THIS PRIVACY STATEMENT INFORMS YOU ABOUT THE PROCESSING OF PERSONAL DATA BY CLIMEDO HEALTH GMBH.
Thank you for visiting the website of Climedo Health GmbH (hereinafter referred to as: “Climedo”). The
protection of your data is particularly important to us, which is why we always comply with the applicable legal provisions on the protection of personal data and on data security. Our employees have each been extensively trained and committed to confidentiality and compliance with all data protection regulations. You can find out how your data is collected and for what purpose it is processed by us in the following data protection declaration.
The person responsible for data processing within the meaning of Art. 4 GDPR is exclusively:
Climedo Health GmbH
Schillerstraße 23a
80336 Munich
Germany
Telephone: +49 89 32209394 0
E-mail: info[at]climedo.de
Represented by the managing directors: Dragan Mileski, Sascha Ritz
If you have any questions about data protection or would like information about the collection, processing or use of your personal data, as well as requests to correct or delete your personal data, please contact us at the above address or the following e-mail address: datenschutz[at]climedo.de.
Our data protection officer is Schmalzer mind+engineering GbR.
Personal data is defined within GDPR as any information by which a natural person can be identified or
becomes identifiable. This includes, in particular, your name and e-mail address, which you provide to us
voluntarily on our website (e.g., when contacting us via our form or requesting a demo version).
Personal data also includes information about the use of our website. We collect information about the extent to which and from where you visit our website and which pages are of particular interest to you. We use your personal data for the following purposes and process them via so-called log files and cookies.
In order to provide you with a high level of data security, Climedo has implemented technical and
organizational measures to protect your personal data during data transmission and against third parties
gaining knowledge of it. These measures are checked and updated at regular intervals. However, we want to point out that absolute data security cannot be achieved on the Internet, even with extensive technical precautions. To increase the security of the transmission of your data, we use state-of-the-art technology and appropriate encryption procedures (e.g., SSL) via HTTPS.
The website provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This includes browser type and browser version, operating system used, referrer URL, host name of the accessing computer, time of the server request and the IP address (log data).
This data is not merged with other data sources. Log data is deleted regularly, but after two months at the latest.
The legal basis for this data processing is our legitimate interest in the provision of the website as well as in the technically error-free presentation within the meaning of Art. 6 par.1 sec. 1 lit. f) GDPR.
If you create a user account for the use of the application, your personal data will be processed in order to provide the application and to enable you to use it.
To create a user account, we need your name and your business e-mail address. No user account can be
created without this information. If you delete your user account or it is deleted for other reasons, your
personal data will be deleted, provided that no legal retention periods prevent deletion.
The legal basis for this data processing is the fulfillment of a contract or the implementation of pre-contractual measures in accordance with Art. 6 par.1 sec. 1 lit. b) GDPR.
If you use our contact form, the information you provide in the form, including the contact details given there, will be stored by us for the purpose of processing the enquiry and for follow-up questions. This data is stored and used by us exclusively for the purpose of responding to your request or for contacting you and the associated technical administration.
We use the contact form service of the provider HubSpot, Inc. (HubSpot Forms) 25 First Street, 2nd Floor, Cambridge, MA 02141 USA for the contact form.
When you use the contact form function, the following data is transmitted to HubSpot:
We have concluded a data processing agreement with the company HubSpot Inc. incorporating the current standard contractual clauses of the EU Commission (EU-SCC). The processing of personal data exclusively within the EU is contractually agreed. Nevertheless, we would like to point out that it cannot be completely ruled out that personal data will be transferred to the USA or that US security authorities will gain access to it.
We would also like to point out that HubSpot uses Google Fonts (Google Fonts) to provide its service and that it cannot be ruled out that personal data will be transmitted to the USA and that Google LLC as an American company or US security authorities will gain access to these. To use the functions of Google Tag Manager, it is necessary to process your IP address. This is usually transmitted to a Google server in the USA and also stored there. The provider of this site has no influence on this data transmission. If you are registered with a Google service, Google may associate your visit with your account and create a user profile.
The legal basis for the use of Hubspot is your consent in accordance with Art. 6 par.1 sec. 1 lit. a) GDPR.
The privacy policy of HubSpot and Google can be found here:
When you call up our website, so-called “cookies” (small text files) are stored by your browser. This is used to enable you to visit the website, to make our website appealing and to enable the use of certain functions. We also use various tools to collect and store information about your website visit. Below you will find information on how we use cookies and such tools.
Cookies can be used for various purposes, e.g., to recognize that your PC has already had a connection to a website (persistent cookies) or to save recently viewed offers (session cookies).
According to your browser settings regarding the use of cookies, the functionality of our website may be affected. It is possible that certain functions or areas will not be displayed to you.
Cookie banner and consent manager
When you first visit our website, you will see a cookie banner or a so-called Consent Manager. With your
selection, you either consent to the use of cookies or reject the use of cookies which are not necessary. In addition, you can use the selection menu to gradually consent or reject to the use of functional cookies or analysis and marketing cookies. You can revoke or change your settings at any time via the fingerprint widget displayed at the bottom left of the website. The settings you have made are saved via a cookie in your browser.
For obtaining and documenting your consent according to Art.6 par.1 sec.1 lit. a), Art.49 GDPR, §25 TDDDG, we use the cookie banner CookieFirst from Digital Data Solutions BV and have concluded a data processing agreement for this purpose with Digital Data Solutions B.V. (CookieFirst), Plantage Middenlaan 42a, 1018DH, Amsterdam, the Netherlands, with whom we concluded a data processing agreement according to Art. 28 GDPR.
For this purpose, Cookies are stored on your device, which allocate an individual ID to you for the duration of the session and manage the status of your consent („e.g., accept all“, „decline all“). The purpose of this processing is to obtain, document, and manage your consent for individual data processing (legal requirement).
The legal basis of the processing is the fulfillment of our legal obligation under Article 6 par.1 sec.1 lit.(c) GDPR to obtain your consent to the provision of cookies and to provide a way to withdraw or modify this consent. Further, Art. 6 par.1 sec.1 lit. f) GDPR applies, due to our legitimate interest in the provision of a compliant and technically efficient management of your consent, for the fulfillment of legal obligations emerging from GDPR.
Data (Cookies and Logfiles for our duty according to Art.5 (2) GDPR) will be deleted once the purpose no longer exists, at the latest after one (1) year.
We use “Google Tag Manager” on our website, a service provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as “Google”).
We use Google Tag Manager as a “functional” solution to manage and provide further services via so-called website tags. Google Tag Manager itself does not collect any personal data, but provides for the triggering of other services, which in turn may collect personal data.
For the purpose of processing, we have concluded a data processing agreement with Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, incorporating the current standard contractual clauses of the EU Commission (EU SCC).
We would like to point out that it cannot be ruled out that personal data will be transferred to the USA and that Google LLC, as an American company, or US security authorities will have access to it. To use the functions of Google Tag Manager, it is necessary to process your IP address. This may be transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If you are registered with a Google service, it is possible that Google can assign the visit to your account and create a user profile.
The legal basis for this processing is our legitimate interest as defined in Art. 6 par. 1 sec. 1 lit. a) GDPR.
More information on the handling of user data can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=de.
If you have given your consent, Google Analytics, a web analytics service provided by Google LLC, is used on our website. The responsible service provider in the EU is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
Google Analytics uses cookies that enable an analysis of your use of our websites. The information about your user behavior collected by means of the cookies is usually transferred to a Google server in the USA and stored there.
You can refuse the collection of data which is collected via cookies and your use of the website (incl. your IP address) by Google as well as the processing by Google by selecting the appropriate settings on your browser, i.ee, declining not technically relevant cookies or declining analytical and marketing cookies.
We use the “AnonymizeIP” function (so-called IP masking). Due to the activation of this so-called IP
anonymization on our website, your IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
On our behalf, Google will use this information to evaluate your website usage data, which has been
pseudonymized by IP masking, and to compile reports on website activity. The reports provided by Google Analytics are used by us to analyze the performance of our website and to measure the success of our marketing campaigns.
During your visit to the website, the following data is collected, among others:
For the purpose of processing, we have concluded a data processing agreement with Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, incorporating the current standard contractual clauses of the EU Commission (EU-SCC).
We would like to point out that it cannot be ruled out that personal data will be transmitted to the USA and that Google LLC, as an American company, or US security authorities will gain access to it. Through the integration of Google Analytics, Google receives the information that you have called up the relevant part of our website or clicked on an advertisement from us. If you are registered with a Google service, it is possible that Google can assign the visit to your account and create a user profile.
The legal basis for this data processing is your consent in accordance with Art. 6 par. 1 sec. 1 lit. a) GDPR.
For more information on the terms of use of Google Analytics and data protection at Google, refer to:
If you have given your consent, Mouseflow, a web analytics service, is used on our website. The responsible service provider in the EU is Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark (“Mouseflow”). Mouseflow uses cookies that enable an analysis of your use of our websites. The information about your user behavior collected by means of the cookies is transferred to a server in the EU and stored there.
Mouseflow provides session replay, heatmaps, funnels, form analytics, feedback campaigns, and similar
features/functionality. Mouseflow may record your clicks, mouse movements, scrolling, form fills (keystrokes) in non-excluded fields, pages visited and content, time on site, browser, operating system, device type (desktop/tablet/phone), screen resolution, visitor type (first time/returning), referrer, anonymized IP address, location (city/country), language, and similar data.
Mouseflow does not collect any information on pages where it is not installed, nor does it track or collect
information outside your web browser. You can opt-out of Mouseflow tracking any of your visits on websites using Mouseflow by using your current browser at https://mouseflow.com/opt-out.
The legal basis for this data processing is your consent in accordance with Art. 6 par. 1 sec. 1 lit. a) GDPR.
For more information, see Mouseflow’s Privacy Policy at http://mouseflow.com/privacy/.
For more information on Mouseflow and GDPR, visit https://mouseflow.com/gdpr/.
Through our website, you can access our publicly accessible profile pages on social media and business portals via individual links. In the following, we inform you about the data processing of the websites we use on social and business networks.
The legal basis for operating these profile pages is our legitimate interest pursuant to Art. 6 par.1 sec. 1 lit. f) GDPR to present our company comprehensively on the internet and to get in touch with other users, interact with them and answer enquiries. We would like to point out that we have no influence on the data processing of these networks, in particular the analysis processes carried out by social networks, and that these processing operations may be based on different legal grounds to be specified by the social media operators (e.g., consent within the meaning of Art. 6 par. 1 sec. 1 lit. a) GDPR).
In any case, please observe the respective data protection declarations of the individual providers!
Social networks such as Facebook, Twitter etc. can generally analyze your user behavior extensively when you visit their website or a website with integrated content such as Like buttons or advertising banners. When visiting our social media sites, you may be subject to the following data processing:
If you are logged into your account on the respective platforms and visit our profile page there, the operator can assign this to your user account.
However, your personal data may also be collected via cookies or by processing your IP address if you are not logged in or do not have an account with the respective provider.
With this data, the operators create so-called user profiles in which your interests and actions that you
perform on the internet are stored in order to use your profile data for their own purposes, if necessary.
If you visit one of our profile pages, we may be jointly responsible with the operator for data processing. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data
portability and complaint) both with us and the respective provider.
If you share, “like” or comment on our posts, we process this information about the interaction as well as your profile data. In addition, we may contact users directly if the information in their profile has aroused our interest. In doing so, we process the available profile data.
Data collected directly by us via our profile pages as well as personal data that you transmit to us as part of a contact request are deleted from our systems as soon as the purpose for storing the data no longer applies, you request us to delete the data or revoke your consent to storage. Mandatory legal provisions such as retention periods remain unaffected.
We have no influence on the storage period of your data that is processed by the operators of social or
professional networks for their own purposes. Please refer to the terms of use and data protection
declarations of the individual providers.
We operate a profile page on Facebook. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
We would like to point out that we have no influence on the data processing by Facebook and that it cannot be ruled out that personal data is transmitted to the USA or that US security authorities gain access to it. Information on the purpose and scope of data processing by Facebook as well as the related rights and setting options for protecting the privacy of users can be found in Facebook’s privacy policy:
There is joint responsibility with Facebook for data processing pursuant to Art. 26 GDPR. Information on which data processing Facebook is responsible for can be found at the following link:
We operate a profile page on Instagram. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
As part of Meta Platforms, the same data processing conditions apply to Instagram as described for Facebook. Information on data protection at Instagram can be found here:
We operate a profile page on Twitter (X). The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
We would like to point out that we have no influence on data processing by Twitter and that it cannot be ruled out that personal data may be transmitted to the USA or that US security authorities may gain access to it. Information on the purpose and scope of data processing by Twitter as well as the related rights and setting options for protecting the privacy of users can be found in Twitter’s privacy policy:
There is joint responsibility with Twitter for data processing pursuant to Art. 26 GDPR. Information about which data processing Twitter is responsible for can be found at the following link:
We have a business profile on XING. The provider is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.
If you are interested in working with us or in our job advertisements, you have the option of contacting us via our XING profile. In doing so, the available profile data (e.g., job title, company name, industry, education, work experience, skills, contact options, photo) as well as the content of the message will be processed by us in order to handle your request.
In addition, the legal basis for this data processing is Art. 6 par.1 sec. 1 lit. b) GDPR for the fulfillment of a contract or the implementation of pre-contractual measures with potential employees.
There is joint responsibility for data processing with XING pursuant to Art. 26 GDPR. Information on the purpose and scope of data processing by XING as well as the related rights and setting options for protecting the privacy of users can be found in XING’s privacy policy:
We operate a company profile on the LinkedIn portal, a service of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
If you are interested in working for us or in our job advertisements, you have the option of contacting us via our LinkedIn profile. In doing so, we will process the available profile data (e.g., job title, company name, industry, education, work experience, skills, contact details, photo) as well as the content of the message in order to process your request.
In addition, the legal basis for this data processing is Art. 6 par.1 sec. 1 lit. b) GDPR for the performance of a contract or for the implementation of pre-contractual measures with potential employees.
We have concluded a data processing agreement with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, incorporating the current standard contractual clauses of the EU Commission (EU-SCC).
We would like to point out that we have no influence on data processing by LinkedIn and that it cannot be ruled out that personal data will be transmitted to the USA or that US security authorities will gain access to it.
Information on the purpose and scope of data processing by LinkedIn as well as the related rights and setting options for protecting the privacy of users can be found in LinkedIn’s privacy policy:
We have integrated YouTube content on our website in order to provide you with further information. YouTube is a video content visualization service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
By actively viewing the relevant content via the YouTube platform, you agree to the terms of use of YouTube and Google. Further services are also provided and loaded by Google when using Youtube. These services are Google Photos, Google Video and Google Fonts, which Google uses to provide Youtube.
We would like to point out that we have no influence on the data processing by Youtube or Google in this
respect and that it cannot be ruled out that personal data will be transmitted to the USA and that Google LLC as an American company or US security authorities will gain access to it. By transmitting the contents of Youtube and loading further services such as Google Photos, Google Video, and Google Fonts, Google receives the information that you have accessed the corresponding contents via our website. If you are registered with a Google service, it is possible that Google can assign the visit to your account and create a user profile.
Information on the purpose and scope of data processing by Youtube or Google, as well as the relevant rights and settings options for protecting the privacy of users, can be found here:
We use Hubspot (HubSpot CMS / HubSpot Forms) to inform you about events we are hosting and for the
purpose of direct marketing and newsletter distribution. If we process your personal data for direct marketing purposes, you have the right to object to the processing at any time with effect for the future.
You can unsubscribe from our newsletters at any time in your emails by clicking on the link (“Unsubscribe”) at the end of the respective newsletter.
We use the provider HubSpot, Inc, 25 First Street, 2nd Floor, Cambridge, MA 02141 USA to send newsletters.
We have concluded a data processing agreement with HubSpot Inc., incorporating the current standard
contractual clauses of the EU Commission (EU-SCC). The processing of personal data exclusively within the EU is contractually agreed. Nevertheless, we would like to point out that it cannot be completely ruled out that personal data will be transferred to the USA or that US security authorities will gain access to it.
We would also like to point out that HubSpot uses Google Fonts (Google Fonts) to provide its service and that it cannot be ruled out that personal data will be transmitted to the USA and that Google LLC as an American company or US security authorities will gain access to these. To use the functions of Google Tag Manager, it is necessary to process your IP address. This may be transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this Data transmission. If you are registered with a Google service, it is possible that Google can assign the visit to your account and create a user profile.
The legal basis for the use of HubSpot is your consent in accordance with Art. 6 par. 1 sec. 1 lit. a) GDPR.
The privacy policy of HubSpot and Google can be found here:
– https://legal.hubspot.com/de/privacy-policy
– https://policies.google.com/privacy?hl=de
Lemlist
We use the provider Lemlist to send personalized emails with relevant content to our contacts. In doing so, Lemlist stores the contact’s name, email address and company name, as well as information about the contact’s activity in relation to these emails. Information from the contact lists is only used for legal
requirements, billing and for the purposes of providing customer care services.
We have entered into a data processing agreement with lempire SAS, 128 rue La Boétie, 75008 Paris (Lemlist) for this purpose.
Lemlist’s privacy policy can be found here:
– https://www.lemlist.com/privacy-policy
The legal basis for the use of Lemlist is our legitimate interest pursuant to Art. 6 par.1 sec. 1 lit. f) GDPR to provide our contacts with up-to-date information about the company and our products.
Climedo Connect
You can register for the digital meetings as part of our interactive event format “Climedo Connect”. These meetings are provided via a Zoom link and are conducted and recorded via the Zoom platform.
For this purpose, we have concluded a data processing agreement with Zoom Video Communications, Inc, 55 Almaden Blvd, Suite 600, San Jose, CA 95113 USA, which contains the current standard contractual clauses of the EU Commission (EU-SCC) and refers to the current EU-U.S. data privacy framework. Further information on data protection at Zoom can be found at https://explore.zoom.us/en/privacy/ and https://www.dataprivacyframework.gov/list.
When using Zoom, we will record our screen presentation and the speakers so that your video and name are not included in the recording. After the presentation has concluded, we will stop the recording and no longer record the Q&A part. Accordingly, your information (e-mail address and/or name within the Zoom application) will only be accessible to the participants of the meeting for the duration of the meeting. Neither Zoom nor Climedo will have access to the full list of participants after the meeting has concluded.
The legal basis for this data processing is your consent during sign-up in accordance with Art. 6 para. 1 subparagraph 1 lit. a) GDPR.
Google Workspace
As part of our business operations, we use Google Workspace for email communication and video
conferencing, among other things. For this purpose, we have concluded a data processing agreement with Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, incorporating the current standard contractual clauses of the EU Commission (EU SCC). The processing of personal data exclusively within the EU is contractually agreed.
Nevertheless, we would like to point out that it cannot be completely ruled out that personal data may be transferred to the USA or that US security authorities may gain access to it.
All data that you provide to us in the context of contacting us or in the context of a video conference, as well as your email and IP address and other data that is absolutely necessary for sending and receiving mail, will be stored on Google’s servers in the European Economic Area.
The legal basis for this data processing is the fulfillment of a contract or the implementation of pre-contractual measures pursuant to Art. 6 par. 1 sec.1 lit. b) GDPR or our legitimate interest in the smooth internal processing of our business operations pursuant to Art. 6 par. 1 sec. 1 lit. f) GDPR.
Your data will only be stored for as long as is necessary for the above-mentioned purpose. The stored data will be deleted after the purpose of processing has ceased to apply and in accordance with the statutory retention periods.
You can find Google’s privacy policy and terms of use here:
Information on the IT security of Google Workspace can be found here:
E-mail communication
If you contact us by e-mail, we process your name, your contact details including your e-mail address and the information you have otherwise provided. This data is stored and used exclusively for the purpose of responding to your request or for contacting you and the associated technical administration.
We use Gmail as our e-mail provider. We use it to receive and send all e-mails in the course of communicating with customers and conducting business. Refer to the links above for details.
Video conferencing
We use the Google Meet service for video conferences. We use it for online communication with customers and applicants as well as for internal communication within our company.
Google Meet collects and stores various data about the participants in the conversation. This includes IP
addresses, email addresses and device names. In addition, conversation content such as sent files and chat histories are stored by Google. Refer to the links above for details.
Our meetings with (potential) customers and applicants might be recorded and forwarded to TL;DV servers in order to have them transcribed by an AI service. For this purpose, we have signed a data processing agreement with (TL;DV) tldx Solutions GmbH, Kaiser-Friedrich-Allee 51, 52074 Aachen, incorporating the current standard contractual clauses of the EU Commission (EU SCC). The processing of personal data exclusively within the EU is contractually agreed. Meet recordings or transcripts will not be used to train Language Learning Models (LLMs) and will be hosted on European servers exclusively.
TL;DV will use your name, company affiliation, email address, video and voice in order to allocate speech and transcribe it subsequently. Some of these datasets will be anonymized prior to forwarding them to the AI (name, email address, company affiliation). TL;DV splits up meetings into small excerpts and forwards them in randomized order, so that the AI cannot allocate meetings snippets to each other or reconstruct entire meetings.
The legal basis for this data processing is our legitimate interest in the smooth processing of our business operations in accordance with Art. 6 para. 1 subparagraph 1 lit. f) GDPR. Meetings with you are only recorded if you agree to the data processing.
Signatures
We use PandaDoc as certified eSignature service. If your company is interested in receiving an offer for using our software, we might ask you to sign via PandaDoc. For this purpose, we have concluded a data processing agreement with PandaDoc, Inc., 3739 Balboa St. #1083, San Francisco, CA 94121 USA, incorporating the current standard contractual clauses of the EU Commission (EU-SCC). PandaDoc hosts data on cloud-based servers in the European Union which are operated by a service provider, nevertheless, your data might still be processed or stored in the USA. During your use of PandaDoc, the following data is collected and processed.
Your name and email address, your IP address, your approximate location (region), including timestamps for when the document was sent for signature, viewed, and signed. The same signature process may be used for applications and resulting contract signatures with Climedo (in case applicants are recruited by Climedo).
The legal basis for this data processing is the fulfillment of a contract or the implementation of contractual measures pursuant to Art. 6 par. 1 sec.1 lit. b) GDPR and our legitimate interest in the smooth internal processing of our business operations pursuant to Art. 6 par. 1 sec. 1 lit. f) GDPR.
We process personal data of interested parties and applicants for the purpose of handling the application process. The processing of this applicant data is carried out via Personio.
We have concluded a data processing agreement with Personio SE & Co. KG, Seidlstraße 3, 80335 Munich, Germany, for the selection of applicants, the provision of job offers and the capturing of potential applicant data.
We use Personio to provide our job offers and to record potential applicant enquiries. After successful completion of the application process, the data is transferred internally within Personio. All data processed via Personio as part of an application process will be deleted no later than 6 months after completion of the application process.
The legal basis for this data processing is our legitimate interest in the technically flawless provision of our application portal pursuant to Art. 6 par. 1 sec. 1 lit. f) GDPR. You have the right to object to this form of processing of your personal data pursuant to Art. 21 GDPR.
If we conclude an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded between the applicant and Climedo, the application data will be automatically deleted within 6 months of receipt of the application, unless you have consented to further processing of your application documents in our talent pool.
If an employment relationship has not been established within 6 months after entry in our talent pool, we will permanently delete your personal data. Any legal retention periods are excluded from this.
The legal basis for this data processing in the context of an application process is Art. 6 par. 1 sec. 1 lit. b) GDPR for the fulfillment of a contract or the implementation of pre-contractual measures with potential employees. Processing of your personal data in our Talent Pool is based on your consent in accordance with Art. 6 par. 1 sec. 1 lit. a) GDPR.
You have various rights under the GDPR, which arise from Art. 15 to 18, 20, 21 GDPR:
a. Right to information
You may request information in accordance with Art. 15 GDPR about your personal data processed by us. In your request for information, you should specify your request in order to make it easier for us to compile the necessary data. Please note that your right to information may be restricted under certain circumstances in accordance with legal provisions (in particular Art. 34 BDSG).
b. Right to rectification
If the information concerning you is not (or no longer) accurate or incomplete, you may request that it be corrected or completed in accordance with Art. 16 GDPR.
c. Right to deletion
You may request the deletion of your personal data under the conditions of Art. 17 GDPR. However, your right to deletion depends, among other things, on whether the data concerning you is still needed by us to fulfill our legal obligations.
d. Right to restriction of processing
Within the framework of the requirements of Art. 18 GDPR, you have the right to request a restriction of the processing of the data concerning you.
e. Right to data portability
Pursuant to Art. 20 GDPR, you have the right to receive the personal data concerning you that you have
provided to us in a structured, common and machine-readable format, and you have the right to transfer this data to another controller without hindrance, provided that the processing is based on your consent or on a contract between you and us and the processing was carried out with the help of automated procedures. Where applicable, you also have the right to have the data transferred directly from us to another controller, insofar as this is technically feasible.
f. RIGHT TO OBJECT
ACCORDING TO ART. 21 GDPR, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU, WHERE THE PROCESSING IS CARRIED OUT ON THE BASIS OF ARTICLE 6 PAR. 1 SEC. 1 LIT. E) OR F) GDPR. WE WILL NO LONGER PROCESS THE PERSONAL DATA UNLESS LEGALLY OBLIGED TO DO SO.
IF PERSONAL DATA ARE PROCESSED FOR DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING FOR THE PURPOSE OF SUCH MARKETING AT ANY TIME. THE PERSONAL DATA WILL THEN NO LONGER BE PROCESSED FOR THIS PURPOSE.
g. Right to revoke the declaration of consent
If you have given consent to the use of data, you can revoke this at any time with effect for the future. You can change or revoke your consent to the storage of cookies at any time via the settings in the cookie banner on our website. Alternatively, you can delete the cookies in your browser. If you call up our website again or reload it after deleting the cookie, you will be asked again whether or to what extent you wish to consent to the processing of your personal data.
i. Right to complain to a supervisory authority
If you wish to exercise your rights described above or have any questions about data protection, please contact us by email at datenschutz[at]climedo.de or in writing at the postal address given above.
In any case, you have the right to complain to a competent supervisory authority.
Climedo reserves the right to make changes to the Privacy Policy at any time with effect for the future. When such an update is made, the date of the last amendment referred to below will also be updated. Any changes made to our Privacy Policy will always be available at this location so that Climedo users will always be aware of the information we collect and how we may use and disclose it. We therefore recommend that you regularly check the current privacy policy.
Please note: This Privacy Policy was translated from the German for your convenience. The German version is binding.
Privacy Policy | Version 3.0 | Status: 01.07.2024