Spiekermann GmbH Consulting Engineers as the person responsible within the meaning of the GDPR is aware that the protection of your privacy when using our website is important to you. We take the protection of your personal data very seriously. We therefore want you to know when we process which personal data, in what context and under what conditions. We would therefore like to inform you with this data protection declaration in accordance with the provisions of the General Data Protection Regulation (GDPR).

Use of the Spiekermann GmbH Consulting Engineers website is generally possible without providing any personal data. If a data subject wishes to use our company’s special services via our website, processing of personal data may be necessary. If the processing of personal data is required and there is no legal basis for such processing, we generally obtain the consent of the data subject.

The processing of personal data, for example the name, address, email address or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to Spiekermann GmbH Consulting Engineers. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed about their rights by means of this data protection declaration.

Spiekermann GmbH Consulting Engineers, as the controller, has implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us in alternative ways, for example by telephone.

Responsible in accordance with the GDPR

Spiekermann GmbH Consulting Engineers
Fritz-Vomfelde-Str. 12
40547 Düsseldorf
Telefonnummer: +49 (0) 211 5236 0
E-Mail Adresse: info@spiekermann.de
Website: www.spiekermann.de

Data Protection Officer

Mr. René Rautenberg has been appointed data protection officer.

Please direct your inquiries to:
datenschutzkoordinator@spiekermann.de

Access Data

When you visit www.spiekermann.de, the following personal data of the person concerned is collected and saved in a log file:

- Information about the browser type and the version used
- The operating system of the person concerned
- The internet service provider of the person concerned
- The IP address of the person concerned
- Date and time of access
- Websites from which the system of the person concerned reaches our website
- Websites that are accessed by the data subject’s system via our website
The processing of the data or storage in log files is carried out to ensure the functionality of the website. We also use the data to optimize the website and to ensure the security of our information technology systems. The data is only evaluated in connection with statistical evaluations, whereby the individual user remains anonymous.
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. Our legitimate interest follows from the purposes listed above for data collection or to ensure the functionality of the online presence. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. If the data is collected for the provision of the website, this is the case after seven days. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the client is no longer possible.

Contact forms; E-mail contact

There is a contact form on our website that can be used to contact us electronically. If a user makes use of this option, the data entered in the input mask will be transmitted to us and saved. The transmission takes place to the respective Hennecke company, which should actually be contacted. There takes place the further processing of the request of the concerned person. In addition, your request or your personal data is stored in the content management system. The transmitted data is based on the extent of transmission by the person concerned. The contact can be made on the website in various contexts and for different purposes. Essentially, the informations included will be data such as name, email address, IP address, date and time of contact, concerns, etc.

The legal basis for the processing of this data depends on the compliance of a contract with the person concerned as a party to the contract in accordance with Art. 6 para. 1 sentence 1 lit. b) 1st alt. GDPR or to carry out pre-contractual measures with the person concerned in accordance with Art. 6 para. 1 sentence 1 lit. b) 2nd alt. DSGVO. Processing may also be based on Art. 6 Para. 1 S. 1 lit. f) GDPR if there is a legitimate interest of the person responsible, such as in the context of customer loyalty. For the person responsible, it is necessary in the course of his economic activity to make customer contact or to be reachable for the customer / interested party. The legal basis for storage in the content management system is in any case Art. 6 para. 1 sentence 1 lit. f) GDPR. The storage is necessary to ensure the infrastructure and functionality of the website and also to secure the website against data breaches, etc.

If the processing of the concern of the data subject is related to an existing contract with the data subject, the storage period will generally depend on this existing contract. Otherwise, the data will be deleted when the purpose of processing has been achieved; this can be the case when a matter is finally closed. in individual cases, statutory storage periods must be observed.

On the Spiekermann GmbH Consulting Engineers website, users are given the opportunity to subscribe to our company’s newsletter. Which personal data are transmitted to the person responsible for processing when you order the newsletter is determined from the input mask used for this purpose.
Spiekermann GmbH Consulting Engineers informs its customers and business partners at regular intervals in a newsletter about company projects. The newsletter of our company can only be received by the data subject if (1) the data subject has a valid e-mail address and (2) the data subject registers for the newsletter. For legal reasons, a confirmation email will be sent to the email address entered by the data subject for the first time for sending the newsletter in a double opt-in procedure. This confirmation email is used to check whether the owner of the email address as the person concerned has authorized the receipt of the newsletter.
When registering for the newsletter, we also save the IP address assigned by the Internet service provider (ISP) of the computer system used by the person concerned at the time of registration, as well as the date and time of registration. The collection of this data is necessary in order to be able to understand the (possible) misuse of the e-mail address of a data subject at a later point in time and therefore serves to provide legal protection for the controller.
The personal data collected when you register for the newsletter will only be used to send our newsletter. In addition, subscribers to the newsletter could be informed by email if this is necessary for the operation of the newsletter service or for a registration in this regard, as could be the case in the event of changes to the newsletter offer or changes in the technical circumstances. The personal data collected as part of the newsletter service is not passed on to third parties. The person concerned can cancel the subscription to our newsletter at any time. The consent to the storage of personal data that the data subject has given us for sending the newsletter can be revoked at any time. For the purpose of withdrawing consent, there is a corresponding link in every newsletter. There is also the possibility to unsubscribe from the newsletter at any time directly on the website of the controller or to inform the controller in another way (via email: info@spiekermann.de). This will simultaneously expire your consent to its dispatch via MailChimp and the statistical analyzes. A separate revocation of the dispatch via MailChimp or the statistical evaluation is unfortunately not possible.

The newsletter is sent using “MailChimp”, a newsletter delivery platform from the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA. MailChimp uses this information to send and evaluate the newsletter on our behalf. According to its own information, MailChimp can also use this data to optimize or improve its own services, e.g. for the technical optimization of the dispatch and presentation of the newsletter or for economic purposes to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients to write to them themselves or to pass them on to third parties.
We trust in the reliability and IT and data security of MailChimp. MailChimp is certified under the US-EU data protection agreement “Privacy Shield” and is therefore committed to complying with EU data protection regulations. Furthermore, we have concluded a “data processing agreement” with MailChimp. This is a contract in which MailChimp undertakes to protect the data of our users, to process it in accordance with its data protection regulations on our behalf and, in particular, not to pass it on to third parties. You can view MailChimp’s privacy policy here.
The Spiekermann GmbH Consulting Engineers newsletter contains so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails that are sent in HTML format to enable log file recording and log file analysis. This enables a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Based on the embedded tracking pixel, Spiekermann GmbH Consulting Engineers can recognize whether and when an email was opened by a data subject and which links in the email were called up by the data subject.
Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the data controller in order to optimize the sending of the newsletter and to adapt the content of future newsletters even better to the interests of the data subject. This personal data will not be passed on to third parties. Affected persons are entitled at any time to revoke the separate declaration of consent relating to this, which is made using the double opt-in procedure. After revocation, this personal data will be deleted by the controller. If you unsubscribe from the newsletter, Spiekermann GmbH Consulting Engineers automatically interprets it as a revocation.

Dealing with personal data

Spiekermann only collects, uses and passes on your personal data if this is permitted by law or if you consent to the data collection.
Personal information is all information that serves to determine your person and which can be traced back to you – for example, your name and your email address.

Routine deletion and blocking of personal data

The data controller processes and stores personal data of the data subject only for the period of time necessary to achieve the storage purpose or if this is done by the European legislator or other legislator in laws or regulations, which of the data controllers is subject to, was provided.
If the storage purpose no longer applies or if a storage period prescribed by the European directive and ordinance provider or another responsible legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

Contact as part of an application

When applying for a job, the following personal data must be provided in the application contact form:

- Title
- First and Last Name
- Street, house number
- Postcode, place of residence
- E-mail address
- Phone number / mobile phone number
- Attachment uploads for the application process – application documents, curriculum vitae, comparable documents

In addition, the IP address, date and time of sending are saved when the documents are sent.
Note on sensitive data: We expressly point out that applications, in particular CVs, certificates and other data you have sent to us, special categories of personal data on mental and physical health, racial or ethnic origin, political opinions, religious or philosophical Beliefs, membership in a union or political party or on sex life may include. If you provide us with such information in your online application, you must separately consent that Hennecke GmbH may collect, process and use this data for the purpose of processing the application. The processing of this data takes place in accordance with this data protection declaration and the other relevant legal provisions.

This information is processed in order to process and process your application. Failure to provide the relevant data may result in your application not being considered or being considered in a way that would have led to a different outcome than if the requested data had been communicated.
Applicant data may be saved and partially processed by order processors and / or in the content management system. This processing is necessary because the controller uses management systems and host services that are offered by third parties. The person responsible maintains order processing contracts in each individual case in order to comply with the provisions of the GDPR. Otherwise, the processing is carried out by the respective company addressed.

The legal basis for the processing of the data is otherwise Art. 6 Para. 1 S. 1 lit. b) in conjunction Art. 88 GDPR in conjunction with Art. 26 para. 1 (possibly in conjunction with para. 8 sentence 2) new to BDSG. Otherwise, the legal basis for consent is Art. 9 Para. 2 lit. a) in conjunction with Art. 6 para. 1 sentence 1 lit. a) in conjunction with Art. 7 in conjunction with Art. 88 GDPR in conjunction with Section 26 (2) BDSG-new.
The consent can be Art. 7 para. 3 sentence 1 GDPR in conjunction with § 26 para. 2 sentence 4 BDSG-new can be revoked at any time. The legality of the data received until revocation is not affected. The revocation can be made under the above Address or at info@spiekermann.de.
The data is saved as part of the application process depending on the duration of the application process or its outcome. If the application process finds a positive conclusion, the data for the execution of an employment relationship will be saved. After termination of an employment relationship, the data will continue to be saved in accordance with the statutory retention periods. If the application process finds a negative outcome, the data will be deleted 5 months after notification of the application result.

Google+

The controller has integrated the Google+ button as a component on this website. Google+ is a so-called social network. A social network is a social meeting point operated on the Internet, an online community that usually enables users to communicate with each other and to interact in virtual space. A social network can serve as a platform for exchanging opinions and experiences or enables the internet community to provide personal or company-related information. Google+ enables users of the social network, among other things, to create private profiles, upload photos and network via friend requests.
Google+ is operated by Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
Each time one of the individual pages of this website is accessed, which is operated by the controller and on which a Google+ button has been integrated, the Internet browser on the information technology system of the data subject is automatically triggered by the respective Google+ button, a representation of the corresponding Google+ Button from Google. As part of this technical process, Google gains knowledge of which specific subpage of our website is visited by the data subject. More detailed information about Google+ is available at https://developers.google.com/+/.
If the data subject is logged in to Google+ at the same time, Google recognizes each time our website is accessed by the data subject and for the entire duration of their stay on our website, which specific subpage of our website the data subject visits. This information is collected by the Google+ button and assigned by Google to the respective Google+ account of the person concerned.
If the person concerned presses one of the Google+ buttons integrated on our website and thus makes a Google +1 recommendation, Google assigns this information to the personal Google+ user account of the person concerned and stores this personal data. Google stores the data subject’s Google +1 recommendation and makes it publicly available in accordance with the conditions accepted by the data subject. A Google + 1 recommendation made by the data subject on this website will subsequently be used together with other personal data, such as the name of the Google +1 account used by the data subject and the photo stored in this data in other Google services. For example, the search engine results of the Google search engine, the Google account of the person concerned or in other places, for example on websites or in connection with advertisements, saved and processed. Google is also able to link the visit to this website with other personal data stored by Google. Google also records this personal information with the purpose of improving or optimizing the various Google services.
Google always receives information via the Google+ button that the person concerned has visited our website if the person concerned is logged in to Google+ at the same time as accessing our website; This takes place regardless of whether the person concerned clicks the Google+ button or not.
If the data subject does not want to transfer personal data to Google, they can prevent such transmission by logging out of their Google+ account before calling up our website.
Further information and the applicable data protection regulations of Google can be found at https://www.google.de/intl/de/policies/privacy/.

Google-AdWords

The controller has integrated Google AdWords on this website. Google AdWords is an internet advertising service that allows advertisers to place advertisements in both the Google search engine results and the Google advertising network. Google AdWords enables an advertiser to define certain keywords in advance, by means of which an advertisement is only displayed in the Google search engine results when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the ads are distributed on topic-related websites using an automatic algorithm and taking the previously defined keywords into account.
Google AdWords is operated by Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
The purpose of Google AdWords is to advertise our website by displaying interest-related advertising on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party advertising on our website.
If a data subject reaches our website via a Google ad, a so-called conversion cookie is placed on the data subject’s information technology system by Google. What cookies are has already been explained above. A conversion cookie loses its validity after thirty days and is not used to identify the person concerned. If the cookie has not yet expired, the conversion cookie is used to determine whether certain sub-pages, such as the shopping cart from an online shop system, have been accessed on our website. The conversion cookie enables both us and Google to understand whether a data subject who came to our website via an AdWords ad generated sales, i.e. completed or canceled a purchase of goods.
The data and information collected through the use of the conversion cookie is used by Google to generate visitor statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimize our AdWords ads for the future , Neither our company nor other Google AdWords advertisers receive information from Google that could be used to identify the data subject.
The conversion cookie is used to store personal information, such as the websites visited by the data subject. Each time you visit our website, personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties.
The person concerned can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting of the internet browser used and thus permanently object to the setting of cookies. Such a setting of the internet browser used would also prevent Google from setting a conversion cookie on the information technology system of the person concerned. In addition, a cookie already set by Google AdWords can be deleted at any time via the internet browser or other software programs.
Furthermore, the data subject has the option to object to Google’s interest-based advertising. To do this, the data subject must call up the link www.google.de/settings/ads from each of the internet browsers they use and make the desired settings there.
Further information and the applicable data protection regulations of Google can be found at https://www.google.de/intl/de/policies/privacy/.

The controller has integrated components from the LinkedIn Corporation on this website. LinkedIn is an internet-based social network that enables users to connect with existing business contacts and to make new business contacts. Over 400 million registered people use LinkedIn in more than 200 countries. This makes LinkedIn the largest platform for business contacts and one of the most visited websites in the world.
LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible for data protection matters outside the USA.
Each time our website is accessed, which is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the person concerned to download a corresponding representation of the LinkedIn component. Further information on the LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. As part of this technical process, LinkedIn gains knowledge of which specific subpage of our website is visited by the data subject.
If the person concerned is logged into LinkedIn at the same time, LinkedIn recognizes each time our website is accessed by the person concerned and for the entire duration of their stay on our website, which specific subpage of our website the person concerned is visiting. This information is collected by the LinkedIn component and assigned to the respective LinkedIn account of the person concerned by LinkedIn. If the data subject clicks a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.
LinkedIn always receives information via the LinkedIn component that the person concerned has visited our website if the person concerned is logged into LinkedIn at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, they can prevent the transmission by logging out of their LinkedIn account before accessing our website.
At https://www.linkedin.com/psettings/guest-controls, LinkedIn offers the option of unsubscribing from e-mail messages, SMS messages and targeted ads, as well as managing ad settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, who can set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. The applicable data protection regulations of LinkedIn are available at https://www.linkedin.com/legal/privacy-policy. The LinkedIn cookie policy is available at https://www.linkedin.com/legal/cookie-policy.

Xing

The controller has integrated Xing components on this website. Xing is an internet-based social network that enables users to connect with existing business contacts and to make new business contacts. The individual users can create a personal profile of themselves at Xing. For example, companies can create company profiles or publish job offers on Xing.
Xing is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
Each time one of the individual pages of this website is accessed, which is operated by the controller and on which a Xing component (Xing plug-in) has been integrated, the Internet browser on the information technology system of the data subject is automatically activated by the respective Xing Component causes a representation of the corresponding Xing component to be downloaded from Xing. Further information on the Xing plug-ins can be found at https://dev.xing.com/plugins. As part of this technical process, Xing receives knowledge of which specific subpage of our website is visited by the person concerned.
If the data subject is logged in to Xing at the same time, Xing recognizes each time our website is accessed by the data subject and for the entire duration of their stay on our website, which specific subpage of our website the data subject visits. This information is collected by the Xing component and assigned to the relevant Xing account of the person concerned by Xing. If the data subject clicks one of the Xing buttons integrated on our website, for example the “Share” button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data.
Xing receives information from the Xing component that the data subject has visited our website if the data subject is logged in to Xing at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the Xing component or not. If the data subject does not want this information to be sent to Xing, he or she can prevent the transmission by logging out of their Xing account before accessing our website.
The data protection regulations published by Xing, which are available at https://www.xing.com/privacy, provide information about the collection, processing and use of personal data by Xing. Xing has also published data protection information for the XING share button at https://www.xing.com/app/share?op=data_protection.

Rights of the user

You have the following rights under the GDPR: You can

15 of the GDPR to request information about your personal data processed by us. In particular, you can get information about
o the processing purposes,
o the category of personal data,
o the categories of recipients to whom your data has been or will be disclosed,
o the planned storage period,
o the existence of a right to correction, deletion, restriction of processing or objection,
o the right to lodge a complaint,
o the origin of your data, unless it was collected by us,
o as well as about the existence of automated decision-making, including profiling and, if necessary, meaningful information about its details;
According to Art. 17 GDPR, the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is;
According to Art. 18 GDPR, the processing of your personal data may be restricted insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the establishment, exercise or Defense of legal claims or you have objected to processing in accordance with Art. 21 GDPR;
in accordance with Art. 20 GDPR, you will receive your personal data that you have provided to us in a structured, common and machine-readable format or request the transfer to another person responsible;
to revoke your consent given to us at any time in accordance with Art. 7 Para. 3 GDPR, with the result that we may no longer continue the data processing based on this consent in the future;
to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

Legitimate interests in the processing that are being pursued by the controller or a third party

Is the processing of personal data based on Article 6 I lit. f GDPR is our legitimate interest in carrying out our business for the benefit of all our employees and our shareholders.

Duration of storage

The criterion for the duration of the storage of personal data is the respective legal retention period. After the period has expired, the corresponding data will be routinely deleted, provided that it is no longer required to fulfill or initiate a contract.

Consequences of not providing the data

We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information about the contracting party). Sometimes it may be necessary to conclude a contract that a data subject provides us with personal data that we subsequently have to process. For example, the person concerned is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide personal data would result in the contract not being concluded with the person concerned. Before the data subject provides personal data, the data subject must contact one of our employees. Our employee clarifies the person concerned on a case-by-case basis whether the provision of the personal data is required by law or contract or is required for the conclusion of the contract, whether there is an obligation to provide the personal data and the consequences of not providing the personal data.

Integration of services and content from third parties

It may happen that third-party content, such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites, is integrated into this online offer. This always presupposes that the provider of this content (hereinafter referred to as “third party provider”) perceives the IP address of the user. Because without the IP address, they could not send the content to the browser of the respective user. The IP address is therefore required to display this content. We strive to only use content whose respective providers only use the IP address to deliver the content. However, we have no influence on whether the third-party provider uses the IP address e.g. save for statistical purposes. As far as we know, we will inform the users about it.

SSL encryption

In order to protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.

Right of objection by the person concerned

If your data is based on legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR are processed, you have the right, for reasons that arise from the special situation, in accordance with Art. 21 para. 1 sentence 1 GDPR to object to the processing. In such a case, your personal data will no longer be processed, unless the controller can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms; The same applies if the processing serves to assert, exercise or defend legal claims, Art. 21 Para. 1 Sentence 2 GDPR.
Please contact the above. Addresses.

This data protection declaration was created by the data protection declaration generator of the DGD Deutsche Gesellschaft für Datenschutz GmbH.

Data protection declaration