Processing of (personal) data by the entity in charge of the online application process
General information
This data privacy statement, which refers exclusively to data collected as part of the online application process, is to inform you about how your personal data that is collected as part of the online application process is handled at our end.
The controller
The controller under data protection law is:
BaseBeyond GmbH
August-Bebel-Allee 1, D-28329 Bremen
Phone: +49 421 223 370 30
Commercial register entry number: HRB 23353HB
Registration Court: Bremen
Data Protection Officer:
Christina Webersohn
WS Datenschutz GmbH
Dircksenstraße 51, D-10178 Berlin
https://webersohnundscholtz.de
basebeyond@ws-datenschutz.de
Personal data collected as part of the application process
Personal data means any information concerning the personal or material circumstances of an identified or identifiable individual. This includes information such as, for example, your name, address, telephone number and date of birth, but also data relating to your specific career etc. by reference to which a specific individual can be identified with reasonable effort. However, information which cannot be (in)directly associated with your real-life identity is not personal data.
Fundamentals and purposes of processing personal data collected from application documents and during the application process
If you apply to us electronically, i.e. via e-mail or using our online form, we will collect and process your personal data for the purpose of executing the application process and preparing contracts.
By submitting an application via our recruitment website, you express your interest in taking up work with us. In this context, you transmit personal data, which we will use and store exclusively for the purpose of your job search / application process.
In particular, the following data is collected during this process:
name (first and last names)
e-mail address
phone number
LinkedIn profile (optional)
Furthermore, you can choose to upload expressive documents such as a cover letter, your CV and reference letters. These may contain additional personal data such as date of birth, address etc.
Only authorized HR staff and/or staff involved in the application process have access to your data.
The personal data is stored, as a rule, exclusively for the purpose of filling the vacancy for which you have applied.
Your data will be stored for a period of 92 days after the application process has been concluded. This is usually done to fulfill legal requirements and/or defending ourselves against any claims arising from legal provisions. After this period, we are obligated to delete or anonymize your data. In case of anonymization, the data will only be available to us in the form of so-called metadata, without any direct personal reference, for statistical analysis (for example, share of male and/or female applicants, number of applications per specified period of time etc.).
Furthermore, we reserve the right to store your data for 2 years after the application process has been concluded for the purpose of adding it to our Talent Pool in order to identify any other vacancies that may be of interest to you. This includes, for example, applications for apprenticeships or internships. By accepting the data privacy statement, you consent to any further storage of your data as well as its inclusion in our Talent Pool.
Should you be offered and accept a position with us during the application process, we will store the personal data collected as part of the application process for at least the duration of your employment.
Disclosure of data to third parties
Data transmitted as part of your application will be transferred using TLS encryption and stored in a database. This database is operated by Personio GmbH, which offers a human resource and applicant management software solution (https://www.personio.com/legal-notice/). In this context, Personio is our processor under article 28 of the GDPR. In this case, the processing is based on an agreement for the processing of orders between us as the controller and Personio.
Rights of data subjects
If we as the controller process personal data, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and the purpose of the processing, in particular the right of access (article 15 of the GDPR) and the rights to rectification (article 16 of the GDPR), erasure (article 17 of the GDPR), restriction of processing (article 18 of the GDPR), and data portability (article 20 of the GDPR), as well as the right to object (article 21 of the GDPR). If the personal data is processed with your consent, you have the right to withdraw this consent under article 7 III of the GDPR.
To assert your rights as a data subject in relation to the data processed during this online application process, please refer to our Data Protection Officer (see item 2).
Concluding provisions
We reserve the right to adjust this data privacy statement at any point in time to ensure that it is in line with the current legal requirements at all times, or in order to accommodate changes in the application process or other processes. In this case, the new data privacy statement applies to any later visit of this recruitment website or any later job application.
In addition to this data privacy statement, please view our general data privacy statement at https://basebeyond.com/imprint/
Processing of (personal) data by the operator of the recruiting website
General
This recruiting site is operated by Personio SE & Co. KG, a company based in Germany that offers personnel administration and application management software (https://www.personio.de/impressum/). The data transmitted as part of your application is transmitted using TLS encryption and stored in a database. The company that carries out this online application process is solely responsible for this data within the meaning of Art. 24 GDPR. Personio is only the operator of the software and this recruiting site and, in this context, the processor in accordance with Art. 28 GDPR. The basis for processing by Personio is a contract for order processing between the responsible body and Personio. In addition, Personio SE & Co. KG processes further data, some of which may also be personal data, in order to provide its services, in particular for the operation of this recruiting site. This will be discussed in more detail below.
Responsible body
The responsible body within the meaning of data protection law is:
Personio SE & Co. KG
Seidlstrasse 3
80335 Munich
Tel.: +49 (89) 1250 1005
Registration in the commercial register
Registration number: HRA 115934
Registration court: Munich District Court
Data protection officer: datenschutz@personio.de
Access logs (“server logs”)
Every time this recruiting page is accessed, general log data, so-called server logs, are automatically recorded. These data are usually pseudonyms and therefore do not allow any conclusions to be drawn about a natural person. Without this data, it would sometimes not be technically possible to deliver and display the contents of the software. In addition, the processing of this data is absolutely necessary for security reasons, in particular for access, input, forwarding and storage control. In addition, the anonymous information can be used for statistical purposes and to optimize the offer and technology. In addition, the log files can be subsequently checked and evaluated if illegal use of the software is suspected. The legal basis for this can be found in Section 25 Paragraph 2 Sentence 2 TTDSG. General data collected is the domain name of the website, the web browser and web browser version, the operating system, the IP address and the time stamp of access to the software. The scope of this logging does not exceed the usual scope of any other website on the Internet. The storage period for these access logs is up to 7 days. There is no right to object.
Error logs
For the purpose of identifying and correcting errors, so-called error logs are created. This is absolutely necessary in order to be able to react to possible problems in the presentation and implementation of content as quickly as possible (legitimate interest). These data are usually pseudonyms and therefore do not allow any conclusions to be drawn about a natural person. The legal basis for this can be found in Section 25 Paragraph 2 Sentence 2 TTDSG. When an error message occurs, general data such as the domain name of the website, the web browser and web browser version, the operating system, the IP address and the timestamp are recorded when the corresponding error message/specification occurs. The storage period for these error logs is up to 7 days. There is no right to object.
Use of cookies
So-called cookies are sometimes used on this recruiting site. These are small text files that are stored on the device you use to access this recruiting site. Basically, cookies are used to ensure security when visiting a website (“absolutely necessary”), to implement certain functionalities such as standard language settings (“functional”), to improve the user experience or performance on the website (“performance”) or based on target groups Display advertising (“marketing”). In principle, only absolutely necessary, functional and performance cookies are used on this recruiting site, in particular to implement certain default settings such as language, to identify the application channel or to analyze the performance of a job advertisement through which a user accesses this recruiting site. page has reached. The use of cookies is absolutely necessary for the provision of our services and therefore for the fulfillment of the contract (Art. 6 (1) b) GDPR). Storage period: Up to 1 month or until the browser session ends. Right to object: You can use your browser settings to decide whether you want to allow cookies or object to the use of cookies. Please note that deactivating cookies can lead to limited or completely prevented functionality of this recruiting site.
Rights of those affected
If personal data is processed by Personio SE & Co. KG as the responsible body, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and purpose of the processing, and in particular the right to Information (Article 15 GDPR), right to rectification (Article 16 GDPR), right to deletion (Article 17 GDPR), right to restriction of processing (Article 18 GDPR), right to Data portability (Art. 20 GDPR), right to object (Art. 21 GDPR). If the processing of personal data is based on your consent, you have the right to revoke this data protection consent in accordance with Article 7 III GDPR. To assert your data subject rights with regard to the data processed for the operation of this recruiting site, please contact the data protection officer of Personio SE & Co. KG (see section B.).
Final Provisions
Personio reserves the right to adapt this data protection declaration at any time so that it always complies with current legal requirements or to implement changes to the services in the data protection declaration, e.g. when introducing new services. If you visit this recruiting page again or apply again, the new data protection declaration will apply.