Search

Privacy Policy

We ensure protected and proper handling in accordance with legal requirements and international standards. Below is our privacy policy for firstcolo.net
As of: 22.10.2024

General Information
Data Processing
Special Data Processing
Application Process
Abuse and DSA Reports
Social Media
Your Rights

A. General Information on Data Protection

1. Subject of this Privacy Information

This privacy policy includes information about data processing in the context of accessing and using the website firstcolo.net. If external websites are linked, we recommend checking their privacy information to determine whether and to what extent personal data is processed there.

2. Responsibility and Contact Options

The company responsible for processing personal data is firstcolo GmbH, Kruppstraße 105, 60388 Frankfurt am Main. For further contact details, please refer to the imprint. For all questions regarding data protection, especially in connection with our website, you can contact us or our external Data Protection Officer (Bugl Kollegen Gesellschaft für Datenschutz und Informationssicherheit mbH, Alexander Bugl, Eifelstraße 55, 93057 Regensburg; E-Mail: kontakt@buglundkollegen.de) at any time.

3. Changes to Privacy Information

Due to the addition and adjustment of functions on our website and the associated potential changes in data protection processes, our privacy information is regularly updated. We recommend regularly informing yourself about the current status.

B. Data Processing when Accessing our Website

1. Log Files

When accessing our websites, a so-called protocol data record (server log files) is stored on our web server, which also includes the IP address. The data within these server log files is needed, among other things, to correctly display the contents of our websites and for security aspects (the legal basis for this is Art. 6 Para. 1 f) GDPR and thus in particular the interest in proper and secure operation of our IT infrastructure ). Die Logfiles werden regelmäßig und automatisiert gelöscht. Sollten Sie hierzu weitere Informationen wünschen, wenden Sie sich jederzeit gerne an uns.

2. Tools and Cookies

Our website uses various services and applications (collectively “Tools”) that are either provided by us or by third parties provided . These include in particular tools that use technologies to store information on the end device or access it (e.g. cookies, web storage, JavaScripts or pixels). Details about the tools, especially the cookies used, can be found in the privacy settings. We distinguish between tools that are absolutely necessary, for example, to provide the basic functions of the website or to provide an expressly requested service (the legal basis for the use of these tools is our legitimate interest according to Art. 6 Para. 1 f) GDPR, or § 25 Para. 2 No. 2 TDDSG). On the other hand, we use tools that are not absolutely necessary and allow us, for example, to evaluate the calls and visits to the website or to specifically display marketing measures. For the use of these tools, we need your prior consent, Art. 6 Para. 1 a) GDPR, or § 25 Para. 1 TDDSG). Details about the tools and cookies used when using our website, their storage duration and information on how you can delete the data collected here can be found in the Privacy settings, which you can access via the “fingerprint symbol” displayed on the website.

3. Management and Configuration of Tools

Our website uses a so-called cookie consent management tool (Usercentrics, an application of Usercentrics GmbH, Rosental 4, 80331 Munich)to manage and control the potentially required consents for storing or loading certain tools. The associated data processing is necessary to provide you with the legally required consent management and to comply with our documentation obligations. The legal basis is Art. 6 para. 1 c), f) GDPR, in particular justified by our interest in fulfilling the legal requirements for consent management ( § 25 para. 2 no. 2 TTDSG). Sie können Ihre Einwilligung für bestimmte Tools jederzeit widerrufen. Klicken Sie dazu auf die Privacy settings, or the “fingerprint symbol” displayed on the website“. There you can also change the selection of tools you wish to consent to, as well as obtain additional information about the cookies and their respective storage duration. Alternatively, you can assert your revocation for certain tools directly with the respective provider. If you have questions about the provider or need further information, please feel free to contact us at any time using the aforementioned contact details.

4. Analysis and Tracking Tools

We use tools on our website that help us better understand user behavior and optimize our offerings based on the information collected. Details about these tools can also be found in the Privacy settings. It is always ensured that these tools are only used or process data if you have given your prior consent (Art. 6 para. 1 lit. a) GDPR; § 25 para. 1 TDDDG). If these providers have access to personal data or the tools are hosted by these providers, we have concluded the necessary data processing agreements. If you have questions about the providers or need further information about any storage and deletion processes, please feel free to contact us at any time using the aforementioned contact details.

5. Marketing and Retargeting Tools

We also use so-called marketing and retargeting tools on our website. Some of the access data generated when using our website is used to create usage profiles, which in particular store your usage behavior, the advertisements you have viewed or clicked on, and the resulting classification into advertising categories, interests, and preferences. By analyzing and evaluating this access data, we are able to display personalized advertising to you, i.e., advertising that corresponds to your actual interests and needs, on our website and on the websites and services of other providers. We also analyze your usage behavior to recognize you on other pages and address you personally based on your use of our site (so-called retargeting). Einzelheiten zu diesen Anwendungen finden Sie ebenfalls in den Privacy settings. Hier hierbei ist st always ensured that these applications are only used or process data if you have given your prior consent (Art. 6 para. 1 lit. a) DSGVO; § 25 para. 1 TTDSG). If you have questions about the providers or need further information about any storage and deletion processes, please feel free to contact us at any time using the aforementioned contact details.

6. Content Delivery Network (CDN) kununu

We use the CDN from kununu for the proper provision of our website’s content. kununu CDN is a service of New Work SE, Am Strandkai 1, 20457 Hamburg, which is used on our website as a Content Delivery Network (CDN) functions. A CDN helps to deliver content from our online offering, especially files such as graphics or scripts, faster using regionally or internationally distributed servers. When you access this content, you establish a connection to servers of New Work SE , whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of kununu CDN. The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in secure and efficient provision as well as optimization of our online offering in accordance with Art. 6 Para. 1 f) GDPR.

C. Other special data processing

1. Contact form

We offer a contact form on our website to answer questions from users and customers and to communicate with them. We process the inquiries and information directed to us in this context only to process your request and to contact you (Art. 6 Para. 1 a, f) GDPR). We store your data for a maximum of the duration of a resulting contractual relationship with you (Art. 6 Para. 1 b) GDPR). Should such a contractual relationship not arise as a result of the inquiry, we will delete your data at the latest twenty-four (24) months after the last contact with you. The right to object to the processing beforehand or to request deletion remains unaffected, of course.

2. Newsletter

When you sign up for our email newsletter, we only process your email address and your name. The data is used exclusively to send you information about our services and offers at regular intervals. The data processing is based on your consent (Art. 6 Para. 1 a) GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The lawfulness of the data processing operations that have already taken place remains unaffected by the revocation.

Our email newsletters are sent via a specialized service provider. This associated data processing takes place as part of so-called order processing, thus on the basis of the necessary contracts. Please note that your data is usually transferred to a server of the service provider in the USA and stored there. The data transfer takes place according to Art. 45 Para. 1 GDPR on the basis of the adequacy decision of the European Commission, as the participating US company is certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In addition to sending, the service provider also uses this information for statistical evaluation of the newsletters on our behalf. For the evaluation, the sent emails contain so-called web beacons or tracking pixels. This allows us to determine whether a newsletter message has been opened and which links may have been clicked. In addition, technical information is collected (e.g., the time of retrieval, IP address, browser type, and operating system). This data is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients. The legal basis for the processing of your personal data in connection with the analysis is your given consent within the meaning of Art. 6 Para. 1 lit. a) GDPR. The consent can be revoked at any time. If you wish to object to the aforementioned data processing, it is necessary to unsubscribe from the newsletter. You can view the service provider’s privacy policy here: https://mailchimp.com/legal/privacy

3. Google Maps

We use Google Maps (API) on our website. The operating company of Google Maps is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Maps is a web service for displaying interactive (land) maps to visually present geographical information. When you access a page that incorporates Google Maps, your browser loads the web fonts required to display Google Maps into your browser cache. For this purpose, the browser you are using also establishes a connection to Google’s servers. This allows Google to know that our website was accessed via your IP address. Google stores your data (even for users who are not logged in) as usage profiles and analyzes them. The parent company of the mentioned service provider is based in the USA. Although w e do not intend to transfer personal data to third countries outside the European Economic Area, particularly the USA, this cannot be ruled out due to the corporate structures. In such a case, however, the data transfer takes place according to Art. 45 Para. 1 GDPR on the basis of the adequacy decision of the European Commission, as the participating US company is certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF). You have the right to object to the creation of these user profiles, whereby you must address Google to exercise this right. These processing operations are carried out exclusively with explicit consent in accordance with Art. 6 Para. 1 a) GDPR. You can view Google Maps’ privacy policy at: https://www.google.de/intl/en/policies/privacy/.

4. Google Fonts

Our website uses so-called Webfonts for the uniform display of fonts, which are provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you access a page, your browser loads the required Webfonts into your browser cache to correctly display texts and fonts (Art. 6 Para. 1 f) GDPR). However, we have embedded the Webfonts locally, i.e., on our web server. Therefore, no data is transmitted to Google’s servers.

D. Data processing in the context of application procedures

Information about the type and scope of data processing within the framework of using our application platform can be found in the Career section.

E. Data processing in the context of abuse and DSA reports

Information about the type and scope of data processing within the framework of using our Abuse system will be provided to you when you use these services.

F. Social Media

We maintain presences on online platforms and social networks to interact with potential or existing customers, exchange information with interested parties and users, or advertise offers and services. We operate our presences in so-called joint (data protection) responsibility with the providers. Data that you directly share or publish via the online platforms and networks (e.g., via comment and chat functions) are processed by us as the responsible party to interact with you or to exchange information with you if necessary. As part of this interaction, we may also receive statistical data from the platform operators regarding the use of our “channels and fan pages”. This includes, for example, information about interactions, likes, comments, or aggregated information and statistics (e.g., IP address; origin of followers) that help us learn about interactions with our page. The legal basis for data processing in our area of responsibility is Art. 6 Para. 1, S. 1 f) GDPR.

However, providers also process data under their own responsibility. We have no influence on data that is processed by the provider under their own responsibility according to their own terms of use and privacy policies. We point out that when accessing the aforementioned providers, additional data (e.g., about your usage and ‘surfing behavior’) may be collected and possibly transmitted to the provider. Please also note that in the case of interaction via the aforementioned media, data may also be processed outside the European Union. Furthermore, user data is usually processed for market research and advertising purposes. For example, usage profiles can be created from the user behavior and resulting interests of users. The usage profiles can in turn be used to display advertisements within and outside the platforms that presumably correspond to the users’ interests. You can find more information on this in the privacy information of the respective providers. If we have personal data about you in connection with the use of online platforms and networks, please address your concerns to us. If you wish to assert rights against a specific provider, please contact the respective provider.

G. Your Rights

You can assert your rights regarding your processed personal data against us at any time using the contact details provided at the beginning. You are particularly entitled to the following rights:

Art. 15 GDPR: Right to information about your data processed by us

This includes, in particular, information about the purposes of processing, the category of data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to complain, the origin of your data, if not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.

Art. 16 GDPR: Right to rectification of incorrect data or completion of your data stored by us.

The right to rectification means, in particular, that you have the right to request from us without undue delay the rectification of inaccurate personal data concerning you and the completion of incomplete personal data.

Art. 17 GDPR: Right to erasure of your data stored by us

The right to erasure means that you generally have the right to request from us that personal data concerning you be erased without undue delay, and we are obligated to erase personal data without undue delay. This can be the case, for example, if the personal data is no longer necessary for the purposes for which it was collected or otherwise processed.

Art. 18 GDPR: Right to restriction of processing of the data.

The right to restriction can be relevant if you contest the accuracy of the personal data.

Art. 20 GDPR: Right to receive your data (“data portability”).

The right to receive means that you generally have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format, and you have the right to transmit those data to another controller without hindrance from us.

Art. 21 GDPR: Right to object to processing, provided that the processing is based on Art. 6(1)(e) or (f) GDPR.

As a data subject, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(e) or (f) GDPR, including profiling based on those provisions. Where personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.

Art. 77 GDPR: Right to lodge a complaint with a data protection supervisory authority