Privacy Protection

Privacy protection seal

Introduction:

We take the protection of your personal data very seriously and want you to be secure when visiting our website. Our data protection practice follows, in particular, the standards of the EU General Data Protection Regulation, the German Federal Data Protection Act (BDSG-neu) and the German Telemedia Act (TMG). We would like to take this opportunity to provide information regarding the type, scope, and purpose of the processing of your personal data. We would like to point out in advance that this Privacy Policy refers solely to our websites and does not apply to third-party websites to which we refer in the form of links.

Subject of protection:

What is the personal data being protected? This is all information relating to an identified or identifiable natural person (hereinafter “data subject”). This includes, in particular, information that makes it possible to identify your identity (for example, details such as name, postal address, email address and telephone number).

Technical requirements:

In order to connect to our website, your browser transmits certain data to the web server of our website. This is technically necessary to enable the website to provide the information you request. To make this possible, your IP address, the date and time of your request and the type of your operating system and other data will be stored and used for a maximum of 30 days. To safeguard our legitimate interest, we reserve the right to store this data for a limited time so that we may arrange for personal data to be derived in the event of unauthorised access or intentional harm caused to us (Art. 6 (1) (f) GDPR). The data will only be kept or forwarded by us without prior notification and request for your permission for these and no other purpose. (Please match the data with the actual stored data!!)

Cookies

Cookies are small text files that are stored by your browser on your computer or mobile device to, for example, detect if you repeatedly visit websites from the same device or browser. In general, we use cookies to analyse the level of interest in our website and to improve the user-friendliness of our website. In principle, you can also access our website without cookies.

Cookies can usually be disabled or removed using tools that are available in most commercial browsers. The settings must be separately determined for each browser you use and changed individually. Different browsers provide different functions and options.

To make full and comfortable use of our website, you should accept those cookies that enable the use of certain functions or make usage more convenient. You can learn about the purpose for which we use cookies and for how long they are stored in the following overview:

Cookie-List:

Cookie Name Provider Function Valid for
pll_language ginstr Saves the language setting of the last visit to the website  9 hours
cookie_notice_accepted ginstr Saves the visitor’s acceptance of cookies  30 days
_gid ginstr For a clear distinction between user and update rates 1 day
_icl_current_language ginstr Saves the currently used language on the web page  1 day
wplc_chat_status ginstr Use of chat on the website  1 day
wplc_cid ginstr Caches visitor information for the chat such as name and email address..  1 day
nc_status ginstr Necessary for detecting the availability of ginstr staff for the chat.  1 day

The information text on our cookie banner informs you about the use of these cookies when you visit our website, which you accept by continuing to use the website or by clicking on the “OK” button.

Cookie types:

A detailed explanation of the most common types of cookies can be found below:

  1. Session cookies:

Session cookies allow users and their changes within a web page to be recognised. They allow the website to track users’ movements across pages so that information that has already been entered/saved does not have to be re-entered/saved. An example of this are shopping carts in web shops. The session cookie stores the selected products in the shopping cart so that this contains the correct items when paying at the checkout. Session cookies are deleted when logging out, or lose their validity as soon as the session automatically expires.

2. Persistent cookies:

A persistent cookie stores users’ information and settings on the user’s computer until its expiry date. This results in faster and more convenient access since, for example, you do not have to change language settings again, or do not need to re-enter login information. The cookie will be automatically deleted after the end of the storage period.

3. Third-party cookies:

Third-party cookies usually have no influence over the use of the site, since they do not originate from the site operator. They serve the purpose, for example, of collecting information for advertising, user-defined content and web statistics and transferring this to the respective third-party provider.

4. Tracking Cookies:

Tracking cookies are special text files that enable data about the internet user’s behaviour to be collected. Using this method, information about the user’s interests is collected in order to, for example, launch tailor-made advertising offers. Tracking cookies are therefore not just set when you log in, but automatically when you visit the website.

The above examples of the most common forms of cookies should give you a global overview of this collection form. No claim for completeness is made regarding these statements. As a consequence of technical IT development, it can be expected that further types of cookies will be developed over time. Please regularly check our Privacy Policy for current changes before using our website.

Users of our contact form:

Contact forms are available on our website that can be used to make contact electronically. To ensure secure transmission of your data, we guarantee an encrypted connection during transmission. By clicking the “Send” button, you consent to the transmission of the data entered in the input mask. We store your name and email address and, if necessary, other information provided by you in order to contact you and to answer your inquiries in the best possible way. On the one hand, this allows us to provide the service you expect from us and, on the other, it allows us to continually improve ourselves (Art. 6 (1) (f) GDPR).

During the application process, we process personal data in compliance with the provisions of the GDPR and the latest version of the FDPA if this is necessary for the decision on the establishment of an employment relationship with us. The legal basis for this is Art. 88 GDPR in conjunction with Section 26 FDPA (new) and, if applicable, Art. 6 (1) b GDPR on the initiation or implementation of contractual relationships.

We may also process your personal data if this is necessary to fulfil legal obligations (Art. 6 (1) c GDPR) or to defend against legal claims asserted against us. The legal basis is Art. 6 (1) (f) GDPR. The legitimate interest is, for example, a burden of proof in proceedings under the General Act on Equal Treatment (Allgemeines Gleichbehandlungsgesetz, AGG). If you give us your express consent to process personal data for specific purposes, this processing on the basis of your consent shall be deemed to be lawful in accordance with Art. 6 (1) a GDPR.

If an employment relationship arises between you and us, we may, pursuant to Art 88 GDPR in conjunction with Section 26 FDPA (new), process the personal data already provided by you for employment purposes, to the extent that this is necessary for the performance or termination of the employment relationship or in order to exercise or fulfil the rights and obligations of the employee representatives resulting from a law, a collective bargaining agreement, or a company or works agreement.

When you register for the ginstr web application on our website or download an app through our ginstr app store, the following information is collected solely for the purpose of managing your user account and contractual relationship: Name, address, company, email address and password, telephone number and your notes.

In addition, registered users can enter usage data via the ginstr web, which we store for you. You may delete this data at any time, and it will be automatically deleted after a period of one month following deletion of the account.

Further general information:

Changes to this Privacy Policy

We regularly review the Privacy Policy for compliance with legal provisions, with jurisprudence, with the statements of the regulatory authorities, as well for alignment with emerging trends and technical standards. In this respect, we reserve the right to change the Privacy Policy in order to adapt it to new legal provisions regarding data protection and other changes to the state of affairs or legal situation. Therefore, please always read about this in currently valid Privacy Policy before using our website.

Who is responsible for data processing? (Art. 13, (1) (a), (b) GDPR)

ginstr GmbH is responsible for data processing on our website. The contact details can be found in the Imprint: https://www.ginstr.com/imprint/

Our data protection officer can be reached at the following address:

ginstr GmbH
For the attention of the data protection officer
Stendaler Str. 26
12627 Berlin

Email: Datenschutz@ginstr.com

Tel.: +49 (30) 20898500-1.

Who receives your personal data? (Art. 13, (1) (e), (f) GDPR)

We treat your personal data confidentially and generally do not pass it on to third parties, unless you have given your consent, or the provision is made on the basis of a legal or contractual obligation. In isolated cases, we commission processors to process your personal data. This is done on the basis of a data processing contract pursuant to Art. 28 GDPR.

How long will my data be stored? (Art. 13 (2) (a) GDPR)

The legislator has issued a variety of storage obligations and deadlines.

In principle, we only store your data for as long as required by law.

We store your personal applicant data as long as this is necessary for the decision on your application. Your personal data or application documents will be deleted no later than six months after completion of the application procedure (e.g. notification of the rejection decision), unless longer storage is legally necessary or permissible. If the application procedure leads to an employment relationship, an apprenticeship relationship or an internship relationship, your data will, if necessary and permissible, initially continue to be stored and then transferred to the personnel file.

After this period, the corresponding data will be routinely deleted if it is no longer required to fulfil a contract. We store the data that we process on the basis of your consent until revocation or for as long as the data is needed. We store data that we process on the basis of a legitimate interest as long as the legitimate interest exists and you have not objected to the processing.

Commercial legal or financial data from a completed financial year will be deleted in accordance with the legal provisions after a further ten years, as long as no longer retention periods are prescribed or required for justified reasons. If data is not subject to specific retention periods, it will be deleted if the purposes for which it is processed cease to exist.

For what purposes we process your data and on what legal basis? (Art. 13 (1) (c), (d) GDPR)

The purposes and legal basis of the data processing are explained above. In addition, the following generally applies: If necessary, we process your data for the protection of our legitimate interests or those of third parties in accordance with Art. 6 (1) (f) GDPR; for example, for the assertion legal claims and defence in legal disputes or to ensure IT operations and security.

If we have a legitimate interest in or have received your written consent for the processing of your personal data, we process your data for external communication and marketing purposes on the basis of Art. 6 (1) (a) or (f) GDPR. You have the right to withdraw your consent at any time.

To fulfil legal requirements, we may or must process your data and transfer it to third parties where necessary (pursuant to Art. 6 (1) (c)).

We do not use your data in any way for automated decision-making or profiling.

What rights and obligations do you have? (Article 13 (2) (b), (c), (d) (e) GDPR)

Every data subject has the following rights:

  • Art. 15 GDPR gives you the right to information. This means that you can request confirmation from us as to whether personal data concerning you is processed by us.
  • Art. 16 GDPR gives you the right to rectification. This means that you can ask us to correct your incorrect personal data.
  • Art. 17 GDPR gives you the right to erasure (“right to be forgotten”). This means that you can request for personal data concerning you to be immediately deleted – unless we cannot delete your data because, for example, we have to comply with statutory storage requirements.
  • Art. 18 GDPR gives you the right to restrict processing. This means that we are practically no longer allowed to process your personal data – only to store it.
  • Art. 20 GDPR gives you the right to data portability. This means you have the right to receive your personal data that you provided to us in a structured, common and machine-readable format and to transmit this data to another controller.
  • Art. 7 para. 3 GDPR gives you the right to revoke your consent at any time with future effect.
  • Art. 13 GDPR gives you the right to appeal to the competent supervisory authority.

Art. 21 GDPR also gives you the right to object. This means that you can at any time object to the processing of personal data concerning you on the basis of Article 6 (1) (e) or (f).

If you wish to make use of your rights, please contact the data protection officer in writing (by post or via email) (see contact details above).

Supervisory authority

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstrasse 219
10969 Berlin
Tel.: +49 (30) 13889-0.
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de

If you have any further questions about privacy, feel free to contact our data protection officer using the contact information above.