Search
Icon, mit weißem Pfeil auf grünem Hintergrund

Privacy Policy

We ensure protected and proper handling in accordance with legal requirements and international standards. Below is our privacy policy for firstcolo.net
As of: 13.11.2025

General Information
Data Processing
Special Data Processing
Application Process
Abuse and DSA Reports
Social Media
Your Rights

A. General Information on Data Protection

1. Subject of this Privacy Information

This privacy policy includes information about data processing in the context of accessing and using the website firstcolo.net. If external websites are linked, we recommend checking their privacy information to determine whether and to what extent personal data is processed there.

2. Responsibility and Contact Options

The company responsible for processing personal data is firstcolo GmbH, Kruppstraße 105, 60388 Frankfurt am Main. For further contact details, please refer to the imprint. For all questions regarding data protection, especially in connection with our website, you can contact us or our external Data Protection Officer (Bugl Kollegen Gesellschaft für Datenschutz und Informationssicherheit mbH, Alexander Bugl, Eifelstraße 55, 93057 Regensburg; E-Mail: kontakt@buglundkollegen.de) at any time.

3. Changes to Privacy Information

Due to the addition and adjustment of functions on our website and the associated potential changes in data protection processes, our privacy information is regularly updated. We recommend regularly informing yourself about the current status.

B. Data Processing when Accessing our Website

1. Log Files

When accessing our websites, a so-called protocol data record (server log files) is stored on our web server, which also includes the IP address. The data within these server log files is needed, among other things, to correctly display the contents of our websites and for security aspects (the legal basis for this is Art. 6 Para. 1 f) GDPR and thus in particular the interest in proper and secure operation of our IT infrastructure ). The log files are deleted regularly and automatically. If you require any further information, please feel free to contact us at any time.

2. Tools and Cookies

Our website uses various services and applications (collectively “Tools”) that are either provided by us or by third parties provided . These include in particular tools that use technologies to store information on the end device or access it (e.g. cookies, web storage, JavaScripts or pixels). Details about the tools, especially the cookies used, can be found in the privacy settings. We distinguish between tools that are absolutely necessary, for example, to provide the basic functions of the website or to provide an expressly requested service (the legal basis for the use of these tools is our legitimate interest according to Art. 6 Para. 1 f) GDPR, or § 25 Para. 2 No. 2 TDDSG). On the other hand, we use tools that are not absolutely necessary and allow us, for example, to evaluate the calls and visits to the website or to specifically display marketing measures. For the use of these tools, we need your prior consent, Art. 6 Para. 1 a) GDPR, or § 25 Para. 1 TDDSG). Details about the tools and cookies used when using our website, their storage duration and information on how you can delete the data collected here can be found in the Privacy settings, which you can access via the ‘fingerprint icon’ displayed on the website.

3. Management and Configuration of Tools

Unsere Website nutzt ein sog. Cookie-Consent-Management Tool (Usercentrics, eine Anwendung der Firma Usercentrics GmbH, Rosental 4, 80331 Münchento manage and control the potentially required consents for storing or loading certain tools. The associated data processing is necessary to provide you with the legally required consent management and to comply with our documentation obligations. The legal basis is Art. 6 para. 1 c), f) GDPR, in particular justified by our interest in fulfilling the legal requirements for consent management ( § 25 para. 2 no. 2 TTDSG). You can revoke your consent for certain tools at any time. Click on the Privacy settings, or the ‘fingerprint icon’ displayed on the website.There you can also change the selection of tools you wish to consent to, as well as obtain additional information about the cookies and their respective storage duration. Alternatively, you can assert your revocation for certain tools directly with the respective provider. If you have questions about the provider or need further information, please feel free to contact us at any time using the aforementioned contact details.

4. Analysis and Tracking Tools

We use tools on our website that help us better understand user behavior and optimize our offerings based on the information collected. Details about these tools can also be found in the Privacy settings. It is always ensured that these tools are only used or process data if you have given your prior consent (Art. 6(1)(a) GDPR; Section 25(1) TDDDG). If these providers have access to personal data or if the tools are hosted by these providers, the required data processing agreements have been concluded. If you have any questions about the providers or require further information about any storage and deletion processes, please feel free to contact us at any time using the contact details provided above.”

5. Marketing and Retargeting Tools

We also use so-called marketing and retargeting tools on our website. tools on our website. Some of the access data generated when using our website is used to create usage profiles, which in particular store your usage behavior, the advertisements you have viewed or clicked on, and the resulting classification into advertising categories, interests, and preferences. By analyzing and evaluating this access data, we are able to display personalized advertising to you, i.e., advertising that corresponds to your actual interests and needs, on our website and on the websites and services of other providers. We also analyze your usage behavior to recognize you on other pages and address you personally based on your use of our site (so-called retargeting). Details about these applications can also be found in the Privacy settings. In doing so, it isalways ensured that these applications are only used or process data if you have given your prior consent (Art. 6 Abs. 1 lit. a) GDPR; Section 25(1) TTDSG). If you have any questions about the providers or require further information regarding any storage or deletion processes, please feel free to contact us at any time using the contact details provided above.

6. Content Delivery Network (CDN) kununu

We use the CDN provided by kununu to ensure the proper delivery of the content on our website. The kununu CDN is a service of New Work SE, At Strandkai 1, 20457 Hamburg, which is used on our website as a content delivery network (CDN).” Network (CDN) functions. A CDN helps to deliver content from our online offering, especially files such as graphics or scripts, faster using regionally or internationally distributed servers. When you access this content, you establish a connection to servers of New Work SE , whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of kununu CDN. The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in secure and efficient provision as well as optimization of our online offering in accordance with Art. 6 Para. 1 f) GDPR.

C. Other special data processing

1. Contact form

We offer a contact form on our website to answer questions from users and customers and to communicate with them. We process the inquiries and information directed to us in this context only to process your request and to contact you (Art. 6 Para. 1 a, f) GDPR). We store your data for a maximum of the duration of a resulting contractual relationship with you (Art. 6 Para. 1 b) GDPR). Should such a contractual relationship not arise as a result of the inquiry, we will delete your data at the latest twenty-four (24) months after the last contact with you. The right to object to the processing beforehand or to request deletion remains unaffected, of course.

2. Newsletter

When you sign up for our email newsletter, we only process your email address and your name. The data is used exclusively to send you information about our services and offers at regular intervals. The data processing is based on your consent (Art. 6 Para. 1 a) GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The lawfulness of the data processing operations that have already taken place remains unaffected by the revocation.

Our email newsletters are sent via a specialized service provider. This associated data processing takes place as part of so-called order processing, thus on the basis of the necessary contracts. Please note that your data is usually transferred to a server of the service provider in the USA and stored there. The data transfer takes place according to Art. 45 Para. 1 GDPR on the basis of the adequacy decision of the European Commission, as the participating US company is certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In addition to sending, the service provider also uses this information for statistical evaluation of the newsletters on our behalf. For the evaluation, the sent emails contain so-called web beacons or tracking pixels. This allows us to determine whether a newsletter message has been opened and which links may have been clicked. In addition, technical information is collected (e.g., the time of retrieval, IP address, browser type, and operating system). This data is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients. The legal basis for the processing of your personal data in connection with the analysis is your given consent within the meaning of Art. 6 Para. 1 lit. a) GDPR. The consent can be revoked at any time. If you wish to object to the aforementioned data processing, it is necessary to unsubscribe from the newsletter. You can view the service provider’s privacy policy here: https://mailchimp.com/legal/privacy

3. Google Maps

We use Google Maps (API) on our website. The operating company of Google Maps is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Maps is a web service for displaying interactive (land) maps to visually present geographical information. When you access a page that incorporates Google Maps, your browser loads the web fonts required to display Google Maps into your browser cache. For this purpose, the browser you are using also establishes a connection to Google’s servers. This allows Google to know that our website was accessed via your IP address. Google stores your data (even for users who are not logged in) as usage profiles and analyzes them. The parent company of the mentioned service provider is based in the USA. Although w e do not intend to transfer personal data to third countries outside the European Economic Area, particularly the USA, this cannot be ruled out due to the corporate structures. In such a case, however, the data transfer takes place according to Art. 45 Para. 1 GDPR on the basis of the adequacy decision of the European Commission, as the participating US company is certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF). You have the right to object to the creation of these user profiles, whereby you must address Google to exercise this right. These processing operations are carried out exclusively with explicit consent in accordance with Art. 6 Para. 1 a) GDPR. You can view Google Maps’ privacy policy at: https://www.google.de/intl/en/policies/privacy/.

4. Google Fonts

Our website uses so-called Webfonts for the uniform display of fonts, which are provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you access a page, your browser loads the required Webfonts into your browser cache to correctly display texts and fonts (Art. 6 Para. 1 f) GDPR). However, we have embedded the Webfonts locally, i.e., on our web server. Therefore, no data is transmitted to Google’s servers.

D. Information on data processing in the application process

We hereby inform you about the processing of your personal data by firstcolo Datacenters GmbH and your rights under data protection law.

Who is responsible for data processing and who is the data protection officer?
The controller for data processing is
firstcolo Datacenters GmbH
Kruppstrasse 105
60388 Frankfurt am Main, Germany
Tel: +49 (69) 1200 69 0
E-mail: hr@firstcolo.net

Details of the data protection officer:
Bugl Kollegen GmbH
Eifelstraße 55
93057 Regensburg, Germany
E-mail: kontakt@buglundkollegen.de

Which personal data do we collect and where does it come from?
We process the following personal data as part of the application process:

  • Your master data (such as first name, last name, name suffixes, date of birth)
  • if applicable, work permit / residence permit
  • Contact details (such as private address, (mobile) telephone number, e-mail address)
  • Skill data (e.g. special knowledge and skills)
  • Further data from the application documents (e.g. information on previous and existing employment relationships, education, salary expectations, start date, photograph)

Your personal data is generally collected directly from you as part of the hiring process, in particular from the application documents, the job interview and from the personnel questionnaire. In addition, we process data that we receive from personnel recruiters and personal data that we have legitimately obtained from publicly accessible sources (e.g. professional networks).

For what purposes and on what legal basis is data processed?
We process your personal data in compliance with the provisions of the EU General Data Protection Regulation (GDPR). The data processing primarily serves to establish the employment relationship. The primary legal basis for this is Art. 6 para. 1 lit b) GDPR.
Your data will only be processed to fill the specific position for which you have applied. If you would like to be included in our applicant pool in the event of a rejection, we require a declaration of consent from you.

If your application is to be considered for other open positions in the company/group, we require a declaration of consent from you. In addition, we are obliged under European anti-terror regulations 2580/2001 and 881/2002 to compare your data against the so-called “EU terror lists” in order to ensure that no funds or other economic resources are made available for terrorist purposes.

How long will your data be stored?
If you are hired, we will transfer your application documents to your personnel file. After termination of the employment relationship, those personal data will continue to be stored for which we are legally obliged to retain. This regularly results from legal proof and storage obligations, which are regulated, among other things, in the German Commercial Code and the German Fiscal Code. The storage periods are then up to ten years. In addition, it may occur that personal data is stored for the time during which claims can be asserted against us (statutory limitation period of three or up to thirty years).

In the event of a rejection, your application documents will be deleted no later than six months after completion of the application process, unless you have given us your consent to longer storage (applicant pool).

Who receives your data?
Within our company, only those persons and departments (e.g. specialist department, works council, representation of severely disabled persons) receive your personal data who are involved in the decision regarding your hiring.

As part of the application process, we use the applicant management software from aventini GmbH. For this purpose, we have concluded a contract with aventini GmbH for the processing of personal data on behalf (order processing contract).

What rights can you assert as a data subject?
You have the rights from Art. 15 – 21 GDPR:
Right to information (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to object to the processing (Art. 21)
Right to data portability (Art. 20 GDPR)
Please contact the following office:
HR, firstcolo Datacenters GmbH, Kruppstrasse 105, 60388 Frankfurt am Main, Germany,
Tel: +49 (69) 1200 69 0, E-mail: hr@firstcolo.net

Where can you complain?
You have the option of submitting a complaint to the data protection officer mentioned above or to a data protection supervisory authority. You can use the following link to find out about the data protection supervisory authority responsible for you in the “Supervisory authorities for the non-public sector” section: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_linksnode.html

Will your data be transferred to a third country?
We do not transfer your applicant data to third countries.

Are you obliged to provide your data?
In order to consider your application, we require the personal data from you that is necessary for the decision on the establishment of the employment relationship.

To what extent do automated individual case decisions or profiling measures take place?
We do not use purely automated processing procedures to make a decision.

E. Data processing in the context of abuse and DSA reports

Information about the type and scope of data processing within the framework of using our Abuse system will be provided to you when you use these services.

F. Social Media

We maintain presences on online platforms and social networks to interact with potential or existing customers, exchange information with interested parties and users, or advertise offers and services. We operate our presences in so-called joint (data protection) responsibility with the providers. Data that you directly share or publish via the online platforms and networks (e.g., via comment and chat functions) are processed by us as the responsible party to interact with you or to exchange information with you if necessary. As part of this interaction, we may also receive statistical data from the platform operators regarding the use of our “channels and fan pages”. This includes, for example, information about interactions, likes, comments, or aggregated information and statistics (e.g., IP address; origin of followers) that help us learn about interactions with our page. The legal basis for data processing in our area of responsibility is Art. 6 Para. 1, S. 1 f) GDPR.

However, providers also process data under their own responsibility. We have no influence on data that is processed by the provider under their own responsibility according to their own terms of use and privacy policies. We point out that when accessing the aforementioned providers, additional data (e.g., about your usage and ‘surfing behavior’) may be collected and possibly transmitted to the provider. Please also note that in the case of interaction via the aforementioned media, data may also be processed outside the European Union. Furthermore, user data is usually processed for market research and advertising purposes. For example, usage profiles can be created from the user behavior and resulting interests of users. The usage profiles can in turn be used to display advertisements within and outside the platforms that presumably correspond to the users’ interests. You can find more information on this in the privacy information of the respective providers. If we have personal data about you in connection with the use of online platforms and networks, please address your concerns to us. If you wish to assert rights against a specific provider, please contact the respective provider.

G. Your Rights

You can assert your rights regarding your processed personal data against us at any time using the contact details provided at the beginning. You are particularly entitled to the following rights:

Art. 15 GDPR: Right to information about your data processed by us

This includes, in particular, information about the purposes of processing, the category of data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to complain, the origin of your data, if not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.

Art. 16 GDPR: Right to rectification of incorrect data or completion of your data stored by us.

The right to rectification means, in particular, that you have the right to request from us without undue delay the rectification of inaccurate personal data concerning you and the completion of incomplete personal data.

Art. 17 GDPR: Right to erasure of your data stored by us

The right to erasure means that you generally have the right to request from us that personal data concerning you be erased without undue delay, and we are obligated to erase personal data without undue delay. This can be the case, for example, if the personal data is no longer necessary for the purposes for which it was collected or otherwise processed.

Art. 18 GDPR: Right to restriction of processing of the data.

The right to restriction can be relevant if you contest the accuracy of the personal data.

Art. 20 GDPR: Right to receive your data (“data portability”).

The right to receive means that you generally have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format, and you have the right to transmit those data to another controller without hindrance from us.

Art. 21 GDPR: Right to object to processing, provided that the processing is based on Art. 6(1)(e) or (f) GDPR.

s a data subject, you have the right, on grounds relating to your particular situation, to object at any time to the processing of your personal data that is based on Article 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions. 1 e) or (f) GDPR; this also applies to profiling based on these provisions.
If personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for such marketing purposes; this also applies to profiling insofar as it is connected with such direct marketing.

Art. 77 GDPR: Right to lodge a complaint with a data protection supervisory authority

Die englische Übersetzung wird ausschließlich zu Informationszwecken und für die Benutzerfreundlichkeit bereitgestellt; maßgeblich und rechtlich verbindlich ist allein der deutsche Text.

WordPress Cookie Notice by Real Cookie Banner