Privacy Policy Iskander Business Partner GmbH

IMPORTANT NOTE: The German version of our privacy policy will govern our relationship – this translated version is provided for convenience only and will not be interpreted to modify the German version. For the German version, please see the German privacy policy.

The offer available at https://i-b-partner.com  is provided by Iskander Business Partner GmbH, Paulstrasse 19 in 85737 Ismaning / Munich, legally represented by the managing director Armin Iskander (‘IBP’, ‘we’ or ‘us’) as responsible in the sense of the valid data protection law.

Through this privacy policy, our company seeks to inform the public about the way, scope and purpose of the personal information we collect, use and process. Furthermore, data subjects are informed of their rights under this privacy policy.

You can access this privacy policy at any time under the privacy section of the website.

A use of the offers and services of the company IBP is generally possible without any indication of personal data. If an affected person makes uses of special services of our company, for example through our website or other means of communication, it may be necessary to process personal data. If the processing of personal data is required and there is no legal basis for such processing, we generally seek the consent of the data subject.

The processing of personal data, such as the name, address, e-mail address or phone number of a person concerned, is always in line with the General Data Protection Regulation (GDPR) and in accordance with the company IBP applicable country-specific privacy policy.

The company IBP as responsible for the processing of personal data, has implemented numerous technical and organizational measures to ensure the most complete possible protection for processed personal data. Nevertheless, internet-based data transfers can basically have security issues, so that an absolute protection can’t be guaranteed. For this reason, every person concerned is free to submit personal data to us in alternative ways, for example by telephone.

 

Table of contents

Definitions
Name and address of the controller
Name and address of the data protection officer
Cookies
Collection of data and information
Disclosure of data
E-mail advertising
Newsletter tracking
Possibility to contact us via the website
Routine erasure and blocking of personal data
Data subject rights
Privacy notices on the use of cookies, Plug-ins, social media applications and online advertising
Legal basis for processing
Legitimate interests in processing pursued by the controller or a third party
Duration for which the personal data are stored
Legal or contractual requirements to provide the personal data; Necessity for the conclusion of the contract; Obligation of the data subject to provide the personal data; Possible consequences of not providing
Planned transfers to third countries
Existence of automated decision-making
Changes to our privacy notices

Definitions

The privacy policy of the company IBP is based on the terminology used by the European legislature and legislature in the adoption of the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain in advance the terminology used.

Among other things we use the following terms in this privacy policy:

a) Personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter the ‘data subject’). As natural person can be considered who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, mental, economic, cultural or social identity.

b) Affected person

Affected person is any identified or identifiable natural person whose personal data is processed by the responsible controller.

c) Processing

Processing means any process or series of operations related to personal data, such as collecting, organizing, storing, adapting or modifying, reading, querying, using, with or without the aid of automated procedures; disclosure by submission, dissemination or other form of provision, reconciliation or association, restriction, erasure or destruction.

d) Restriction of processing

Restriction of the processing is the marking of stored personal data with the aim to limit their future processing.

e) Profiling

Profiling is any kind of automated processing of personal data that consists in using that personal information to evaluate certain personal aspects relating to a natural person, in particular aspects relating to job performance, economic situation, health, personal, to analyze or predict preferences, interests, reliability, behaviour, whereabouts or relocation of that natural person.

f) Pseudonymisation

Pseudonymisation is the processing of personal data in such a way that personal data can no longer be attributed to a specific data subject without the need for additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that the personal data not assigned to an identified or identifiable natural person.

g) Responsible or the controller

The controller or the responsible for the processing is a natural or legal person, public authority or body that, alone or in concert with others, decides on the purposes and means of processing personal data. Where the purposes and means of such processing are determined by union law or the law of the member States, the controller or the specific criteria for his designation may be provided under union law or national law.

h) Processors

The data processor (formerly the ‘contract processor’) is a natural or legal person, public authority or body that processes personal data on behalf of the controller.

i) Recipient

Recipient is a natural or legal person, agency or other entity to whom personal data is disclosed, whether it is a third party or not. Authorities which may receive personal data under union law or national law in connection with a particular mission are not considered as recipients.

j) third party

Third party is a natural or legal person, public authority or body, other than the data subject, the controller, the processor and the persons authorized under the direct responsibility of the controller to process the personal data.

k) Consent

Consent is any voluntarily given and unambiguously expressed confirmatory act in the form of a statement or other unambiguous confirmatory act by the data subject for the particular case, by which the data subject indicates that they consent to the processing of the personal data concerning him.

Name and address of the controller

Person responsible within the meaning of the ‘GDPR’, other data protection laws in the member states of the European Union and other regulations with data protection character is:

Iskander Business Partner GmbH
Paulstr. 19
85737 Ismaning
www.i-b-partner.com
Telephone: +49 (0) 89 99 650 86 1
Fax: +49 (0) 89 99 650 86 2
E-Mail: office@i-b-partner.com

Name and address of the data protection officer

The external data protection officer is:
Ralf Jäger
E-Mail: ralf@jaeger.de.com
Any data subject can contact our data protection officer at any time with any questions or suggestions regarding data protection.

Cookies

The internet pages of IBP uses cookies. Cookies are text files that are stored and saved on a computer system via an internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string through which internet pages and servers can be assigned to the specific internet browser in which the cookie was stored. This allows visited websites and servers to distinguish the individual’s browser from other internet browsers that contain other cookies. A particular web browser can be recognized and identified by the unique cookie ID.

Through the use of cookies, IBP can provide users of this website with more user-friendly services that would not be possible without cookies. By means of a cookie the information and offers on our website can be optimized in the sense of the user. Cookies enable us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies doesn’t need to re-enter their credentials each time they visit the website, as this is done by the website and the cookie stored on the user’s computer system. Another example is the cookie of a shopping basket in the online shop. The online store keeps track of the items that a customer has placed in the virtual shopping cart, through a cookie.

The data subject can prevent the setting of cookies through our website at any time by means of a corresponding setting of the internet browser used and thus permanently contradict the setting of cookies. Furthermore, already set cookies can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the internet browser used, not all functions of our website may be fully usable.

Collection of data and information

Each time the IBP website is accessed by an affected person or an automated system, it collects a set of general data and information. This general data and information is stored in the log files of the server. There can be collected (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the internet page from which an accessing system accesses our website (so-called referrers), (4) the sub-web pages which can be accessed via (5) the date and time of access to the website, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing system and (8) other similar data and information used in the event of attacks on our information technology systems.

In using this general data and information IBP doesn’t pull any conclusions about the person concerned. Rather, this information is required to (1) correctly deliver the contents of our website, (2) to optimize the content of our website and to advertise it, (3) to ensure the continued functioning of our information technology systems and the technology of our website, and (4) to provide law enforcement authorities with the necessary information for law enforcement in the event of a cyberattack. This anonymously collected data and information is used by IBP to statistically evaluated and further evaluated with the aim to increase the data protection and the data security in our enterprise, in order to ensure in the long run an optimal level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data provided by an affected person.

Depending on the capacity in which you use the function of our offer, we collect further data you provide us by phone, mail or electronically (via e-mail or via internet). You are not required to provide the information; without this data you cannot use the respective function. We will inform you about data that we collect in connection with your use in the following:

Candidates/Freelancer:

Data: Title, first and last name, address, e-mail address, date of birth, telephone number, bank details (depending on method of payment and delivery), photography, training details, professional background / project experience, languages, information on your interests and entitlements with regard to future employment. These are both directly recorded and derived from, for example, the vacancies or articles you read on our website, additional information that you provide us with, or that your contact persons provide us for your reference

Purpose: to be able to offer employment opportunities that are tailored to the situation and the interests of the freelancer: recruitment measures; promotional activities; enforcement; exercise or defence of legal claims; under appropriate circumstances in the future, we can also use data from candidates to create a personality profile.

Customers:

Data: Title, first and last name, address, e-mail address, date of birth, telephone number, company, role in the company, address of the company, any bank details (depending on the method of billing and delivery), language, telephone number of the assistants.

Purpose: to ensure a smooth business relationship; to offer appropriate advertisements (white papers, newsletters, invitations to events, etc.) and for submission of offers: recruitment measures; advertising measures: and asserting, exercising or defending legal claims.

Partner or Suppliers:

Data: Title, first and last name, address, e-mail address, date of birth, telephone number, company, role in the company, address of the company, possible bank details (depending on the method of billing and delivery).

Purpose: to meet business: Offer or access to services; advertising campaigns; and asserting, exercising or defending legal claims.

The controller shall, at any time upon request, provide information to each data subject as to which personal data about the data subject is stored. Furthermore, the data controller corrects or deletes personal data at the request or reference of the data subject, insofar as this does not conflict with any statutory storage requirements. All data subjects of the controller are available to the data subject as a contact person in this context.

Disclosure of data

It may happen that we disclosure your data under paragraph 6. to other recipients, as they are already named there. As part of providing the offer and the related features and services we share your information, for example, to potential employers / clients and other personnel services line agencies / organizations, external partners, job portals and job search engines.

A disclosure of this data to third parties is also provided that there is a legal obligation to disclose or the disclosure serves the prosecution.

Partly, we use instruction-bound service companies for certain data processing activities. Without exception, these are instruction-bound service companies that process the data on our behalf and in accordance with our instructions.

E-mail advertising

Our company sends its customers and partners on a regular basis and as needed-updates for invitations to events as well as with offers and information about the offered counseling and recruitment agency service to the provided  recipient email address

The recipient may be receiving contradict these emails at any time without giving reasons with effect for the future. For the purpose of revoking the consent, there is a corresponding link in each newsletter. It is also possible at any time to unsubscribe directly on the website of the controller for the receipt of these emails or otherwise inform the controller.

Digital Marketing Service Providers

We periodically appoint digital marketing agents to conduct marketing activity on our behalf, such activity may result in the compliant processing of personal information. Our appointed data processors include:

Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io. Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: dpo@sopro.io.

Newsletter tracking

The emails of IBP contain so-called counting pixels. A counting pixel is a miniature graphic that is embedded in such emails that are sent in HTML format to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded pixel, IBP recognizes if and when an e-mail was opened by an affected person and which links in the e-mail were accessed by the person concerned.

Such collected personal data by the counting pixel of the emails are stored by the data controller and evaluated in order hipping the emails to optimize the email sending  and the content of future emails to be better adapted to the interests of the concerned person. This personal data will not be disclosed to third parties. Affected persons are entitled at any time to revoke the corresponding declaration of consent. After revocation, this personal data will be deleted by the controller.

Contact option via the website

Due to legal regulations, the IBP website contains information that enables quick electronic contact with our company as well as direct communication with us, which also includes a general address of the so-called electronic mail (email address). If an affected person contacts the data controller by email or through a contact form, the personal data provided by the data subject will be automatically saved. Such personal data, voluntarily transmitted by an individual to the controller, is stored for the purpose of processing or contacting the data subject. There is no disclosure of this personal data to third parties.

Chatbot

At various points on our website, you have the option of communicating with a chatbot text system that offers you tips and support on various topics. This system is provided for us by our processor LoyJoy GmbH, Kapuzinerstraße 20, 48149 Münster (“LoyJoy”). For its part, Loyjoy also uses the “ChatGPT” programme of the service provider OpenAI to support and optimise its services. However, neither LoyJoy nor OpenAI will store the data you enter in the chat beyond the actual communication process. Furthermore, the chat history is neither used for “feeding” nor for optimising and improving the ChatGPT programme. For the provision of the chatbot, a cookie is used by Loyjoy, which is technically necessary, but only after clicking on the speech bubble icon. No data is processed in this context before the chatbot is started.

Routine deletion and blocking of personal data

The controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of the storage or following the European directives or regulations or any other legislator in laws or regulations which the controller was provided for.

If the storage purpose is omitted or if a storage period prescribed by the European directives and regulations or any other relevant legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

Rights of the data subject

a) Right to confirmation

Each data subject has the right, as granted by the European Regulators, to require the controller to confirm whether personal data relating to him / her is being processed. If an affected person wishes to make use of this right of confirmation, they can contact an employee of the controller at any time.

b) Right to information

Any person concerned by the processing of personal data shall have the right, granted by the European Directive and Regulatory Authority, at any time to obtain free of charge information on the personal data stored about him and a copy of that information from the data controller. Furthermore, the European legislator and regulator has provided the data subject with the following information:

  • the processing purposes
  • the categories of personal data being processed
  • the recipients or categories of recipients to whom the personal data have been disclosed or are yet to be disclosed, in particular to recipients in third countries or to international organizations
  • if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
  • the existence of a right to rectification or erasure of the personal data concerning him or of a restriction of the processing by the person responsible or of a right to object to such processing
  • the existence of a right of appeal to a supervisory authority
  • if the personal data are not collected from the data subject: All available information on the source of the data
  • the existence of automated decision-making including profiling under Article 22 (1) and (4) of the GDPR and – at least in these cases – meaningful information on the logic involved and the scope and intended impact of such processing on the data subject

In addition, the data subject has a right of access as to whether personal data has been transmitted to a third country or to an international organisation. If that is the case, then the data subject has the right to obtain information about the appropriate guarantees in connection with the transfer.

If an interested party wishes to exercise this right to information, they may at any time contact an employee of the controller.

c) Right to rectification

Any person affected by the processing of personal data has the right granted by the European legislator to demand the immediate correction of inaccurate personal data concerning him / her. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.

If an affected person wishes to exercise this right of rectification, they may, at any time, contact an employee of the controller.

d) Right to erasure (right to be forgotten)

Any person affected by the processing of personal data shall have the right granted by the European Directives and Regulators to require the controller to immediately delete the personal data concerning him, provided that one of the following reasons is satisfied and the processing is not required:

  • The personal data has been collected for such purposes or otherwise processed for which they are no longer necessary.
  • The data subject withdraws the consent on which the processing was based in accordance with article 6 (1) (a) of the GDPR or article 9 (2) (a) of the GDPR and lacks any other legal basis for the processing.
  • The data subject files the protest about the processing in accordance with art. 21 (1) GDPR, and there are no legitimate reasons for the processing, or the data subject objects according to art. 21 (2) GDPR processing.
  • The personal data were processed unlawfully.
  • The erasure of personal data is necessary to fulfill a legal obligation under union law or national law to which the controller is subject.
  • The personal data were collected in relation to information society services offered pursuant to art. 8 para. 1 GDPR.

If any of the above reasons are true and an affected person removes personal data from IBP at any time, they may contact an employee of the controller for assistance. The employee of IBP will cause the cancellation request to be fulfilled immediately.

Were the personal data of IBP publicly obliged and if our company is responsible for the deletion of personal data in accordance with art. 17 (1) of the GDPR, IBP will take appropriate measures, including technical ones, to other data controllers, taking into account available technology and implementation costs who process the personal data published, to inform the data subject of the deletion of any links to such personal data or copies or replications of such personal data from those other data controllers, unless the processing is necessary. The employee of the IBP will arrange the necessary in individual cases.

e) Right to restriction of processing

Any person concerned by the processing of personal data has the right, granted by the European Directive and the Regulation, to obtain from the controller the restriction of processing where one of the following conditions is met:

  • The accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject objects to the erasure of the personal data and requests instead the restriction of the use of the personal data.
  • The controller no longer needs the personal data for the purposes of processing, but the data subject needs it for the establishment, exercise or defence of legal claims.
  • The data subject has objected to the processing in accordance with Art. Art. 21 para. 1 DSGVO and it is not yet clear whether the legitimate reasons of the controller outweigh those of the data subject.

If one of the aforementioned conditions is met, and a data subject wishes to request the restriction of personal data stored by IBP, he or she may, at any time, contact any employee of the controller. The staff member will arrange for the restriction of processing.

f) Right to data portability

Any person affected by the processing of personal data has the right, granted by the European directive and regulatory authority, to require the controller to restrict the processing if one of the following conditions applies:

  • The accuracy of the personal data is contested by the data subject for a period of time that enables the controller to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject refuses to delete the personal data and instead requests the restriction of the use of personal data.
  • The controller no longer needs the personal data for the purposes of processing, but the data subject requires them to assert, exercise or defend legal claims.
  • The person concerned has objection to the processing acc. 21 para. 1 GDPR and it is not yet clear whether the legitimate reasons of the person responsible outweigh those of the person concerned.

If one of the above conditions is met and an affected person has the restriction of personal data provided by IBP may wish to request it, at any time, to an employee of the controller. The employee of IBP will cause the restriction of processing.

g) Right to data portability

Any person affected by the processing of personal data shall have the right conferred by the European Directives and Regulations to obtain the personal data concerning him / her provided to a controller by the data subject in a structured, common and machine-readable format. The person also has the right to transfer this data to another person responsible without hindrance by the controller to whom the personal data was provided, that the processing is based on the consent pursuant to article 6 (1) (a) of the GDPR or article 9 (1) (b) 2 (a) of the GDPR or on a contract pursuant to article 6 (1) (b) of the GDPR and processing by means of automated processes, unless the processing is necessary for the performance of a task of public interest or in the exercise of public authority, which has been assigned to the responsible person.

h) Automated decisions in individual cases including profiling

Any person concerned by the processing of personal data shall have the right, granted by the European Directive and the Regulation, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her, provided that the decision (1) is not necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is authorised by Union or Member State law to which the controller is subject and that such law lays down appropriate measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is made with the data subject’s explicit consent.

If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the data controller, or (2) it is made with the data subject’s explicit consent, IBP shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, which include at least the right to obtain the data subject’s involvement on the part of the controller, to express his or her point of view and to contest the decision.

If the data subject wishes to exercise the rights concerning automated decisions, he or she may, at any time, contact any employee of the controller.

i) Right to revoke consent under data protection law

Any person affected by the processing of personal data has the right granted by the European Directive and Regulation to withdraw consent to the processing of personal data at any time.

If the data subject wishes to exercise the right to withdraw consent, he or she may, at any time, contact any employee of the controller.

Data protection information on the use of cookies, plug-ins, social media applications and online advertising

Facebook
The controller has integrated components of the company Facebook on this website. Facebook is a social network.

A social network is a social meeting place operated on the internet, an online community that usually allows users to communicate and interact with each other in virtual space. A social network can serve as a platform for exchanging opinions and experiences or enables the internet community to provide personal or company-related information. Among other things, Facebook allows users of the social network to create private profiles, upload photos and network via friend requests.

The operating company of Facebook is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

By each call of one of the individual pages of this website, which is operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the internet browser on the information technology system of the data subject is automatically caused by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. Within the scope of this technical procedure, Facebook receives information about which specific sub-page of our website is visited by the data subject.

If the data subject is logged in to Facebook at the same time, Facebook recognises which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the person concerned. If the data subject activates one of the Facebook buttons integrated on our website, for example the “Like” button, or if the data subject posts a comment, Facebook assigns this information to the data subject’s personal Facebook user account and stores this personal data.

Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is logged into Facebook at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook, he or she can prevent the transmission by logging out of his or her Facebook account before accessing our website.

Facebook’s published data policy, which can be found at https://www.facebook.com/about/privacy/update?ref=old_policy provides information on the collection, processing and use of personal data by Facebook. It also explains the setting options Facebook offers to protect the privacy of the data subject.

As a Facebook member, you can also visit https://www.facebook.com/ads/website_custom_audiences/ to edit your account settings and use them to object to data collection via Custom Audiences across all devices. You can find more information about Facebook’s data protection here: https://www.facebook.com/about/privacy/update?ref=old_policy.

You can find the opt-out option here: https://www.facebook.com/policies/cookies/ und hier: http://www.youronlinechoices.com/en/conference-management/.

Google Analytics (with anonymisation function)

The controller has integrated the Google Analytics component (with anonymisation function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, collation and evaluation of data on the behaviour of visitors to websites. Among other things, a web analysis service collects data on which website a data subject came to a website from (so-called referrers), which sub-pages of the website were accessed or how often and for how long a sub-page was viewed. A web analysis is mainly used to optimise a website and to analyse the cost-benefit of internet advertising.

The operating company of the Google Analytics component is Google IrelandLimited Gordon House, Barrow Street Dublin 4.Ireland.

For web analysis via Google Analytics, the controller uses the add-on “_gat._anonymizeIp”. By means of this addition, the IP address of the Internet connection of the person concerned is shortened and anonymised by Google if access to our Internet pages is made from a member state of the European Union or from another state party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google will use the data and information collected for the purpose of evaluating your use of our website, compiling reports on website activity for website operators and providing other services relating to website activity.  Google Analytics sets a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyse the use of our website. Each time a data subject accesses one of the individual pages of this website operated by the data controller on which a Google Analytics component has been integrated, the internet browser on the data subject’s information technology system is automatically triggered by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical procedure, Google obtains knowledge of personal data, such as the IP address of the person concerned, which Google uses, among other things, to trace the origin of visitors and clicks and subsequently to enable commission calculations.

By means of the cookie, personal information, for example the access time, the place from which an access originated and the frequency of visits to our website by the data subject, is stored. Each time you visit our website, this personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties.

The data subject can prevent the setting of cookies by our website, as already described above, at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the internet browser used would also prevent Google from setting a cookie on the information technology system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.

Furthermore, the data subject has the option to object to the collection of data generated by Google Analytics and related to the use of this website as well as to the processing of this data by Google and to prevent such processing.

For this purpose, the data subject must install a browser add-on at the link http://tools.google.com/dlpage/gaoptout?hl=en to download and install. This browser add-on tells Google Analytics via JavaScript that no data and information about visits to Internet pages may be transmitted to Google Analytics. The installation of the browser add-on is considered by Google as an objection. If the information technology system of the data subject is deleted, formatted or reinstalled at a later point in time, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person within his or her control, it is possible to reinstall or reactivate the browser add-on.

Further information and the applicable Google privacy policy can be found at https://policies.google.com/privacy/update?hl=de&gl=de/ und unter http://www.google.com/analytics/terms/de.html can be accessed. Google Analytics is available at this link https://www.google.com/intl/en/analytics/ for a more detailed explanation.

Instagram

The controller has integrated components of the Instagram service on this website. Instagram is a service that qualifies as an audiovisual platform and allows users to share photos and videos and also to redistribute such data on other social networks.

The operator of the Instagram services is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Each time one of the individual pages of this website operated by the data controller is called up and on which an Instagram component (Insta button) has been integrated, the internet browser on the information technology system of the data subject is automatically caused by the respective Instagram component to download a representation of the corresponding component from Instagram. As part of this technical process, Instagram receives information about which specific sub-page of our website is visited by the data subject.

If the data subject is logged in to Instagram at the same time, Instagram recognises which specific sub-page the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Instagram component and assigned by Instagram to the respective Instagram account of the person concerned. If the data subject activates one of the Instagram buttons integrated on our website, the data and information thus transmitted will be assigned to the personal Instagram user account of the data subject and stored and processed by Instagram.

Instagram always receives information via the Instagram component that the data subject has visited our website if the data subject is simultaneously logged into Instagram at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Instagram component or not. If the data subject does not want this information to be transmitted to Instagram, he or she can prevent the transmission by logging out of his or her Instagram account before accessing our website.

Further information and the applicable privacy policy of Instagram can be found at https://help.instagram.com/155833707900388 und https://www.instagram.com/about/legal/privacy/.

LinkedIn

The controller has integrated components of the LinkedIn Corporation on this website. LinkedIn is an internet-based social network that allows users to connect with existing business contacts and make new business contacts. Over 850 million registered people use LinkedIn in more than 200 countries (as of September 2022). This makes LinkedIn currently the largest platform for business contacts and one of the most visited websites in the world.

The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For data protection matters outside the USA, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

With each individual call-up of our website that is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the data subject to download a corresponding representation of the component from LinkedIn. Further information on LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins can be accessed. As part of this technical procedure, LinkedIn receives information about which specific sub-page of our website is visited by the data subject.

If the data subject is logged in to LinkedIn at the same time, LinkedIn recognises which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the person concerned. If the data subject activates a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.

LinkedIn always receives information via the LinkedIn component that the data subject has visited our website if the data subject is logged into LinkedIn at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, he or she can prevent the transmission by logging out of his or her LinkedIn account before accessing our website.

LinkedIn offers at https://www.linkedin.com/psettings/guest-controls to unsubscribe from email messages, SMS messages and targeted ads, and to manage ad settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be found at https://www.linkedin.com/legal/cookie-policy will be rejected. The applicable privacy policy of LinkedIn is available at https://www.linkedin.com/legal/privacy-policy abrufbar. LinkedIn’s cookie policy is available at https://www.linkedin.com/legal/cookie-policy abrufbar.

Xing

The person responsible for processing has integrated components from Xing on this website. Xing is an internet-based social network that allows users to connect with existing business contacts and make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.

The operating company of Xing is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.

Each time one of the individual pages of this website operated by the controller is called up and on which a Xing component (Xing plug-in) has been integrated, the internet browser on the information technology system of the data subject is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on Xing plug-ins can be found at https://dev.xing.com/plugins can be accessed. As part of this technical procedure, Xing receives information about which specific sub-page of our website is visited by the data subject.

If the data subject is logged in to Xing at the same time, Xing recognises which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Xing component and assigned by Xing to the respective Xing account of the person concerned. If the data subject activates one of the Xing buttons integrated on our website, for example the “Share” button, Xing assigns this information to the data subject’s personal Xing user account and stores this personal data.

Xing always receives information via the Xing component that the data subject has visited our website if the data subject is logged into Xing at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the Xing component or not. If the data subject does not want this information to be transmitted to Xing, he or she can prevent the transmission by logging out of his or her Xing account before accessing our website.

The privacy policy published by Xing, which can be found at https://www.xing.com/privacy provide information on the collection, processing and use of personal data by Xing. Ferner hat Xing unter https://www.xing.com/app/share?op=data_protection Privacy notices for the XING Share button have been published.

Use of Vimeo components
We use components from the provider Vimeo on our website. Vimeo ist ein Service der Vimeo LCC, 555 West 18th Street, New York, New York 10011, USA. With each individual call-up of our website that is equipped with such a component, this component causes the browser you are using to download a corresponding representation of the component from Vimeo. If you visit our site and are logged in to Vimeo during this time, Vimeo recognises which specific page you are visiting through the information collected by the component and assigns this information to your personal account with Vimeo. For example, click B. If you click on the “Play” button or make comments, this information will be transmitted to your personal user account with Vimeo and stored there. In addition, the information that you have visited our site is passed on to Vimeo. This happens regardless of whether you have e.g. B. click on the component/comment or not. If you wish to prevent this transmission and storage of data about you and your behaviour on our website by Vimeo, you must log out of Vimeo before visiting our site.

Use of Hubspot

The controller has integrated the HubSpot service on this website for various processing purposes. HubSpot is a US software company with a branch in Ireland. Kontakt: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Telefon: +353 1 5187500.

Hubspot is an integrated software solution. Among other things, Hubspot CRM allows us to manage existing and potential customers as well as customer contacts. With the help of Hubspot CRM, we are able to capture, sort and analyse customer interactions via email, social media or phone across different channels. The personal data collected in this way can be evaluated and used for communication with the potential customer or for marketing measures (e.g. B. newsletter mailings) can be used.

HubSpot’s privacy policy can be found here: https://legal.hubspot.com/privacy-policy. Further information from HubSpot regarding EU data protection regulations can be found here: https://legal.hubspot.com/security

Use of SalesViewer® technology

This website uses SalesViewer® technology from SalesViewer® GmbH on the basis of the website operator’s legitimate interests (Section 6 paragraph 1 lit.f GDPR) in order to collect and save data on marketing, market research and optimisation purposes.
In order to do this, a javascript based code, which serves to capture company-related data and according website usage. The data captured using this technology are encrypted in a non-retrievable one-way function (so-called hashing). The data is immediately pseudonymised and is not used to identify website visitors personally
The data stored by Salesviewer will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them.
The data recording and storage can be repealed at any time with immediate effect for the future, by clicking on https://www.salesviewer.com/opt-out in order to prevent SalesViewer® from recording your data. In this case, an opt-out cookie for this website is saved on your device. If you delete the cookies in the browser, you will need to click on this link again.

Use of Youtube components

This website contains at least one plugin from YouTube, which belongs to Google Inc. and is based in San Bruno, California, USA.

We use the YouTube no-cookies function, i.e. we have activated extended data protection, videos are not accessed via youtube.com, but via youtube-nocookie.com.

This is provided by YouTube itself and ensures that YouTube does not initially store any cookies on your device. However, when the relevant pages are accessed, the IP address and the other data mentioned in section 4 are transmitted and thus, in particular, which of our Internet pages you have visited. However, this information cannot be assigned to you if you are permanently logged in to YouTube or another Google service when you access the page.

As soon as you start playing an embedded video by clicking on it, YouTube only stores cookies on your device through the extended data protection mode, which do not contain any personally identifiable data, unless you are currently logged in to a Google service. These cookies can be prevented by making the appropriate browser settings and extensions.

Google/YouTube: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland – Privacy policy:  https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

This website uses the YouTube embedding function to display and play videos from YouTube. We use the extended data protection mode, which, according to the provider, only starts storing user information when the video is played. The moment playback of the embedded video is started, YouTube uses cookies to collect information about user behavior.

According to information from YouTube, these are used, among other things, to record video statistics, improve user-friendliness and prevent abusive behavior.

Regardless of whether the embedded videos are played, a connection to the Google “DoubleClick” network is established each time this website is accessed, which may trigger further data processing operations without our influence.

Further information on data protection at YouTube can be found in the provider’s privacy policy at https://www.google.de/intl/de/policies/privacy/

Legal basis of the processing

Art. 6 I lit. a GDPR serves as the legal basis for our company for processing operations where we obtain consent for a specific processing purpose.

Where the processing of personal data is necessary for the performance of a contract to which the data subject is party, such as in the case of processing operations necessary for the supply of goods or the provision of any other service or consideration, the processing is based on Art. 6 I lit. b GDPR. The same applies to processing operations that are necessary for the implementation of pre-contractual measures, for example in the case of enquiries about our products or services.

If our company is subject to a legal obligation by which the processing of personal data becomes necessary, such as for the fulfilment of tax obligations, the processing is based on Art. 6 I lit. c GDPR.

In rare cases, the processing of personal data might become necessary to protect vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were to be injured on our premises and as a result their name, age, health insurance details or other vital information needed to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d GDPR.

Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject are not overridden. We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator. In this respect, he took the view that a legitimate interest could be assumed if the data subject is a customer of the controller (recital 47, second sentence of the GDPR).

Legitimate interests in the processing pursued by the controller or a third party

If the processing of personal data is based on Article 6 I lit. f GDPR, our legitimate interest is the performance of our business activities for the benefit of the well-being of our company, our employees and our shareholders.

Duration for which the personal data are stored

The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of the deadline, the corresponding data is routinely deleted if it is no longer required for the fulfilment or initiation of the contract.

If there is no legal requirement to retain the data, it will be deleted or deleted again. destroyed if they are no longer necessary for achieving the company’s purposes. The same shall apply if the purpose for which the data is stored ceases to apply and if the data subject revokes his/her consent to the processing.

Legal or contractual requirements to provide the personal data; necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

We would like to inform you that the provision of personal data is in some cases required by law (e.g., in the case of a personal data breach) e.g. tax regulations) or may also result from contractual provisions (e.g. details of the contracting party) may arise. Different retention periods apply, for example, data with relevance to tax law is stored in the first half of the year normally 10 years, other data according to commercial law normally Stored for 6 years.

Sometimes, in order to conclude a contract, it may be necessary for a data subject to provide us with personal data which must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with him or her. Failure to provide the personal data would mean that the contract with the data subject could not be concluded. Before providing personal data by the data subject, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

Planned transfers to third countries

A transfer to third countries is generally not planned and does not take place unless this is done separately in accordance with the information on the use of third-party technology (cookies, tools) described above.

Existence of automated decision making

As a responsible company, we do not use automatic decision-making or profiling.

Changes to our privacy policy

IBP’s offer may be changed from time to time, in particular to further improve the functionalities of our website or our offers / services. Such changes may also affect how we use your personal information. For this reason, we reserve the right to change this data protection information at any time. The current version is available on our website under the heading “Data protection”. Please inform yourself regularly about the current status of the data protection information in this way. We will inform you as soon as the changes require an act of cooperation on your part (e.g. a change to the terms of the contract). B. consent) or other individual notification becomes necessary.

Cookies: For the best possible user experience on our site

Cookies & Reach Measurement

Like most online services, our website uses cookies from us and third parties for a number of purposes. The third party cookies used on our websites are mainly used to understand how the website works, how you interact with our website, to keep our services secure and all in all to provide you with a better user experience and to help speed up and improve your future interactions with our website.

What are cookies?

Cookies are pieces of information that are transmitted from our web server or third party web servers to users’ web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage.

Cookie settings

You can manage your cookie preferences by clicking on the “Settings” button within the cookie notice and activating or deactivating the cookie categories in the pop-up according to your preferences. If you decide to change your preferences later during your browsing session, you can click on the following button:

Revoke cookie consent

This will withdraw your consent and display the cookie notice again, allowing you to change your preferences.

Browser settings

In addition, different browsers offer different methods for blocking and deleting cookies used by websites. You can change your browser settings to block/delete cookies. To learn more about how to manage and delete cookies, visitwww.allaboutcookies.org. The exclusion of cookies may lead to functional restrictions of this online offer. You can opt out of the use of cookies that are used for reach measurement and advertising purposes via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Cookies on this website

The cookies used by this website are divided into the following categories:

Necessary

Necessary cookies are absolutely essential for the functional provision of this website. This category only includes cookies that ensure the basic functionality and security of this website. These cookies do not store any personal data.

Optional

Optional cookies are those designed to enhance the user experience of this site. This allows us to perform analyses of user behaviour and provide services from third-party providers. Deactivating this category may result in an incorrect display of this website. These cookies may contain personal data.

The following table shows more details about the cookies used:

Visit our Whistleblowing Portal

Visit Now