General
Responsible for data processing:
[GITA tec GmbH] is responsible in accordance with Article 4 (7) of the General Data Protection Regulation (GDPR), see our [Imprint].
Commissioned service providers:
The general provision and maintenance of our websites and e-mail systems is carried out with the support of IT service providers who work on our behalf and can therefore also view (receive) your data to the required extent.
Data Protection Officer:
We are not obliged to appoint a data protection officer.
Collection and use of your data:
The scope and type of collection and use of your personal data differs depending on whether you are only visiting our website to retrieve information or whether you are using any of the services we may offer.
If we use other (IT) service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you below in detail about the respective processes (all data processing). We also state the specified criteria for the storage period and the applicable legal basis for data processing.
Informational use:
For the informational use of our websites, we only collect the personal data that your browser automatically transmits to us, such as:
IP address
Date and time of the request
Time zone difference to Greenwich Mean Time (GMT)
Content of the request (specific page)
(file transferred, file not found etc.)
Website from which the request comes
Operating system and its interface
Language and version of your browser.
Storage duration:
The storage period for this data (logs) is 14 days.
Legal basis(s) of data processing:
The above data is technically required to display our website to you and to ensure stability and security, in accordance with Article 6 (1) (f) GDPR.
contact form
When you contact us via the contact form or by e-mail, the data you provide (your name, your e-mail address, your telephone number and your message if applicable) will be stored by us in order to answer your question(s). . Mandatory information required for this is marked separately, further information is voluntary.
Storage duration:
We delete the data arising in this context after the storage is no longer necessary, or restrict the processing if there are statutory retention requirements (max. ten years in the context of the archiving of business e-mail traffic required under commercial and tax law).
Legal basis(s) of data processing:
The processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures that are taken at the request of the data subject, in accordance with Article 6 (1) (b) GDPR.
Applications/job advertisements
We process the data that you have sent us in connection with your application in order to check your suitability for the position (or other open positions, if applicable) and to carry out the application process.
Upon receipt, your application will be reviewed by the human resources department. Suitable applications are then passed on to the branch and department managers for the respective vacant or suitable position. Then the further process is coordinated. Throughout the company, only those people who need your data for the proper course of our application process have access to it.
Storage duration:
Applicant data will be deleted after 6 months in the event of a rejection. [In the event that you have consented to further storage of your personal data, we will include your data in our applicant pool. The data will be deleted there after 2 years.]
If you have been awarded a position as part of the application process, your data will be transferred to our personnel information system.
Legal basis of data processing:
The processing of your data as part of the application process is permitted for the decision on the establishment of an employment relationship, in accordance with Section 26 of the Federal Data Protection Act (BDSG n.F.).
If the data is required for legal prosecution after the application process has been completed, data processing can be carried out to protect legitimate interests in accordance with Article 6 (1) (f) GDPR. Our interest then lies in the assertion or defense of claims.
Use of cookies:
We do not use any cookies for our websites. Cookies are small text files that are sent from our web server to your browser when you visit our website and are stored on your computer for later retrieval. They serve to make the Internet offer more user-friendly and effective overall.
Social media links:
Within our websites there are links to different social media with the corresponding logos. These are not social media plug-ins, but merely a link to our offers within these media. If you click on one of these links, your IP address will be transmitted to the operators of the various platforms. If you use one of these services and are also logged in with your specific account, information about your surfing behavior may also be recorded by the social media operators. The transmission of your IP address to the operators of the websites accessed is technically necessary and applies to all websites.
Processing of your personal data in countries outside the EU and the EEA (third countries):
Your personal data will not be processed in countries outside the European Union and the European Economic Area.
Your rights
You have the following rights towards us with regard to your personal data:
right to information,
right to rectification or erasure,
right to restriction of processing,
Right to data portability.
Right to lodge a complaint with a supervisory authority:
You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
You can reach the supervisory authority here.
Right of objection and revocation
If you have given your consent to the processing of your data, you can revoke this at any time. Such a revocation affects the admissibility of the processing of your personal data after you have given it to us.
If we base the processing of your personal data on the balancing of interests (the legal basis is then Art. 6 Para. 1 lit. f) GDPR), you can object to the processing. This is the case if the processing is not necessary to fulfill a contract with you, which is addressed by us in the explanation of the individual data processing and functions on our websites above in this data protection declaration. If you exercise such an objection, we ask that you explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and will either discontinue or adjust the data processing or show you our compelling reasons worthy of protection on the basis of which we will continue the processing.
Right to object to direct advertising:
You can object to the processing of your personal data for advertising and data analysis purposes at any time, e.g. even if you receive advertising from us in the form of a newsletter, customer magazine or information material by post as part of a business relationship.
If we use your data in the context of functions on our website for direct advertising and an associated data analysis, we will inform you about this data processing above in this data protection declaration, including the possibility of being able to exercise your right of withdrawal using technical means if necessary.
Contact options regarding your rights:
You can contact us at any time to exercise your rights.
You are also welcome to use one of the contact options in our imprint or contact our data protection officer directly (contact details above).
Data security:
We also use technical and organizational security measures to protect any personal data that is collected or collected, in particular against accidental or intentional manipulation, loss, destruction or attacks by unauthorized persons. Our security measures are continuously improved in line with technological developments.
The transmission of your personal data is encrypted using SSL technology (https) to prevent access by unauthorized third parties.
Communication by email:
Our e-mail systems support encrypted communication using SSL technology (TLS 1.2 incl. PFS). The transmission of your e-mail can therefore always be encrypted. Please note, however, that the encryption also depends on the configuration of your e-mail program and we cannot guarantee complete data security for the transport route.
For information with a high need for confidentiality, we recommend that you send it by post.