Data protection

The following privacy policy applies to the use of our website and informs you, as a data subject within the meaning of data protection law and a user of this website, about the processing of personal data. Personal data is any data that can be related to you personally, e.g., name, address, email addresses, user behavior.

Cookie settings

Our website uses cookie consent technology from Borlabs Cookie to obtain your consent to store certain cookies in your browser and to document this in accordance with data protection regulations. This technology is provided by Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg (hereinafter referred to as Borlabs). When you visit our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie. The collected data is stored until you request us to delete it, delete the Borlabs cookie yourself, or the purpose for data storage no longer applies. Mandatory legal retention periods remain unaffected. Details zur Datenverarbeitung von Borlabs Cookie finden Sie unter de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/. Borlabs Cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 (1) lit. c GDPR. You can change your stored cookie settings at any time.

Collection of Personal Data When Visiting the Website

When using our website for informational purposes only, we (or our webspace provider) collect only the personal data that your browser transmits to our server. We collect the data that is technically necessary for us to display the website to you and to ensure stability and security on the basis of Art. 6 (1) lit. f GDPR (legitimate interest) as well as in accordance with § 25 TDDDG.

• IP address
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Content of the request (specific page)
• Access status/HTTP status code
• Respective amount of data transferred
• Website from which the request originates
• Browser
• Operating system and its interface
• Language and version of the browser software

The data mentioned are processed by the operator for the following purposes:

• Improving and ensuring the establishment of a connection to the website,
• Improving the usability of the website,
• Evaluation of system security and stability, and
• Administrative purposes.

Within our company, those persons who are entrusted with processing will have access to your data to the extent necessary or reasonably appropriate. Service providers and agents engaged by us, such as providers of IT services, telecommunications, and logistics, may also have access to personal data for these purposes, provided they comply with our written data protection instructions, maintain general data confidentiality within the scope of commissioned processing, and – where applicable – observe telecommunications secrecy.

In addition, for the provision of services in our network, data exchange with the network operators involved takes place, in particular when establishing and maintaining connections across network boundaries, as well as for billing and debt collection. This transfer only takes place to the extent necessary. The details of data exchange and data processing depend on the type of service used. For further details, please contact your access provider, who enables you to access the services provided in our network.

For the collection of debts, we cooperate with third parties.

In particular, we will not transfer personal data to third parties for advertising purposes or address trading.

A transfer of data to countries outside the EU or the EEA (“third countries”) only takes place insofar as this is necessary for the execution of the contractual relationship (contract for the use of the services provided in our network). For other contractual relationships, such as a contact relationship, such data transfer only takes place to fulfill this contractual relationship or insofar as this is exceptionally appropriate due to a legitimate interest. The same applies to the use of our websites from locations outside the EU or the EEA.

Use of Cookies

a) This website uses the following types of cookies, the scope and functionality of which are explained below:

• Transient cookies (see b)
• Persistent cookies (see c)

b) Transient cookies are automatically deleted when you close your browser. These include in particular session cookies. They store a so-called session ID, which allows various requests from your browser to be assigned to a common session. This enables your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close the browser.

c) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in your browser’s security settings.

d) We use cookies that are technically necessary and make your visit to our website possible in the first place. If we use cookies that are not technically necessary, we will obtain your consent for this.

e) When using technically essential cookies for the display and necessary functions of our website, the legal basis is § 25 (2) TTDSG and Art. 6 (1) sentence 1 lit. f GDPR (legitimate interest). Insofar as we use cookies that are not technically essential for the display and necessary functions of our website, we will obtain your consent. The legal basis for the use of such cookies is § 25 (1) TTDSG in conjunction with Art. 6 (1) sentence 1 lit. a GDPR.

f) Any consents that may be required can be given in our Consent Manager when you first access our site and subsequently managed at any time (green button "Cookie Settings" at the top).

g) Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a warning always appears before a new cookie is created. However, completely disabling cookies may result in you not being able to use all the functions of our website.

Klaro

Our website uses the Klaro Cookie Consent technology to obtain your consent for the storage of certain cookies in your browser and for privacy-compliant documentation. The provider of this technology is KIProtect GmbH, Bismarckstr. 10-12, 10625 Berlin (hereinafter referred to as Klaro). Each time you visit our website, a Klaro cookie is stored in your browser, which archives all declarations of consent or withdrawal of consent you have entered. The collected data remains archived until you request us to delete it, delete the Klaro cookie yourself, or the purpose of data storage no longer applies. To view the details of Klaro’s data processing policies, please visit klaro.org/de/ressourcen/datenschutz. The use of Klaro is required to fulfill a legal obligation to which we are subject (Art. 6 (1) lit. c GDPR).

Contact Form

You have the option to contact us through various communication channels such as email, telephone, postal mail, or via a contact form. In the event of contacting us, we store your data for the purpose of processing your inquiry or in case of follow-up questions. Data will not be passed on to third parties without your consent. The processing of this data is based on Art. 6(1)(b) GDPR, insofar as your inquiry is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in effectively handling the inquiries addressed to us (Art. 6(1)(f) GDPR), or on your consent (Art. 6(1)(a) GDPR), if this has been requested. The processing of this data is based on Art. 6(1)(b) GDPR, insofar as your inquiry is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in effectively handling the inquiries addressed to us (Art. 6(1)(f) GDPR), or on your consent (Art. 6(1)(a) GDPR), if this has been requested. Furthermore, processing may be required for compliance with a legal obligation to which we are subject (Art. 6(1)(c) GDPR).

Data Processing by Social Networks

We maintain publicly accessible profiles on social networks. The specific social networks we use are listed below.

Social networks such as Facebook, etc., can usually analyze your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered. In detail:

If you are logged into your social media account and visit our social media presence, the operator of the social media platform can assign this visit to your user account. However, your personal data may also be collected even if you are not logged in or do not have an account with the respective social media platform. This data collection may, in such cases, occur, for example, through cookies stored on your device or by recording your IP address.

With the help of the data collected in this way, the operators of social media platforms can create user profiles in which your preferences and interests are stored. This allows interest-based advertising to be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, interest-based advertising may be displayed on all devices on which you are or have been logged in.

Please also note that we cannot track all processing operations on social media platforms. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media platforms. For details, please refer to the terms of use and privacy policies of the respective social media platforms.

Legal Basis

Our social media presences are intended to ensure the broadest possible presence on the Internet. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. The analysis processes initiated by social networks may, if applicable, be based on different legal grounds, which must be specified by the operators of the social networks (e.g., consent within the meaning of Art. 6(1)(a) GDPR).

Controller and Exercise of Rights

If you visit one of our social media presences (e.g., Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered by this visit. You may, in principle, exercise your rights (access, rectification, erasure, restriction of processing, data portability, and complaint) both against us and against the operator of the respective social media platform (e.g., against Facebook).

Please note that despite the joint responsibility with the social media platform operators, we do not have full influence on the data processing operations of the social media platforms. Our options are largely determined by the corporate policy of the respective provider.

Storage Period

The data we collect directly via the social media presence will be deleted from our systems as soon as the purpose for its storage no longer applies, you request us to delete it, you revoke your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory statutory provisions – in particular retention periods – remain unaffected.

We have no influence on the storage period of your data that is stored by the operators of the social networks for their own purposes. For details, please refer directly to the operators of the social networks (e.g., in their privacy policies, see below).

Social Networks in Detail:

LinkedIn: We have a profile on LinkedIn. The operator of the social network LinkedIn is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. For details on how they handle your personal data, please refer to LinkedIn’s privacy policy: linkedin.com/legal/privacy-policy

Xing: We have a profile on Xing. The operator of the social network Xing is Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany. For details on how they handle your personal data, please refer to Xing’s privacy policy: privacy.xing.com/de/datenschutzerklaerung

YouTube: We have a channel on YouTube. The operator of the YouTube service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For details on how they handle your personal data, please refer to YouTube’s privacy policy: policies.google.com/privacy?hl=de&gl=de

Google Analytics (with Anonymization Function)

This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). The Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. Google Analytics uses so-called "cookies." These are text files stored on the user's computer that allow an analysis of the user's use of the website. The information generated by the cookie about the use of this website (including the IP address) is transmitted to a Google server in the USA and stored there. Your IP address will be anonymized using the _anonymizeIp() method when accessing this website from a member state of the European Union or another contracting state of the Agreement on the European Economic Area. Personal identification can thus be excluded. If the data collected from the user can be personally identified, this is immediately excluded. The personal data is deleted without delay.

Google will use the information to evaluate the use of the website, to compile reports on website activity for website operators, and to provide other services related to website and internet usage. Google may also transfer this information to third parties if legally required or insofar as third parties process these data on behalf of Google. In no case will Google associate the user's IP address with other data held by Google.

Users can prevent the installation of cookies by adjusting their browser settings; it should be noted that in this case, users may not be able to use all functions of this website fully. By using this website, the user agrees to the processing of the data collected about them by Google in the manner described above and for the aforementioned purpose.

By downloading and installing the browser plugin at tools.google.com/dlpage/gaoptout?hl=de, users can prevent the collection and transmission of their usage-related data (including the IP address) to Google and the processing of this data by Google. In addition, users can prevent future collection by Google Analytics by clicking on “Disable Google Analytics.” Future data collection when visiting this website is prevented by setting an opt-out cookie. Further information on Google Analytics and Google’s applicable privacy policies can be found at google.de/intl/de/policies/privacy/ and google.com/analytics/terms/de.html. Google Analytics is explained in more detail at google.com/intl/de_de/analytics/.

This website uses Google Universal Analytics. This enables cross-device analysis of user behavior. The evaluation is carried out using a User ID. You can disable cross-device analysis of your usage in your customer account under “My Data,” “Personal Data.”

Use of SalesViewer® Technology

On this website, the SalesViewer® technology of SalesViewer® GmbH, Huestr. 30, 44787 Bochum, is used to collect and store data for marketing, market research, and optimization purposes based on the consent of the website visitor (Art. 6 para. 1 lit. a GDPR).

For this purpose, a JavaScript-based code is used to collect company-related data and to utilize it accordingly. The data collected with this technology is encrypted using a non-reversible one-way function (so-called hashing). The data is immediately pseudonymized and is not used to personally identify the visitor of this website.

The data stored by SalesViewer will be deleted as soon as it is no longer required for its intended purpose and no legal retention obligations prevent deletion.

Data collection and storage can be objected to at any time with effect for the future by clicking this link salesviewer.com/opt-out to prevent future collection by SalesViewer® on this website. An opt-out cookie will be placed on your device for this website. If you delete your cookies in this browser, you will need to click this link again.

Google Ads with Conversion Tracking

We use the services of Google Ads. For the European region, the company responsible for all Google services is Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland).

With the help of the tool – Google Ads – we can draw attention to our attractive offers on external websites. In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. Our aim is to show you advertising that is of interest to you, to make our website more engaging, and to ensure a fair calculation of advertising costs. These advertising materials are delivered by Google through so-called “ad servers.” For this purpose, we use ad server cookies, through which certain parameters for performance measurement—such as the display of ads or clicks by users—can be measured. If you arrive at our website via a Google advertisement, a cookie is stored on your computer by Google Ads. These cookies usually expire after 30 days and are not intended to personally identify you. Typically, the following analysis values are stored in connection with this cookie: the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), as well as opt-out information (a marker indicating that the user no longer wishes to be addressed). These cookies enable Google to recognize your internet browser. If a user visits certain pages of an AdWords customer’s website and the cookie stored on their computer has not yet expired, Google and the customer can detect that the user has clicked on the ad and was redirected to that page. Each AdWords customer is assigned a different cookie. Cookies therefore cannot be tracked across the websites of AdWords customers. We ourselves do not collect or process any personal data in the context of the advertising measures mentioned. We only receive statistical evaluations provided by Google. Based on these evaluations, we can identify which advertising measures are particularly effective. We do not receive any further data from the use of the advertising materials, and in particular, we cannot identify users based on this information. Due to the marketing tools used, your browser automatically establishes a direct connection to Google’s server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our level of knowledge: by integrating AdWords Conversion, Google receives the information that you have accessed the relevant part of our website or clicked on one of our ads. If you are registered with a Google service, Google may assign the visit to your account. Even if you are not registered with Google or not logged in, it is possible that the provider obtains and stores your IP address.

You can prevent participation in this tracking process in several ways:

a) by adjusting your browser software settings accordingly, in particular the suppression of third-party cookies, which means that you will not receive ads from third-party providers;

b) by disabling conversion tracking cookies by configuring your browser to block cookies from the domain “www.googleadservices.com” (google.de/settings/ads), noting that this setting will be deleted if you delete your cookies;

c) by disabling interest-based ads from providers participating in the self-regulation campaign “About Ads” via the link aboutads.info/choices, noting that this setting will also be deleted if you delete your cookies;

d) by permanently disabling them in your browsers Firefox, Internet Explorer, or Google Chrome via the link google.com/settings/ads/plugin.

Please note that in this case, you may not be able to use all functions of this service to their full extent. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. a GDPR.

Further information on data protection at Google can be found here: google.com/intl/de/policies/privacy and services.google.com/sitestats/de.html. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at networkadvertising.org. For cases in which personal data is transferred to the USA, Google has submitted to the EU-U.S. Data Privacy Framework dataprivacyframework.gov/s/, under which the level of data protection for data transfers to the USA is currently considered adequate.

Privacy Information for Applicants

How can you apply with us?

If you are interested in a position with us, you can apply by email (bewerbungen@hydroflex-group.com) or by post to the respective contact person. If you wish to apply by email, you can communicate with us confidentially by sending your application documents in encrypted form. This can be easily done using a password-protected zip file; it is best to share the password with us by phone at +49 (0) 6408.50435-0.

Types of data and source of data

When you apply with us, we process the information we receive from you as part of the application process, for example via cover letters, CVs, certificates, correspondence, or oral and telephone statements. Relevant to us, in addition to your contact details, are particularly information about your education, qualifications, work experience, and skills. We will only assess your suitability for the respective position, so you are not required to send a photo.

Purpose and legal basis of data processing as well as data retention period

Your data will initially be processed exclusively for the purpose of conducting the application process. If your application is successful, your data will become part of your personnel file and will be used for the execution and termination of the employment relationship and will be deleted according to the regulations applicable to personnel files. If we cannot offer you employment at this time, we will process your data for up to six months after sending the rejection to protect ourselves against potential legal claims, particularly regarding alleged discrimination in the application process. If you receive reimbursements or other tax-relevant transactions are involved, the corresponding accounting documents will be retained in accordance with the applicable statutory retention requirements for budgetary and tax purposes. Initially, our HR department has access to your data, but also the relevant department for the position you applied for and, if necessary, accounting. Our administrators and processors have technical access to IT-processed data as required. They are strictly bound by our instructions and may not process the data for their own purposes. In certain cases, we may need to disclose your personal data to third parties, e.g., to our bank if you receive a reimbursement, or to the postal service if we communicate with you by mail.

The legal basis for data processing in the application process and as part of the personnel file is § 26(1) sentence 1 of the German Federal Data Protection Act (BDSG) and Art. 6(1)(b) GDPR and, if you have given consent, for example by providing information not necessary for the application process, Art. 6(1)(a) GDPR. The legal basis for data processing after a rejection is Art. 6(1)(f) GDPR. The legal basis for budgetary and tax retention is Art. 6(1)(c) GDPR in conjunction with § 147 of the German Tax Code (AO). The legitimate interest in processing based on Art. 6(1)(f) GDPR is the defense against legal claims.

We generally do not require special categories of personal data within the meaning of Art. 9 GDPR for the application process. We ask that you do not provide such information from the outset. If such information is exceptionally relevant to the application process, we will process it together with your other applicant data. This may include, for example, information about a severe disability, which you can voluntarily provide, and which we then process to fulfill our specific obligations regarding employees with severe disabilities. In such cases, processing serves to exercise rights or fulfill legal obligations under labor law, social security law, and social protection. The legal basis for data processing is then Art. 9(2)(b) GDPR, §§ 26(3) BDSG, 164 SGB IX. Exceptionally, it may be necessary to obtain information about your health, disability, or a certificate from the Federal Central Criminal Register (i.e., about criminal records) to assess your suitability for the intended role. The legal basis for this is § 26 BDSG.

Data disclosure

Your data will not be used for automated decision-making or profiling and will not be disclosed to third parties. Your data is processed by us or on our behalf exclusively in Germany.

Your Rights as a Data Subject

You have the following rights regarding your personal data in relation to us:

• Withdrawal of consent
• Access
• Correction
• Deletion
• Restriction of processing
• Right to data portability
• Complaint to a supervisory authority

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us.

Your Rights as a Data Subject

You have the following rights regarding your personal data in relation to us:

• Withdrawal of consent
• Access
• Correction
• Deletion
• Restriction of processing
• Right to data portability
• Complaint to a supervisory authority

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us.

Automatisierte Entscheidungen, Profiling

Wir führen keine automatisierten Entscheidungen (inkl. Profiling) mit den personenbezogenen Daten, die wir bei Ihrem Besuch unserer Webseite erheben, durch.

Data Sharing

The personal data we collect and store is treated confidentially and protected against loss, alteration, and unauthorized access by third parties through appropriate technical and organizational measures. Your personal data is transmitted over the Internet in encrypted form. We use SSL encryption (Secure Socket Layer) for data transmission.