Personal data are any information relating to an identified or identifiable natural person (in the following, the ‘data subject’). A natural person is considered identifiable if they can be directly or indirectly identified, especially by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more of several unique characteristics which express the physical, physiological, genetic, mental, commercial, cultural or social identity of these natural persons.
The data subject is any identified or identifiable natural person whose personal data is processed by the processing controller.
‘Processing’ is any operation or set of operations which is performed on personal data or stages of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Restriction of processing
‘Restriction of processing’ is the marking of stored personal data to limit their processing in the future.
‘Profiling’ is any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular, to analyze or predict characteristics concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
‘Pseudonymisation’ is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
Controller or Processing controller
The ‘controller’ is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of processing personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
The ‘processor’ is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
The ‘recipient’ is a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry by Union or Member State law shall not be regarded as recipients.
A ‘third party’ is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
‘Consent’ of the data subject is any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by an explicit affirmative action, signify agreement to the processing of personal data relating to them.
2. NAME AND CONTACT DETAILS OF THE CONTROLLER AND THE DATA PROTECTION OFFICER
The controller responsible for the processing of personal data
under Art. 4 No. 7 GDPR is:
Look Investment GmbH
C.E.O. Thomas Look
Walter-Kollo Str. 24
Tel. +49 (0) 33328 444671
3. PROCESSING OF PERSONAL DATA AND THE NATURE AND PURPOSE OF THEIR USAGE
We process personal data only in the legal framework of the relevant legislation and, where appropriate, with your consent. Personal data are all information relating or at least relatable to a natural person, thereby allowing conclusions concerning their personality. Processing is any operation or set of operations which is performed on personal data or stages of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use; disclosure by transmission, dissemination or by making available in any other manner; alignment or combination, restriction, erasure or destruction.
Visiting the website When you visit our website, the browser used on your device automatically sends information to our website’s server. This information is temporarily stored in a so-called log file. The following information will be collected without any action on your part and held until erasure:
• I.P. address of the terminal requesting the device
• date and time of access
• name and URL of the retrieved file
• website from which access is made (referrer URL)
• browser used and, if necessary, the operating system of your computer and the name of your access provider.
We process the data mentioned for the following purposes:
• ensuring the setup of a smooth website connection
• ensuring comfortable use of our website
• evaluation of system security and stability
• further administrative purposes.
Sign up for our newsletter.
If you have expressly consented under Art. 6 para. 1 s. One lit. a GDPR, we will use your e-mail address to send you our newsletter regularly. For the receipt of the newsletter, the indication of an e-mail address is sufficient. Cancellation is possible anytime, for instance, via a link at the end of our newsletter.
Use of our contact form
If you send us your inquiries via our contact form, you must provide us with a valid e-mail address so that we know who the request came from and can answer it. Further details can be provided voluntarily. Data processed to establish contact with us is under Art. 6 para 1 s.1 lit a GDPR based on your consent. Personal data collected by us using the contact formula will be erased once your request has been dealt with.
Disclosure of data
There will be no transfer of your data to third parties for purposes other than those listed below. We only share your personal information with third parties if:
• you have given express consent to this according to Art. 6 para. 1 s. One lit. f GDPR
• the disclosure under Art. 6 para. 1 s. One lit. f GDPR is required to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data.
• in the event of a legal obligation for disclosure under Art. 6
para. 1 s. One lit. c GDPR
• it is legally permissible and required according to Art. 6 para. 1 s.
One lit. b GDPR for settling contractual relationships with you.
when you leave our site.
In addition, to improve usability, we also use temporary cookies stored on your terminal device for a specified period. If you revisit our site to take advantage of our services, it will automatically recognize that you have
Have you already been with us, and what inputs and settings have you made so that you do not have to re-enter them?
5. ANALYSIS TOOLS
The tracking measures listed below and used by us are based on Art. 6 para. 1 s. One lit. f GDPR. The tracking measures are intended to ensure a web design that meets customers’ needs and is continually optimized. On the other hand, we use tracking measures to statistically record the use of our website and evaluate it to optimize our offer for you. These interests are to be regarded as justified in the provision above. The particular data processing purposes and data categories are to be inferred from the tracking tools employed.
For customizing and continually optimizing our pages, we use Google Analytics, a web analytics service provided by Google Inc. (1600 Amphitheater Parkway, Mountain View, CA 94043, from now on ‘Google’). In this context, pseudonymized usage profiles are created, and cookies (see explanation above) are used. The information generated by the cookie about your use of this website, such as
• browser type/version
• operating system used
• referrer URL (the previously visited page)
• hostname of the accessing computer (I.P. address)
• time of server request is transmitted to a Google server in the U.S. and stored there. The information is used to evaluate the website’s usage, compile reports on the website activities, and provide other services related to the use of the website and the internet for the benefit of market research and the customization of the content of these websites. This information may also be transferred to third parties if required by law or if third parties are subcontracted to process this data. Under no circumstances will your I.P. address be merged with any other data provided by Google. The I.P. addresses are anonymized, making user identification impossible (I.P. masking). You can prevent the installation of cookies by setting the browser software accordingly; however, we point out that, in this case, it is possible that not all functions of this website can be fully utilized. In addition, you can prevent the collection of data generated by the cookie and related to your use of the website (including your I.P. address) and the processing of this data by Google by downloading and installing a browser add-on (https: //tools.google.com/dlpage/gaoptout?hl=en). As an alternative to the browser add-on, especially for browsers on mobile devices, you can prevent the collection of your data by Google Analytics by clicking on this link. An opt-out cookie will be set to prevent future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and
only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again. For more information about privacy related to Google Analytics, see the Google Analytics Help Center (https://support.google.com/analytics/answer/6004245?hl=en).
Google Adwords Conversion Tracking
Use of SalesViewer® technology
6. RIGHT OF THE DATA SUBJECT
Because we process your personal information, you have the following rights:
Right of access by the data subject
According to Art. 15 GDPR, you can request information on your data which we have processed. In particular, you can request information on the processing purposes, the category of personal data, the types of recipients to whom your data has been or will be disclosed, the planned retention period, the existence of a right of rectification, erasure, restriction of or objection to processing, the presence of a right of complaint; the source of your data if not collected by us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information on the details of such.
By Art. 16 GDPR, you can immediately demand the rectification of inaccurate personal data or the completion of incomplete personal data stored by us.
By Art. 17 GDPR, you may request the erasure of personal data concerning you stored by us unless such processing is required to exercise the right of freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to establish, exercise or defend legal claims.
You have the right to obtain restriction of the processing of your data by Art. 18 GDPR, insofar as you dispute the accuracy of the data, the processing is unlawful, and you oppose its erasure in favor of restriction, we no longer need the data, but you require the data for the establishment, exercise or defense of legal claims, or you have objected to the processing pursuant
to Art. 21 GDPR.
By Art. 20 GDPR, you have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, or have the personal data sent to another controller.
By Art. 7 para. 3 GDPR, you can withdraw your previously given consent to us anytime. As a result, we are not allowed to continue the data processing based on this consent in the future.
Right to complain.
You have the right to complain to a supervisory authority by Art. 77 GDPR if you consider that the processing of your data infringes data protection regulations. As a rule, you can contact the supervisory authority of your habitual residence or workplace or our company headquarters.
7. RIGHT TO OBJECT
Insofar as your data are processed based on legitimate interests by Art. 6 para. 1 S. 1 lit. f GDPR, you have the right to object to the processing of your data by Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is against direct marketing. In the latter case, you have a general right of objection, which we implement without specifying any particular situation. To exercise your right to object or withdraw, it suffices to send us an e-mail.
8. DATA PROTECTION IN APPLICATIONS AND THE APPLICATION PROCESS
We collect and process the personal data of applicants as part of the application procedure. The processing can also be done electronically. This is particularly the case if an applicant submits the relevant application documents electronically, for example, by e-mail or via a website application form. If we conclude an employment contract with an applicant, the transmitted data will be stored for the employment relationship in compliance with the legal requirements. Suppose the processing controller concludes with no warranty of work with the candidate. In that case, the application documents shall be erased two months after notification of the rejection decision, provided no other legitimate interest of the controller conflicts with the erasure. A legitimate interest in this sense would be, for example, a burden of proof in a procedure under the General Equal Treatment Act (GETA).
9. STORAGE DURATION OF PERSONAL DATA
The criterion for the duration of the storage of personal data is the respective legal retention period. After the deadline, the corresponding data will be erased if they are no longer required to fulfill or initiate a contract.
10. W.R.T. AUTOMATED DECISION-MAKING
As a responsible company, we refrain from automated decision-making or profiling.
11. DATA SECURITY
We implemented the widely used SSL (Secure Socket Layer) encryption method during your website visit. When an individual page of our website is transmitted in encrypted form, it is indicated by the closed representation of the key or lock symbol in the lower status bar of your browser. We also take appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction, or unauthorized access by third parties. Our security measures are
continuously improved in line with technological developments.
retrieved from our website and printed.