send us a letter or e-mail with “Objection” in the subject line, your name, address or other identifiers.
Information for job applicants to Art. 13/14 of the GDPR
Which sources and data do we use?
We collect and process personal data (both in paper and digital form) that you have provided through your application: Specifically, personal data include:
- your personal particulars (e.g. name, address, contact data, date and place of birth),
- complete application documents (e.g. photo, curriculum vitae, certificates, references),
- salary requirements, period of notice or earliest starting date,
- other voluntary information that you provide us with your application,
- notes taken during the job interviews.
It is not envisaged that specific types of personal data will be processed. However, if you provide such data, such as health data, these data will also be processed.
For which purpose do we process your data (purpose of the processing) and what is the legal basis for it?
You can submit your online job application to us via our application portal. We will process the data provided by you solely for the purpose of evaluating professional suitability and for contacting you.
The processing occurs in order to establish an employment relationship within the scope of implementing the pre-contractual measures, which are carried out upon request (§26 German Federal Data Protection Act [Bundesdatenschutzgesetz, BDSG]).
Who will receive my data?
Within the company, the parties who need your data to fulfil their contractual, legal and supervisory obligations, as well as to safeguard legitimate interests, get access to your data.
For our application process, we use personnel management software to help us manage this process and the job postings. For this we have a data processing agreement with the service provider.
From whom do we receive your data?
Usually, you provide us the personal data with your application. In certain cases, we may receive personal data from third parties (such as headhunters, recruitment agencies).
Is data transferred to a third country or to an international organisation?
The processing does not take place outside of the European Union (EU) or the European Economic Area (EEA).
How long are my data stored?
Should your application be rejected, it will be deleted at the latest six months after notification of the decision. If your application is successful, the application documents will be saved at least for the duration of your employment.
Do I have an obligation to provide data?
The provision of your personal data is neither legally nor contractually required. However, processing the application is not possible without this provision.
To what extent does automated decision-making exist?
In the application procedure we do not apply fully automated decision-making according to Art. 22 GDPR.
Does profiling take place?
We do not process your data by automated means with the objective of evaluating certain personal aspects (profiling).
Registration
Type and purpose of the processing
When you register on one of our portals (e.g. Sharepoint), we process your data to provide you with access and use of the portal. For this we process your data such as:
- First Name
- Last Name
- Company
- E-mail Address
- The user inputs either a phone number or an app for multi-factor authentication
Legal basis
The processing occurs according to Art. 6 Para. 1 (b) GDPR, and is necessary for the performance of a contract or in order to take steps at the request of the data subject prior to entering into a contract.
Recipients
Recipients of the data may be technical service providers, who work on the operation and maintenance of our website as the processor.
Retention period
The data will be deleted as soon as they are no longer required for the reason they were collected. This is generally the case, when the registration is no longer required.
Mandatory or required provision
The provision of the aforementioned personal data is neither legally nor contractually mandatory. Without your data however, the portals cannot be used.
Collecting general information during a visit to our website
Type and purpose of the processing
When you access our website – i.e. if you do not register or submit information – information of a general nature will be collected automatically. This information (server log files) contains the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and the like.
It is processed in particular for the following purposes:
- Ensuring an unproblematic website connection
- Ensuring seamless use of our website
- Analysis of system security and stability as well as
- For additional administrative purposes.
We will not use your data to draw conclusions about your person. This type of information will be statistically analysed by us if necessary to optimise our website and its underlying technology.
Legal basis
The processing occurs according to Art. 6 Para. 1 (f) GDPR, based on our legitimate interest in improving the stability and functionality of our website.
Recipients
Recipients of the data may be technical service providers, who work on the operation and maintenance of our website as the processor.
Retention period
The data will be deleted as soon as they are no longer required for the reason they were collected. This is generally the case, after the respective session has ended, for data that are used to make the website available.
Mandatory or required provision
The provision of the aforementioned personal data is neither legally nor contractually mandatory. Without the IP address however, the service and functionality of our website are not guaranteed. Furthermore, individual services can be unavailable or limited. For this reason, an objection is excluded.
Using script libraries (Google Webfonts)
Type and purpose of the processing
In order to present our content correctly and graphically appealing across all browsers, we use ‘Google Webfonts’ from Google LLC (1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereinafter ‘Google’) to display fonts on this website.
You’ll find the data protection guidelines of the library operator Google here: https://www.google.com/policies/privacy/
Legal basis
Your consent is the legal basis for the integration of Google Webfonts and the associated data transfer to Google (Art. 6 Para. 1 (a) GDPR).
Recipients
The use of script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – but currently also unclear whether and to what end – that the operator, in this case Google, will collect data.
Retention period
We do not collect any personal data via the integration of Google Webfonts.
You’ll find additional information on Google Webfonts at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.
Third country transfers
Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
Mandatory or required provision
The provision of your personal data is neither legally nor contractually required. However, the correct presentation of standard-fonts content is not possible without this provision.
Revocation of consent
The programming language JavaScript is regularly used to display content. Thus, you can opt out of the data processing by disabling JavaScript execution in your browser or by installing a JavaScript blocker. Please note that this may result in functional limitations on the website.
Embedded YouTube videos
Type and purpose of the processing
We embed YouTube videos on several of our websites. The operator of the respective plugins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (hereinafter ‘YouTube’). YouTube, LLC is a subsidiary of Google LLC, 1600 Amphitheater Pkwy, Mountain View, CA 94043, USA (hereinafter ‘Google’). When you visit a page with the YouTube plug-in, a connection to YouTube’s servers will be created, which tells YouTube which pages you visit. When you are logged into your YouTube account, YouTube can associate your browsing behaviour with you personally. You can prevent this by logging out of your YouTube account beforehand.
If a YouTube video is started, the provider uses cookies that collect information about user behaviour.
You will find additional information on the purpose and scope of the data collection and its processing by YouTube in the provider’s privacy policy, as well as additional information on your rights and setting options for protecting your privacy (https://policies.google.com/privacy). Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
Legal basis
Your consent is the legal basis for the integration of YouTube and the associated data transfer to Google (Art. 6 Para. 1 (a GDPR).
Recipients
Visiting YouTube automatically triggers a connection to Google. .
Retention period and revocation of consent
Everyone who has disabled the storage of cookies for the Google ad programme will not have to expect any cookies when watching YouTube videos. However, YouTube also stores non-personal usage information in other cookies. If you would like to prevent this, you must block the storage of cookies in the browser.
You’ll find additional information on data protection at ‘YouTube’ in the provider’s privacy policy at: https://policies.google.com/privacy.
Third country transfers
Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
Mandatory or required provision
The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this can lead to functional limitations on the website.
SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption methods (such as SSL) via HTTPS.
Revision of our privacy policy
We reserve the right to amend this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. Your next visit will be subject to the new privacy policy.
Questions for the data protection officer
If you have any questions pertaining to data protection, please send us an e-mail or contact the person responsible for data protection in our organization:
Data Protection Officer TSNET Services GmbH
c/o activeMind AG
Potsdamer Str. 3
80802 München (Munich)
D/Germany
Phone: +49 (0)89 919294-900
E-mail: dataprotection@tscnet.eu
The privacy policy was created via the activeMind AG privacy policy generator (Version: #2018-09-24).